mirrors/apparmor
1
0
Fork 0
mirror of https://gitlab.com/apparmor/apparmor.git synced 2025-03-04 08:24:42 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions
4550 commits 23 branches 109 tags 32 MiB
Commit graph

309 commits

Author SHA1 Message Date
John Johansen
7ef32ce6f0 conditionally wrap audit_messages so they are dependant on the audit subsystem being enabled 2008-01-11 18:49:15 +00:00
John Johansen
5a666b5d29 add missing apparmor.h to split_init.diff 2008-01-10 20:03:06 +00:00
John Johansen
46fefd63a1 - Add apparmorfs features file (may break this into a directory, sysfs style) 
- do split init so apparmor is initialized in security_initcall
 2008-01-10 18:05:50 +00:00
John Johansen
e0a1668ffd - fix regression in link pairs where exec_unsafe was not being considered 
in the link subset tests
- update fgetattr fuse patch to use fuse_update_atts
 2007-12-11 15:37:19 +00:00
John Johansen
55abf6aa0b add apparmor security goal documentation 2007-11-21 09:12:04 +00:00
John Johansen
1d3697e07e remove #if 0 from fs/namei.c 2007-11-21 08:51:45 +00:00
John Johansen
33e0151579 Add reviewed by tag 2007-11-21 08:48:46 +00:00
John Johansen
3370223f9f Add fgetattr, fsetattr patches to the vfs patch series 2007-11-21 08:37:28 +00:00
John Johansen
7cb2653a85 Refresh patches against 2.6.24 2007-11-19 23:18:48 +00:00
John Johansen
a2de30e4ce Add missing patches 2007-11-13 16:57:45 +00:00
John Johansen
17ff3b0f58 - append 
- lock
- null-complain-profile on missing mandatory profile bug
- parameter cleanup
- network mediation patch
 2007-07-27 20:20:50 +00:00
John Johansen
b2c6ec5b57 refresh patches for offsets against latest git pull 2007-07-27 18:36:31 +00:00
Andreas Gruenbacher
6d15b4eba7 - Rediff against 2.6.23-rc1. 2007-07-23 12:36:24 +00:00
John Johansen
dc3c7e0b20 refresh patches against latest git tree 2007-07-15 21:33:35 +00:00
John Johansen
4bd10c3aec fold patches into main apparmor patches 2007-07-15 15:42:43 +00:00
John Johansen
1ee0a2c2d3 - early bailout of change_hat/change_profile when the new_profile 
doesn't exist
- in do_change_profile rename profile to new_profile
- fix bug in early bail out
- don't audit change_hat/change_profile token
- remove unused AA_AUDITTYPE defines
 2007-07-15 15:27:08 +00:00
Andreas Gruenbacher
da56acb826 - Rediff against git. 2007-07-03 11:56:24 +00:00
John Johansen
51c0b3d60c update Signed-off-by 2007-06-26 22:14:37 +00:00
John Johansen
b40238fefe - refresh patches again newest git 
- fold in change_profile patches
 2007-06-26 21:29:09 +00:00
John Johansen
84bfd57edf change_profile 
- fix use of cxt->previous_profile, was changing it instead of searching
  based off its name, which would could result in use of a stale
  profile
- remove locking of cxt->previous_profile since it is not longer needed
- refresh change_profile series of patches
 2007-06-26 17:34:52 +00:00
Andreas Gruenbacher
670db9b0a4 - Remove obsolete patches. 
- Fold proc_sys_setattr.diff into apparmor-lsm.diff.
 2007-06-25 20:18:28 +00:00
John Johansen
d740aec8e8 remove old patches that got folded into change_profile-3.diff 2007-06-23 08:08:12 +00:00
John Johansen
b69788e3f8 latest revision of change_profile patch, collapse several patches into change_profile-3.diff 2007-06-23 08:06:31 +00:00
Andreas Gruenbacher
97df59697c Fold together the audit rework. 2007-06-22 18:52:49 +00:00
Andreas Gruenbacher
024b9d702a Ignore the AA_CHANGE_PROFILE flag when checking for link permission. 2007-06-22 18:45:17 +00:00
Andreas Gruenbacher
b1ee140da5 aa_find_profile2 is unused now. 2007-06-22 18:02:30 +00:00
John Johansen
f2f77bacb4 add missing use-interface_lock 2007-06-22 17:56:19 +00:00
John Johansen
4b7150f21b update change_profile patches 2007-06-21 18:27:17 +00:00
John Johansen
4a844e8d33 convert change_profile to use the interface lock - this is untested and likely broken 2007-06-19 17:11:32 +00:00
John Johansen
2b59d6f9ac change_profile refactored and mostly working 2007-06-15 18:44:09 +00:00
Andreas Gruenbacher
807c9147d2 Proposed revert / cleanup for logging permission masks 2007-06-11 11:48:05 +00:00
John Johansen
7e3aacdda5 bleah fix typos that slipped into previous commit, and change AUDIT_REJECT to AUDIT_DENIED and AUDIT_COMPLAIN to AUDIT_ALLOWED 2007-06-09 00:35:37 +00:00
John Johansen
4d14203e90 Add auditing of x modifiers and split mask into requested and denied masks 2007-06-08 21:48:30 +00:00
Andreas Gruenbacher
ece35dc8fe Add missing spaces and do not quote numbers 2007-06-06 09:09:37 +00:00
Andreas Gruenbacher
7c961abd52 Make this message more consistent with the rest. 2007-06-06 08:06:20 +00:00
Andreas Gruenbacher
205235e738 More cosmetic stuff. 2007-06-06 08:00:58 +00:00
Andreas Gruenbacher
b04e55469f More cosmetic stuff. 2007-06-06 07:29:58 +00:00
Andreas Gruenbacher
c2eb05298d Cosmetic change. 2007-06-06 07:23:59 +00:00
John Johansen
171dab27dc remove buffer and buffer2 from struct aa_audit 2007-06-05 17:58:16 +00:00
John Johansen
3f3c5ce968 have link report the permissions denied/granted 2007-06-05 17:57:47 +00:00
John Johansen
44c5f872da change audit messages to use name=<value> pairs 2007-06-05 17:56:50 +00:00
John Johansen
a89eed0360 remove name mangling 2007-06-05 17:56:14 +00:00
John Johansen
e1e05ccf97 fix logging of link target name 2007-06-05 17:55:41 +00:00
John Johansen
2ebbddaf4c use audit defines for reject, complain, audit, hint, status 2007-06-05 17:55:06 +00:00
John Johansen
1ded76679b Add patch to check perms/exec modifiers on profile load instead of checking them at run time 2007-06-05 17:54:11 +00:00
John Johansen
3669525062 refresh patches against latest kernel 2007-06-05 17:52:35 +00:00
John Johansen
dac75a66bd refresh patches against latest git kernel 2007-05-25 17:04:33 +00:00
John Johansen
9f508f8c86 remove patches from series that shouldn't be there 2007-05-25 14:50:55 +00:00
Andreas Gruenbacher
4465abb29a Typo. 2007-05-25 12:47:34 +00:00
Andreas Gruenbacher
c77be398f7 Add first steps to cleaning up audit. 2007-05-25 12:35:47 +00:00