projects
/
linux-block.git
/ search
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
first ⋅ prev ⋅
next
audit: add exclude filter extension to feature bitmap
2016-09-29
Richard Guy Briggs
audit: add exclude filter extension to feature bitmap
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2016-08-30
Paul Moore
audit: consistently record PIDs with task_tgid_nr()
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2016-06-28
Richard Guy Briggs
audit: move audit_get_tty to reduce scope and kabi...
Suggested-by:
Paul Moore
<pmoore@redhat.com>
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2016-06-28
Richard Guy Briggs
audit: move calcs after alloc and check when logging...
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2016-04-27
Arnd Bergmann
tty: provide tty_name() even without CONFIG_TTY
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2016-04-26
Richard Guy Briggs
audit: add tty field to LOGIN event
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2016-04-26
Stephen Smalley
selinux: apply execstack check on thread stacks
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2016-04-26
Stephen Smalley
selinux: distinguish non-init user namespace capability...
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2016-04-19
Paul Moore
selinux: check ss_initialized before revalidating an...
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2016-04-19
Paul Moore
selinux: delay inode label lookup as long as possible
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2016-04-19
Paul Moore
selinux: don't revalidate an inode's label when explicitly...
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2016-04-14
Prarit Bhargava
selinux: Change bool variable name to index.
Cc:
Paul Moore
<paul@paul-moore.com>
Cc:
Paul Moore
<pmoore@redhat.com>
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2016-04-05
Jeff Vander Stoep
selinux: restrict kernel module loading
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2016-04-05
Paul Moore
selinux: consolidate the ptrace parent lookup code
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2016-04-05
Paul Moore
selinux: simply inode label states to INVALID and INITIALIZED
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2016-04-05
Paul Moore
selinux: don't revalidate inodes in selinux_socket_getpeerse...
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2016-04-05
Janak Desai
netlabel: fix a problem with netlbl_secattr_catmap_setrng()
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2016-04-04
Paul Moore
audit: we don't need to __set_current_state(TASK_RUNNING)
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2016-04-04
Jiri Slaby
audit: cleanup prune_tree_thread
Cc:
Paul Moore
<paul@paul-moore.com>
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2016-02-19
Andreas Gruenbacher
selinux: Don't sleep inside inode_getsecid hook
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2016-02-08
Wei Yuan
audit: Fix typo in comment
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2016-01-28
Andy Shevchenko
selinux: use absolute path to include directory
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2016-01-25
Richard Guy Briggs
audit: log failed attempts to change audit_pid configuration
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2016-01-25
Richard Guy Briggs
audit: stop an old auditd being starved out by a new...
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2016-01-13
Paul Moore
audit: always enable syscall auditing when supported...
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2016-01-13
Paul Moore
audit: force seccomp event logging to honor the audit_enable...
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2016-01-13
Markus Elfring
audit: Delete unnecessary checks before two function...
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2016-01-13
Richard Guy Briggs
audit: wake up threads if queue switched from limited...
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2016-01-13
Richard Guy Briggs
audit: include auditd's threads in audit_log_start...
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2016-01-13
Paul Moore
audit: remove audit_backlog_wait_overflow
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2016-01-13
Richard Guy Briggs
audit: don't needlessly reset valid wait time
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2016-01-08
Andreas Gruenbacher
selinux: Inode label revalidation performance fix
Signed-off-by:
Paul Moore
<paul@paul-moore.com>
commit
|
commitdiff
|
tree
2015-12-24
Vladis Dronov
selinux: rate-limit netlink message warnings in selinux_nlms...
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-12-24
Andrew Perepechko
selinux: export validatetrans decisions
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-12-24
Andreas Gruenbacher
gfs2: Invalid security labels of inodes when they go...
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-12-24
Andreas Gruenbacher
selinux: Revalidate invalid inode security labels
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-12-24
Andreas Gruenbacher
security: Add hook to invalidate inode security labels
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-12-24
Andreas Gruenbacher
selinux: Add accessor functions for inode->i_security
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-12-24
Andreas Gruenbacher
security: Make inode argument of inode_getsecid non...
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-12-24
Andreas Gruenbacher
security: Make inode argument of inode_getsecurity...
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-12-24
Andreas Gruenbacher
selinux: Remove unused variable in selinux_inode_init_security
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-11-24
Stephen Smalley
selinux: fix bug in conditional rules handling
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-11-04
Paul Moore
audit: make audit_log_common_recv_msg() a void function
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-11-04
Saurabh Sengar
audit: removing unused variable
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-11-04
Scott Matheina
audit: fix comment block whitespace
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-11-04
Yaowei Bai
audit: audit_tree_match can be boolean
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-11-04
Yaowei Bai
audit: audit_string_contains_control can be boolean
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-11-04
Yaowei Bai
audit: audit_dummy_context can be boolean
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-11-04
Richard Guy Briggs
audit: try harder to send to auditd upon netlink failure
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-10-21
Sangwoo
selinux: Use a kmem_cache for allocation struct file_securit...
