<feed xmlns='http://www.w3.org/2005/Atom'>
<title>history/security, branch master</title>
<subtitle>Linux kernel history
</subtitle>
<id>https://git.shady.money/history/atom?h=master</id>
<link rel='self' href='https://git.shady.money/history/atom?h=master'/>
<link rel='alternate' type='text/html' href='https://git.shady.money/history/'/>
<updated>2005-04-01T04:33:21Z</updated>
<entry>
<title>[SELINUX]: Fix for removal of i_sock</title>
<updated>2005-04-01T04:33:21Z</updated>
<author>
<name>Stephen D. Smalley</name>
<email>sds@tycho.nsa.gov</email>
</author>
<published>2005-04-01T04:33:21Z</published>
<link rel='alternate' type='text/html' href='https://git.shady.money/history/commit/?id=900cf636c1d2300b92ee3c015d4b9b453abe853c'/>
<id>urn:sha1:900cf636c1d2300b92ee3c015d4b9b453abe853c</id>
<content type='text'>
This patch against -bk eliminates the use of i_sock by SELinux as it
appears to have been removed recently, breaking the build of SELinux in
-bk.  Simply replacing the i_sock test with an S_ISSOCK test would be
unsafe in the SELinux code, as the latter will also return true for the
inodes of socket files in the filesystem, not just the actual socket
objects IIUC.  Hence this patch reworks the SELinux code to avoid the
need to apply such a test in the first place, part of which was
obsoleted anyway by earlier changes to SELinux.  Please apply.

Signed-off-by:  Stephen Smalley &lt;sds@tycho.nsa.gov&gt;
Signed-off-by:  James Morris &lt;jmorris@redhat.com&gt;
Signed-off-by: David S. Miller &lt;davem@davemloft.net&gt;
</content>
</entry>
<entry>
<title>[PATCH] SELinux: add name_connect permission check</title>
<updated>2005-03-28T11:21:26Z</updated>
<author>
<name>Stephen D. Smalley</name>
<email>sds@tycho.nsa.gov</email>
</author>
<published>2005-03-28T11:21:26Z</published>
<link rel='alternate' type='text/html' href='https://git.shady.money/history/commit/?id=a987ce8f834689c425d4ab656a32576ff379242c'/>
<id>urn:sha1:a987ce8f834689c425d4ab656a32576ff379242c</id>
<content type='text'>
This patch adds a name_connect permission check to SELinux to provide
control over outbound TCP connections to particular ports distinct from the
general controls over sending and receiving packets.

Signed-off-by: Stephen Smalley &lt;sds@tycho.nsa.gov&gt;
Signed-off-by: James Morris &lt;jmorris@redhat.com&gt;
Signed-off-by: Andrew Morton &lt;akpm@osdl.org&gt;
Signed-off-by: Linus Torvalds &lt;torvalds@osdl.org&gt;
</content>
</entry>
<entry>
<title>[PATCH] SELinux: audit unrecognized netlink messages</title>
<updated>2005-03-28T11:21:10Z</updated>
<author>
<name>Stephen D. Smalley</name>
<email>sds@tycho.nsa.gov</email>
</author>
<published>2005-03-28T11:21:10Z</published>
<link rel='alternate' type='text/html' href='https://git.shady.money/history/commit/?id=da47ed8be39b7169ced8e16d383a8c56f0e47a29'/>
<id>urn:sha1:da47ed8be39b7169ced8e16d383a8c56f0e47a29</id>
<content type='text'>
This patch changes SELinux to audit any unrecognized netlink messages in
controlled classes rather than silently rejecting them, and to allow them
if in permissive mode.  Please apply.

