mirrors/apparmor
1
0
Fork 0
mirror of https://gitlab.com/apparmor/apparmor.git synced 2025-03-04 16:35:02 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions
409 commits 23 branches 109 tags 32 MiB
Commit graph

83 commits

Author SHA1 Message Date
Andreas Gruenbacher
0c7f8233e8 Rename mount-consistent-d_cache.diff to mount-consistent-d_path.diff. 2007-03-01 21:18:35 +00:00
Andreas Gruenbacher
7df0fde677 Add proposal for unlink permission checking. 2007-03-01 06:16:18 +00:00
Andreas Gruenbacher
da080ef1a4 Add parentheses. 2007-03-01 06:06:51 +00:00
Andreas Gruenbacher
76e0141e21 Fix link-subset-check.diff and add more rigid link-subset-check-2.diff variant for discussion. 2007-03-01 05:02:27 +00:00
Andreas Gruenbacher
584a4a2bbd Make the computation of exec_mode more obvious. 2007-03-01 04:15:51 +00:00
Andreas Gruenbacher
c20016faf5 Make nfsd compile again after file-handle-ops-2.diff. 2007-02-27 23:47:47 +00:00
Andreas Gruenbacher
e4d1ddd10c Really add file-handle-ops-2.diff now. 2007-02-27 22:16:11 +00:00
Andreas Gruenbacher
ba440ad5b8 Ad xattr hook changes needed for proper file descriptor handling. Add file-handle-ops-2.diff for handling xattrs and file read/write. 2007-02-27 22:13:49 +00:00
Andreas Gruenbacher
6184196ce2 Remove junk from constrained-to-confined.diff. 2007-02-27 09:45:27 +00:00
Andreas Gruenbacher
59454ecf49 Add mount-consistent-d_cache.diff and file-handle-ops.diff. Update to last link-subset-check.diff proposal. Minor rediffs to get rid of offsets. 2007-02-27 08:42:00 +00:00
John Johansen
3bc6bf34ab add fixes to locking and more minor cleanups 2007-02-27 05:09:23 +00:00
Andreas Gruenbacher
06a239c9c8 Enable fix-aa_register.diff. Add no-new-namespaces.diff. 2007-02-24 18:14:47 +00:00
Andreas Gruenbacher
bd442e3869 Add clarify-audit-status-handling.diff. Fix 247679 in link-subset-check.diff. Uncomment ptrace.diff and link-subset-check.diff in series.conf. 2007-02-23 22:33:00 +00:00
Andreas Gruenbacher
4ca2496f50 d_namespace_path fix; rename aa_get_pathname back to aa_get_name. Add tell-files-from-dirs.diff. 2007-02-23 07:38:14 +00:00
Andreas Gruenbacher
79f88b5458 Add tentative aa_link refinement. Comment out this patch and the ptrace patch for now. 2007-02-23 06:28:15 +00:00
Andreas Gruenbacher
0b96655a5c Allow confined processes th ptrace other processes if they have CAP_SYS_PTRACE. 2007-02-23 05:11:21 +00:00
Andreas Gruenbacher
487a7b4e73 Two minor cleanups / improvements 2007-02-22 04:45:15 +00:00
Andreas Gruenbacher
ee4c70b261 Add tentative aa_register fix. 2007-02-21 08:34:17 +00:00
Andreas Gruenbacher
d462346781 Add locking documentation 2007-02-21 01:16:40 +00:00
Andreas Gruenbacher
0f97882aa3 Another bunch of cleanups, including a big locking rewrite. 2007-02-21 01:08:46 +00:00
Andreas Gruenbacher
8779ffa8f3 Revert breakage triggered by Neil's review comment on the LKML. 2007-02-17 09:07:54 +00:00
Tony Jones
de1a855d5c Be nice and check for nulls 2007-02-16 02:13:18 +00:00
Andreas Gruenbacher
