repo.or.cz
/
linux-2.6
/
verdex.git
/
search
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
log
|
graphiclog1
|
graphiclog2
|
commit
|
commitdiff
|
tree
|
refs
|
edit
|
fork
first
·
prev
·
next
[PATCH] r/o bind mounts: write counts for truncate()
2008-04-18
Paul Moore
SELinu
x
: Add ne
t
work port SID cache
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-04-18
Paul Moore
S
ELin
u
x
:
Correct
t
he NetLabel
l
ocking for the sk
_
security_struct
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-04-13
Pa
u
l Moore
LSM
:
Make the Label
e
d IPsec hook
s
more stack frien
d
l
y
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-04-13
Paul Moore
NetLabel: Allow
pass
i
ng t
h
e
LSM domai
n
a
s
a shared
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-03-01
Paul Moore
[PATCH] Audit: Fix the format typ
e
for si
z
e_t vari
a
bles
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-02-06
P
aul M
o
ore
SELinux: Remove securi
t
y_
g
e
t_policycaps()
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-02-05
Paul Moore
NetLabel: introdu
c
e a new k
e
rnel configuration
API
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-02-01
P
a
ul M
o
ore
[SELin
u
x]: Fix dou
b
le free
i
n
sel
i
nux_net
l
bl_sock_setsid()
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
Paul Moore
SELinux: Add
w
arning mes
s
a
g
es on network denial du
e
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
Paul Moore
S
E
Linu
x
: Add network ingress and
egr
e
ss co
n
t
r
o
l
perm
i
ssion
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
Paul M
o
ore
N
e
tLabel:
A
d
d
auditing to the
s
t
atic
lab
e
lin
g
mechanism
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
Paul
M
o
ore
NetLabel: Introd
u
ce
s
tatic network labe
l
s for unlabeled
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
P
a
u
l
M
o
o
r
e
SELinux: Al
l
ow NetLabel to directly ca
c
he SIDs
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
Paul Moore
SEL
i
nux: E
n
able dynamic enable/disa
b
le of the ne
t
work
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
P
a
u
l Mo
o
re
SELinux: Better integra
t
i
o
n
b
e
tween peer la
b
eling
s
u
b
syst
e
ms
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
Paul
M
oore
SELinux: Add a ne
w
peer class and permissi
o
ns t
o
the
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
P
a
ul Moor
e
SELinux:
Add a c
a
pabilit
i
es bitma
p
to SE
L
inux policy
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
Paul Moor
e
SELinux:
A
dd a
network
n
ode cachi
n
g mechani
s
m similar
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
P
a
u
l Moore
SELin
u
x: Only store the
network i
n
terfa
c
e's ifind
e
x
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
Paul Moor
e
S
ELinux: Conver
t
the netif code to
u
se ifindex va
l
ue
s
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
Paul
Moore
N
e
tLabel
:
Add IP address family informa
t
ion t
o
the
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
Pau
l
Moore
NetLab
e
l: Add secid token support to the
N
etLabel secattr
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
Paul Moore
NetLa
b
el: C
o
nsol
i
date t
h
e LSM domai
n
m
a
p
ping/hashin
g
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
Paul
M
oore
NetLabel:
C
l
eanup the LSM domain
h
ash functi
o
n
s
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-29
Paul Moore
N
e
tLabel: Re
m
ove unneeded RCU r
e
ad loc
k
s
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-28
Pa
u
l Mo
o
re
[
X
FRM
]
: Drop packe
t
s w
h
en repl
a
y counter wou
l
d over
f
low
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-28
P
a
ul Mo
o
re
[
XFRM]
:
RF
C
4303 compliant auditing
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-28
Pa
u
l
Moore
[XFRM]: Assorted IPsec fixups
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-28
Paul Moo
r
e
[I
P
SEC]: SPD auditing fi
x
to
i
nclude the netmask/prefix
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-21
P
au
l
M
oore
selinu
x
:
fi
x
memory lea
k
i
n netlabel co
d
e
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2008-01-09
Paul M
o
ore
[NET]: C
l
one
t
he sk_b
u
ff 'iif' fiel
d
in __sk
b
_clone
(
)
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-12-20
P
a
u
l
Mo
o
re
[XFRM]: Aud
i
t function a
r
gum
e
nts m
i
sordered
