18 Jan, 2020

1 commit

• 1b32e6ea7   tomoyo: Suppress RCU warning at list_for_each_entry_rcu(). ... Browse Code »

  [ Upstream commit 6bd5ce6089b561f5392460bfb654dea89356ab1b ]

  John Garry has reported that allmodconfig kernel on arm64 causes flood of
  "RCU-list traversed in non-reader section!!" warning. I don't know what
  change caused this warning, but this warning is safe because TOMOYO uses
  SRCU lock instead. Let's suppress this warning by explicitly telling that
  the caller is holding SRCU lock.

  Reported-and-tested-by: John Garry
  Signed-off-by: Tetsuo Handa
  Signed-off-by: Sasha Levin

  Tetsuo Handa

  2020-01-18 02:49:05 +0800  

25 Jan, 2019

1 commit

• cdcf6723a   tomoyo: Coding style fix. ... Browse Code »

  Follow many of recommendations by scripts/checkpatch.pl, and follow
  "lift switch variables out of switches" by Kees Cook.
  This patch makes no functional change.

  Signed-off-by: Tetsuo Handa
  Signed-off-by: James Morris

  Tetsuo Handa

  2019-01-25 06:50:27 +0800  

02 Nov, 2017

1 commit

• b24413180   License cleanup: add SPDX GPL-2.0 license identifier to files with no license ... Browse Code »

  Many source files in the tree are missing licensing information, which
  makes it harder for compliance tools to determine the correct license.

  By default all files without license information are under the default
  license of the kernel, which is GPL version 2.

  Update the files which contain no license information with the 'GPL-2.0'
  SPDX license identifier. The SPDX identifier is a legally binding
  shorthand, which can be used instead of the full boiler plate text.

  This patch is based on work done by Thomas Gleixner and Kate Stewart and
  Philippe Ombredanne.

  How this work was done:

  Patches were generated and checked against linux-4.14-rc6 for a subset of
  the use cases:
  - file had no licensing information it it.
  - file was a */uapi/* one with no licensing information in it,
  - file was a */uapi/* one with existing licensing information,

  Further patches will be generated in subsequent months to fix up cases
  where non-standard license headers were used, and references to license
  had to be inferred by heuristics based on keywords.

  The analysis to determine which SPDX License Identifier to be applied to
  a file was done in a spreadsheet of side by side results from of the
  output of two independent scanners (ScanCode & Windriver) producing SPDX
  tag:value files created by Philippe Ombredanne. Philippe prepared the
  base worksheet, and did an initial spot review of a few 1000 files.

  The 4.13 kernel was the starting point of the analysis with 60,537 files
  assessed. Kate Stewart did a file by file comparison of the scanner
  results in the spreadsheet to determine which SPDX license identifier(s)
  to be applied to the file. She confirmed any determination that was not
  immediately clear with lawyers working with the Linux Foundation.

  Criteria used to select files for SPDX license identifier tagging was:
  - Files considered eligible had to be source code files.
  - Make and config files were included as candidates if they contained >5
  lines of source
  - File already had some variant of a license header in it (even if
  Reviewed-by: Philippe Ombredanne
  Reviewed-by: Thomas Gleixner
  Signed-off-by: Greg Kroah-Hartman

  Greg Kroah-Hartman

  2017-11-02 18:10:55 +0800  

02 Mar, 2017

1 commit

• b2d091031   sched/headers: Prepare to use <linux/rcuupdate.h> instead of <linux/rculist.h> in <linux/sched.h> ... Browse Code »

  We don't actually need the full rculist.h header in sched.h anymore,
  we will be able to include the smaller rcupdate.h header instead.

  But first update code that relied on the implicit header inclusion.

  Acked-by: Linus Torvalds
  Cc: Mike Galbraith
  Cc: Peter Zijlstra
  Cc: Thomas Gleixner
  Cc: linux-kernel@vger.kernel.org
  Signed-off-by: Ingo Molnar

  Ingo Molnar

  2017-03-02 15:42:38 +0800  

14 Sep, 2011

1 commit

• 059d84dbb   TOMOYO: Add socket operation restriction support. ... Browse Code »

  This patch adds support for permission checks for PF_INET/PF_INET6/PF_UNIX
  socket's bind()/listen()/connect()/send() operations.

  Signed-off-by: Tetsuo Handa
  Signed-off-by: James Morris

  Tetsuo Handa

  2011-09-14 06:27:05 +0800  

14 Jul, 2011

1 commit

• 0f2a55d5b   TOMOYO: Update kernel-doc. ... Browse Code »

  Update comments for scripts/kernel-doc and fix some of errors reported by
  scripts/checkpatch.pl .

  Signed-off-by: Tetsuo Handa
  Signed-off-by: James Morris

  Tetsuo Handa

  2011-07-14 15:50:03 +0800  

29 Jun, 2011

1 commit

• a238cf5b8   TOMOYO: Use struct for passing ACL line. ... Browse Code »

  Use structure for passing ACL line, in preparation for supporting policy
  namespace and conditional parameters.

  Signed-off-by: Tetsuo Handa
  Signed-off-by: James Morris

  Tetsuo Handa

  2011-06-29 07:31:20 +0800  

02 Aug, 2010

2 commits

• 484ca79c6   TOMOYO: Use pathname specified by policy rather than execve() ... Browse Code »

  Commit c9e69318 "TOMOYO: Allow wildcard for execute permission." changed execute
  permission and domainname to accept wildcards. But tomoyo_find_next_domain()
  was using pathname passed to execve() rather than pathname specified by the
  execute permission. As a result, processes were not able to transit to domains
  which contain wildcards in their domainnames.

  This patch passes pathname specified by the execute permission back to
  tomoyo_find_next_domain() so that processes can transit to domains which
  contain wildcards in their domainnames.

  Signed-off-by: Tetsuo Handa
  Signed-off-by: James Morris

  Tetsuo Handa

  2010-08-02 13:38:38 +0800  
• 7c2ea22e3   TOMOYO: Merge path_group and number_group. ... Browse Code »

  Use common code for "path_group" and "number_group".

  Signed-off-by: Tetsuo Handa
  Signed-off-by: James Morris

  Tetsuo Handa

  2010-08-02 13:34:42 +0800