14 Sep, 2011

1 commit

• 059d84dbb   TOMOYO: Add socket operation restriction support. ... Browse Code »

  This patch adds support for permission checks for PF_INET/PF_INET6/PF_UNIX
  socket's bind()/listen()/connect()/send() operations.

  Signed-off-by: Tetsuo Handa
  Signed-off-by: James Morris

  Tetsuo Handa

  2011-09-14 06:27:05 +0800  

14 Jul, 2011

1 commit

• 0f2a55d5b   TOMOYO: Update kernel-doc. ... Browse Code »

  Update comments for scripts/kernel-doc and fix some of errors reported by
  scripts/checkpatch.pl .

  Signed-off-by: Tetsuo Handa
  Signed-off-by: James Morris

  Tetsuo Handa

  2011-07-14 15:50:03 +0800  

29 Jun, 2011

1 commit

• a238cf5b8   TOMOYO: Use struct for passing ACL line. ... Browse Code »

  Use structure for passing ACL line, in preparation for supporting policy
  namespace and conditional parameters.

  Signed-off-by: Tetsuo Handa
  Signed-off-by: James Morris

  Tetsuo Handa

  2011-06-29 07:31:20 +0800  

02 Aug, 2010

2 commits

• 484ca79c6   TOMOYO: Use pathname specified by policy rather than execve() ... Browse Code »

  Commit c9e69318 "TOMOYO: Allow wildcard for execute permission." changed execute
  permission and domainname to accept wildcards. But tomoyo_find_next_domain()
  was using pathname passed to execve() rather than pathname specified by the
  execute permission. As a result, processes were not able to transit to domains
  which contain wildcards in their domainnames.

  This patch passes pathname specified by the execute permission back to
  tomoyo_find_next_domain() so that processes can transit to domains which
  contain wildcards in their domainnames.

  Signed-off-by: Tetsuo Handa
  Signed-off-by: James Morris

  Tetsuo Handa

  2010-08-02 13:38:38 +0800  
• 7c2ea22e3   TOMOYO: Merge path_group and number_group. ... Browse Code »

  Use common code for "path_group" and "number_group".

  Signed-off-by: Tetsuo Handa
  Signed-off-by: James Morris

  Tetsuo Handa

  2010-08-02 13:34:42 +0800