lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <834491.21069.qm@web36602.mail.mud.yahoo.com>
Date:	Fri, 18 Apr 2008 11:11:14 -0700 (PDT)
From:	Casey Schaufler <casey@...aufler-ca.com>
To:	James Morris <jmorris@...ei.org>,
	linux-security-module@...r.kernel.org
Cc:	linux-audit@...hat.com, linux-kernel@...r.kernel.org
Subject: Re: Security testing tree patch review for 2.6.26


--- James Morris <jmorris@...ei.org> wrote:

> 
> Please review the following security patches for 2.6.26, which have
> been undergoing testing in the "next" tree and affect multiple LSMs.

I have done basic testing on this patchset and have not
encountered any problems from the Smack side. I have not
tested without Smack nor by implication with SELinux.


> 
> The following changes since commit 4b119e21d0c66c22e8ca03df05d9de623d0eb50f:
>   Linus Torvalds (1):
>         Linux 2.6.25
> 
> are available in the git repository at:
> 
>  
>
git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/security-testing-2.6.git
> for-linus
> 
> Ahmed S. Darwish (10):
>       LSM: Introduce inode_getsecid and ipc_getsecid hooks
>       SELinux: setup new inode/ipc getsecid hooks
>       Audit: use new LSM hooks instead of SELinux exports
>       Netlink: Use generic LSM hook
>       SELinux: remove redundant exports
>       LSM/Audit: Introduce generic Audit LSM hooks
>       Audit: internally use the new LSM audit hooks
>       SELinux: use new audit hooks, remove redundant exports
>       Audit: Final renamings and cleanup
>       Security: Introduce security= boot parameter
> 
> James Morris (2):
>       Tell git about security/selinux/include/audit.h
>       security: fix up documentation for security_module_enable
> 
>  Documentation/kernel-parameters.txt |    6 ++
>  include/linux/audit.h               |   29 ++++++++
>  include/linux/security.h            |  114 +++++++++++++++++++++++++++++-
>  include/linux/selinux.h             |  134
> -----------------------------------
>  kernel/audit.c                      |   24 +++----
>  kernel/audit.h                      |   25 -------
>  kernel/auditfilter.c                |   99 ++++++++++----------------
>  kernel/auditsc.c                    |   74 ++++++++++---------
>  net/netlink/af_netlink.c            |    3 +-
>  security/dummy.c                    |   51 +++++++++++++-
>  security/security.c                 |   73 +++++++++++++++++++-
>  security/selinux/exports.c          |   42 -----------
>  security/selinux/hooks.c            |   34 ++++++++-
>  security/selinux/include/audit.h    |   65 +++++++++++++++++
>  security/selinux/ss/services.c      |   45 +++++++++---
>  security/smack/smack.h              |    2 +
>  security/smack/smack_lsm.c          |    7 ++-
>  security/smack/smackfs.c            |   11 +++-
>  18 files changed, 503 insertions(+), 335 deletions(-)
>  create mode 100644 security/selinux/include/audit.h
> --
> To unsubscribe from this list: send the line "unsubscribe
> linux-security-module" in
> the body of a message to majordomo@...r.kernel.org
> More majordomo info at  http://vger.kernel.org/majordomo-info.html
> 
> 
> 


Casey Schaufler
casey@...aufler-ca.com
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