git.samba.org
/
sfrench
/
cifs-2.6.git
/ search
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
first ⋅ prev ⋅
next
security/selinux: fix SECURITY_LSM_NATIVE_LABELS on reused superblock
2019-03-11
J. Bruce Fields
security/selinux: fix SECURITY_LSM_NATIVE_LABELS on...
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2019-03-11
Xin Long
selinux: add the missing walk_size + len check in selinux_sc...
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2019-02-05
Stephen Smalley
selinux: fix avc audit messages
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2019-01-28
Ondrej Mosnacek
selinux: replace BUG_ONs with WARN_ONs in avc.c
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2019-01-25
Ondrej Mosnacek
selinux: log invalid contexts in AVCs
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2019-01-25
Ondrej Mosnacek
selinux: replace some BUG_ON()s with a WARN_ON()
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2019-01-25
Ondrej Mosnacek
selinux: inline some AVC functions used only once
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2019-01-11
Ondrej Mosnacek
selinux: do not override context on context mounts
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2019-01-11
Ondrej Mosnacek
selinux: never allow relabeling on context mounts
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2019-01-11
Stephen Smalley
selinux: stop passing MAY_NOT_BLOCK to the AVC upon...
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2019-01-11
Stephen Smalley
selinux: avoid silent denials in permissive mode under...
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-12-14
YueHaibing
audit: remove duplicated include from audit.c
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-12-05
Ondrej Mosnacek
selinux: overhaul sidtab to fix bug and improve performance
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-12-05
Ondrej Mosnacek
selinux: use separate table for initial SID lookup
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-12-04
Richard Guy Briggs
audit: shorten PATH cap values when zero
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-11-29
Paul Moore
selinux: add support for RTM_NEWCHAIN, RTM_DELCHAIN...
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-11-26
Paul Moore
audit: use current whenever possible
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-11-26
Paul Moore
audit: minimize our use of audit_log_format()
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-11-26
Alexey Dobriyan
selinux: make "selinux_policycap_names[]" const char *
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-11-26
Ondrej Mosnacek
selinux: always allow mounting submounts
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-11-20
Ondrej Mosnacek
selinux: refactor sidtab conversion
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-11-19
Richard Guy Briggs
audit: remove WATCH and TREE config options
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-11-19
Petr Vorel
Documentation: Update SELinux reference policy URL
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-11-19
Richard Guy Briggs
audit: use session_info helper
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-11-19
Richard Guy Briggs
audit: localize audit_log_session_info prototype
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-11-14
Paul Moore
selinux: fix non-MLS handling in mls_context_to_sid()
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-11-13
Ondrej Mosnacek
selinux: check length properly in SCTP bind hook
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-11-12
Jan Kara
audit: Use 'mark' name for fsnotify_mark variables
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-11-12
Jan Kara
audit: Replace chunk attached to mark instead of replacing...
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-11-12
Jan Kara
audit: Simplify locking around untag_chunk()
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-11-12
Jan Kara
audit: Drop all unused chunk nodes during deletion
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-11-12
Jan Kara
audit: Guarantee forward progress of chunk untagging
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-11-12
Jan Kara
audit: Allocate fsnotify mark independently of chunk
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-11-12
Jan Kara
audit: Provide helper for dropping mark's chunk reference
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-11-12
Jan Kara
audit: Remove pointless check in insert_hash()
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-11-12
Jan Kara
audit: Factor out chunk replacement code
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-11-12
Jan Kara
audit: Make hash table insertion safe against concurrent...
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-11-12
Jan Kara
audit: Embed key into chunk
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-11-12
Jan Kara
audit: Fix possible tagging failures
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-11-12
Jan Kara
audit: Fix possible spurious -ENOSPC error
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-11-12
Jan Kara
audit_tree: Remove mark->lock locking
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-11-05
Richard Guy Briggs
audit: print empty EXECVE args
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-11-05
Ondrej Mosnacek
selinux: policydb - fix byte order and alignment issues
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-10-10
Paul Moore
MAINTAINERS: update the SELinux mailing list location
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-09-13
Tetsuo Handa
selinux: Add __GFP_NOWARN to allocation at str_read()
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-09-05
Jann Horn
selinux: refactor mls_context_to_sid() and make it...
As suggested by
Paul Moore
, change mls_context_to_sid() so...
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-09-04
Stephen Smalley
selinux: fix mounting of cgroup2 under older policies
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-08-07
nixiaoming
selinux: cleanup dentry and inodes on error in selinuxfs
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-07-30
Yi Wang
audit: fix potential null dereference 'context->module...
