)]}' { "log": [ { "commit": "4d09ec0f705cf88a12add029c058b53f288cfaa2", "tree": "d756921f5391953295404ccf3ba570ddaaca404f", "parents": [ "c80901f2755c582e3096e6708028a8daca59e6e2" ], "author": { "name": "Dan Carpenter", "email": "error27@gmail.com", "time": "Mon May 17 14:42:35 2010 +0100" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Tue May 18 08:50:55 2010 +1000" }, "message": "KEYS: Return more accurate error codes\n\nWe were using the wrong variable here so the error codes weren\u0027t being returned\nproperly. The original code returns -ENOKEY.\n\nSigned-off-by: Dan Carpenter \u003cerror27@gmail.com\u003e\nSigned-off-by: David Howells \u003cdhowells@redhat.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "c80901f2755c582e3096e6708028a8daca59e6e2", "tree": "eaf353e1736d7f7f99f04b4c086e4bbbff4af854", "parents": [ "7762fbfffdbce8191f5236d5053b290035d3d749" ], "author": { "name": "Tetsuo Handa", "email": "penguin-kernel@I-love.SAKURA.ne.jp", "time": "Fri May 14 12:01:26 2010 +0900" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Mon May 17 09:27:20 2010 +1000" }, "message": "LSM: Add __init to fixup function.\n\nregister_security() became __init function.\nSo do verify() and security_fixup_ops().\n\nSigned-off-by: Tetsuo Handa \u003cpenguin-kernel@I-love.SAKURA.ne.jp\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "7762fbfffdbce8191f5236d5053b290035d3d749", "tree": "08b6de0c09c5571d3bdb61c429e1ec68e748f796", "parents": [ "ba0c1709f4946a5ca1a678f4318ed72c0d409b3c" ], "author": { "name": "Tetsuo Handa", "email": "penguin-kernel@I-love.SAKURA.ne.jp", "time": "Mon May 10 17:30:26 2010 +0900" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Mon May 17 09:25:57 2010 +1000" }, "message": "TOMOYO: Add pathname grouping support.\n\nThis patch adds pathname grouping support, which is useful for grouping\npathnames that cannot be represented using /\\{dir\\}/ pattern.\n\nSigned-off-by: Tetsuo Handa \u003cpenguin-kernel@I-love.SAKURA.ne.jp\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "ba0c1709f4946a5ca1a678f4318ed72c0d409b3c", "tree": "22c60e909f1dccf1fa6f0c0b51b9e3163d66cfc1", "parents": [ "7f2ab000c6f2ae46070807a3bf645c45d8639460" ], "author": { "name": "Mimi Zohar", "email": "zohar@linux.vnet.ibm.com", "time": "Tue May 04 18:16:30 2010 -0400" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Mon May 17 09:21:58 2010 +1000" }, "message": "ima: remove ACPI dependency\n\nThe ACPI dependency moved to the TPM, where it belongs. Although\nIMA per-se does not require access to the bios measurement log,\nverifying the IMA boot aggregate does, which requires ACPI.\n\nThis patch prereq\u0027s \u0027TPM: ACPI/PNP dependency removal\u0027\nhttp://lkml.org/lkml/2010/5/4/378.\n\nSigned-off-by: Mimi Zohar \u003czohar@us.ibm.com\u003e\nReported-by: Jean-Christophe Dubois \u003cjcd@tribudubois.net\u003e\nAcked-by: Serge Hallyn \u003cserue@us.ibm.com\u003e\nTested-by: Serge Hallyn \u003cserue@us.ibm.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "b3139bbc52762268769e7af842aade0e64372433", "tree": "eae65d208fdbeaefd9bdc9c6877d8eb18e617bf6", "parents": [ "9e4b50e93786d00c703f16ed46e6a4029c0dfdd1" ], "author": { "name": "Julia Lawall", "email": "julia@diku.dk", "time": "Fri May 14 21:30:30 2010 +0200" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Mon May 17 09:00:27 2010 +1000" }, "message": "security/selinux/ss: Use kstrdup\n\nUse kstrdup when the goal of an allocation is copy a string into the\nallocated region.\n\nThe semantic patch that makes this change is as follows:\n(http://coccinelle.lip6.fr/)\n\n// \u003csmpl\u003e\n@@\nexpression from,to;\nexpression flag,E1,E2;\nstatement S;\n@@\n\n- to \u003d kmalloc(strlen(from) + 1,flag);\n+ to \u003d kstrdup(from, flag);\n ... when !\u003d \\(from \u003d E1 \\| to \u003d E1 \\)\n if (to\u003d\u003dNULL || ...) S\n ... when !\u003d \\(from \u003d E2 \\| to \u003d E2 \\)\n- strcpy(to, from);\n// \u003c/smpl\u003e\n\nSigned-off-by: Julia Lawall \u003cjulia@diku.dk\u003e\nAcked-by: Eric Paris \u003ceparis@redhat.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "9e4b50e93786d00c703f16ed46e6a4029c0dfdd1", "tree": "51bf6072802888592ae98b9a6c8a26fcb2e1988f", "parents": [ "83c36ccfe4d849f482ea0a62402c7624f4e59f0e" ], "author": { "name": "Tetsuo Handa", "email": "penguin-kernel@I-love.SAKURA.ne.jp", "time": "Thu May 06 12:40:02 2010 +0900" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Mon May 10 17:59:02 2010 +1000" }, "message": "TOMOYO: Use stack memory for pending entry.\n\nUse stack memory for pending entry to reduce kmalloc() which will be kfree()d.\n\nSigned-off-by: Tetsuo Handa \u003cpenguin-kernel@I-love.SAKURA.ne.jp\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "83c36ccfe4d849f482ea0a62402c7624f4e59f0e", "tree": "381c005c107bc5cf8db594308c5a3b0ec2bd1d34", "parents": [ "ec4a162af388a2716c5314c4aff7029071d09f57" ], "author": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Fri May 07 09:20:03 2010 +1000" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Fri May 07 09:20:03 2010 +1000" }, "message": "Revert \"ima: remove ACPI dependency\"\n\nThis reverts commit a674fa46c79ffa37995bd1c8e4daa2b3be5a95ae.\n\nPrevious revert was a prereq.\n\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "f70e2e06196ad4c1c762037da2f75354f6c16b81", "tree": "9632a1e655efb684c87f8c7be6d091fbb1a430e7", "parents": [ "043b4d40f53131c5f72eca2a46555fe35328a930" ], "author": { "name": "David Howells", "email": "dhowells@redhat.com", "time": "Fri Apr 30 14:32:39 2010 +0100" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Thu May 06 22:25:02 2010 +1000" }, "message": "KEYS: Do preallocation for __key_link()\n\nDo preallocation for __key_link() so that the various callers in request_key.c\ncan deal with any errors from this source before attempting to construct a key.\nThis allows them to assume that the actual linkage step is guaranteed to be\nsuccessful.\n\nSigned-off-by: David Howells \u003cdhowells@redhat.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "043b4d40f53131c5f72eca2a46555fe35328a930", "tree": "02a40eeb688f7ed9730e26a22f39ad7e04378de2", "parents": [ "292823814261e085cdcef06b6b691e6c2563fbd4", "722154e4cacf015161efe60009ae9be23d492296" ], "author": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Thu May 06 22:21:04 2010 +1000" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Thu May 06 22:21:04 2010 +1000" }, "message": "Merge branch \u0027master\u0027 into next\n\nConflicts:\n\tsecurity/keys/keyring.c\n\nResolved conflict with whitespace fix in find_keyring_by_name()\n\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "292823814261e085cdcef06b6b691e6c2563fbd4", "tree": "8c1eaebcf8f698ea13ac2a9291b9769abde1905e", "parents": [ "2b9e4688fad8867b6e918610f396af3ab9246898" ], "author": { "name": "Tetsuo Handa", "email": "penguin-kernel@I-love.SAKURA.ne.jp", "time": "Thu May 06 00:18:15 2010 +0900" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Thu May 06 13:19:18 2010 +1000" }, "message": "TOMOYO: Use mutex_lock_interruptible.\n\nSome of TOMOYO\u0027s functions may sleep after mutex_lock(). If OOM-killer selected\na process which is waiting at mutex_lock(), the to-be-killed process can\u0027t be\nkilled. Thus, replace mutex_lock() with mutex_lock_interruptible() so that the\nto-be-killed process can immediately return from TOMOYO\u0027s functions.\n\nSigned-off-by: Tetsuo Handa \u003cpenguin-kernel@I-love.SAKURA.ne.jp\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "2b9e4688fad8867b6e918610f396af3ab9246898", "tree": "c0146493e6ea4dff7b51259de1d7e83729a26c94", "parents": [ "553d603c8fce8cf727eb26e4bf6b9549cd4623f1" ], "author": { "name": "David Howells", "email": "dhowells@redhat.com", "time": "Fri Apr 30 14:32:34 2010 +0100" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Thu May 06 10:56:55 2010 +1000" }, "message": "KEYS: Better handling of errors from construct_alloc_key()\n\nErrors from construct_alloc_key() shouldn\u0027t just be ignored in the way they are\nby construct_key_and_link(). The only error that can be ignored so is\nEINPROGRESS as that is used to indicate that we\u0027ve found a key and don\u0027t need\nto construct one.\n\nWe don\u0027t, however, handle ENOMEM, EDQUOT or EACCES to indicate allocation\nfailures of one sort or another.\n\nReported-by: Vegard Nossum \u003cvegard.nossum@gmail.com\u003e\nSigned-off-by: David Howells \u003cdhowells@redhat.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "553d603c8fce8cf727eb26e4bf6b9549cd4623f1", "tree": "137d9976ac663371d5f4f9ccf59ef4fb1ea9bc88", "parents": [ "0ffbe2699cda6afbe08501098dff8a8c2fe6ae09" ], "author": { "name": "David Howells", "email": "dhowells@redhat.com", "time": "Fri Apr 30 14:32:28 2010 +0100" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Thu May 06 10:56:52 2010 +1000" }, "message": "KEYS: keyring_serialise_link_sem is only needed for keyring-\u003ekeyring links\n\nkeyring_serialise_link_sem is only needed for keyring-\u003ekeyring links as it\u0027s\nused to prevent cycle detection from being avoided by parallel keyring\nadditions.\n\nSigned-off-by: David Howells \u003cdhowells@redhat.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "0ffbe2699cda6afbe08501098dff8a8c2fe6ae09", "tree": "81b1a2305d16c873371b65c5a863c0268036cefe", "parents": [ "4e5d6f7ec3833c0da9cf34fa5c53c6058c5908b6", "7ebd467551ed6ae200d7835a84bbda0dcadaa511" ], "author": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Thu May 06 10:56:07 2010 +1000" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Thu May 06 10:56:07 2010 +1000" }, "message": "Merge branch \u0027master\u0027 into next\n" }, { "commit": "4e5d6f7ec3833c0da9cf34fa5c53c6058c5908b6", "tree": "5c0db5bfcdcb1b07594f20054cc6eefe05161c9a", "parents": [ "a674fa46c79ffa37995bd1c8e4daa2b3be5a95ae" ], "author": { "name": "Tetsuo Handa", "email": "penguin-kernel@I-love.SAKURA.ne.jp", "time": "Wed Apr 28 14:17:42 2010 +0900" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Thu May 06 00:50:43 2010 +1000" }, "message": "TOMOYO: Use GFP_NOFS rather than GFP_KERNEL.\n\nIn Ubuntu, security_path_*() hooks are exported to Unionfs. Thus, prepare for\nbeing called from inside VFS functions because I\u0027m not sure whether it is safe\nto use GFP_KERNEL or not.\n\nSigned-off-by: Tetsuo Handa \u003cpenguin-kernel@I-love.SAKURA.ne.jp\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "896903c2f5f79f029388f033a00c3b813bc91201", "tree": "f679108ab3c9cda3f5e1f6240afccc6ee3984406", "parents": [ "f0641cba7729e5e14f82d2eedc398103f5fa31b1" ], "author": { "name": "David Howells", "email": "dhowells@redhat.com", "time": "Fri Apr 30 14:32:23 2010 +0100" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Wed May 05 23:50:24 2010 +1000" }, "message": "KEYS: call_sbin_request_key() must write lock keyrings before modifying them\n\ncall_sbin_request_key() creates a keyring and then attempts to insert a link to\nthe authorisation key into that keyring, but does so without holding a write\nlock on the keyring semaphore.\n\nIt will normally get away with this because it hasn\u0027t told anyone that the\nkeyring exists yet. The new keyring, however, has had its serial number\npublished, which means it can be accessed directly by that handle.\n\nThis was found by a previous patch that adds RCU lockdep checks to the code\nthat reads the keyring payload pointer, which includes a check that the keyring\nsemaphore is actually locked.\n\nWithout this patch, the following command:\n\n\tkeyctl request2 user b a @s\n\nwill provoke the following lockdep warning is displayed in dmesg:\n\n\t\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\n\t[ INFO: suspicious rcu_dereference_check() usage. ]\n\t---------------------------------------------------\n\tsecurity/keys/keyring.c:727 invoked rcu_dereference_check() without protection!