lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
Date:   Mon, 10 Jan 2022 14:13:27 -0500
From:   Paul Moore <paul@...l-moore.com>
To:     Linus Torvalds <torvalds@...ux-foundation.org>
Cc:     selinux@...r.kernel.org, linux-security-module@...r.kernel.org,
        linux-kernel@...r.kernel.org
Subject: [GIT PULL] SELinux patches for v5.17

Linus,

Nothing too significant, but five SELinux patches for v5.17 that do
the following:

- Hardened the code through additional use of the struct_size() macro.
- Plugged some memory leaks.
- Cleaned up the code via removal of the security_add_mnt_opt() LSM
hook and minor tweaks to selinux_add_opt().
- Renamed security_task_getsecid_subj() to
security_current_getsecid_subj() to better reflect its actual
behavior/use.

Please merge.

-Paul

--
The following changes since commit fa55b7dcdc43c1aa1ba12bca9d2dd4318c2a0dbf:

 Linux 5.16-rc1 (2021-11-14 13:56:52 -0800)

are available in the Git repository at:

 git://git.kernel.org/pub/scm/linux/kernel/git/pcmoore/selinux.git
   tags/selinux-pr-20220110

for you to fetch changes up to 6cd9d4b97891560b61681cad9cc4307ce0719abc:

 selinux: minor tweaks to selinux_add_opt() (2021-12-21 15:14:45 -0500)

----------------------------------------------------------------
selinux/stable-5.17 PR 20220110

----------------------------------------------------------------
Bernard Zhao (1):
     selinux: fix potential memleak in selinux_add_opt()

Ondrej Mosnacek (1):
     security,selinux: remove security_add_mnt_opt()

Paul Moore (2):
     lsm: security_task_getsecid_subj() -> security_current_getsecid_subj()
     selinux: minor tweaks to selinux_add_opt()

Xiu Jianfeng (1):
     selinux: Use struct_size() helper in kmalloc()

include/linux/lsm_hook_defs.h         |  5 +--
include/linux/lsm_hooks.h             | 10 ++---
include/linux/security.h              | 12 +----
kernel/audit.c                        |  4 +-
kernel/auditfilter.c                  |  3 +-
kernel/auditsc.c                      | 11 ++++-
net/netlabel/netlabel_unlabeled.c     |  2 +-
net/netlabel/netlabel_user.h          |  2 +-
security/apparmor/lsm.c               | 13 ++++--
security/integrity/ima/ima_appraise.c |  2 +-
security/integrity/ima/ima_main.c     | 14 +++---
security/security.c                   | 14 ++----
security/selinux/hooks.c              | 84 +++++++------------------------
security/selinux/ss/sidtab.c          |  2 +-
security/selinux/xfrm.c               |  4 +-
security/smack/smack.h                | 16 -------
security/smack/smack_lsm.c            |  9 ++--
17 files changed, 70 insertions(+), 137 deletions(-)

-- 
paul moore
www.paul-moore.com

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