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-10-21
Geliang Tang
selinux: ioctl_has_perm should be static
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-10-21
Rasmus Villemoes
selinux: use sprintf return value
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-10-21
Rasmus Villemoes
selinux: use kstrdup() in security_get_bools()
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-10-21
Rasmus Villemoes
selinux: use kmemdup in security_sid_to_context_core()
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-10-21
Rasmus Villemoes
selinux: remove pointless cast in selinux_inode_setsecurity()
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-10-21
Rasmus Villemoes
selinux: introduce security_context_str_to_sid
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-10-21
Jeff Vander Stoep
selinux: do not check open perm on ftruncate call
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-10-21
Paul Moore
selinux: change CONFIG_SECURITY_SELINUX_CHECKREQPROT_VALUE...
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-08-13
Richard Guy Briggs
fixup: audit: implement audit by executable
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-08-06
Richard Guy Briggs
audit: implement audit by executable
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-08-06
Richard Guy Briggs
audit: clean simple fsnotify implementation
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-08-06
Richard Guy Briggs
audit: use macros for unset inode and device values
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-08-05
Richard Guy Briggs
audit: make audit_del_rule() more robust
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-08-05
Paul Moore
audit: fix uninitialized variable in audit_add_rule()
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-08-04
Richard Guy Briggs
audit: eliminate unnecessary extra layer of watch parent...
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-08-04
Richard Guy Briggs
audit: eliminate unnecessary extra layer of watch references
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-07-13
Laurent Bigonville
selinux: explicitly declare the role "base_r"
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-07-13
David Howells
selinux: Create a common helper to determine an inode...
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-07-13
Stephen Smalley
selinux: Augment BUG_ON assertion for secclass_map.
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-07-13
Stephen Smalley
selinux: initialize sock security class to default...
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-07-13
Waiman Long
selinux: reduce locking overhead in inode_free_security()
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-07-13
Jeff Vander Stoep
selinux: extended permissions for ioctls
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-07-13
Jeff Vander Stoep
security: add ioctl specific auditing to lsm_audit
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-07-10
Stephen Smalley
selinux: fix mprotect PROT_EXEC regression caused by...
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-07-09
Paul Moore
selinux: don't waste ebitmap space when importing NetLabel...
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-06-11
Jan Kara
audit: Fix check of return value of strnlen_user()
CC:
Paul Moore
<pmoore@redhat.com>
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-06-05
J. Bruce Fields
selinux: fix setting of security labels on NFS
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-06-04
Stephen Smalley
selinux: Remove unused permission definitions
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-06-04
Stephen Smalley
selinux: enable genfscon labeling for sysfs and pstore...
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-06-04
Stephen Smalley
selinux: enable per-file labeling for debugfs files.
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-06-04
Stephen Smalley
selinux: update netlink socket classes
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-06-04
Oleg Nesterov
signals: don't abuse __flush_signals() in selinux_bprm_commi...
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-06-04
Marek Milkovic
selinux: Print 'sclass' as string when unrecognized...
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-05-29
Mikhail Klementyev
audit: obsolete audit_context check is removed in audit_filt...
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-05-29
Shailendra Verma
audit: fix for typo in comment to function audit_log_link_de...
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-05-29
Richard Guy Briggs
lsm: rename duplicate labels in LSM_AUDIT_DATA_TASK...
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-04-07
Stephen Smalley
selinux: increase avtab max buckets
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-04-07
John Brooks
selinux: Use a better hash function for avtab
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-04-07
Stephen Smalley
selinux: convert avtab hash table to flex_array
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-04-07
Paul Moore
selinux: reconcile security_netlbl_secattr_to_sid(...
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-04-07
Jeff Vander Stoep
selinux: remove unnecessary pointer reassignment
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-03-25
Joe Perches
selinux: fix sel_write_enforce broken return value
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-03-13
Pranith Kumar
audit: Remove condition which always evaluates to false
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-02-23
Davidlohr Bueso
audit: reduce mmap_sem hold for mm->exe_file
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-02-23
Davidlohr Bueso
audit: consolidate handling of mm->exe_file
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-02-23
Ameen Ali
audit: code clean up
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-02-23
Richard Guy Briggs
audit: don't reset working wait time accidentally with...
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-02-23
Richard Guy Briggs
audit: don't lose set wait time on first successful...
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-02-23
Imre Palik
audit: move the tree pruning to a dedicated thread
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
2015-02-11
Paul Moore
cipso: don't use IPCB() to locate the CIPSO IP option
Signed-off-by:
Paul Moore
<pmoore@redhat.com>
commit
|
commitdiff
|
tree
next