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-12-14
Paul Moore
[XFRM]:
D
isp
l
ay the a
u
dited SPI val
u
e in
h
os
t
byte
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-10-26
Paul Moore
[NetLabe
l
]: co
r
r
ect usa
g
e of
R
CU locking
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-10-10
Paul Moor
e
[
CIPS
O
]
: remove d
u
pl
i
cated code in the cipso_v4_*_g
e
tattr
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-08-08
Paul Moore
[NetLabel]: add
m
i
ss
i
ng rcu_dereference()
c
a
lls in
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-08-02
Paul Moore
Net/Security: fix mem
o
r
y
l
eaks fr
o
m security_
s
e
cid_to_secctx()
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-08-02
Paul Moore
SELinux: remove redu
n
dant pointer
checks before calling
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-08-02
Paul Moo
r
e
SELinux: restore proper NetL
a
bel
c
aching behavio
r
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-07-19
Paul Mo
o
re
SELinux: us
e
SECINITSID_N
E
TMSG instead of SECINITSID_UNLABE
L
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-07-19
Paul Moore
SELi
n
ux
:
enable dynamic activation/deactivat
i
on of
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-07-12
Paul M
o
o
re
SELinux: use SECINITSID_NETMSG
i
nstead of SECINI
T
SID_UNLA
B
EL
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-06-08
P
aul Mo
o
re
[CIPSO]: Fix several unal
i
gned kernel accesse
s
i
n
the
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-06-08
P
aul Moore
[NetLabe
l
]: consolidate the
s
t
ruct socke
t
/sock handling
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-04-26
Paul
M
oore
SELinux: m
o
ve s
e
curity_skb_extlbl_sid() out of the
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-04-26
P
aul Moore
S
E
L
inux:
r
ename selinux_netlabel
.
h to
netl
a
bel
.
h
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-04-26
P
aul
Moore
SELinux: extract
t
h
e NetLabel
S
EL
i
nux support from
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-04-26
Paul
Moore
N
e
tLabel
:
convert a
B
UG
_
ON in the CIPSO code to a runti
m
e
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-04-26
Paul Moore
N
e
t
La
b
el:
cleanup and
d
ocument CIPSO constants
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-03-12
Paul Moore
[NetL
a
bel]: parse the CIPSO ranged
t
ag on i
n
coming
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-03-03
Paul Mo
o
re
[
NetLabel]: Verify sensitivit
y
level has a valid CIPSO
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-01-09
Paul Moore
[I
N
ET
]
: style updates for
t
he ine
t
_sock->is_icsk a
s
signmen
t
fix
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-01-09
P
a
ul Moore
NetLabel: correct CIP
S
O tag hand
l
ing
w
he
n
addi
n
g new
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-01-09
Paul
M
o
o
re
NetL
a
bel:
correct
locking in selinux_netlbl_
s
ocket_set
s
id()
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2007-01-09
P
a
ul M
o
ore
[INE
T
]
:
F
i
x
incorrect "in
e
t_soc
k
->is
_
ic
s
k
"
assignmen
t
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-22
Paul Mo
o
re
N
e
t
L
abel: correctly
fill in
u
nused CIPSOv4 level and
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-22
Paul Moor
e
NetLab
e
l: pe
r
form input
v
a
lidation
e
arlier on C
I
PSOv4
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-07
P
a
ul Moo
r
e
[NETL
I
K
]
: Add a pointer to th
e
G
eneric Netl
i
nk wiki
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-03
Paul Mo
o
r
e
N
e
tLabel: add the ranged tag to the
CIPSOv4 proto
c
ol
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-03
P
a
ul Mo
o
re
Ne
t
Labe
l
: add the enumerated tag
to
th
e
CIPS
O
v
4
protocol
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-03
P
a
ul Moore
NetLabel:
c
o
nvert to an exten
s
ibile/spa
r
se
c
a
tegory
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-03
Paul M
o
ore
NetLabel: honor the audit_enable
d
flag
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-03
Paul Moore
SELinux: peer secid
cons
o
lid
a
tion for external networ
k
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-03
P
a
ul Moore
NetL
a
bel: SEL
i
nux cleanups
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-03
Paul Moore
NetLabel
:
use c
i
pso
_
v4_doi_search
(
) for local CIPS
O
v4
.
.
.