\n\n\tother info that might help us debug this:\n\n\trcu_scheduler_active \u003d 1, debug_locks \u003d 0\n\t2 locks held by keyctl/2076:\n\t #0: (key_types_sem){.+.+.+}, at: [\u003cffffffff811a5b29\u003e] key_type_lookup+0x1c/0x71\n\t #1: (keyring_serialise_link_sem){+.+.+.}, at: [\u003cffffffff811a6d1e\u003e] __key_link+0x4d/0x3c5\n\n\tstack backtrace:\n\tPid: 2076, comm: keyctl Not tainted 2.6.34-rc6-cachefs #54\n\tCall Trace:\n\t [\u003cffffffff81051fdc\u003e] lockdep_rcu_dereference+0xaa/0xb2\n\t [\u003cffffffff811a6d1e\u003e] ? __key_link+0x4d/0x3c5\n\t [\u003cffffffff811a6e6f\u003e] __key_link+0x19e/0x3c5\n\t [\u003cffffffff811a5952\u003e] ? __key_instantiate_and_link+0xb1/0xdc\n\t [\u003cffffffff811a59bf\u003e] ? key_instantiate_and_link+0x42/0x5f\n\t [\u003cffffffff811aa0dc\u003e] call_sbin_request_key+0xe7/0x33b\n\t [\u003cffffffff8139376a\u003e] ? mutex_unlock+0x9/0xb\n\t [\u003cffffffff811a5952\u003e] ? __key_instantiate_and_link+0xb1/0xdc\n\t [\u003cffffffff811a59bf\u003e] ? key_instantiate_and_link+0x42/0x5f\n\t [\u003cffffffff811aa6fa\u003e] ? request_key_auth_new+0x1c2/0x23c\n\t [\u003cffffffff810aaf15\u003e] ? cache_alloc_debugcheck_after+0x108/0x173\n\t [\u003cffffffff811a9d00\u003e] ? request_key_and_link+0x146/0x300\n\t [\u003cffffffff810ac568\u003e] ? kmem_cache_alloc+0xe1/0x118\n\t [\u003cffffffff811a9e45\u003e] request_key_and_link+0x28b/0x300\n\t [\u003cffffffff811a89ac\u003e] sys_request_key+0xf7/0x14a\n\t [\u003cffffffff81052c0b\u003e] ? trace_hardirqs_on_caller+0x10c/0x130\n\t [\u003cffffffff81394fb9\u003e] ? trace_hardirqs_on_thunk+0x3a/0x3f\n\t [\u003cffffffff81001eeb\u003e] system_call_fastpath+0x16/0x1b\n\nSigned-off-by: David Howells \u003cdhowells@redhat.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "f0641cba7729e5e14f82d2eedc398103f5fa31b1", "tree": "578cc4ea4686528eb587f3df7fbd908e1819fe66", "parents": [ "cea7daa3589d6b550546a8c8963599f7c1a3ae5c" ], "author": { "name": "David Howells", "email": "dhowells@redhat.com", "time": "Fri Apr 30 14:32:18 2010 +0100" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Wed May 05 23:50:12 2010 +1000" }, "message": "KEYS: Use RCU dereference wrappers in keyring key type code\n\nThe keyring key type code should use RCU dereference wrappers, even when it\nholds the keyring\u0027s key semaphore.\n\nReported-by: Vegard Nossum \u003cvegard.nossum@gmail.com\u003e\nSigned-off-by: David Howells \u003cdhowells@redhat.com\u003e\nAcked-by: Serge Hallyn \u003cserue@us.ibm.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "cea7daa3589d6b550546a8c8963599f7c1a3ae5c", "tree": "6d3a0bd38756f03b85f50273c64c26f0b6027143", "parents": [ "7ebd467551ed6ae200d7835a84bbda0dcadaa511" ], "author": { "name": "Toshiyuki Okajima", "email": "toshi.okajima@jp.fujitsu.com", "time": "Fri Apr 30 14:32:13 2010 +0100" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Wed May 05 23:49:10 2010 +1000" }, "message": "KEYS: find_keyring_by_name() can gain access to a freed keyring\n\nfind_keyring_by_name() can gain access to a keyring that has had its reference\ncount reduced to zero, and is thus ready to be freed. This then allows the\ndead keyring to be brought back into use whilst it is being destroyed.\n\nThe following timeline illustrates the process:\n\n|(cleaner) (user)\n|\n| free_user(user) sys_keyctl()\n| | |\n| key_put(user-\u003esession_keyring) keyctl_get_keyring_ID()\n| ||\t//\u003d\u003e keyring-\u003eusage \u003d 0 |\n| |schedule_work(\u0026key_cleanup_task) lookup_user_key()\n| || |\n| kmem_cache_free(,user) |\n| . |[KEY_SPEC_USER_KEYRING]\n| . install_user_keyrings()\n| . ||\n| key_cleanup() [\u003c\u003d worker_thread()] ||\n| | ||\n| [spin_lock(\u0026key_serial_lock)] |[mutex_lock(\u0026key_user_keyr..mutex)]\n| | ||\n| atomic_read() \u003d\u003d 0 ||\n| |{ rb_ease(\u0026key-\u003eserial_node,) } ||\n| | ||\n| [spin_unlock(\u0026key_serial_lock)] |find_keyring_by_name()\n| | |||\n| keyring_destroy(keyring) ||[read_lock(\u0026keyring_name_lock)]\n| || |||\n| |[write_lock(\u0026keyring_name_lock)] ||atomic_inc(\u0026keyring-\u003eusage)\n| |. ||| *** GET freeing keyring ***\n| |. ||[read_unlock(\u0026keyring_name_lock)]\n| || ||\n| |list_del() |[mutex_unlock(\u0026key_user_k..mutex)]\n| || |\n| |[write_unlock(\u0026keyring_name_lock)] ** INVALID keyring is returned **\n| | .\n| kmem_cache_free(,keyring) .\n| .\n| atomic_dec(\u0026keyring-\u003eusage)\nv *** DESTROYED ***\nTIME\n\nIf CONFIG_SLUB_DEBUG\u003dy then we may see the following message generated:\n\n\t\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\n\tBUG key_jar: Poison overwritten\n\t-----------------------------------------------------------------------------\n\n\tINFO: 0xffff880197a7e200-0xffff880197a7e200. First byte 0x6a instead of 0x6b\n\tINFO: Allocated in key_alloc+0x10b/0x35f age\u003d25 cpu\u003d1 pid\u003d5086\n\tINFO: Freed in key_cleanup+0xd0/0xd5 age\u003d12 cpu\u003d1 pid\u003d10\n\tINFO: Slab 0xffffea000592cb90 objects\u003d16 used\u003d2 fp\u003d0xffff880197a7e200 flags\u003d0x200000000000c3\n\tINFO: Object 0xffff880197a7e200 @offset\u003d512 fp\u003d0xffff880197a7e300\n\n\tBytes b4 0xffff880197a7e1f0: 5a 5a 5a 5a 5a 5a 5a 5a 5a 5a 5a 5a 5a 5a 5a 5a ZZZZZZZZZZZZZZZZ\n\t Object 0xffff880197a7e200: 6a 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b 6b jkkkkkkkkkkkkkkk\n\nAlternatively, we may see a system panic happen, such as:\n\n\tBUG: unable to handle kernel NULL pointer dereference at 0000000000000001\n\tIP: [\u003cffffffff810e61a3\u003e] kmem_cache_alloc+0x5b/0xe9\n\tPGD 6b2b4067 PUD 6a80d067 PMD 0\n\tOops: 0000 [#1] SMP\n\tlast sysfs file: /sys/kernel/kexec_crash_loaded\n\tCPU 1\n\t...\n\tPid: 31245, comm: su Not tainted 2.6.34-rc5-nofixed-nodebug #2 D2089/PRIMERGY\n\tRIP: 0010:[\u003cffffffff810e61a3\u003e] [\u003cffffffff810e61a3\u003e] kmem_cache_alloc+0x5b/0xe9\n\tRSP: 0018:ffff88006af3bd98 EFLAGS: 00010002\n\tRAX: 0000000000000000 RBX: 0000000000000001 RCX: ffff88007d19900b\n\tRDX: 0000000100000000 RSI: 00000000000080d0 RDI: ffffffff81828430\n\tRBP: ffffffff81828430 R08: ffff88000a293750 R09: 0000000000000000\n\tR10: 0000000000000001 R11: 0000000000100000 R12: 00000000000080d0\n\tR13: 00000000000080d0 R14: 0000000000000296 R15: ffffffff810f20ce\n\tFS: 00007f97116bc700(0000) GS:ffff88000a280000(0000) knlGS:0000000000000000\n\tCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n\tCR2: 0000000000000001 CR3: 000000006a91c000 CR4: 00000000000006e0\n\tDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n\tDR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400\n\tProcess su (pid: 31245, threadinfo ffff88006af3a000, task ffff8800374414c0)\n\tStack:\n\t 0000000512e0958e 0000000000008000 ffff880037f8d180 0000000000000001\n\t 0000000000000000 0000000000008001 ffff88007d199000 ffffffff810f20ce\n\t 0000000000008000 ffff88006af3be48 0000000000000024 ffffffff810face3\n\tCall Trace:\n\t [\u003cffffffff810f20ce\u003e] ? get_empty_filp+0x70/0x12f\n\t [\u003cffffffff810face3\u003e] ? do_filp_open+0x145/0x590\n\t [\u003cffffffff810ce208\u003e] ? tlb_finish_mmu+0x2a/0x33\n\t [\u003cffffffff810ce43c\u003e] ? unmap_region+0xd3/0xe2\n\t [\u003cffffffff810e4393\u003e] ? virt_to_head_page+0x9/0x2d\n\t [\u003cffffffff81103916\u003e] ? alloc_fd+0x69/0x10e\n\t [\u003cffffffff810ef4ed\u003e] ? do_sys_open+0x56/0xfc\n\t [\u003cffffffff81008a02\u003e] ? system_call_fastpath+0x16/0x1b\n\tCode: 0f 1f 44 00 00 49 89 c6 fa 66 0f 1f 44 00 00 65 4c 8b 04 25 60 e8 00 00 48 8b 45 00 49 01 c0 49 8b 18 48 85 db 74 0d 48 63 45 18 \u003c48\u003e 8b 04 03 49 89 00 eb 14 4c 89 f9 83 ca ff 44 89 e6 48 89 ef\n\tRIP [\u003cffffffff810e61a3\u003e] kmem_cache_alloc+0x5b/0xe9\n\nThis problem is that find_keyring_by_name does not confirm that the keyring is\nvalid before accepting it.\n\nSkipping keyrings that have been reduced to a zero count seems the way to go.\nTo this end, use atomic_inc_not_zero() to increment the usage count and skip\nthe candidate keyring if that returns false.\n\nThe following script _may_ cause the bug to happen, but there\u0027s no guarantee\nas the window of opportunity is small:\n\n\t#!/bin/sh\n\tLOOP\u003d100000\n\tUSER\u003ddummy_user\n\t/bin/su -c \"exit;\" $USER || { /usr/sbin/adduser -m $USER; add\u003d1; }\n\tfor ((i\u003d0; i\u003cLOOP; i++))\n\tdo\n\t\t/bin/su -c \"echo \u0027$i\u0027 \u003e /dev/null\" $USER\n\tdone\n\t(( add \u003d\u003d 1 )) \u0026\u0026 /usr/sbin/userdel -r $USER\n\texit\n\nNote that the nominated user must not be in use.\n\nAn alternative way of testing this may be:\n\n\tfor ((i\u003d0; i\u003c100000; i++))\n\tdo\n\t\tkeyctl session foo /bin/true || break\n\tdone \u003e\u0026/dev/null\n\nas that uses a keyring named \"foo\" rather than relying on the user and\nuser-session named keyrings.\n\nReported-by: Toshiyuki Okajima \u003ctoshi.okajima@jp.fujitsu.com\u003e\nSigned-off-by: David Howells \u003cdhowells@redhat.com\u003e\nTested-by: Toshiyuki Okajima \u003ctoshi.okajima@jp.fujitsu.com\u003e\nAcked-by: Serge Hallyn \u003cserue@us.ibm.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "cf8304e8f380903de3a15dc6ebd551c9e6cf1a21", "tree": "fe94f3ebb044b5026b1062631b2d89e77c8b674e", "parents": [ "d9a9b4aeea334e7912ce3d878d7f5cc6fdf1ffe4" ], "author": { "name": "David Howells", "email": "dhowells@redhat.com", "time": "Tue May 04 14:16:10 2010 +0100" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Wed May 05 11:39:23 2010 +1000" }, "message": "KEYS: Fix RCU handling in key_gc_keyring()\n\nkey_gc_keyring() needs to either hold the RCU read lock or hold the keyring\nsemaphore if it\u0027s going to scan the keyring\u0027s list. Given that it only needs\nto read the key list, and it\u0027s doing so under a spinlock, the RCU read lock is\nthe thing to use.\n\nFurthermore, the RCU check added in e7b0a61b7929632d36cf052d9e2820ef0a9c1bfe is\nincorrect as holding the spinlock on key_serial_lock is not grounds for\nassuming a keyring\u0027s pointer list can be read safely. Instead, a simple\nrcu_dereference() inside of the previously mentioned RCU read lock is what we\nwant.\n\nReported-by: Serge E. Hallyn \u003cserue@us.ibm.com\u003e\nSigned-off-by: David Howells \u003cdhowells@redhat.com\u003e\nAcked-by: Serge Hallyn \u003cserue@us.ibm.com\u003e\nAcked-by: \"Paul E. McKenney\" \u003cpaulmck@linux.vnet.ibm.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "d9a9b4aeea334e7912ce3d878d7f5cc6fdf1ffe4", "tree": "cf822ea9020aec6bd54d986231097983680c8ede", "parents": [ "a66f6375bdeb64d7a56c532bda7c006358845820" ], "author": { "name": "David Howells", "email": "dhowells@redhat.com", "time": "Fri Apr 30 14:32:08 2010 +0100" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Wed May 05 11:38:52 2010 +1000" }, "message": "KEYS: Fix an RCU warning in the reading of user keys\n\nFix an RCU warning in the reading of user keys:\n\n\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\n[ INFO: suspicious rcu_dereference_check() usage. ]\n---------------------------------------------------\nsecurity/keys/user_defined.c:202 invoked rcu_dereference_check() without protection!\n\nother info that might help us debug this:\n\nrcu_scheduler_active \u003d 1, debug_locks \u003d 0\n1 lock held by keyctl/3637:\n #0: (\u0026key-\u003esem){+++++.}, at: [\u003cffffffff811a80ae\u003e] keyctl_read_key+0x9c/0xcf\n\nstack backtrace:\nPid: 3637, comm: keyctl Not tainted 2.6.34-rc5-cachefs #18\nCall Trace:\n [\u003cffffffff81051f6c\u003e] lockdep_rcu_dereference+0xaa/0xb2\n [\u003cffffffff811aa55f\u003e] user_read+0x47/0x91\n [\u003cffffffff811a80be\u003e] keyctl_read_key+0xac/0xcf\n [\u003cffffffff811a8a06\u003e] sys_keyctl+0x75/0xb7\n [\u003cffffffff81001eeb\u003e] system_call_fastpath+0x16/0x1b\n\nSigned-off-by: David Howells \u003cdhowells@redhat.com\u003e\nAcked-by: Serge Hallyn \u003cserue@us.ibm.