From: Casey Schaufler <casey@schaufler-ca.com>
To: James Morris <jmorris@namei.org>, linux-security-module@vger.kernel.org
Cc: linux-audit@redhat.com, linux-kernel@vger.kernel.org
Subject: Re: Security testing tree patch review for 2.6.26
Date: Fri, 18 Apr 2008 11:11:14 -0700 (PDT) [thread overview]
Message-ID: <834491.21069.qm@web36602.mail.mud.yahoo.com> (raw)
In-Reply-To: <1208430369-23156-1-git-send-email-jmorris@namei.org>
--- James Morris <jmorris@namei.org> wrote:
>
> Please review the following security patches for 2.6.26, which have
> been undergoing testing in the "next" tree and affect multiple LSMs.
I have done basic testing on this patchset and have not
encountered any problems from the Smack side. I have not
tested without Smack nor by implication with SELinux.
>
> The following changes since commit 4b119e21d0c66c22e8ca03df05d9de623d0eb50f:
> Linus Torvalds (1):
> Linux 2.6.25
>
> are available in the git repository at:
>
>
>
git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/security-testing-2.6.git
> for-linus
>
> Ahmed S. Darwish (10):
> LSM: Introduce inode_getsecid and ipc_getsecid hooks
> SELinux: setup new inode/ipc getsecid hooks
> Audit: use new LSM hooks instead of SELinux exports
> Netlink: Use generic LSM hook
> SELinux: remove redundant exports
> LSM/Audit: Introduce generic Audit LSM hooks
> Audit: internally use the new LSM audit hooks
> SELinux: use new audit hooks, remove redundant exports
> Audit: Final renamings and cleanup
> Security: Introduce security= boot parameter
>
> James Morris (2):
> Tell git about security/selinux/include/audit.h
> security: fix up documentation for security_module_enable
>
> Documentation/kernel-parameters.txt | 6 ++
> include/linux/audit.h | 29 ++++++++
> include/linux/security.h | 114 +++++++++++++++++++++++++++++-
> include/linux/selinux.h | 134
> -----------------------------------
> kernel/audit.c | 24 +++----
> kernel/audit.h | 25 -------
> kernel/auditfilter.c | 99 ++++++++++----------------
> kernel/auditsc.c | 74 ++++++++++---------
> net/netlink/af_netlink.c | 3 +-
> security/dummy.c | 51 +++++++++++++-
> security/security.c | 73 +++++++++++++++++++-
> security/selinux/exports.c | 42 -----------
> security/selinux/hooks.c | 34 ++++++++-
> security/selinux/include/audit.h | 65 +++++++++++++++++
> security/selinux/ss/services.c | 45 +++++++++---
> security/smack/smack.h | 2 +
> security/smack/smack_lsm.c | 7 ++-
> security/smack/smackfs.c | 11 +++-
> 18 files changed, 503 insertions(+), 335 deletions(-)
> create mode 100644 security/selinux/include/audit.h
> --
> To unsubscribe from this list: send the line "unsubscribe
> linux-security-module" in
> the body of a message to majordomo@vger.kernel.org
> More majordomo info at http://vger.kernel.org/majordomo-info.html
>
>
>
Casey Schaufler
casey@schaufler-ca.com
next prev parent reply other threads:[~2008-04-18 18:11 UTC|newest]
Thread overview: 21+ messages / expand[flat|nested] mbox.gz Atom feed top
2008-04-17 11:05 Security testing tree patch review for 2.6.26 James Morris
2008-04-17 11:05 ` [PATCH 01/12] LSM: Introduce inode_getsecid and ipc_getsecid hooks James Morris
2008-04-17 11:05 ` [PATCH 02/12] SELinux: setup new inode/ipc getsecid hooks James Morris
2008-04-17 11:06 ` [PATCH 03/12] Audit: use new LSM hooks instead of SELinux exports James Morris
2008-04-17 11:06 ` [PATCH 04/12] Netlink: Use generic LSM hook James Morris
2008-04-17 11:06 ` [PATCH 05/12] SELinux: remove redundant exports James Morris
2008-04-17 11:06 ` [PATCH 06/12] LSM/Audit: Introduce generic Audit LSM hooks James Morris
2008-04-17 11:06 ` [PATCH 07/12] Audit: internally use the new LSM audit hooks James Morris
2008-04-17 11:06 ` [PATCH 08/12] SELinux: use new audit hooks, remove redundant exports James Morris
2008-04-17 11:06 ` [PATCH 09/12] Audit: Final renamings and cleanup James Morris
2008-04-17 11:06 ` [PATCH 10/12] Tell git about security/selinux/include/audit.h James Morris
2008-04-17 15:44 ` Greg KH
2008-04-17 15:53 ` James Morris
2008-04-17 11:06 ` [PATCH 11/12] Security: Introduce security= boot parameter James Morris
2008-04-17 15:29 ` Casey Schaufler
2008-04-17 11:06 ` [PATCH 12/12] security: fix up documentation for security_module_enable James Morris
2008-04-17 15:30 ` Casey Schaufler
2008-04-17 16:10 ` [PATCH 2.6.26 #repost] Smack: Integrate with Audit Ahmed S. Darwish
2008-04-19 22:19 ` Casey Schaufler
2008-04-18 18:11 ` Casey Schaufler [this message]
2008-04-28 16:32 ` Security testing tree patch review for 2.6.26 Alexander Viro
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=834491.21069.qm@web36602.mail.mud.yahoo.com \
--to=casey@schaufler-ca.com \
--cc=jmorris@namei.org \
--cc=linux-audit@redhat.com \
--cc=linux-kernel@vger.kernel.org \
--cc=linux-security-module@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox