remarkable-linux

History

Michael LeMay 4eb582cf1f [PATCH] keys: add a way to store the appropriate context for newly-created keys Add a /proc/<pid>/attr/keycreate entry that stores the appropriate context for newly-created keys. Modify the selinux_key_alloc hook to make use of the new entry. Update the flask headers to include a new "setkeycreate" permission for processes. Update the flask headers to include a new "create" permission for keys. Use the create permission to restrict which SIDs each task can assign to newly-created keys. Add a new parameter to the security hook "security_key_alloc" to indicate whether it is being invoked by the kernel, or from userspace. If it is being invoked by the kernel, the security hook should never fail. Update the documentation to reflect these changes. Signed-off-by: Michael LeMay <mdlemay@epoch.ncsc.mil> Signed-off-by: James Morris <jmorris@namei.org> Signed-off-by: David Howells <dhowells@redhat.com> Signed-off-by: Andrew Morton <akpm@osdl.org> Signed-off-by: Linus Torvalds <torvalds@osdl.org>		2006-06-26 09:58:18 -07:00
..
keys	[PATCH] keys: restrict contents of /proc/keys to Viewable keys	2006-06-26 09:58:18 -07:00
selinux	[PATCH] keys: add a way to store the appropriate context for newly-created keys	2006-06-26 09:58:18 -07:00
capability.c	kbuild: un-stringnify KBUILD_MODNAME	2006-01-06 21:17:50 +01:00
commoncap.c	[PATCH] make cap_ptrace enforce PTRACE_TRACME checks	2006-03-25 08:22:56 -08:00
dummy.c	[PATCH] keys: sort out key quota system	2006-06-26 09:58:18 -07:00
inode.c	Merge branch 'master' of /home/trondmy/kernel/linux-2.6/	2006-06-24 13:07:53 -04:00
Kconfig	[PATCH] keys: restrict contents of /proc/keys to Viewable keys	2006-06-26 09:58:18 -07:00
Makefile
root_plug.c
seclvl.c	[PATCH] Bug fixes and cleanup for the BSD Secure Levels LSM	2006-03-23 07:38:03 -08:00
security.c	[PATCH] refactor capable() to one implementation, add __capable() helper	2006-03-25 08:22:56 -08:00