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "a674fa46c79ffa37995bd1c8e4daa2b3be5a95ae", "tree": "4f2b0d0b89310cc93e9ae9377cdbba80b0554814", "parents": [ "b89e66e1e396f7b5436af154e58209320cc08aed" ], "author": { "name": "Mimi Zohar", "email": "zohar@linux.vnet.ibm.com", "time": "Tue May 04 18:16:30 2010 -0400" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Wed May 05 10:00:06 2010 +1000" }, "message": "ima: remove ACPI dependency\n\nThe ACPI dependency moved to the TPM, where it belongs. Although\nIMA per-se does not require access to the bios measurement log,\nverifying the IMA boot aggregate does, which requires ACPI.\n\nThis patch prereq\u0027s \u0027TPM: ACPI/PNP dependency removal\u0027\nhttp://lkml.org/lkml/2010/5/4/378.\n\nSigned-off-by: Mimi Zohar \u003czohar@us.ibm.com\u003e\nReported-by: Jean-Christophe Dubois \u003cjcd@tribudubois.net\u003e\nAcked-by: Serge Hallyn \u003cserue@us.ibm.com\u003e\nTested-by: Serge Hallyn \u003cserue@us.ibm.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "fcaaade1db63bb2d6f7611d7824eb50d2f07a546", "tree": "9091dbdd0c9bd1e3af9ece6f5cce5c0d6c258253", "parents": [ "cb84aa9b42b506299e5aea1ba4da26c03ab12877" ], "author": { "name": "Stephen Smalley", "email": "sds@tycho.nsa.gov", "time": "Wed Apr 28 15:57:57 2010 -0400" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Thu Apr 29 08:58:45 2010 +1000" }, "message": "selinux: generalize disabling of execmem for plt-in-heap archs\n\nOn Tue, 2010-04-27 at 11:47 -0700, David Miller wrote:\n\u003e From: \"Tom \\\"spot\\\" Callaway\" \u003ctcallawa@redhat.com\u003e\n\u003e Date: Tue, 27 Apr 2010 14:20:21 -0400\n\u003e\n\u003e \u003e [root@apollo ~]$ cat /proc/2174/maps\n\u003e \u003e 00010000-00014000 r-xp 00000000 fd:00 15466577\n\u003e \u003e /sbin/mingetty\n\u003e \u003e 00022000-00024000 rwxp 00002000 fd:00 15466577\n\u003e \u003e /sbin/mingetty\n\u003e \u003e 00024000-00046000 rwxp 00000000 00:00 0\n\u003e \u003e [heap]\n\u003e\n\u003e SELINUX probably barfs on the executable heap, the PLT is in the HEAP\n\u003e just like powerpc32 and that\u0027s why VM_DATA_DEFAULT_FLAGS has to set\n\u003e both executable and writable.\n\u003e\n\u003e You also can\u0027t remove the CONFIG_PPC32 ifdefs in selinux, since\n\u003e because of the VM_DATA_DEFAULT_FLAGS setting used still in that arch,\n\u003e the heap will always have executable permission, just like sparc does.\n\u003e You have to support those binaries forever, whether you like it or not.\n\u003e\n\u003e Let\u0027s just replace the CONFIG_PPC32 ifdef in SELINUX with CONFIG_PPC32\n\u003e || CONFIG_SPARC as in Tom\u0027s original patch and let\u0027s be done with\n\u003e this.\n\u003e\n\u003e In fact I would go through all the arch/ header files and check the\n\u003e VM_DATA_DEFAULT_FLAGS settings and add the necessary new ifdefs to the\n\u003e SELINUX code so that other platforms don\u0027t have the pain of having to\n\u003e go through this process too.\n\nTo avoid maintaining per-arch ifdefs, it seems that we could just\ndirectly use (VM_DATA_DEFAULT_FLAGS \u0026 VM_EXEC) as the basis for deciding\nwhether to enable or disable these checks. VM_DATA_DEFAULT_FLAGS isn\u0027t\nconstant on some architectures but instead depends on\ncurrent-\u003epersonality, but we want this applied uniformly. So we\u0027ll just\nuse the initial task state to determine whether or not to enable these\nchecks.\n\nSigned-off-by: Stephen Smalley \u003csds@tycho.nsa.gov\u003e\nAcked-by: David S. Miller \u003cdavem@davemloft.net\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "1600f9def09de07c5dbeb539e978fa73880690dd", "tree": "a8fa5c0891c68740543425d139414fec3d38b26e", "parents": [ "11e39d993dc693e0bfc5521d367b2494cb3bcd38", "b59ec78cdcc57e02bc3dddfa7134a2f0fd15c34d" ], "author": { "name": "Linus Torvalds", "email": "torvalds@linux-foundation.org", "time": "Tue Apr 27 16:26:46 2010 -0700" }, "committer": { "name": "Linus Torvalds", "email": "torvalds@linux-foundation.org", "time": "Tue Apr 27 16:26:46 2010 -0700" }, "message": "Merge branch \u0027for-linus\u0027 of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/security-testing-2.6\n\n* \u0027for-linus\u0027 of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/security-testing-2.6:\n keys: don\u0027t need to use RCU in keyring_read() as semaphore is held\n" }, { "commit": "03449cd9eaa4fa3a7faa4a59474bafe2e90bd143", "tree": "f0f8b573553e0ac436b06b3f7853033a46b90a8e", "parents": [ "a2cb9aeb3c9b2475955cec328487484034f414e4" ], "author": { "name": "David Howells", "email": "dhowells@redhat.com", "time": "Tue Apr 27 13:13:08 2010 -0700" }, "committer": { "name": "Linus Torvalds", "email": "torvalds@linux-foundation.org", "time": "Tue Apr 27 16:26:03 2010 -0700" }, "message": "keys: the request_key() syscall should link an existing key to the dest keyring\n\nThe request_key() system call and request_key_and_link() should make a\nlink from an existing key to the destination keyring (if supplied), not\njust from a new key to the destination keyring.\n\nThis can be tested by:\n\n\tring\u003d`keyctl newring fred @s`\n\tkeyctl request2 user debug:a a\n\tkeyctl request user debug:a $ring\n\tkeyctl list $ring\n\nIf it says:\n\n\tkeyring is empty\n\nthen it didn\u0027t work. If it shows something like:\n\n\t1 key in keyring:\n\t1070462727: --alswrv 0 0 user: debug:a\n\nthen it did.\n\nrequest_key() system call is meant to recursively search all your keyrings for\nthe key you desire, and, optionally, if it doesn\u0027t exist, call out to userspace\nto create one for you.\n\nIf request_key() finds or creates a key, it should, optionally, create a link\nto that key from the destination keyring specified.\n\nTherefore, if, after a successful call to request_key() with a desination\nkeyring specified, you see the destination keyring empty, the code didn\u0027t work\ncorrectly.\n\nIf you see the found key in the keyring, then it did - which is what the patch\nis required for.\n\nSigned-off-by: David Howells \u003cdhowells@redhat.com\u003e\nCc: James Morris \u003cjmorris@namei.org\u003e\nCc: \u003cstable@kernel.org\u003e\nSigned-off-by: Andrew Morton \u003cakpm@linux-foundation.org\u003e\nSigned-off-by: Linus Torvalds \u003ctorvalds@linux-foundation.org\u003e\n" }, { "commit": "cb84aa9b42b506299e5aea1ba4da26c03ab12877", "tree": "af646c3d148f5c04f7362c8bddc59b8518cafd9e", "parents": [ "b03df87d119f50715891dcc09e487f6ae5c029f1" ], "author": { "name": "Eric Paris", "email": "eparis@redhat.com", "time": "Tue Apr 27 17:20:38 2010 -0400" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Wed Apr 28 08:51:12 2010 +1000" }, "message": "LSM Audit: rename LSM_AUDIT_NO_AUDIT to LSM_AUDIT_DATA_NONE\n\nMost of the LSM common audit work uses LSM_AUDIT_DATA_* for the naming.\nThis was not so for LSM_AUDIT_NO_AUDIT which means the generic initializer\ncannot be used. This patch just renames the flag so the generic\ninitializer can be used.\n\nSigned-off-by: Eric Paris \u003ceparis@redhat.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "b59ec78cdcc57e02bc3dddfa7134a2f0fd15c34d", "tree": "60ba3c907d4d83873bce5eb645ae8bd9415399b8", "parents": [ "b91ce4d14a21fc04d165be30319541e0f9204f15" ], "author": { "name": "David Howells", "email": "dhowells@redhat.com", "time": "Tue Apr 27 14:05:11 2010 -0700" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Wed Apr 28 08:37:15 2010 +1000" }, "message": "keys: don\u0027t need to use RCU in keyring_read() as semaphore is held\n\nkeyring_read() doesn\u0027t need to use rcu_dereference() to access the keyring\npayload as the caller holds the key semaphore to prevent modifications\nfrom happening whilst the data is read out.\n\nThis should solve the following warning:\n\n\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\n[ INFO: suspicious rcu_dereference_check() usage. ]\n---------------------------------------------------\nsecurity/keys/keyring.c:204 invoked rcu_dereference_check() without protection!\n\nother info that might help us debug this:\n\nrcu_scheduler_active \u003d 1, debug_locks \u003d 0\n1 lock held by keyctl/2144:\n #0: (\u0026key-\u003esem){+++++.}, at: [\u003cffffffff81177f7c\u003e] keyctl_read_key+0x9c/0xcf\n\nstack backtrace:\nPid: 2144, comm: keyctl Not tainted 2.6.34-rc2-cachefs #113\nCall Trace:\n [\u003cffffffff8105121f\u003e] lockdep_rcu_dereference+0xaa/0xb2\n [\u003cffffffff811762d5\u003e] keyring_read+0x4d/0xe7\n [\u003cffffffff81177f8c\u003e] keyctl_read_key+0xac/0xcf\n [\u003cffffffff811788d4\u003e] sys_keyctl+0x75/0xb9\n [\u003cffffffff81001eeb\u003e] system_call_fastpath+0x16/0x1b\n\nSigned-off-by: David Howells \u003cdhowells@redhat.com\u003e\nCc: Herbert Xu \u003cherbert@gondor.apana.org.au\u003e\nSigned-off-by: Andrew Morton \u003cakpm@linux-foundation.org\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "98ec4373bab1d839f794e9a4edc29f77eb9d897e", "tree": "d1ad9adfa7551e7bbbe4d631162c66ae2804b89d", "parents": [ "c5b60b5e67af8be4c58d3ffcc36894f69c4fbdc1" ], "author": { "name": "David Howells", "email": "dhowells@redhat.com", "time": "Fri Apr 23 12:48:12 2010 +0100" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Tue Apr 27 08:46:00 2010 +1000" }, "message": "SMACK: Don\u0027t #include Ext2 headers\n\nDon\u0027t #include Ext2 headers into Smack unnecessarily.\n\nSigned-off-by: David Howells \u003cdhowells@redhat.com\u003e\nAcked-by: Casey Schaufler \u003ccasey@schaufler-ca.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "93b4a44f3ad69520d605aace3f3486b8eb754b96", "tree": "8eb946db950ccc6aee1d00b226739f44141dd310", "parents": [ "ccdb40048b2972f10bdc944913c0e0ee26b5d1f2" ], "author": { "name": "David Howells", "email": "dhowells@redhat.com", "time": "Fri Apr 23 13:18:00 2010 -0400" }, "committer": { "name": "Linus Torvalds", "email": "torvalds@linux-foundation.org", "time": "Sat Apr 24 11:31:25 2010 -0700" }, "message": "keys: fix an RCU warning\n\nFix the following RCU warning:\n\n \u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\n [ INFO: suspicious rcu_dereference_check() usage. ]\n ---------------------------------------------------\n security/keys/request_key.c:116 invoked rcu_dereference_check() without protection!\n\nThis was caused by doing:\n\n\t[root@andromeda ~]# keyctl newring fred @s\n\t539196288\n\t[root@andromeda ~]# keyctl request2 user a a 539196288\n\trequest_key: Required key not available\n\nSigned-off-by: David Howells \u003cdhowells@redhat.com\u003e\nAcked-by: Eric Dumazet \u003ceric.dumazet@gmail.com\u003e\nSigned-off-by: Andrew Morton \u003cakpm@linux-foundation.org\u003e\nSigned-off-by: Linus Torvalds \u003ctorvalds@linux-foundation.org\u003e\n" }, { "commit": "c5b60b5e67af8be4c58d3ffcc36894f69c4fbdc1", "tree": "5ca471fad635ee8d91a24c7b5448dbcad3de74ef", "parents": [ "822cceec7248013821d655545ea45d1c6a9d15b3" ], "author": { "name": "Justin P. Mattock", "email": "justinmattock@gmail.com", "time": "Wed Apr 21 00:02:11 2010 -0700" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Fri Apr 23 10:10:23 2010 +1000" }, "message": "security: whitespace coding style fixes\n\nWhitespace coding style fixes.\n\nSigned-off-by: Justin P. Mattock \u003cjustinmattock@gmail.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "822cceec7248013821d655545ea45d1c6a9d15b3", "tree": "adce5f0c8efc18d16eb14002186556e783b93797", "parents": [ "eb8dae9607901fd3fc181325ff3f30dce8f574c5" ], "author": { "name": "Kees Cook", "email": "kees.cook@canonical.com", "time": "Thu Apr 22 12:19:17 2010 -0700" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Fri Apr 23 08:56:31 2010 +1000" }, "message": "mmap_min_addr check CAP_SYS_RAWIO only for write\n\nRedirecting directly to lsm, here\u0027s the patch discussed on lkml:\nhttp://lkml.org/lkml/2010/4/22/219\n\nThe mmap_min_addr value is useful information for an admin to see without\nbeing root (\"is my system vulnerable to kernel NULL pointer attacks?\") and\nits setting is trivially easy for an attacker to determine by calling\nmmap() in PAGE_SIZE increments starting at 0, so trying to keep it private\nhas no value.\n\nOnly require CAP_SYS_RAWIO if changing the value, not reading it.\n\nComment from Serge :\n\n Me, I like to write my passwords with light blue pen on dark blue\n paper, pasted on my window - if you\u0027re going to get my password, you\u0027re\n gonna get a headache.\n\nSigned-off-by: Kees Cook \u003ckees.cook@canonical.com\u003e\nAcked-by: Serge Hallyn \u003cserue@us.ibm.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "eb8dae9607901fd3fc181325ff3f30dce8f574c5", "tree": "1b6a0af7a1cd6b32a8cbb1512d91232895733bc5", "parents": [ "34c111f626e91adb23f90a91d2c7cd4dac9fa4b1" ], "author": { "name": "Eric Paris", "email": "eparis@redhat.com", "time": "Thu Apr 22 10:49:36 2010 -0400" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Fri Apr 23 08:47:53 2010 +1000" }, "message": "IMA: include the word IMA in printk messages\n\nAs an example IMA emits a warning when it can\u0027t find a TPM chip:\n\n\"No TPM chip found, activating TPM-bypass!\"\n\nThis patch prefaces that message with IMA so we know what subsystem is\nbypassing the TPM. Do this for all pr_info and pr_err messages.\n\nSigned-off-by: Eric Paris \u003ceparis@redhat.com\u003e\nAcked-by: Mimi Zohar \u003czohar@us.ibm.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "b338cc8207eae46640a8d534738fda7b5e48511d", "tree": "13ce72ed8e2a83ce127c3380ba0a7084591db3ab", "parents": [ "e134d200d57d43b171dcb0b55c178a1a0c7db14a" ], "author": { "name": "Dan Carpenter", "email": "error27@gmail.com", "time": "Thu Apr 22 12:05:35 2010 +0200" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Thu Apr 22 21:17:41 2010 +1000" }, "message": "security: testing the wrong variable in create_by_name()\n\nThere is a typo here. We should be testing \"*dentry\" instead of\n\"dentry\". If \"*dentry\" is an ERR_PTR, it gets dereferenced in either\nmkdir() or create() which would cause an OOPs.\n\nSigned-off-by: Dan Carpenter \u003cerror27@gmail.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "34c111f626e91adb23f90a91d2c7cd4dac9fa4b1", "tree": "3ca16731ab7e9b6cc1848dd28852503506dd97e1", "parents": [ "2f1506cd82e0725ba00c7146a9a9b47824a5edcf" ], "author": { "name": "Eric Paris", "email": "eparis@redhat.com", "time": "Tue Apr 20 10:21:36 2010 -0400" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Wed Apr 21 09:58:18 2010 +1000" }, "message": "IMA: drop the word integrity in the audit message\n\nintegrity_audit_msg() uses \"integrity:\" in the audit message. This\nviolates the (loosely defined) audit system requirements that everything be\na key\u003dvalue pair and it doesn\u0027t provide additional information. This can\nbe obviously gleaned from the message type. Just drop it.\n\nSigned-off-by: Eric Paris \u003ceparis@redhat.com\u003e\nAcked-by: Mimi Zohar \u003czohar@us.ibm.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "2f1506cd82e0725ba00c7146a9a9b47824a5edcf", "tree": "ac92c983ab10842e82e229c00b697566c6f20028", "parents": [ "7233e3ee22b1506723411fe437bcf69f678e8cdd" ], "author": { "name": "Eric Paris", "email": "eparis@redhat.com", "time": "Tue Apr 20 10:21:30 2010 -0400" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Wed Apr 21 09:58:17 2010 +1000" }, "message": "IMA: use audit_log_untrusted_string rather than %s\n\nConvert all of the places IMA calls audit_log_format with %s into\naudit_log_untrusted_string(). This is going to cause them all to get\nquoted, but it should make audit log injection harder.\n\nSigned-off-by: Eric Paris \u003ceparis@redhat.com\u003e\nAcked-by: Mimi Zohar \u003czohar@us.ibm.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "7233e3ee22b1506723411fe437bcf69f678e8cdd", "tree": "3d84d037890a9918ed02b89fde875fd6e6cd3b10", "parents": [ "28ef4002ec7b4be27f1110b83e255df8159c786a" ], "author": { "name": "Eric Paris", "email": "eparis@redhat.com", "time": "Tue Apr 20 10:21:24 2010 -0400" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Wed Apr 21 09:58:16 2010 +1000" }, "message": "IMA: handle comments in policy\n\nIMA policy load parser will reject any policies with a comment. This patch\nwill allow the parser to just ignore lines which start with a #. This is not\nvery robust. # can ONLY be used at the very beginning of a line. Inline\ncomments are not allowed.\n\nSigned-off-by: Eric Paris\nAcked-by: Mimi Zohar \u003czohar@us.ibm.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "28ef4002ec7b4be27f1110b83e255df8159c786a", "tree": "e7b32aeb36ecf2d76235aa7d436a7578738a98cc", "parents": [ "e9d393bf8660fbbbe00617015224342bac3ea6fc" ], "author": { "name": "Eric Paris", "email": "eparis@redhat.com", "time": "Tue Apr 20 10:21:18 2010 -0400" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Wed Apr 21 09:58:16 2010 +1000" }, "message": "IMA: handle whitespace better\n\nIMA parser will fail if whitespace is used in any way other than a single\nspace. Using a tab or even using 2 spaces in a row will result in a policy\nbeing rejected. This patch makes the kernel ignore whitespace a bit better.\n\nSigned-off-by: Eric Paris \u003ceparis@redhat.com\u003e\nAcked-by: Mimi Zohar \u003czohar@us.ibm.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "e9d393bf8660fbbbe00617015224342bac3ea6fc", "tree": "b127189c4b598774ef467b599bd8bfe08b3c71d4", "parents": [ "b9035b1fd7933c11e68dbbf49b530cc43bf1da65" ], "author": { "name": "Eric Paris", "email": "eparis@redhat.com", "time": "Tue Apr 20 10:21:13 2010 -0400" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Wed Apr 21 09:58:15 2010 +1000" }, "message": "IMA: reject policies with unknown entries\n\nCurrently the ima policy load code will print what it doesn\u0027t understand\nbut really I think it should reject any policy it doesn\u0027t understand. This\npatch makes it so!\n\nSigned-off-by: Eric Paris \u003ceparis@redhat.com\u003e\nAcked-by: Mimi Zohar \u003czohar@us.ibm.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "b9035b1fd7933c11e68dbbf49b530cc43bf1da65", "tree": "b2f6846ee36422db9a58705e902054d4dac1c438", "parents": [ "7b62e162129c3b28d51016774e0c7c57c710c452" ], "author": { "name": "Eric Paris", "email": "eparis@redhat.com", "time": "Tue Apr 20 10:21:07 2010 -0400" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Wed Apr 21 09:58:14 2010 +1000" }, "message": "IMA: set entry-\u003eaction to UNKNOWN rather than hard coding\n\nima_parse_rule currently sets entry-\u003eaction \u003d -1 and then later tests\nif (entry-\u003eaction \u003d\u003d UNKNOWN). It is true that UNKNOWN \u003d\u003d -1 but actually\nsetting it to UNKNOWN makes a lot more sense in case things change in the\nfuture.\n\nSigned-off-by: Eric Paris \u003ceparis@redhat.com\u003e\nAcked-by: Mimi Zohar \u003czohar@us.ibm.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "7b62e162129c3b28d51016774e0c7c57c710c452", "tree": "c6d18b649b70bb684b2a648a4a00956f2d1e62e2", "parents": [ "6ccd045630054c99ba1bb35673db12cfcf1eea58" ], "author": { "name": "Eric Paris", "email": "eparis@redhat.com", "time": "Tue Apr 20 10:21:01 2010 -0400" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Wed Apr 21 09:58:14 2010 +1000" }, "message": "IMA: do not allow the same rule to specify the same thing twice\n\nIMA will accept rules which specify things twice and will only pay\nattention to the last one. We should reject such rules.\n\nSigned-off-by: Eric Paris \u003ceparis@redhat.com\u003e\nAcked-by: Mimi Zohar \u003czohar@us.ibm.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "6ccd045630054c99ba1bb35673db12cfcf1eea58", "tree": "bce41e39722ae178807abe2213fd94e582842bae", "parents": [ "a200005038955057063fc8ea82129ebc785df41c" ], "author": { "name": "Eric Paris", "email": "eparis@redhat.com", "time": "Tue Apr 20 10:20:54 2010 -0400" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Wed Apr 21 09:58:13 2010 +1000" }, "message": "ima: handle multiple rules per write\n\nCurrently IMA will only accept one rule per write(). This patch allows IMA to\naccept writes which contain multiple rules but only processes one rule per\nwrite. \\n is used as the delimiter between rules. IMA will return a short\nwrite indicating that it only accepted up to the first \\n.\n\nThis allows simple userspace utilities like cat to be used to load an IMA\npolicy instead of needing a special userspace utility that understood \u0027one\nwrite per rule\u0027\n\nSigned-off-by: Eric Paris \u003ceparis@redhat.com\u003e\nAcked-by: Mimi Zohar \u003czohar@us.ibm.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "a200005038955057063fc8ea82129ebc785df41c", "tree": "712fdedac2d15290cdbe7b8adc02cce844fde9f0", "parents": [ "6f262d8e1acb7b1605b811700326163fa707d355" ], "author": { "name": "Eric Paris", "email": "eparis@redhat.com", "time": "Tue Apr 20 10:29:42 2010 -0400" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Wed Apr 21 08:58:49 2010 +1000" }, "message": "SELinux: return error codes on policy load failure\n\npolicy load failure always return EINVAL even if the failure was for some\nother reason (usually ENOMEM). This patch passes error codes back up the\nstack where they will make their way to userspace. This might help in\ndebugging future problems with policy load.\n\nSigned-off-by: Eric Paris \u003ceparis@redhat.com\u003e\nAcked-by: Stephen Smalley \u003csds@tycho.nsa.gov\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "6f262d8e1acb7b1605b811700326163fa707d355", "tree": "86a40905713bfb79c8a635fe9366b3d9ffdaa8b6", "parents": [ "05b90496f2f366b9d3eea468351888ddf010782a" ], "author": { "name": "wzt.wzt@gmail.com", "email": "wzt.wzt@gmail.com", "time": "Mon Apr 19 09:16:17 2010 +0800" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Tue Apr 20 08:47:11 2010 +1000" }, "message": "Security: Fix the comment of cap_file_mmap()\n\nIn the comment of cap_file_mmap(), replace mmap_min_addr to be dac_mmap_min_addr.\n\nSigned-off-by: Zhitong Wang \u003czhitong.wangzt@alibaba-inc.com\u003e\nAcked-by: Eric Paris \u003ceparis@redhat.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "6c9ff1013b7a21099da838eeef7c3f23ee347957", "tree": "38fb14055ae1dcae110f0f77a959d9584e2466a0", "parents": [ "2ba3abd8186f24c7fb418927025b4e2120e3a362" ], "author": { "name": "Stephen Smalley", "email": "sds@tycho.nsa.gov", "time": "Mon Mar 15 10:42:11 2010 -0400" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Thu Apr 15 09:26:01 2010 +1000" }, "message": "SELinux: Reduce max avtab size to avoid page allocation failures\n\nReduce MAX_AVTAB_HASH_BITS so that the avtab allocation is an order 2\nallocation rather than an order 4 allocation on x86_64. This\naddresses reports of page allocation failures:\nhttp://marc.info/?l\u003dselinux\u0026m\u003d126757230625867\u0026w\u003d2\nhttps://bugzilla.redhat.com/show_bug.cgi?id\u003d570433\n\nReported-by: Russell Coker \u003crussell@coker.com.au\u003e\nSigned-off-by: Stephen D. Smalley \u003csds@tycho.nsa.gov\u003e\nAcked-by: Eric Paris \u003ceparis@redhat.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "05b90496f2f366b9d3eea468351888ddf010782a", "tree": "5c6b3c5167d4577043e74bb8590a6a4ed48c0bdf", "parents": [ "3011a344cdcda34cdbcb40c3fb3d1a6e89954abb" ], "author": { "name": "Eric Paris", "email": "eparis@redhat.com", "time": "Wed Apr 07 15:15:25 2010 -0400" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Mon Apr 12 12:19:19 2010 +1000" }, "message": "security: remove dead hook acct\n\nUnused hook. Remove.\n\nSigned-off-by: Eric Paris \u003ceparis@redhat.