 Ahmed S. Darwish
|
9d57a7f9e2
SELinux: use new audit hooks, remove redundant exports
|
17 years ago |
|
Ahmed S. Darwish
|
713a04aeab
SELinux: setup new inode/ipc getsecid hooks
|
17 years ago |
 Paul Moore
|
3e11217263
SELinux: Add network port SID cache
|
17 years ago |
 Eric Paris
|
832cbd9aa1
SELinux: turn mount options strings into defines
|
17 years ago |
 Roland McGrath
|
0356357c51
selinux: remove ptrace_sid
|
17 years ago |
 Andrew Morton
|
f0115e6c89
security: code cleanup
|
17 years ago |
 Harvey Harrison
|
dd6f953adb
security: replace remaining __FUNCTION__ occurrences
|
17 years ago |
|
Eric Paris
|
b0c636b999
SELinux: create new open permission
|
17 years ago |
 James Morris
|
98e9894650
SELinux: remove unused backpointers from security objects
|
17 years ago |
|
Paul Moore
|
f74af6e816
SELinux: Correct the NetLabel locking for the sk_security_struct
|
17 years ago |
|
Eric Paris
|
5a55261716
SELinux: don't BUG if fs reuses a superblock
|
17 years ago |
 Stephen Smalley
|
869ab5147e
SELinux: more GFP_NOFS fixups to prevent selinux from re-entering the fs code
|
17 years ago |
 Josef Bacik
|
a02fe13297
selinux: prevent rentry into the FS
|
17 years ago |
|
Stephen Smalley
|
0794c66d49
selinux: handle files opened with flags 3 by checking ioctl permission
|
17 years ago |
 Adrian Bunk
|
2e1479d95d
make selinux_parse_opts_str() static
|
17 years ago |
|
Eric Paris
|
e000752989
LSM/SELinux: Interfaces to allow FS to control mount options
|
17 years ago |
 Jan Blunck
|
44707fdf59
d_path: Use struct path in struct avc_audit_data
|
17 years ago |
|
Jan Blunck
|
4ac9137858
Embed a struct path into struct nameidata instead of nd->{dentry,mnt}
|
17 years ago |
|
Stephen Smalley
|
b68e418c44
selinux: support 64-bit capabilities
|
17 years ago |
 David P. Quigley
|
4249259404
VFS/Security: Rework inode_getsecurity and callers to return resulting buffer
|
17 years ago |
|
Adrian Bunk
|
374ea019ca
selinux: make selinux_set_mnt_opts() static
|
17 years ago |
|
Paul Moore
|
71f1cb05f7
SELinux: Add warning messages on network denial due to error
|
17 years ago |
|
Paul Moore
|
effad8df44
SELinux: Add network ingress and egress control permission checks
|
17 years ago |
|
Paul Moore
|
5dbe1eb0cf
SELinux: Allow NetLabel to directly cache SIDs
|
17 years ago |
|
Paul Moore
|
d621d35e57
SELinux: Enable dynamic enable/disable of the network access checks
|
17 years ago |
|
Paul Moore
|
220deb966e
SELinux: Better integration between peer labeling subsystems
|
17 years ago |
|
Paul Moore
|
224dfbd81e
SELinux: Add a network node caching mechanism similar to the sel_netif_*() functions
|
17 years ago |
|
Paul Moore
|
da5645a28a
SELinux: Only store the network interface's ifindex
|
17 years ago |
|
Paul Moore
|
e8bfdb9d0d
SELinux: Convert the netif code to use ifindex values
|
17 years ago |
|
Paul Moore
|
75e22910cf
NetLabel: Add IP address family information to the netlbl_skbuff_getattr() function
|
17 years ago |