e2f747eca4 Zap redundant kernel command line __setup() code. Some fuzz/offset rediffs. 2007-02-16 01:34:49 +00:00
Andreas Gruenbacher
0e6adf7ce3 Revert series change 2007-02-15 21:57:40 +00:00
Andreas Gruenbacher
15a0bad179 Don't change the messages: this would break audit. 2007-02-15 21:57:14 +00:00
Andreas Gruenbacher
8075045c37 Update comments. 2007-02-15 21:43:21 +00:00
Andreas Gruenbacher
01c123fbca Also add command line parameter for apparmor_path_max 2007-02-15 21:38:03 +00:00
Andreas Gruenbacher
4adfbfb821 Make the maximum pathname size (apparmor_path_max) configurable. Some subsequent refreshes. 2007-02-15 21:12:39 +00:00
Andreas Gruenbacher
6de6de7bc3 Add other fixes from Steve. 2007-02-15 11:55:00 +00:00
Andreas Gruenbacher
3982066011 Incorporate feedback from Steve. 2007-02-15 11:03:05 +00:00
Andreas Gruenbacher
597f751050 Some more minor cleanups 2007-02-15 03:46:53 +00:00
Tony Jones
e4c5a59fa4 Add more hooks to test module. 2007-02-15 01:42:31 +00:00
Andreas Gruenbacher
91adace6df Follow-up rediff 2007-02-13 06:12:44 +00:00
Andreas Gruenbacher
836c7eae7e cap_combine() used instead of cap_raise(). 2007-02-13 03:36:16 +00:00
Andreas Gruenbacher
8b82e98b1e Remove (deleted) logic from aa_get_name(). Add tentative alloc-pathnames.diff. 2007-02-12 21:14:30 +00:00
Andreas Gruenbacher
eafe32b3c0 Update descriptions. 2007-02-12 05:37:13 +00:00
Andreas Gruenbacher
ece15e9c57 Update description. 2007-02-12 04:59:35 +00:00
Andreas Gruenbacher
e4c35f7cbf More cleanups. 2007-02-12 04:50:00 +00:00
Andreas Gruenbacher
e4541f7879 Check in the revised versions of John's fixes and cleanups. 
Check in a series of additional cleanups.
 2007-02-11 02:09:31 +00:00
Andreas Gruenbacher
2efd8f441f Also fix up function prototype (hunk ended up in the wrong patch). 2007-02-10 03:05:05 +00:00
Andreas Gruenbacher
5673ac6b2d - Fold minor cleanups into apparmor.diff. 
- Add more substantial cleanups as separate patches initially.
 2007-02-09 10:12:40 +00:00
John Johansen
bab9f169fa merge apparmor cleanup patches 2007-02-08 02:32:33 +00:00
Andreas Gruenbacher
436a92a84b Also adjust header file. 2007-02-08 02:28:02 +00:00
John Johansen
f0a561b224 add audit_write, audit_control capabilities 2007-02-08 01:55:51 +00:00
John Johansen
019562536a change AUDIT_SD to AUDIT_APPARMOR 2007-02-08 01:27:02 +00:00
John Johansen
b77e5766c4 pass nsrootmnt to __d_path instead of rootmnt 2007-02-08 01:09:34 +00:00
Andreas Gruenbacher
2a1afd37ca Cannot access file->f_dentry->d_inode from within the file_alloc_security hook. 2007-02-07 21:09:30 +00:00
Andreas Gruenbacher
dd9b38248b Pass struct vfsmount through nfsd as well. 2007-02-07 11:54:51 +00:00
Andreas Gruenbacher
bbfc41abd3 - Rework apparmor-novalidfstype.diff to use MS_NOUSER; patch now split 
into apparmor-valid-fstype.diff and apparmor-some-renames.diff.
- Remove apparmor-bootdisable.diff and apparmor-builtinonly.diff.
- Rediff everything and regenerate apparmor-aa_-to-aa.diff.
 2007-02-07 06:28:10 +00:00
Andreas Gruenbacher
ab28d03039 Not meant to be in 2007-02-07 01:18:29 +00:00