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "3011a344cdcda34cdbcb40c3fb3d1a6e89954abb", "tree": "43db9abc5f96cd8ec31a4a24f0d52dae76680a1c", "parents": [ "6307f8fee295b364716d28686df6e69c2fee751a" ], "author": { "name": "Eric Paris", "email": "eparis@redhat.com", "time": "Wed Apr 07 15:15:19 2010 -0400" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Mon Apr 12 12:19:18 2010 +1000" }, "message": "security: remove dead hook key_session_to_parent\n\nUnused hook. Remove.\n\nSigned-off-by: Eric Paris \u003ceparis@redhat.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "6307f8fee295b364716d28686df6e69c2fee751a", "tree": "da2d51edcca32dd71c2a3a6f74bf56e88a60293f", "parents": [ "06ad187e280e725e356c62c3a30ddcd01564f8be" ], "author": { "name": "Eric Paris", "email": "eparis@redhat.com", "time": "Wed Apr 07 15:15:13 2010 -0400" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Mon Apr 12 12:19:18 2010 +1000" }, "message": "security: remove dead hook task_setgroups\n\nUnused hook. Remove.\n\nSigned-off-by: Eric Paris \u003ceparis@redhat.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "06ad187e280e725e356c62c3a30ddcd01564f8be", "tree": "5406ae3382d62971ed8b981533075657aa18d16b", "parents": [ "43ed8c3b4573d5f5cd314937fee63b4ab046ac5f" ], "author": { "name": "Eric Paris", "email": "eparis@redhat.com", "time": "Wed Apr 07 15:15:08 2010 -0400" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Mon Apr 12 12:19:17 2010 +1000" }, "message": "security: remove dead hook task_setgid\n\nUnused hook. Remove.\n\nSigned-off-by: Eric Paris \u003ceparis@redhat.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "43ed8c3b4573d5f5cd314937fee63b4ab046ac5f", "tree": "bb3f094daa6f0c3f49c4c47fb5ac1c80a26e9698", "parents": [ "0968d0060a3c885e53d453380266c7792a55d302" ], "author": { "name": "Eric Paris", "email": "eparis@redhat.com", "time": "Wed Apr 07 15:15:02 2010 -0400" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Mon Apr 12 12:19:16 2010 +1000" }, "message": "security: remove dead hook task_setuid\n\nUnused hook. Remove.\n\nSigned-off-by: Eric Paris \u003ceparis@redhat.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "0968d0060a3c885e53d453380266c7792a55d302", "tree": "b8511f3bf4aa4cfb21421ab5dde8346f0119dbe3", "parents": [ "9d5ed77dadc66a72b40419c91df942adfa55a102" ], "author": { "name": "Eric Paris", "email": "eparis@redhat.com", "time": "Wed Apr 07 15:14:56 2010 -0400" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Mon Apr 12 12:19:15 2010 +1000" }, "message": "security: remove dead hook cred_commit\n\nUnused hook. Remove.\n\nSigned-off-by: Eric Paris \u003ceparis@redhat.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "9d5ed77dadc66a72b40419c91df942adfa55a102", "tree": "eb55062edf757a7b7fe707adda7178181f8a4427", "parents": [ "91a9420f5826db482030c21eca8c507271bbc441" ], "author": { "name": "Eric Paris", "email": "eparis@redhat.com", "time": "Wed Apr 07 15:14:50 2010 -0400" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Mon Apr 12 12:19:15 2010 +1000" }, "message": "security: remove dead hook inode_delete\n\nUnused hook. Remove.\n\nSigned-off-by: Eric Paris \u003ceparis@redhat.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "91a9420f5826db482030c21eca8c507271bbc441", "tree": "e5e400622884c8c0cd373c51ee4a3822c853aaa5", "parents": [ "3db291017753e539af64c8bab373785f34e43ed2" ], "author": { "name": "Eric Paris", "email": "eparis@redhat.com", "time": "Wed Apr 07 15:14:45 2010 -0400" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Mon Apr 12 12:18:32 2010 +1000" }, "message": "security: remove dead hook sb_post_pivotroot\n\nUnused hook. Remove.\n\nSigned-off-by: Eric Paris \u003ceparis@redhat.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "3db291017753e539af64c8bab373785f34e43ed2", "tree": "e6759c7dea1774465b6bf2860a0c2f283c0b34fa", "parents": [ "82dab10453d65ad9ca551de5b8925673ca05c7e9" ], "author": { "name": "Eric Paris", "email": "eparis@redhat.com", "time": "Wed Apr 07 15:14:39 2010 -0400" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Mon Apr 12 12:18:31 2010 +1000" }, "message": "security: remove dead hook sb_post_addmount\n\nUnused hook. Remove.\n\nSigned-off-by: Eric Paris \u003ceparis@redhat.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "82dab10453d65ad9ca551de5b8925673ca05c7e9", "tree": "942bf24adb67b534fa3080dbbfa1ffe33b7c16bd", "parents": [ "4b61d12c84293ac061909f27f567c1905e4d90e3" ], "author": { "name": "Eric Paris", "email": "eparis@redhat.com", "time": "Wed Apr 07 15:14:33 2010 -0400" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Mon Apr 12 12:18:30 2010 +1000" }, "message": "security: remove dead hook sb_post_remount\n\nUnused hook. Remove.\n\nSigned-off-by: Eric Paris \u003ceparis@redhat.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "4b61d12c84293ac061909f27f567c1905e4d90e3", "tree": "dfab10311d1b6be7667600307c72379c6779d32d", "parents": [ "231923bd0e06cba69f7c2028f4a68602b8d22160" ], "author": { "name": "Eric Paris", "email": "eparis@redhat.com", "time": "Wed Apr 07 15:14:27 2010 -0400" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Mon Apr 12 12:18:30 2010 +1000" }, "message": "security: remove dead hook sb_umount_busy\n\nUnused hook. Remove.\n\nSigned-off-by: Eric Paris \u003ceparis@redhat.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "231923bd0e06cba69f7c2028f4a68602b8d22160", "tree": "91e3864e87f3de86de8ad0ed55a829cbdf797545", "parents": [ "353633100d8d684ac0acae4ce93fb833f92881f4" ], "author": { "name": "Eric Paris", "email": "eparis@redhat.com", "time": "Wed Apr 07 15:14:21 2010 -0400" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Mon Apr 12 12:18:29 2010 +1000" }, "message": "security: remove dead hook sb_umount_close\n\nUnused hook. Remove.\n\nSigned-off-by: Eric Paris \u003ceparis@redhat.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "353633100d8d684ac0acae4ce93fb833f92881f4", "tree": "d45effdd09f5ef2f2c44bbcfcca8751cc5cdbd7d", "parents": [ "c1a7368a6f0b18b10fdec87972da680ebdf03794" ], "author": { "name": "Eric Paris", "email": "eparis@redhat.com", "time": "Wed Apr 07 15:14:15 2010 -0400" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Mon Apr 12 12:18:28 2010 +1000" }, "message": "security: remove sb_check_sb hooks\n\nUnused hook. Remove it.\n\nSigned-off-by: Eric Paris \u003ceparis@redhat.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "c1a7368a6f0b18b10fdec87972da680ebdf03794", "tree": "17a8d306fe2332093e0e11e5fbb03199df011037", "parents": [ "e2902eb79fdea3c3bf679a8f15f3432b393cb2c0" ], "author": { "name": "wzt.wzt@gmail.com", "email": "wzt.wzt@gmail.com", "time": "Fri Apr 09 19:30:29 2010 +0800" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Fri Apr 09 15:13:48 2010 +1000" }, "message": "Security: Fix coding style in security/\n\nFix coding style in security/\n\nSigned-off-by: Zhitong Wang \u003czhitong.wangzt@alibaba-inc.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "e2902eb79fdea3c3bf679a8f15f3432b393cb2c0", "tree": "ce72f1fa2838313fb724ac3b9aa98e553f1fffd0", "parents": [ "dd3e7836bfe093fc611f715c323cf53be9252b27" ], "author": { "name": "Eric Paris", "email": "eparis@redhat.com", "time": "Wed Apr 07 15:10:35 2010 -0400" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Thu Apr 08 09:20:21 2010 +1000" }, "message": "SMACK: remove dead cred_commit hook\n\nThis is an unused hook in SMACK so remove it.\n\nSigned-off-by: Eric Paris \u003ceparis@redhat.com\u003e\nAcked-by: Casey Schaufler \u003ccasey@schaufler-ca.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "dd3e7836bfe093fc611f715c323cf53be9252b27", "tree": "5e789062f3b74ed7c0ec370785eba234ee1ff472", "parents": [ "d25d6fa1a95f465ff1ec4458ca15e30b2c8dffec" ], "author": { "name": "Eric Paris", "email": "eparis@redhat.com", "time": "Wed Apr 07 15:08:46 2010 -0400" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Thu Apr 08 09:17:02 2010 +1000" }, "message": "selinux: always call sk_security_struct sksec\n\ntrying to grep everything that messes with a sk_security_struct isn\u0027t easy\nsince we don\u0027t always call it sksec. Just rename everything sksec.\n\nSigned-off-by: Eric Paris \u003ceparis@redhat.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "d25d6fa1a95f465ff1ec4458ca15e30b2c8dffec", "tree": "7362b182dedd825fc762ef7706830837e42943af", "parents": [ "225a9be24d799aa16d543c31fb09f0c9ed1d9caa", "2eaa9cfdf33b8d7fb7aff27792192e0019ae8fc6" ], "author": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Wed Mar 31 08:39:27 2010 +1100" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Wed Mar 31 08:39:27 2010 +1100" }, "message": "Merge branch \u0027master\u0027 into next\n" }, { "commit": "5a0e3ad6af8660be21ca98a971cd00f331318c05", "tree": "5bfb7be11a03176a87296a43ac6647975c00a1d1", "parents": [ "ed391f4ebf8f701d3566423ce8f17e614cde9806" ], "author": { "name": "Tejun Heo", "email": "tj@kernel.org", "time": "Wed Mar 24 17:04:11 2010 +0900" }, "committer": { "name": "Tejun Heo", "email": "tj@kernel.org", "time": "Tue Mar 30 22:02:32 2010 +0900" }, "message": "include cleanup: Update gfp.h and slab.h includes to prepare for breaking implicit slab.h inclusion from percpu.h\n\npercpu.h is included by sched.h and module.h and thus ends up being\nincluded when building most .c files. percpu.h includes slab.h which\nin turn includes gfp.h making everything defined by the two files\nuniversally available and complicating inclusion dependencies.\n\npercpu.h -\u003e slab.h dependency is about to be removed. Prepare for\nthis change by updating users of gfp and slab facilities include those\nheaders directly instead of assuming availability. As this conversion\nneeds to touch large number of source files, the following script is\nused as the basis of conversion.\n\n http://userweb.kernel.org/~tj/misc/slabh-sweep.py\n\nThe script does the followings.\n\n* Scan files for gfp and slab usages and update includes such that\n only the necessary includes are there. ie. if only gfp is used,\n gfp.h, if slab is used, slab.h.\n\n* When the script inserts a new include, it looks at the include\n blocks and try to put the new include such that its order conforms\n to its surrounding. It\u0027s put in the include block which contains\n core kernel includes, in the same order that the rest are ordered -\n alphabetical, Christmas tree, rev-Xmas-tree or at the end if there\n doesn\u0027t seem to be any matching order.\n\n* If the script can\u0027t find a place to put a new include (mostly\n because the file doesn\u0027t have fitting include block), it prints out\n an error message indicating which .h file needs to be added to the\n file.\n\nThe conversion was done in the following steps.\n\n1. The initial automatic conversion of all .c files updated slightly\n over 4000 files, deleting around 700 includes and adding ~480 gfp.h\n and ~3000 slab.h inclusions. The script emitted errors for ~400\n files.\n\n2. Each error was manually checked. Some didn\u0027t need the inclusion,\n some needed manual addition while adding it to implementation .h or\n embedding .c file was more appropriate for others. This step added\n inclusions to around 150 files.\n\n3. The script was run again and the output was compared to the edits\n from #2 to make sure no file was left behind.\n\n4. Several build tests were done and a couple of problems were fixed.\n e.g. lib/decompress_*.c used malloc/free() wrappers around slab\n APIs requiring slab.h to be added manually.\n\n5. The script was run on all .h files but without automatically\n editing them as sprinkling gfp.h and slab.h inclusions around .h\n files could easily lead to inclusion dependency hell. Most gfp.h\n inclusion directives were ignored as stuff from gfp.h was usually\n wildly available and often used in preprocessor macros. Each\n slab.h inclusion directive was examined and added manually as\n necessary.