Linux kernel stable tree (mirror) https://git.radix-linux.su/kernel/linux.git/atom?h=v4.14.192 2017-10-26T17:35:35+00:00 2017-10-26T17:35:35+00:00 Linus Torvalds torvalds@linux-foundation.org 2017-10-26T17:35:35+00:00 urn:sha1:80c094a47dd4ea63375e3f60b5e076064f16e857 This reverts commit 651e28c5537abb39076d3949fb7618536f1d242e. This caused a regression: "The specific problem is that dnsmasq refuses to start on openSUSE Leap 42.2. The specific cause is that and attempt to open a PF_LOCAL socket gets EACCES. This means that networking doesn't function on a system with a 4.14-rc2 system." Sadly, the developers involved seemed to be in denial for several weeks about this, delaying the revert. This has not been a good release for the security subsystem, and this area needs to change development practices. Reported-and-bisected-by: James Bottomley <James.Bottomley@hansenpartnership.com> Tracked-by: Thorsten Leemhuis <regressions@leemhuis.info> Cc: John Johansen <john.johansen@canonical.com> Cc: Vlastimil Babka <vbabka@suse.cz> Cc: Seth Arnold <seth.arnold@canonical.com> Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org> 2017-09-22T20:00:58+00:00 John Johansen john.johansen@canonical.com 2017-07-19T06:18:33+00:00 urn:sha1:651e28c5537abb39076d3949fb7618536f1d242e Provide a basic mediation of sockets. This is not a full net mediation but just whether a spcific family of socket can be used by an application, along with setting up some basic infrastructure for network mediation to follow. the user space rule hav the basic form of NETWORK RULE = [ QUALIFIERS ] 'network' [ DOMAIN ] [ TYPE | PROTOCOL ] DOMAIN = ( 'inet' | 'ax25' | 'ipx' | 'appletalk' | 'netrom' | 'bridge' | 'atmpvc' | 'x25' | 'inet6' | 'rose' | 'netbeui' | 'security' | 'key' | 'packet' | 'ash' | 'econet' | 'atmsvc' | 'sna' | 'irda' | 'pppox' | 'wanpipe' | 'bluetooth' | 'netlink' | 'unix' | 'rds' | 'llc' | 'can' | 'tipc' | 'iucv' | 'rxrpc' | 'isdn' | 'phonet' | 'ieee802154' | 'caif' | 'alg' | 'nfc' | 'vsock' | 'mpls' | 'ib' | 'kcm' ) ',' TYPE = ( 'stream' | 'dgram' | 'seqpacket' | 'rdm' | 'raw' | 'packet' ) PROTOCOL = ( 'tcp' | 'udp' | 'icmp' ) eg. network, network inet, Signed-off-by: John Johansen <john.johansen@canonical.com> Acked-by: Seth Arnold <seth.arnold@canonical.com> 2017-06-11T00:11:38+00:00 John Johansen john.johansen@canonical.com 2017-06-09T15:14:28+00:00 urn:sha1:637f688dc3dc304a89f441d76f49a0e35bc49c08 Begin the actual switch to using domain labels by storing them on the context and converting the label to a singular profile where possible. Signed-off-by: John Johansen <john.johansen@canonical.com> 2017-06-11T00:11:29+00:00 John Johansen john.johansen@canonical.com 2017-05-29T18:45:29+00:00 urn:sha1:b5b2557c0aeca35b34c558fd09ad6da67b9f3557 Signed-off-by: John Johansen <john.johansen@canonical.com> 2017-06-11T00:11:20+00:00 John Johansen john.johansen@canonical.com 2017-05-26T08:45:08+00:00 urn:sha1:18e99f191a8e66ec8fd06e4820de44bd9faa296a Signed-off-by: John Johansen <john.johansen@canonical.com> 2017-06-08T19:51:53+00:00 John Johansen john.johansen@canonical.com 2017-05-26T08:57:09+00:00 urn:sha1:fc7e0b26b8d26e680bb2f252e9521385e0092e4c Signed-off-by: John Johansen <john.johansen@canonical.com> 2017-06-08T18:29:34+00:00 John Johansen john.johansen@canonical.com 2017-05-22T10:06:52+00:00 urn:sha1:72c8a768641dc6ee8d1d9dcebd51bbec2817459b Signed-off-by: John Johansen <john.johansen@canonical.com> 2017-02-21T20:49:56+00:00 Linus Torvalds torvalds@linux-foundation.org 2017-02-21T20:49:56+00:00 urn:sha1:c9341ee0af4df0af8b727873ef851227345defed Pull security layer updates from James Morris: "Highlights: - major AppArmor update: policy namespaces & lots of fixes - add /sys/kernel/security/lsm node for easy detection of loaded LSMs - SELinux cgroupfs labeling support - SELinux context mounts on tmpfs, ramfs, devpts within user namespaces - improved TPM 2.0 support" * 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security: (117 commits) tpm: declare tpm2_get_pcr_allocation() as static tpm: Fix expected number of response bytes of TPM1.2 PCR Extend tpm xen: drop unneeded chip variable tpm: fix misspelled "facilitate" in module parameter description tpm_tis: fix the error handling of init_tis() KEYS: Use memzero_explicit() for secret data KEYS: Fix an error code in request_master_key() sign-file: fix build error in sign-file.c with libressl selinux: allow changing labels for cgroupfs selinux: fix off-by-one in setprocattr tpm: silence an array overflow warning tpm: fix the type of owned field in cap_t tpm: add securityfs support for TPM 2.0 firmware event log tpm: enhance read_log_of() to support Physical TPM event log tpm: enhance TPM 2.0 PCR extend to support multiple banks tpm: implement TPM 2.0 capability to get active PCR banks tpm: fix RC value check in tpm2_seal_trusted tpm_tis: fix iTPM probe via probe_itpm() function tpm: Begin the process to deprecate user_read_timer tpm: remove tpm_read_index and tpm_write_index from tpm.h ... 2017-01-16T09:18:51+00:00 William Hua william.hua@canonical.com 2017-01-16T00:49:28+00:00 urn:sha1:e025be0f26d5597b0a2bdfa65145a0171e77b614 Allow a profile to carry extra data that can be queried via userspace. This provides a means to store extra data in a profile that a trusted helper can extract and use from live policy. Signed-off-by: William Hua <william.hua@canonical.com> Signed-off-by: John Johansen <john.johansen@canonical.com> 2017-01-16T09:18:46+00:00 John Johansen john.johansen@canonical.com 2017-01-16T08:43:01+00:00 urn:sha1:47f6e5cc7355e4ff2fd7ace919aa9e291077c26b Having ops be an integer that is an index into an op name table is awkward and brittle. Every op change requires an edit for both the op constant and a string in the table. Instead switch to using const strings directly, eliminating the need for the table that needs to be kept in sync. Signed-off-by: John Johansen <john.johansen@canonical.com>