linux-toradex.git/security/selinux/include/security.h, branch v3.4.64 Linux kernel for Apalis and Colibri modules selinux: sparse fix: fix warnings in netlink code 2011-09-09T23:56:31+00:00 James Morris jmorris@namei.org 2011-08-30T02:09:15+00:00 6a3fbe81179c85eb53054a0f4c8423ffec0276a7 Fix sparse warnings in SELinux Netlink code. Signed-off-by: James Morris <jmorris@namei.org> 
Fix sparse warnings in SELinux Netlink code.

Signed-off-by: James Morris <jmorris@namei.org>
selinux: sparse fix: eliminate warnings for selinuxfs 2011-09-09T23:56:30+00:00 James Morris jmorris@namei.org 2011-08-30T00:50:12+00:00 ad3fa08c4ff84ed87649d72e8497735c85561a3d Fixes several sparse warnings for selinuxfs.c Signed-off-by: James Morris <jmorris@namei.org> 
Fixes several sparse warnings for selinuxfs.c

Signed-off-by: James Morris <jmorris@namei.org>
selinux: sparse fix: declare selinux_disable() in security.h 2011-09-09T23:56:26+00:00 James Morris jmorris@namei.org 2011-08-17T01:17:14+00:00 58982b74832917405a483a22beede729e3175376 Sparse fix: declare selinux_disable() in security.h Signed-off-by: James Morris <jmorris@namei.org> 
Sparse fix: declare selinux_disable() in security.h

Signed-off-by: James Morris <jmorris@namei.org>
selinux: sparse fix: move selinux_complete_init 2011-09-09T23:56:26+00:00 James Morris jmorris@namei.org 2011-08-17T01:13:31+00:00 cc59a582d6081b296e481b8bc9676b5c2faad818 Sparse fix: move selinux_complete_init Signed-off-by: James Morris <jmorris@namei.org> 
Sparse fix: move selinux_complete_init

Signed-off-by: James Morris <jmorris@namei.org>
SELinux: security_read_policy should take a size_t not ssize_t 2011-04-25T14:19:02+00:00 Eric Paris eparis@redhat.com 2011-04-20T14:21:28+00:00 6b697323a78bed254ee372f71b1a6a2901bb4b7a The len should be an size_t but is a ssize_t. Easy enough fix to silence build warnings. We have no need for signed-ness. Signed-off-by: Eric Paris <eparis@redhat.com> Reviewed-by: James Morris <jmorris@namei.org> 
The len should be an size_t but is a ssize_t.  Easy enough fix to silence
build warnings.  We have no need for signed-ness.

Signed-off-by: Eric Paris <eparis@redhat.com>
Reviewed-by: James Morris <jmorris@namei.org>
selinux: add type_transition with name extension support for selinuxfs 2011-04-01T21:13:23+00:00 Kohei Kaigai Kohei.Kaigai@eu.nec.com 2011-04-01T14:39:26+00:00 f50a3ec961f90e38c0311411179d5dfee1412192 The attached patch allows /selinux/create takes optional 4th argument to support TYPE_TRANSITION with name extension for userspace object managers. If 4th argument is not supplied, it shall perform as existing kernel. In fact, the regression test of SE-PostgreSQL works well on the patched kernel. Thanks, Signed-off-by: KaiGai Kohei <kohei.kaigai@eu.nec.com> [manually verify fuzz was not an issue, and it wasn't: eparis] Signed-off-by: Eric Paris <eparis@redhat.com> 
The attached patch allows /selinux/create takes optional 4th argument
to support TYPE_TRANSITION with name extension for userspace object
managers.
If 4th argument is not supplied, it shall perform as existing kernel.
In fact, the regression test of SE-PostgreSQL works well on the patched
kernel.

Thanks,

Signed-off-by: KaiGai Kohei <kohei.kaigai@eu.nec.com>
[manually verify fuzz was not an issue, and it wasn't: eparis]
Signed-off-by: Eric Paris <eparis@redhat.com>
SELinux: Add class support to the role_trans structure 2011-03-28T18:20:58+00:00 Harry Ciao qingtao.cao@windriver.com 2011-03-25T05:51:56+00:00 8023976cf4627d9f1d82ad468ec40e32eb87d211 If kernel policy version is >= 26, then the binary representation of the role_trans structure supports specifying the class for the current subject or the newly created object. If kernel policy version is < 26, then the class field would be default to the process class. Signed-off-by: Harry Ciao <qingtao.cao@windriver.com> Acked-by: Stephen Smalley <sds@tycho.nsa.gov> Signed-off-by: Eric Paris <eparis@redhat.com> 
If kernel policy version is >= 26, then the binary representation of
the role_trans structure supports specifying the class for the current
subject or the newly created object.