\n\n6. percpu.h was updated not to include slab.h.\n\n7. Build test were done on the following configurations and failures\n were fixed. CONFIG_GCOV_KERNEL was turned off for all tests (as my\n distributed build env didn\u0027t work with gcov compiles) and a few\n more options had to be turned off depending on archs to make things\n build (like ipr on powerpc/64 which failed due to missing writeq).\n\n * x86 and x86_64 UP and SMP allmodconfig and a custom test config.\n * powerpc and powerpc64 SMP allmodconfig\n * sparc and sparc64 SMP allmodconfig\n * ia64 SMP allmodconfig\n * s390 SMP allmodconfig\n * alpha SMP allmodconfig\n * um on x86_64 SMP allmodconfig\n\n8. percpu.h modifications were reverted so that it could be applied as\n a separate patch and serve as bisection point.\n\nGiven the fact that I had only a couple of failures from tests on step\n6, I\u0027m fairly confident about the coverage of this conversion patch.\nIf there is a breakage, it\u0027s likely to be something in one of the arch\nheaders which should be easily discoverable easily on most builds of\nthe specific arch.\n\nSigned-off-by: Tejun Heo \u003ctj@kernel.org\u003e\nGuess-its-ok-by: Christoph Lameter \u003ccl@linux-foundation.org\u003e\nCc: Ingo Molnar \u003cmingo@redhat.com\u003e\nCc: Lee Schermerhorn \u003cLee.Schermerhorn@hp.com\u003e\n" }, { "commit": "77c160e7798b4141a0705c734397a9236bb0e726", "tree": "e163a4f3fac4fa6f6419d95bcdf78e842d510089", "parents": [ "a19c5bbefb37ebe22fb42bd3861a8d3b2a2652a1" ], "author": { "name": "Stephen Smalley", "email": "sds@tycho.nsa.gov", "time": "Mon Mar 15 10:42:11 2010 -0400" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Tue Mar 16 08:31:02 2010 +1100" }, "message": "SELinux: Reduce max avtab size to avoid page allocation failures\n\nReduce MAX_AVTAB_HASH_BITS so that the avtab allocation is an order 2\nallocation rather than an order 4 allocation on x86_64. This\naddresses reports of page allocation failures:\nhttp://marc.info/?l\u003dselinux\u0026m\u003d126757230625867\u0026w\u003d2\nhttps://bugzilla.redhat.com/show_bug.cgi?id\u003d570433\n\nReported-by: Russell Coker \u003crussell@coker.com.au\u003e\nSigned-off-by: Stephen D. Smalley \u003csds@tycho.nsa.gov\u003e\nAcked-by: Eric Paris \u003ceparis@redhat.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "181427a7e01beab76c789414334375839f026128", "tree": "3a50a93331b536b80d9c393a034489c9678d8a13", "parents": [ "bca14dd14f3b0c5e3e2d1d314679f85b67871365" ], "author": { "name": "Dan Carpenter", "email": "error27@gmail.com", "time": "Sat Mar 13 14:14:22 2010 +0300" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Mon Mar 15 07:51:29 2010 +1100" }, "message": "tomoyo: fix potential use after free\n\nThe original code returns a freed pointer. This function is expected to\nreturn NULL on errors.\n\nSigned-off-by: Dan Carpenter \u003cerror27@gmail.com\u003e\nAcked-by: Tetsuo Handa \u003cpenguin-kernel@I-love.SAKURA.ne.jp\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "a19c5bbefb37ebe22fb42bd3861a8d3b2a2652a1", "tree": "4850853aca5c1ac564af02cd3240748579f32ba8", "parents": [ "512ea3bc30c0e052a961e1abce8e783f3e28c92a" ], "author": { "name": "H Hartley Sweeten", "email": "hartleys@visionengravers.com", "time": "Tue Mar 09 17:59:59 2010 -0600" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Wed Mar 10 15:59:54 2010 +1100" }, "message": "security/ima: replace gcc specific __FUNCTION__ with __func__\n\nAs noted by checkpatch.pl, __func__ should be used instead of gcc\nspecific __FUNCTION__.\n\nSigned-off-by: H Hartley Sweeten \u003chsweeten@visionengravers.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "512ea3bc30c0e052a961e1abce8e783f3e28c92a", "tree": "2e50e5bd7d257ec010d9c9d1af87bd61fccead6c", "parents": [ "c43a7523470dc2d9947fa114a0b54317975d4c04" ], "author": { "name": "Chihau Chau", "email": "chihau@gmail.com", "time": "Mon Mar 08 20:11:34 2010 -0300" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Wed Mar 10 08:46:15 2010 +1100" }, "message": "Security: key: keyring: fix some code style issues\n\nThis fixes to include \u003clinux/uaccess.h\u003e instead \u003casm/uaccess.h\u003e and some\ncode style issues like to put a else sentence below close brace \u0027}\u0027 and\nto replace a tab instead of some space characters.\n\nSigned-off-by: Chihau Chau \u003cchihau@gmail.com\u003e\nAcked-by: David Howells \u003cdhowells@redhat.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "c43a7523470dc2d9947fa114a0b54317975d4c04", "tree": "30a72ed1e9079f19b814263197761820f57c39ce", "parents": [ "eaa5eec739637f32f8733d528ff0b94fd62b1214", "634a539e16bd7a1ba31c3f832baa725565cc9f96" ], "author": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Tue Mar 09 12:46:47 2010 +1100" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Tue Mar 09 12:46:47 2010 +1100" }, "message": "Merge branch \u0027next-queue\u0027 into next\n" }, { "commit": "318ae2edc3b29216abd8a2510f3f80b764f06858", "tree": "ce595adde342f57f379d277b25e4dd206988a052", "parents": [ "25cf84cf377c0aae5dbcf937ea89bc7893db5176", "3e58974027b04e84f68b964ef368a6cd758e2f84" ], "author": { "name": "Jiri Kosina", "email": "jkosina@suse.cz", "time": "Mon Mar 08 16:55:37 2010 +0100" }, "committer": { "name": "Jiri Kosina", "email": "jkosina@suse.cz", "time": "Mon Mar 08 16:55:37 2010 +0100" }, "message": "Merge branch \u0027for-next\u0027 into for-linus\n\nConflicts:\n\tDocumentation/filesystems/proc.txt\n\tarch/arm/mach-u300/include/mach/debug-macro.S\n\tdrivers/net/qlge/qlge_ethtool.c\n\tdrivers/net/qlge/qlge_main.c\n\tdrivers/net/typhoon.c\n" }, { "commit": "634a539e16bd7a1ba31c3f832baa725565cc9f96", "tree": "cdc26f167c3a2764fecdf3427b2303d28bf05671", "parents": [ "c8563473c1259f5686ceb918c548c80132089f79" ], "author": { "name": "Stephen Hemminger", "email": "shemminger@vyatta.com", "time": "Thu Mar 04 21:59:03 2010 -0800" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Mon Mar 08 09:33:53 2010 +1100" }, "message": "selinux: const strings in tables\n\nSeveral places strings tables are used that should be declared\nconst.\n\nSigned-off-by: Stephen Hemminger \u003cshemminger@vyatta.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "c8563473c1259f5686ceb918c548c80132089f79", "tree": "45bd8a0cf2fcdbe388acdd2526897bbc59007436", "parents": [ "06b9b72df43800b9ae4e77202c8bf5848c9d6998" ], "author": { "name": "wzt.wzt@gmail.com", "email": "wzt.wzt@gmail.com", "time": "Thu Mar 04 21:26:23 2010 +0800" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Fri Mar 05 09:49:02 2010 +1100" }, "message": "Security: Fix some coding styles in security/keys/keyring.c\n\nFix some coding styles in security/keys/keyring.c\n\nSigned-off-by: Zhitong Wang \u003czhitong.wangzt@alibaba-inc.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "0f2cc4ecd81dc1917a041dc93db0ada28f8356fa", "tree": "f128b50f48f50f0cda6d2b20b53e9ad6e2dfded3", "parents": [ "1fae4cfb97302289bb5df6a8195eb28385d0b002", "9643f5d94aadd47a5fa9754fb60f2c957de05903" ], "author": { "name": "Linus Torvalds", "email": "torvalds@linux-foundation.org", "time": "Thu Mar 04 08:15:33 2010 -0800" }, "committer": { "name": "Linus Torvalds", "email": "torvalds@linux-foundation.org", "time": "Thu Mar 04 08:15:33 2010 -0800" }, "message": "Merge branch \u0027for-linus\u0027 of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs-2.6\n\n* \u0027for-linus\u0027 of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs-2.6: (52 commits)\n init: Open /dev/console from rootfs\n mqueue: fix typo \"failues\" -\u003e \"failures\"\n mqueue: only set error codes if they are really necessary\n mqueue: simplify do_open() error handling\n mqueue: apply mathematics distributivity on mq_bytes calculation\n mqueue: remove unneeded info-\u003emessages initialization\n mqueue: fix mq_open() file descriptor leak on user-space processes\n fix race in d_splice_alias()\n set S_DEAD on unlink() and non-directory rename() victims\n vfs: add NOFOLLOW flag to umount(2)\n get rid of -\u003emnt_parent in tomoyo/realpath\n hppfs can use existing proc_mnt, no need for do_kern_mount() in there\n Mirror MS_KERNMOUNT in -\u003emnt_flags\n get rid of useless vfsmount_lock use in put_mnt_ns()\n Take vfsmount_lock to fs/internal.h\n get rid of insanity with namespace roots in tomoyo\n take check for new events in namespace (guts of mounts_poll()) to namespace.c\n Don\u0027t mess with generic_permission() under -\u003ed_lock in hpfs\n sanitize const/signedness for udf\n nilfs: sanitize const/signedness in dealing with -\u003ed_name.name\n ...\n\nFix up fairly trivial (famous last words...) conflicts in\ndrivers/infiniband/core/uverbs_main.c and security/tomoyo/realpath.c\n" }, { "commit": "06b9b72df43800b9ae4e77202c8bf5848c9d6998", "tree": "8618aedcf68de0193924b8e6c44d010c382c85b9", "parents": [ "dbba541f9d9bd2c200041bc1b37c59dbaf9beb75" ], "author": { "name": "wzt.wzt@gmail.com", "email": "wzt.wzt@gmail.com", "time": "Wed Mar 03 21:29:37 2010 +0800" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Thu Mar 04 08:51:06 2010 +1100" }, "message": "Selinux: Remove unused headers skbuff.h in selinux/nlmsgtab.c\n\nskbuff.h is already included by netlink.h, so remove it.\n\nSigned-off-by: Zhitong Wang \u003czhitong.wangzt@alibaba-inc.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "440b3c6c160f7d0a985f24ad1f4c24e00ee2d936", "tree": "0dd3dbc7b86feb50cac302a6681b886ee1a11a08", "parents": [ "0ceeca5a08abb1d880f0cc0ea812ad14932070e0" ], "author": { "name": "Al Viro", "email": "viro@zeniv.linux.org.uk", "time": "Fri Feb 05 09:37:21 2010 -0500" }, "committer": { "name": "Al Viro", "email": "viro@zeniv.linux.org.uk", "time": "Wed Mar 03 14:08:00 2010 -0500" }, "message": "get rid of -\u003emnt_parent in tomoyo/realpath\n\nSigned-off-by: Al Viro \u003cviro@zeniv.linux.org.uk\u003e\n" }, { "commit": "37afdc7960ab493f827b5df9dc1b71b63b44331c", "tree": "6c9b79d2cf73de3c5d371447ded129e3a32167e5", "parents": [ "9f5596af44514f99e3a654a4f7cb813354b9e516" ], "author": { "name": "Al Viro", "email": "viro@zeniv.linux.org.uk", "time": "Fri Feb 05 01:41:33 2010 -0500" }, "committer": { "name": "Al Viro", "email": "viro@zeniv.linux.org.uk", "time": "Wed Mar 03 14:07:59 2010 -0500" }, "message": "get rid of insanity with namespace roots in tomoyo\n\npassing *any* namespace root to __d_path() as root is equivalent\nto just passing it {NULL, NULL}; no need to bother with finding\nthe root of our namespace in there.\n\nSigned-off-by: Al Viro \u003cviro@zeniv.linux.org.uk\u003e\n" }, { "commit": "de27a5bf9caef3f1fca1f315aa58eee54fbf929a", "tree": "807ac88de94235afb40117b27d4400bd32573cea", "parents": [ "f694869709cc39a5fbde21aa40f22999ddad0e6e" ], "author": { "name": "Al Viro", "email": "viro@zeniv.linux.org.uk", "time": "Sat Jan 30 15:27:27 2010 -0500" }, "committer": { "name": "Al Viro", "email": "viro@zeniv.linux.org.uk", "time": "Wed Mar 03 14:07:56 2010 -0500" }, "message": "fix mnt_mountpoint abuse in smack\n\n(mnt,mnt_mountpoint) pair is conceptually wrong; if you want\nto use it for generating pathname and for nothing else *and*\nif you know that vfsmount tree is unchanging, you can get\naway with that, but the right solution for that is (mnt,mnt_root).\n\nSigned-off-by: Al Viro \u003cviro@zeniv.linux.org.uk\u003e\n" }, { "commit": "dbba541f9d9bd2c200041bc1b37c59dbaf9beb75", "tree": "1f359b8f354759296d625f783ea32f4de9bfb399", "parents": [ "31637b55b09753de9d5e24afc3a1d7fbdb2108d8" ], "author": { "name": "wzt.wzt@gmail.com", "email": "wzt.wzt@gmail.com", "time": "Tue Mar 02 17:03:43 2010 +0800" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Wed Mar 03 09:22:16 2010 +1100" }, "message": "Selinux: Remove unused headers slab.h in selinux/ss/symtab.c\n\nslab.h is unused in symtab.c, so remove it.