Signed-of-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-03
Paul Moore
N
e
tL
a
bel: use the
c
o
rrect CIPSOv4
M
LS l
a
bel
limit
s
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-03
Paul Moore
Ne
t
Label: return
t
he correct
e
rror f
o
r tr
a
nslated CIPSOv
4
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-03
Paul Moore
NetLabel
:
fixup
t
he han
d
ling of CIP
S
Ov
4
tags to a
l
l
o
w
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-03
Paul Moore
NetLabel
:
add tag verification when add
i
ng new CIPSO
v
4
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-03
Paul Mo
o
re
Net
L
abel: check for a CIPSO
v
4 option before we do call
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-03
Paul M
o
ore
Net
L
abel
:
ma
k
e netlbl_lsm_secattr struc
t
e
a
sier/quicker
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-03
Paul Moor
e
N
etLabel: change netlbl_secattr_init() to re
t
urn void
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-03
P
aul
M
oore
Net
L
abel: convert the
u
n
l
abeled accept fl
a
g to use
RCU
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-12-03
Pau
l
Moore
NetLabel: u
s
e
g
fp_t instead
o
f in
t
where
it mak
e
s sense
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-11-06
Paul
Moore
[NETLABE
L
]: Fix b
u
ild failure
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-10-30
Paul
Mo
o
re
[NetL
a
bel]: protec
t
t
h
e CI
P
SOv4 socket option fro
m
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-10-16
Paul
M
o
o
re
Net
L
a
bel: the CIPS
O
v4 passthrou
g
h map
p
ing
d
o
es not
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-10-16
Paul Moor
e
Net
L
abel:
b
ette
r
e
rror handlin
g
involving mls_ex
p
ort_cat(
)
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-10-16
Paul Moore
NetLabel: only deref the CIPSOv
4
sta
n
d
ard map fields
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-09-30
Paul Moore
[NetLabel]: audit fix
u
ps due to
delayed fe
e
dback
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-09-29
Paul
Moore
[
N
et
L
a
b
el]: add aud
i
t support for configuration
c
hanges
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-09-25
Paul Moore
[NetLabe
l
]: update docs with web
s
it
e
inf
o
rmation
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-09-25
Paul Moore
[
N
e
t
Label]: rewo
r
k the
N
etlink attribute ha
n
dling
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-09-25
Paul Mo
o
re
[N
e
tLabel]: re
w
o
r
k the
Net
l
ink att
r
ibute handl
i
ng
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-09-25
Paul Moore
[Netlink
]
: add nla_v
a
l
i
date_nested()
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-09-25
Pa
u
l
M
oor
e
[NETLINK]
:
add nla_for_ea
c
h
_nested() to the interface
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-09-25
Paul M
o
ore
[NetLabe
l
]: change the
SELinux
p
e
r
m
issi
o
ns
Signed-of-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-09-25
Paul Moore
[NetLabel
]
:
m
ake the CIPSOv4 cach
e
s
p
inlo
c
ks bot
t
om
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-09-25
Paul M
o
ore
[Net
L
abel]: correct im
p
r
ope
r
handling of non-
N
etLab
e
l
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-09-22
P
a
u
l Moore
[NetLabel]: a
d
d
some mi
s
sing #includes to vari
o
us header
.
.
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-09-22
P
a
u
l Moore
[NetL
a
be
l
]: uninline selin
u
x
_netlb
l
_in
o
de_p
e
rm
i
ss
i
on()
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-09-22
Paul Moore
[Ne
t
Labe
l
]: Cle
a
nup ebitm
a
p_import()
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-09-22
Pau
l
Moor
e
[Ne
t
L
a
b
e
l]: Comment cor
r
ections
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-09-22
Paul M
o
ore
[NetLabel]: r
e
mov
e
unuse
d
function
p
rototypes
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-09-22
Pau
l
Moore
[Net
L
abel]: Correctly initi
a
lize
t
h
e NetLabel fields
.
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-09-22
P
a
ul
Moore
[Ne
t
Label]: tie NetLabel i
n
to
t
he Kconfig system
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-09-22
Paul
M
o
o
re
[NetLabel]: CIPSO
v
4 and Unlabeled packet in
t
egratio
n
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-09-22
Paul Moore
[
N
e
t
Lab
e
l]: co
r
e
NetLabel subsystem
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-09-22
Paul Moore
[NetLab
e
l]: CIPSOv
4
engine
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
2006-09-22
Pau
l
Moore
[Net
L
a
b
e
l]: core network c
h
anges
Signed-off-by:
Paul Moore
<paul.moore@hp.com>
commit
|
commitdiff
|
tree
next