Signed-off-by: Stephen Smalley &lt;sds@tycho.nsa.gov&gt;
Signed-off-by: James Morris &lt;jmorris@redhat.com&gt;
Signed-off-by: Andrew Morton &lt;akpm@osdl.org&gt;
Signed-off-by: Linus Torvalds &lt;torvalds@osdl.org&gt;
</content>
</entry>
<entry>
<title>[PATCH] SELinux: allow mounting of filesystems with invalid root inode context</title>
<updated>2005-03-28T11:20:54Z</updated>
<author>
<name>Stephen D. Smalley</name>
<email>sds@tycho.nsa.gov</email>
</author>
<published>2005-03-28T11:20:54Z</published>
<link rel='alternate' type='text/html' href='https://git.shady.money/history/commit/?id=f7e524ba8a83a15b7bb4d8eaf3d6bcbadc14611b'/>
<id>urn:sha1:f7e524ba8a83a15b7bb4d8eaf3d6bcbadc14611b</id>
<content type='text'>
This patch alters the SELinux handling of inodes with invalid security
contexts so that a filesystem with a root inode that has an invalid
security context can still be mounted for administrative recovery without
disabling SELinux altogether.

Signed-off-by: Stephen Smalley &lt;sds@tycho.nsa.gov&gt;
Signed-off-by: James Morris &lt;jmorris@redhat.com&gt;
Signed-off-by: Andrew Morton &lt;akpm@osdl.org&gt;
Signed-off-by: Linus Torvalds &lt;torvalds@osdl.org&gt;
</content>
</entry>
<entry>
<title>[PATCH] SELinux: make code static and remove unused code</title>
<updated>2005-03-28T11:20:37Z</updated>
<author>
<name>Stephen D. Smalley</name>
<email>sds@tycho.nsa.gov</email>
</author>
<published>2005-03-28T11:20:37Z</published>
<link rel='alternate' type='text/html' href='https://git.shady.money/history/commit/?id=be71daf429f7a8a77f810c5dea4d99d6b4734c65'/>
<id>urn:sha1:be71daf429f7a8a77f810c5dea4d99d6b4734c65</id>
<content type='text'>
This patch from Adrian Bunk makes needlessly global code static and removes
a number of unused global and static functions from SELinux.  Please apply.

Author: Adrian Bunk &lt;bunk@stusta.de&gt;
Signed-off-by: Stephen Smalley &lt;sds@tycho.nsa.gov&gt;
Signed-off-by: Andrew Morton &lt;akpm@osdl.org&gt;
Signed-off-by: Linus Torvalds &lt;torvalds@osdl.org&gt;
</content>
</entry>
<entry>
<title>[PATCH] selinux needs inet</title>
<updated>2005-03-13T08:27:15Z</updated>
<author>
<name>Andrew Morton</name>
<email>akpm@osdl.org</email>
</author>
<published>2005-03-13T08:27:15Z</published>
<link rel='alternate' type='text/html' href='https://git.shady.money/history/commit/?id=517445fced0a284900acb6b51201034c968ac3db'/>
<id>urn:sha1:517445fced0a284900acb6b51201034c968ac3db</id>
<content type='text'>
security/built-in.o(.text+0xe2fc): In function `selinux_socket_bind':
: undefined reference to `sysctl_local_port_range'

Acked-by: James Morris &lt;jmorris@redhat.com&gt;
Signed-off-by: Andrew Morton &lt;akpm@osdl.org&gt;
Signed-off-by: Linus Torvalds &lt;torvalds@osdl.org&gt;
</content>
</entry>
<entry>
<title>[PATCH] Make lots of things static</title>
<updated>2005-03-12T00:40:56Z</updated>
<author>
<name>Adrian Bunk</name>
<email>bunk@stusta.de</email>
</author>
<published>2005-03-12T00:40:56Z</published>
<link rel='alternate' type='text/html' href='https://git.shady.money/history/commit/?id=9d340cb7c38e0872b742890d76190cc3ac3cfd50'/>
<id>urn:sha1:9d340cb7c38e0872b742890d76190cc3ac3cfd50</id>
<content type='text'>
This is a megarollup of ~60 patches which give various things static scope.