If kernel policy version is < 26, then the class field would be default
to the process class.

Signed-off-by: Harry Ciao <qingtao.cao@windriver.com>
Acked-by:  Stephen Smalley <sds@tycho.nsa.gov>
Signed-off-by: Eric Paris <eparis@redhat.com>
SELinux: Use dentry name in new object labeling 2011-02-01T16:12:30+00:00 Eric Paris eparis@redhat.com 2011-02-01T16:05:40+00:00 652bb9b0d6ce007f37c098947b2cc0c45efa3f66 Currently SELinux has rules which label new objects according to 3 criteria. The label of the process creating the object, the label of the parent directory, and the type of object (reg, dir, char, block, etc.) This patch adds a 4th criteria, the dentry name, thus we can distinguish between creating a file in an etc_t directory called shadow and one called motd. There is no file globbing, regex parsing, or anything mystical. Either the policy exactly (strcmp) matches the dentry name of the object or it doesn't. This patch has no changes from today if policy does not implement the new rules. Signed-off-by: Eric Paris <eparis@redhat.com> 
Currently SELinux has rules which label new objects according to 3 criteria.
The label of the process creating the object, the label of the parent
directory, and the type of object (reg, dir, char, block, etc.)  This patch
adds a 4th criteria, the dentry name, thus we can distinguish between
creating a file in an etc_t directory called shadow and one called motd.

There is no file globbing, regex parsing, or anything mystical.  Either the
policy exactly (strcmp) matches the dentry name of the object or it doesn't.
This patch has no changes from today if policy does not implement the new
rules.

Signed-off-by: Eric Paris <eparis@redhat.com>
SELinux: allow userspace to read policy back out of the kernel 2010-10-20T23:12:58+00:00 Eric Paris eparis@redhat.com 2010-10-13T21:50:25+00:00 cee74f47a6baba0ac457e87687fdcf0abd599f0a There is interest in being able to see what the actual policy is that was loaded into the kernel. The patch creates a new selinuxfs file /selinux/policy which can be read by userspace. The actual policy that is loaded into the kernel will be written back out to userspace. Signed-off-by: Eric Paris <eparis@redhat.com> Signed-off-by: James Morris <jmorris@namei.org> 
There is interest in being able to see what the actual policy is that was
loaded into the kernel.  The patch creates a new selinuxfs file
/selinux/policy which can be read by userspace.  The actual policy that is
loaded into the kernel will be written back out to userspace.

Signed-off-by: Eric Paris <eparis@redhat.com>
Signed-off-by: James Morris <jmorris@namei.org>
secmark: make secmark object handling generic 2010-10-20T23:12:48+00:00 Eric Paris eparis@redhat.com 2010-10-13T20:24:41+00:00 2606fd1fa5710205b23ee859563502aa18362447 Right now secmark has lots of direct selinux calls. Use all LSM calls and remove all SELinux specific knowledge. The only SELinux specific knowledge we leave is the mode. The only point is to make sure that other LSMs at least test this generic code before they assume it works. (They may also have to make changes if they do not represent labels as strings) Signed-off-by: Eric Paris <eparis@redhat.com> Acked-by: Paul Moore <paul.moore@hp.com> Acked-by: Patrick McHardy <kaber@trash.net> Signed-off-by: James Morris <jmorris@namei.org> 
Right now secmark has lots of direct selinux calls.  Use all LSM calls and
remove all SELinux specific knowledge.  The only SELinux specific knowledge
we leave is the mode.  The only point is to make sure that other LSMs at
least test this generic code before they assume it works.  (They may also
have to make changes if they do not represent labels as strings)

Signed-off-by: Eric Paris <eparis@redhat.com>
Acked-by: Paul Moore <paul.moore@hp.com>
Acked-by: Patrick McHardy <kaber@trash.net>
Signed-off-by: James Morris <jmorris@namei.org>