\n\nSigned-off-by: Zhitong Wang \u003czhitong.wangzt@alibaba-inc.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "31637b55b09753de9d5e24afc3a1d7fbdb2108d8", "tree": "92ab84b8a40aad0d1ec3f423a82033ebc8dce10a", "parents": [ "b380de9e54ec354ccac55fd9a611ffe28b4daa76" ], "author": { "name": "wzt.wzt@gmail.com", "email": "wzt.wzt@gmail.com", "time": "Tue Mar 02 15:08:58 2010 +0800" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Wed Mar 03 09:20:57 2010 +1100" }, "message": "Selinux: Remove unused headers list.h in selinux/netlink.c\n\nlist.h is unused in netlink.c, so remove it.\n\nSigned-off-by: Zhitong Wang \u003czhitong.wangzt@alibaba-inc.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "b380de9e54ec354ccac55fd9a611ffe28b4daa76", "tree": "ea172565aa4ffb6395a6137582e8be63d657d6ce", "parents": [ "c1e992b99603a84d7debb188542b64f2d9232c07" ], "author": { "name": "Tetsuo Handa", "email": "penguin-kernel@I-love.SAKURA.ne.jp", "time": "Mon Mar 01 19:47:04 2010 +0900" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Wed Mar 03 09:18:42 2010 +1100" }, "message": "TOMOYO: Remove unused variables.\n\nVariable \"atmark\" is currently unused.\n\nSigned-off-by: Tetsuo Handa \u003cpenguin-kernel@I-love.SAKURA.ne.jp\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "c1e992b99603a84d7debb188542b64f2d9232c07", "tree": "786b1ec0c06c3d5a9df7bc3123c881ccae083d65", "parents": [ "3a5b27bf6f29574d667230c7e76e4b83fe3014e0" ], "author": { "name": "wzt.wzt@gmail.com", "email": "wzt.wzt@gmail.com", "time": "Fri Feb 26 22:49:55 2010 +0800" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Wed Mar 03 09:15:28 2010 +1100" }, "message": "Security: Add __init to register_security to disable load a security module on runtime\n\nLSM framework doesn\u0027t allow to load a security module on runtime, it must be loaded on boot time.\nbut in security/security.c:\nint register_security(struct security_operations *ops)\n{\n ...\n if (security_ops !\u003d \u0026default_security_ops)\n return -EAGAIN;\n ...\n}\nif security_ops \u003d\u003d \u0026default_security_ops, it can access to register a security module. If selinux is enabled,\nother security modules can\u0027t register, but if selinux is disabled on boot time, the security_ops was set to\ndefault_security_ops, LSM allows other kernel modules to use register_security() to register a not trust\nsecurity module. For example:\n\ndisable selinux on boot time(selinux\u003d0).\n\n#include \u003clinux/kernel.h\u003e\n#include \u003clinux/module.h\u003e\n#include \u003clinux/init.h\u003e\n#include \u003clinux/version.h\u003e\n#include \u003clinux/string.h\u003e\n#include \u003clinux/list.h\u003e\n#include \u003clinux/security.h\u003e\n\nMODULE_LICENSE(\"GPL\");\nMODULE_AUTHOR(\"wzt\");\n\nextern int register_security(struct security_operations *ops);\nint (*new_register_security)(struct security_operations *ops);\n\nint rootkit_bprm_check_security(struct linux_binprm *bprm)\n{\n return 0;\n}\n\nstruct security_operations rootkit_ops \u003d {\n .bprm_check_security \u003d rootkit_bprm_check_security,\n};\n\nstatic int rootkit_init(void)\n{\n printk(\"Load LSM rootkit module.\\n\");\n\n\t/* cat /proc/kallsyms | grep register_security */\n new_register_security \u003d 0xc0756689;\n if (new_register_security(\u0026rootkit_ops)) {\n printk(\"Can\u0027t register rootkit module.\\n\");\n return 0;\n }\n printk(\"Register rootkit module ok.\\n\");\n\n return 0;\n}\n\nstatic void rootkit_exit(void)\n{\n printk(\"Unload LSM rootkit module.\\n\");\n}\n\nmodule_init(rootkit_init);\nmodule_exit(rootkit_exit);\n\nSigned-off-by: Zhitong Wang \u003czhitong.wangzt@alibaba-inc.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "b4ccebdd37ff70d349321a198f416ba737a5e833", "tree": "275d717070346722c3aacd8355fb4f743216e03b", "parents": [ "30ff056c42c665b9ea535d8515890857ae382540", "ef57471a73b67a7b65fd8708fd55c77cb7c619af" ], "author": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Mon Mar 01 09:36:31 2010 +1100" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Mon Mar 01 09:36:31 2010 +1100" }, "message": "Merge branch \u0027next\u0027 into for-linus\n" }, { "commit": "642c4c75a765d7a3244ab39c8e6fb09be21eca5b", "tree": "ce0be9b476f362835d3a3d6e4fd32801cd15c9fe", "parents": [ "f91b22c35f6b0ae06ec5b67922eca1999c3b6e0a", "71da81324c83ef65bb196c7f874ac1c6996d8287" ], "author": { "name": "Linus Torvalds", "email": "torvalds@linux-foundation.org", "time": "Sun Feb 28 10:13:16 2010 -0800" }, "committer": { "name": "Linus Torvalds", "email": "torvalds@linux-foundation.org", "time": "Sun Feb 28 10:13:16 2010 -0800" }, "message": "Merge branch \u0027core-rcu-for-linus\u0027 of git://git.kernel.org/pub/scm/linux/kernel/git/tip/linux-2.6-tip\n\n* \u0027core-rcu-for-linus\u0027 of git://git.kernel.org/pub/scm/linux/kernel/git/tip/linux-2.6-tip: (44 commits)\n rcu: Fix accelerated GPs for last non-dynticked CPU\n rcu: Make non-RCU_PROVE_LOCKING rcu_read_lock_sched_held() understand boot\n rcu: Fix accelerated grace periods for last non-dynticked CPU\n rcu: Export rcu_scheduler_active\n rcu: Make rcu_read_lock_sched_held() take boot time into account\n rcu: Make lockdep_rcu_dereference() message less alarmist\n sched, cgroups: Fix module export\n rcu: Add RCU_CPU_STALL_VERBOSE to dump detailed per-task information\n rcu: Fix rcutorture mod_timer argument to delay one jiffy\n rcu: Fix deadlock in TREE_PREEMPT_RCU CPU stall detection\n rcu: Convert to raw_spinlocks\n rcu: Stop overflowing signed integers\n rcu: Use canonical URL for Mathieu\u0027s dissertation\n rcu: Accelerate grace period if last non-dynticked CPU\n rcu: Fix citation of Mathieu\u0027s dissertation\n rcu: Documentation update for CONFIG_PROVE_RCU\n security: Apply lockdep-based checking to rcu_dereference() uses\n idr: Apply lockdep-based diagnostics to rcu_dereference() uses\n radix-tree: Disable RCU lockdep checking in radix tree\n vfs: Abstract rcu_dereference_check for files-fdtable use\n ...\n" }, { "commit": "ef57471a73b67a7b65fd8708fd55c77cb7c619af", "tree": "0cb8f8dea197999d79bf69d192719be69cd36244", "parents": [ "1fcdc7c527010b144d3951f9ce25faedf264933c" ], "author": { "name": "David Howells", "email": "dhowells@redhat.com", "time": "Fri Feb 26 01:56:16 2010 +0000" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Fri Feb 26 14:54:23 2010 +1100" }, "message": "SELinux: Make selinux_kernel_create_files_as() shouldn\u0027t just always return 0\n\nMake selinux_kernel_create_files_as() return an error when it gets one, rather\nthan unconditionally returning 0.\n\nWithout this, cachefiles doesn\u0027t return an error if the SELinux policy doesn\u0027t\nlet it create files with the label of the directory at the base of the cache.\n\nSigned-off-by: David Howells \u003cdhowells@redhat.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "1fcdc7c527010b144d3951f9ce25faedf264933c", "tree": "5ab23281aae1de41079f2b4962fe17ab6d59be6d", "parents": [ "189b3b1c89761054fee3438f063d7f257306e2d8" ], "author": { "name": "Tetsuo Handa", "email": "penguin-kernel@i-love.sakura.ne.jp", "time": "Thu Feb 25 17:19:25 2010 +0900" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Fri Feb 26 09:20:11 2010 +1100" }, "message": "TOMOYO: Protect find_task_by_vpid() with RCU.\n\nHolding tasklist_lock is no longer sufficient for find_task_by_vpid().\nExplicit rcu_read_lock() is required.\n\nSigned-off-by: Tetsuo Handa \u003cpenguin-kernel@I-love.SAKURA.ne.jp\u003e\n--\n security/tomoyo/common.c | 4 ++++\n 1 file changed, 4 insertions(+)\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "e7b0a61b7929632d36cf052d9e2820ef0a9c1bfe", "tree": "69dbe6f03abc5a9ef0dea3a2c28921cebcc59a08", "parents": [ "96be753af91fc9d582450a84722f6a6721d218ad" ], "author": { "name": "Paul E. McKenney", "email": "paulmck@linux.vnet.ibm.com", "time": "Mon Feb 22 17:04:56 2010 -0800" }, "committer": { "name": "Ingo Molnar", "email": "mingo@elte.hu", "time": "Thu Feb 25 10:34:52 2010 +0100" }, "message": "security: Apply lockdep-based checking to rcu_dereference() uses\n\nApply lockdep-ified RCU primitives to key_gc_keyring() and\nkeyring_destroy().\n\nCc: David Howells \u003cdhowells@redhat.com\u003e\nSigned-off-by: Paul E. McKenney \u003cpaulmck@linux.vnet.ibm.com\u003e\nCc: laijs@cn.fujitsu.com\nCc: dipankar@in.ibm.com\nCc: mathieu.desnoyers@polymtl.ca\nCc: josh@joshtriplett.org\nCc: dvhltc@us.ibm.com\nCc: niv@us.ibm.com\nCc: peterz@infradead.org\nCc: rostedt@goodmis.org\nCc: Valdis.Kletnieks@vt.edu\nCc: dhowells@redhat.com\nLKML-Reference: \u003c1266887105-1528-12-git-send-email-paulmck@linux.vnet.ibm.com\u003e\nSigned-off-by: Ingo Molnar \u003cmingo@elte.hu\u003e\n" }, { "commit": "c36f74e67fa12202dbcb4ad92c5ac844f9d36b98", "tree": "13cf4be470470b32ce348202ab4ba6a342c39ed9", "parents": [ "baac35c4155a8aa826c70acee6553368ca5243a2" ], "author": { "name": "Joshua Roys", "email": "joshua.roys@gtri.gatech.edu", "time": "Wed Feb 24 18:52:44 2010 -0500" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Thu Feb 25 17:49:20 2010 +1100" }, "message": "netlabel: fix export of SELinux categories \u003e 127\n\nThis fixes corrupted CIPSO packets when SELinux categories greater than 127\nare used. The bug occured on the second (and later) loops through the\nwhile; the inner for loop through the ebitmap-\u003emaps array used the same\nindex as the NetLabel catmap-\u003ebitmap array, even though the NetLabel bitmap\nis twice as long as the SELinux bitmap.\n\nSigned-off-by: Joshua Roys \u003cjoshua.roys@gtri.gatech.edu\u003e\nAcked-by: Paul Moore \u003cpaul.moore@hp.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "baac35c4155a8aa826c70acee6553368ca5243a2", "tree": "3a930979c48c83e4f07234ed05ef67caeb869bac", "parents": [ "60b341b778cc2929df16c0a504c91621b3c6a4ad" ], "author": { "name": "Xiaotian Feng", "email": "dfeng@redhat.com", "time": "Wed Feb 24 18:39:02 2010 +0800" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Thu Feb 25 07:54:33 2010 +1100" }, "message": "security: fix error return path in ima_inode_alloc\n\nIf radix_tree_preload is failed in ima_inode_alloc, we don\u0027t need\nradix_tree_preload_end because kernel is alread preempt enabled\n\nSigned-off-by: Xiaotian Feng \u003cdfeng@redhat.com\u003e\nSigned-off-by: Mimi Zohar \u003czohar@us.ibm.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "189b3b1c89761054fee3438f063d7f257306e2d8", "tree": "8099352fa731fca91b95d862ac0d7199f21ca54d", "parents": [ "2ae3ba39389b51d8502123de0a59374bec899c4d" ], "author": { "name": "wzt.wzt@gmail.com", "email": "wzt.wzt@gmail.com", "time": "Tue Feb 23 23:15:28 2010 +0800" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Wed Feb 24 08:11:02 2010 +1100" }, "message": "Security: add static to security_ops and default_security_ops variable\n\nEnhance the security framework to support resetting the active security\nmodule. This eliminates the need for direct use of the security_ops and\ndefault_security_ops variables outside of security.c, so make security_ops\nand default_security_ops static. Also remove the secondary_ops variable as\na cleanup since there is no use for that. secondary_ops was originally used by\nSELinux to call the \"secondary\" security module (capability or dummy),\nbut that was replaced by direct calls to capability and the only\nremaining use is to save and restore the original security ops pointer\nvalue if SELinux is disabled by early userspace based on /etc/selinux/config.\nFurther, if we support this directly in the security framework, then we can\njust use \u0026default_security_ops for this purpose since that is now available.