Signed-off-by: Adrian Bunk &lt;bunk@stusta.de&gt;
Signed-off-by: Andrew Morton &lt;akpm@osdl.org&gt;
Signed-off-by: Linus Torvalds &lt;torvalds@osdl.org&gt;
</content>
</entry>
<entry>
<title>[PATCH] Properly share process and session keyrings with CLONE_THREAD [try #2]</title>
<updated>2005-03-10T00:42:51Z</updated>
<author>
<name>David Howells</name>
<email>dhowells@redhat.com</email>
</author>
<published>2005-03-10T00:42:51Z</published>
<link rel='alternate' type='text/html' href='https://git.shady.money/history/commit/?id=f6480aaa10f6a4bdcf1b52b0d101cda725b8a177'/>
<id>urn:sha1:f6480aaa10f6a4bdcf1b52b0d101cda725b8a177</id>
<content type='text'>
The attached patch causes process and session keyrings to be shared
properly when CLONE_THREAD is in force.  It does this by moving the keyring
pointers into struct signal_struct[*].

[*] I have a patch to rename this to struct thread_group that I'll revisit
after the advent of 2.6.11.

Furthermore, once this patch is applied, process keyrings will no longer be
allocated at fork, but will instead only be allocated when needed.
Allocating them at fork was a way of half getting around the sharing across
threads problem, but that's no longer necessary.

This revision of the patch has the documentation changes patch rolled into it
and no longer abstracts the locking for signal_struct into a pair of macros.

Signed-Off-By: David Howells &lt;dhowells@redhat.com&gt;
Signed-off-by: Andrew Morton &lt;akpm@osdl.org&gt;
Signed-off-by: Linus Torvalds &lt;torvalds@osdl.org&gt;
</content>
</entry>
<entry>
<title>[PATCH] Race against parent deletion in key_user_lookup()</title>
<updated>2005-03-10T00:42:34Z</updated>
<author>
<name>Alexander Nyberg</name>
<email>alexn@dsv.su.se</email>
</author>
<published>2005-03-10T00:42:34Z</published>
<link rel='alternate' type='text/html' href='https://git.shady.money/history/commit/?id=13ae0ab182f083877990070b8da8f478f89b7615'/>
<id>urn:sha1:13ae0ab182f083877990070b8da8f478f89b7615</id>
<content type='text'>
I looked at some of the oops reports against keyrings, I think the problem
is that the search isn't restarted after dropping the key_user_lock, *p
will still be NULL when we get back to try_again and look through the tree.

It looks like the intention was that the search start over from scratch.

Signed-off-by: Alexander Nyberg &lt;alexn@dsv.su.se&gt;
Cc: David Howells &lt;dhowells@redhat.com&gt;
Signed-off-by: Andrew Morton &lt;akpm@osdl.org&gt;
Signed-off-by: Linus Torvalds &lt;torvalds@osdl.org&gt;
</content>
</entry>
<entry>
<title>[PATCH] SELinux: fix selinux_setprocattr</title>
<updated>2005-03-10T00:28:59Z</updated>
<author>
<name>Stephen D. Smalley</name>
<email>sds@tycho.nsa.gov</email>
</author>
<published>2005-03-10T00:28:59Z</published>
<link rel='alternate' type='text/html' href='https://git.shady.money/history/commit/?id=dc3149bd0e300d0fcd245aef94cbbd71bc7ec0ab'/>
<id>urn:sha1:dc3149bd0e300d0fcd245aef94cbbd71bc7ec0ab</id>
<content type='text'>
This patch changes the selinux_setprocattr hook function (which handles
writes to nodes in the /proc/pid/attr directory) to ignore an optional
terminating newline at the end of the value, and to handle a value
beginning with a newline or a null in the same manner as a zero length
value (clearing the attribute for the process and resetting it to using the
default policy behavior).  This change is to address the divergence from
POSIX in the existing API, as POSIX says that write(2) with a zero count
will return zero with no other effect, as well as to simplify use of the
API from scripts (although that isn't recommended).

Signed-off-by:  Stephen Smalley &lt;sds@tycho.nsa.gov&gt;
Signed-off-by:  James Morris &lt;jmorris@redhat.com&gt;
Signed-off-by: Andrew Morton &lt;akpm@osdl.org&gt;
Signed-off-by: Linus Torvalds &lt;torvalds@osdl.org&gt;
</content>
</entry>
</feed>
