[PATCHSET] audit fixes

Linus, please pull audit fixes from
git://git.kernel.org/pub/scm/linux/kernel/git/viro/audit-current.git/ audit.b10

This stuff had been sitting in -mm for weeks now and fixes a bunch of bugs -
both performance (killing serious unnecessary overhead) and outright leaks
and deadlocks.

Shortlog:

Al Viro:
      deal with deadlocks in audit_free()
      move call of audit_free() into do_exit()
      drop gfp_mask in audit_log_exit()
      drop task argument of audit_syscall_{entry,exit}
      no need to wank with task_lock() and pinning task down in audit_syscall_exit()

Darrel Goeddel:
      support for context based audit filtering
      support for context based audit filtering, part 2

Steve Grubb:
      sockaddr patch
      audit inode patch
      change lspp ipc auditing
      Reworked patch for labels on user space messages
      More user space subject labels
      Rework of IPC auditing
      Audit Filter Performance

Diffstat:
 arch/i386/kernel/ptrace.c      |    7 
 arch/i386/kernel/vm86.c        |    2 
 arch/ia64/kernel/ptrace.c      |    4 
 arch/mips/kernel/ptrace.c      |    4 
 arch/powerpc/kernel/ptrace.c   |    5 
 arch/s390/kernel/ptrace.c      |    5 
 arch/sparc64/kernel/ptrace.c   |    5 
 arch/um/kernel/ptrace.c        |    6 
 arch/x86_64/kernel/ptrace.c    |    6 
 include/linux/audit.h          |   22 ++-
 include/linux/netlink.h        |    1 
 include/linux/security.h       |   16 --
 include/linux/selinux.h        |  177 +++++++++++++++++++++++++
 ipc/msg.c                      |   11 +
 ipc/sem.c                      |   11 +
 ipc/shm.c                      |   19 ++
 ipc/util.c                     |    7 
 kernel/audit.c                 |  160 ++++++++++++++++++----
 kernel/audit.h                 |   10 -
 kernel/auditfilter.c           |  289 ++++++++++++++++++++++++++++++++++++-----
 kernel/auditsc.c               |  269 +++++++++++++++++++-------------------
 kernel/exit.c                  |    3 
 kernel/fork.c                  |    2 
 net/netlink/af_netlink.c       |    2 
 net/socket.c                   |    2 
 security/dummy.c               |    6 
 security/selinux/Makefile      |    2 
 security/selinux/avc.c         |   13 -
 security/selinux/exports.c     |   74 ++++++++++
 security/selinux/hooks.c       |    8 -
 security/selinux/ss/mls.c      |   30 ++++
 security/selinux/ss/mls.h      |    4 
 security/selinux/ss/services.c |  235 +++++++++++++++++++++++++++++++++
 33 files changed, 1142 insertions(+), 275 deletions(-)
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [email protected]
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

---

• Follow-Ups:
  • Re: [PATCHSET] audit fixes
    • From: "Randy.Dunlap" <[email protected]>

• Prev by Date: [PATCH 01/14] deal with deadlocks in audit_free()
• Next by Date: [PATCH 03/14] move call of audit_free() into do_exit()
• Previous by thread: [PATCH 01/14] deal with deadlocks in audit_free()
• Next by thread: Re: [PATCHSET] audit fixes
• Index(es):
  • Date
  • Thread

[Index of Archives]     [Kernel Newbies]     [Netfilter]     [Bugtraq]     [Photo]     [Stuff]     [Gimp]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Video 4 Linux]     [Linux for the blind]     [Linux Resources]