\n\nSigned-off-by: Zhitong Wang \u003czhitong.wangzt@alibaba-inc.com\u003e\nAcked-by: Stephen Smalley \u003csds@tycho.nsa.gov\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "2ae3ba39389b51d8502123de0a59374bec899c4d", "tree": "54c552fa9fa6c17b769f6aca3fd438e542b504a4", "parents": [ "170800088666963de1111d62fb503889c8c82eda" ], "author": { "name": "KaiGai Kohei", "email": "kaigai@ak.jp.nec.com", "time": "Wed Feb 17 08:49:41 2010 +0900" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Mon Feb 22 08:27:41 2010 +1100" }, "message": "selinux: libsepol: remove dead code in check_avtab_hierarchy_callback()\n\nThis patch revert the commit of 7d52a155e38d5a165759dbbee656455861bf7801\nwhich removed a part of type_attribute_bounds_av as a dead code.\nHowever, at that time, we didn\u0027t find out the target side boundary allows\nto handle some of pseudo /proc/\u003cpid\u003e/* entries with its process\u0027s security\ncontext well.\n\nSigned-off-by: KaiGai Kohei \u003ckaigai@ak.jp.nec.com\u003e\nAcked-by: Stephen Smalley \u003csds@tycho.nsa.gov\u003e\n\n--\n security/selinux/ss/services.c | 43 ++++++++++++++++++++++++++++++++++++---\n 1 files changed, 39 insertions(+), 4 deletions(-)\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "170800088666963de1111d62fb503889c8c82eda", "tree": "1c8f1671fd48a7688ec8253508dd2cd460e0aff1", "parents": [ "2da5d31bc72d0a36dc16af7f5d5baa4f86df9c76" ], "author": { "name": "Tetsuo Handa", "email": "penguin-kernel@I-love.SAKURA.ne.jp", "time": "Tue Feb 16 21:14:48 2010 +0900" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Wed Feb 17 11:37:58 2010 +1100" }, "message": "TOMOYO: Remove __func__ from tomoyo_is_correct_path/domain\n\n__func__ is used for only debug printk(). We can remove it.\n\nSigned-off-by: Tetsuo Handa \u003cpenguin-kernel@I-love.SAKURA.ne.jp\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "2da5d31bc72d0a36dc16af7f5d5baa4f86df9c76", "tree": "9d5bd3cc7d9e5b1beecc954bb5337af8454d352d", "parents": [ "97d6931ead3e89a764cdaa3ad0924037367f0d34" ], "author": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Tue Feb 16 17:29:06 2010 +1100" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Tue Feb 16 17:29:06 2010 +1100" }, "message": "security: fix a couple of sparse warnings\n\nFix a couple of sparse warnings for callers of\ncontext_struct_to_string, which takes a *u32, not an *int.\n\nThese cases are harmless as the values are not used.\n\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\nAcked-by: KaiGai Kohei \u003ckaigai@ak.jp.nec.com\u003e\n" }, { "commit": "97d6931ead3e89a764cdaa3ad0924037367f0d34", "tree": "ad69e76208832699a97e897af73b6aa23a655609", "parents": [ "7ef612331fb219620cc1abfc2446bb027d388aa0" ], "author": { "name": "Tetsuo Handa", "email": "penguin-kernel@I-love.SAKURA.ne.jp", "time": "Tue Feb 16 09:46:15 2010 +0900" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Tue Feb 16 17:26:36 2010 +1100" }, "message": "TOMOYO: Remove unneeded parameter.\n\ntomoyo_path_perm() tomoyo_path2_perm() and tomoyo_check_rewrite_permission()\nalways receive tomoyo_domain(). We can move it from caller to callee.\n\nSigned-off-by: Tetsuo Handa \u003cpenguin-kernel@I-love.SAKURA.ne.jp\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "7ef612331fb219620cc1abfc2446bb027d388aa0", "tree": "3912acecc7437303e824d26a9ae124b765ce35d3", "parents": [ "084da356f6e55ce42f1d2739178502023908c107" ], "author": { "name": "Tetsuo Handa", "email": "penguin-kernel@I-love.SAKURA.ne.jp", "time": "Tue Feb 16 08:03:30 2010 +0900" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Tue Feb 16 11:17:16 2010 +1100" }, "message": "TOMOYO: Use shorter names.\n\nUse shorter name to reduce newlines needed for 80 columns limit.\n\nSigned-off-by: Tetsuo Handa \u003cpenguin-kernel@I-love.SAKURA.ne.jp\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "084da356f6e55ce42f1d2739178502023908c107", "tree": "bdb021a9e0aa6e48ea0a9a4f1248c87c03e00525", "parents": [ "847b173ea3d6f50936823d07f2245059bf44713b" ], "author": { "name": "Tetsuo Handa", "email": "penguin-kernel@I-love.SAKURA.ne.jp", "time": "Mon Feb 15 15:10:39 2010 +0900" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Tue Feb 16 09:25:13 2010 +1100" }, "message": "TOMOYO: Use enum for index numbers.\n\nUse enum to declare index numbers.\n\nSigned-off-by: Tetsuo Handa \u003cpenguin-kernel@I-love.SAKURA.ne.jp\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "847b173ea3d6f50936823d07f2245059bf44713b", "tree": "b53c6d0536af73a078bcff0375f9f4d837f79bba", "parents": [ "ec8e6a4e062e2edebef91e930c20572c9f4c0dda" ], "author": { "name": "Tetsuo Handa", "email": "penguin-kernel@I-love.SAKURA.ne.jp", "time": "Thu Feb 11 09:43:54 2010 +0900" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Mon Feb 15 09:00:24 2010 +1100" }, "message": "TOMOYO: Add garbage collector.\n\nThis patch adds garbage collector support to TOMOYO.\nElements are protected by \"struct srcu_struct tomoyo_ss\".\n\nSigned-off-by: Tetsuo Handa \u003cpenguin-kernel@I-love.SAKURA.ne.jp\u003e\nAcked-by: Serge Hallyn \u003cserue@us.ibm.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "ec8e6a4e062e2edebef91e930c20572c9f4c0dda", "tree": "1c48fb2aa2220b3bdc138e0fb33e1ac632d0dffe", "parents": [ "76bb0895d038be7bcdb6ccfcd2dd7deb30371d6b" ], "author": { "name": "Tetsuo Handa", "email": "penguin-kernel@I-love.SAKURA.ne.jp", "time": "Thu Feb 11 09:43:20 2010 +0900" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Mon Feb 15 09:00:21 2010 +1100" }, "message": "TOMOYO: Add refcounter on domain structure.\n\nAdd refcounter to \"struct tomoyo_domain_info\" since garbage collector needs to\ndetermine whether this struct is referred by \"struct cred\"-\u003esecurity or not.\n\nSigned-off-by: Tetsuo Handa \u003cpenguin-kernel@I-love.SAKURA.ne.jp\u003e\nAcked-by: Serge Hallyn \u003cserue@us.ibm.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "76bb0895d038be7bcdb6ccfcd2dd7deb30371d6b", "tree": "5948c68b08561deb20d155853faed475a15a4235", "parents": [ "bf24fb016c861b7f52be0c36c4cedd3e89afa2e2" ], "author": { "name": "Tetsuo Handa", "email": "penguin-kernel@I-love.SAKURA.ne.jp", "time": "Thu Feb 11 09:42:40 2010 +0900" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Mon Feb 15 09:00:18 2010 +1100" }, "message": "TOMOYO: Merge headers.\n\nGather structures and constants scattered around security/tomoyo/ directory.\nThis is for preparation for adding garbage collector since garbage collector\nneeds to know structures and constants which TOMOYO uses.\n\nSigned-off-by: Tetsuo Handa \u003cpenguin-kernel@I-love.SAKURA.ne.jp\u003e\nAcked-by: Serge Hallyn \u003cserue@us.ibm.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "bf24fb016c861b7f52be0c36c4cedd3e89afa2e2", "tree": "f485ca2e70d8305d9aaecf45b5fd929b68b971b2", "parents": [ "ca0b7df3374c5566468c17f26fa2dfd3fe3c6a37" ], "author": { "name": "Tetsuo Handa", "email": "penguin-kernel@I-love.SAKURA.ne.jp", "time": "Thu Feb 11 09:41:58 2010 +0900" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Mon Feb 15 09:00:16 2010 +1100" }, "message": "TOMOYO: Add refcounter on string data.\n\nAdd refcounter to \"struct tomoyo_name_entry\" and replace tomoyo_save_name()\nwith tomoyo_get_name()/tomoyo_put_name() pair so that we can kfree() when\ngarbage collector is added.\n\nSigned-off-by: Tetsuo Handa \u003cpenguin-kernel@I-love.SAKURA.ne.jp\u003e\nAcked-by: Serge Hallyn \u003cserue@us.ibm.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "ca0b7df3374c5566468c17f26fa2dfd3fe3c6a37", "tree": "39fb8dfd34a84b928d18523da5dcebc5b25cb634", "parents": [ "8007f10259d04f37044c2c731bf9ccdd9161d825" ], "author": { "name": "Tetsuo Handa", "email": "penguin-kernel@I-love.SAKURA.ne.jp", "time": "Sun Feb 07 20:23:59 2010 +0900" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Thu Feb 11 17:09:45 2010 +1100" }, "message": "TOMOYO: Reduce lines by using common path for addition and deletion.\n\nSince the codes for adding an entry and removing an entry are similar, we can\nsave some lines by using \"if (is_delete) { ... } else { ... }\" branches.\n\nSigned-off-by: Tetsuo Handa \u003cpenguin-kernel@I-love.SAKURA.ne.jp\u003e\nAcked-by: Serge Hallyn \u003cserue@us.ibm.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "8007f10259d04f37044c2c731bf9ccdd9161d825", "tree": "6accff6b70b4780bc62824c419582f4cace56f23", "parents": [ "ea13ddbad0eb4be9cdc406cd7e0804fa4011f6e4" ], "author": { "name": "Xiaotian Feng", "email": "dfeng@redhat.com", "time": "Tue Feb 09 08:22:24 2010 +1100" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Tue Feb 09 08:22:24 2010 +1100" }, "message": "selinux: fix memory leak in sel_make_bools\n\nIn sel_make_bools, kernel allocates memory for bool_pending_names[i]\nwith security_get_bools. So if we just free bool_pending_names, those\nmemories for bool_pending_names[i] will be leaked.\n\nThis patch resolves dozens of following kmemleak report after resuming\nfrom suspend:\nunreferenced object 0xffff88022e4c7380 (size 32):\n comm \"init\", pid 1, jiffies 4294677173\n backtrace:\n [\u003cffffffff810f76b5\u003e] create_object+0x1a2/0x2a9\n [\u003cffffffff810f78bb\u003e] kmemleak_alloc+0x26/0x4b\n [\u003cffffffff810ef3eb\u003e] __kmalloc+0x18f/0x1b8\n [\u003cffffffff811cd511\u003e] security_get_bools+0xd7/0x16f\n [\u003cffffffff811c48c0\u003e] sel_write_load+0x12e/0x62b\n [\u003cffffffff810f9a39\u003e] vfs_write+0xae/0x10b\n [\u003cffffffff810f9b56\u003e] sys_write+0x4a/0x6e\n [\u003cffffffff81011b82\u003e] system_call_fastpath+0x16/0x1b\n [\u003cffffffffffffffff\u003e] 0xffffffffffffffff\n\nSigned-off-by: Xiaotian Feng \u003cdfeng@redhat.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "ea13ddbad0eb4be9cdc406cd7e0804fa4011f6e4", "tree": "4068bb5baad6f6819242b36a00bf395a6db7f1e1", "parents": [ "f40a70861ace69001524644473cc389543b06c3c" ], "author": { "name": "Tetsuo Handa", "email": "penguin-kernel@I-love.SAKURA.ne.jp", "time": "Wed Feb 03 06:43:06 2010 +0900" }, "committer": { "name": "James Morris", "email": "jmorris@namei.org", "time": "Mon Feb 08 14:10:20 2010 +1100" }, "message": "TOMOYO: Extract bitfield\n\nSince list elements are rounded up to kmalloc() size rather than sizeof(int),\nsaving one byte by using bitfields is no longer helpful.\n\nSigned-off-by: Tetsuo Handa \u003cpenguin-kernel@I-love.SAKURA.ne.jp\u003e\nAcked-by: Serge Hallyn \u003cserue@us.ibm.com\u003e\nSigned-off-by: James Morris \u003cjmorris@namei.org\u003e\n" }, { "commit": "89068c576bf324ef6fbd50dfc745148f7def202c", "tree": "6c19f0e1fa2e0bdd732fb91924a9e9c3efb2784b", "parents": [ "1e93d0052d9a6b3d0b382eedceb18b519d603baf" ], "author": { "name": "Al Viro", "email": "viro@zeniv.linux.org.uk", "time": "Sun Feb 07 03:07:29 2010 -0500" }, "committer": { "name": "Al Viro", "email": "viro@zeniv.linux.org.uk", "time": "Sun Feb 07 03:07:29 2010 -0500" }, "message": "Take ima_file_free() to proper place.\n\nHooks: Just Say No.\n\nSigned-off-by: Al Viro \u003cviro@zeniv.linux.org.uk\u003e\n" }, { "commit": "1e93d0052d9a6b3d0b382eedceb18b519d603baf", "tree": "b47cb67cdfd98e257c4d7fb7ed75f6930a1bf005", "parents": [ "9bbb6cad0173e6220f3ac609e26beb48dab3b7cd" ], "author": { "name": "Mimi Zohar", "email": "zohar@linux.vnet.ibm.com", "time": "Tue Jan 26 17:02:41 2010 -0500" }, "committer": { "name": "Al Viro", "email": "viro@zeniv.linux.org.uk", "time": "Sun Feb 07 03:06:23 2010 -0500" }, "message": "ima: rename PATH_CHECK to FILE_CHECK\n\nWith the movement of the ima hooks functions were renamed from *path* to\n*file* since they always deal with struct file. This patch renames some of\nthe ima internal flags to make them consistent with the rest of the code.\n\nSigned-off-by: Mimi Zohar \u003czohar@linux.vnet.ibm.com\u003e\nSigned-off-by: Eric Paris \u003ceparis@redhat.com\u003e\nSigned-off-by: Al Viro \u003cviro@zeniv.linux.org.uk\u003e\n" } ], "next": "9bbb6cad0173e6220f3ac609e26beb48dab3b7cd" }