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-07-18
Ronny Chevalier
audit: fix use-after-free in audit_add_watch
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-07-17
Eric Biggers
selinux: constify write_op[]
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-07-17
Paul Moore
audit: use ktime_get_coarse_real_ts64() for timestamps
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-07-03
Arnd Bergmann
audit: use ktime_get_coarse_ts64() for time access
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-06-29
Jann Horn
selinux: move user accesses in selinuxfs out of locked...
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-06-28
Richard Guy Briggs
audit: simplify audit_enabled check in audit_watch_log_rule_...
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-06-28
Richard Guy Briggs
audit: check audit_enabled in audit_tree_log_remove_rule()
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-06-28
Ondrej Mosnáček
cred: conditionally declare groups-related functions
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-06-19
peter enderborg
selinux: Cleanup printk logging in netnode
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-06-19
peter enderborg
selinux: Cleanup printk logging in avc
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-06-19
peter enderborg
selinux: Cleanup printk logging in netif
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-06-19
peter enderborg
selinux: Cleanup printk logging in netport
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-06-19
peter enderborg
selinux: Cleanup printk logging in sidtab
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-06-19
peter enderborg
selinux: Cleanup printk logging in netlink
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-06-19
peter enderborg
selinux: Cleanup printk logging in selinuxfs
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-06-19
peter enderborg
selinux: Cleanup printk logging in services
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-06-19
peter enderborg
selinux: Cleanup printk logging in avtab
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-06-19
peter enderborg
selinux: Cleanup printk logging in hooks
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-06-19
peter enderborg
selinux: Cleanup printk logging in policydb
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-06-19
peter enderborg
selinux: Cleanup printk logging in ebitmap
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-06-19
peter enderborg
selinux: Cleanup printk logging in conditional
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-06-19
Richard Guy Briggs
audit: eliminate audit_enabled magic number comparison
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-06-19
Richard Guy Briggs
audit: rename FILTER_TYPE to FILTER_EXCLUDE
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-06-19
Ondrej Mosnáček
audit: Fix extended comparison of GID/EGID
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-06-19
Richard Guy Briggs
audit: tie ANOM_ABEND records to syscall
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-06-19
Richard Guy Briggs
audit: tie SECCOMP records to syscall
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-06-19
Ondrej Mosnáček
audit: allow other filter list types for AUDIT_EXE
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-06-18
Paul Moore
MAINTAINERS: update the LSM and SELinux subsystems
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-05-30
Sachin Grover
selinux: KASAN: slab-out-of-bounds in xattr_getsecurity
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-05-21
Ondrej Mosnáček
audit: Fix wrong task in comparison of session ID
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-05-18
Richard Guy Briggs
audit: use existing session info function
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-05-17
Richard Guy Briggs
audit: normalize loginuid read access
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-05-17
Richard Guy Briggs
audit: use new audit_context access funciton for seccomp_act...
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-05-14
Richard Guy Briggs
audit: use inline function to set audit context
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-05-14
Richard Guy Briggs
audit: use inline function to get audit context
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-05-14
Richard Guy Briggs
audit: convert sessionid unset to a macro
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-05-14
Alexey Kodanev
selinux: correctly handle sa_family cases in selinux_sctp_bi...
Suggested-by:
Paul Moore
<paul@paul-moore.com>
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-05-14
Alexey Kodanev
selinux: fix address family in bind() and connect(...
Suggested-by:
Paul Moore
<paul@paul-moore.com>
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-05-14
Alexey Kodanev
selinux: add AF_UNSPEC and INADDR_ANY checks to selinux_sock...
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-05-08
Tyler Hicks
seccomp: Don't special case audited processes when...
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-05-08
Tyler Hicks
seccomp: Audit attempts to modify the actions_logged...
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-05-08
Tyler Hicks
seccomp: Configurable separator for the actions_logged...
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-05-08
Tyler Hicks
seccomp: Separate read and write code for actions_logged...
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-04-24
Ondrej Mosnáček
audit: allow not equal op for audit by executable
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-04-20
Richard Guy Briggs
audit: add syscall information to FEATURE_CHANGE records
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-04-17
Richard Guy Briggs
audit: normalize MAC_POLICY_LOAD record
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-04-17
Richard Guy Briggs
audit: normalize MAC_STATUS record
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-04-16
Souptick Joarder
security: selinux: Change return type to vm_fault_t
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-03-21
Richard Guy Briggs
audit: add refused symlink to audit_names
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-03-21
Richard Guy Briggs
audit: remove path param from link denied function
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2018-03-20
Stephen Smalley
selinux: wrap AVC state
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
next