linux

History

Tetsuo Handa 731d37aa70 TOMOYO: Allow domain transition without execve(). To be able to split permissions for Apache's CGI programs which are executed without execve(), add special domain transition which is performed by writing a TOMOYO's domainname to /sys/kernel/security/tomoyo/self_domain interface. This is an API for TOMOYO-aware userland applications. However, since I expect TOMOYO and other LSM modules to run in parallel, this patch does not use /proc/self/attr/ interface in order to avoid conflicts with other LSM modules when it became possible to run multiple LSM modules in parallel. Signed-off-by: Tetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp> Signed-off-by: James Morris <jmorris@namei.org>		2011-09-14 08:27:06 +10:00
..
apparmor	apparmor: sparse fix: include procattr.h in procattr.c	2011-09-09 16:56:29 -07:00
integrity	ima: sparse fix: include linux/ima.h in ima_main.c	2011-09-09 16:56:30 -07:00
keys	KEYS: Correctly destroy key payloads when their keytype is removed	2011-08-23 09:57:37 +10:00
selinux	selinux: sparse fix: fix several warnings in the security server code	2011-09-09 16:56:32 -07:00
smack	doc: Update the email address for Paul Moore in various source files	2011-08-01 17:58:33 -07:00
tomoyo	TOMOYO: Allow domain transition without execve().	2011-09-14 08:27:06 +10:00
capability.c	->permission() sanitizing: don't pass flags to ->inode_permission()	2011-07-20 01:43:26 -04:00
commoncap.c	capabilities: initialize has_cap	2011-08-16 09:20:45 +10:00
device_cgroup.c	security,rcu: Convert call_rcu(whitelist_item_free) to kfree_rcu()	2011-07-20 11:05:30 -07:00
inode.c
Kconfig	integrity: move ima inode integrity data management	2011-07-18 12:29:38 -04:00
lsm_audit.c	LSM: separate LSM_AUDIT_DATA_DENTRY from LSM_AUDIT_DATA_PATH	2011-04-25 18:14:07 -04:00
Makefile	integrity: move ima inode integrity data management	2011-07-18 12:29:38 -04:00
min_addr.c
security.c	security: sparse fix: Move security_fixup_op to security.h	2011-09-09 16:56:33 -07:00