From: Casey Schaufler <casey@schaufler-ca.com>
To: James Morris <jmorris@namei.org>, linux-security-module@vger.kernel.org
Cc: linux-audit@redhat.com, linux-kernel@vger.kernel.org
Subject: Re: Security testing tree patch review for 2.6.26
Date: Fri, 18 Apr 2008 11:11:14 -0700 (PDT) [thread overview]
Message-ID: <834491.21069.qm@web36602.mail.mud.yahoo.com> (raw)
In-Reply-To: <1208430369-23156-1-git-send-email-jmorris@namei.org>
--- James Morris <jmorris@namei.org> wrote:
>
> Please review the following security patches for 2.6.26, which have
> been undergoing testing in the "next" tree and affect multiple LSMs.
I have done basic testing on this patchset and have not
encountered any problems from the Smack side. I have not
tested without Smack nor by implication with SELinux.
>
> The following changes since commit 4b119e21d0c66c22e8ca03df05d9de623d0eb50f:
> Linus Torvalds (1):
> Linux 2.6.25
>
> are available in the git repository at:
>
>
>
git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/security-testing-2.6.git
> for-linus
>
> Ahmed S. Darwish (10):
> LSM: Introduce inode_getsecid and ipc_getsecid hooks
> SELinux: setup new inode/ipc getsecid hooks
> Audit: use new LSM hooks instead of SELinux exports
> Netlink: Use generic LSM hook
> SELinux: remove redundant exports
> LSM/Audit: Introduce generic Audit LSM hooks
> Audit: internally use the new LSM audit hooks
> SELinux: use new audit hooks, remove redundant exports
> Audit: Final renamings and cleanup
> Security: Introduce security= boot parameter
>
> James Morris (2):
> Tell git about security/selinux/include/audit.h
> security: fix up documentation for security_module_enable
>
> Documentation/kernel-parameters.txt | 6 ++
> include/linux/audit.h | 29 ++++++++
> include/linux/security.h | 114 +++++++++++++++++++++++++++++-
> include/linux/selinux.h | 134
> -----------------------------------
> kernel/audit.c | 24 +++----
> kernel/audit.h | 25 -------
> kernel/auditfilter.c | 99 ++++++++++----------------
> kernel/auditsc.c | 74 ++++++++++---------
> net/netlink/af_netlink.c | 3 +-
> security/dummy.c | 51 +++++++++++++-
> security/security.c | 73 +++++++++++++++++++-
> security/selinux/exports.c | 42 -----------
> security/selinux/hooks.c | 34 ++++++++-
> security/selinux/include/audit.h | 65 +++++++++++++++++
> security/selinux/ss/services.c | 45 +++++++++---
> security/smack/smack.h | 2 +
> security/smack/smack_lsm.c | 7 ++-
> security/smack/smackfs.c | 11 +++-
> 18 files changed, 503 insertions(+), 335 deletions(-)
> create mode 100644 security/selinux/include/audit.h
> --
> To unsubscribe from this list: send the line "unsubscribe
> linux-security-module" in
> the body of a message to majordomo@vger.kernel.org
> More majordomo info at http://vger.kernel.org/majordomo-info.html
>
>
>
Casey Schaufler
casey@schaufler-ca.com
next prev parent reply other threads:[~2008-04-18 18:11 UTC|newest]
Thread overview: 30+ messages / expand[flat|nested] mbox.gz Atom feed top
2008-04-17 11:05 Security testing tree patch review for 2.6.26 James Morris
2008-04-17 11:05 ` [PATCH 01/12] LSM: Introduce inode_getsecid and ipc_getsecid hooks James Morris
2008-04-17 11:05 ` [PATCH 02/12] SELinux: setup new inode/ipc getsecid hooks James Morris
2008-04-17 11:06 ` [PATCH 03/12] Audit: use new LSM hooks instead of SELinux exports James Morris
2008-04-17 11:06 ` [PATCH 04/12] Netlink: Use generic LSM hook James Morris
2008-04-17 11:06 ` James Morris
2008-04-17 11:06 ` [PATCH 05/12] SELinux: remove redundant exports James Morris
2008-04-17 11:06 ` [PATCH 06/12] LSM/Audit: Introduce generic Audit LSM hooks James Morris
2008-04-17 11:06 ` [PATCH 07/12] Audit: internally use the new LSM audit hooks James Morris
2008-04-17 11:06 ` James Morris
2008-04-17 11:06 ` [PATCH 08/12] SELinux: use new audit hooks, remove redundant exports James Morris
2008-04-17 11:06 ` James Morris
2008-04-17 11:06 ` [PATCH 09/12] Audit: Final renamings and cleanup James Morris
2008-04-17 11:06 ` James Morris
2008-04-17 11:06 ` [PATCH 10/12] Tell git about security/selinux/include/audit.h James Morris
2008-04-17 15:44 ` Greg KH
2008-04-17 15:53 ` James Morris
2008-04-17 11:06 ` [PATCH 11/12] Security: Introduce security= boot parameter James Morris
2008-04-17 15:29 ` Casey Schaufler
2008-04-17 11:06 ` [PATCH 12/12] security: fix up documentation for security_module_enable James Morris
2008-04-17 15:30 ` Casey Schaufler
2008-04-17 15:30 ` Casey Schaufler
2008-04-17 16:10 ` [PATCH 2.6.26 #repost] Smack: Integrate with Audit Ahmed S. Darwish
2008-04-17 16:10 ` Ahmed S. Darwish
2008-04-19 22:19 ` Casey Schaufler
2008-04-19 22:19 ` Casey Schaufler
2008-04-18 18:11 ` Casey Schaufler [this message]
2008-04-28 16:32 ` Security testing tree patch review for 2.6.26 Alexander Viro
2008-04-29 5:34 ` option "-n" of auditd chuli
2008-04-29 6:38 ` Valdis.Kletnieks
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=834491.21069.qm@web36602.mail.mud.yahoo.com \
--to=casey@schaufler-ca.com \
--cc=jmorris@namei.org \
--cc=linux-audit@redhat.com \
--cc=linux-kernel@vger.kernel.org \
--cc=linux-security-module@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.