mirror_ubuntu-kernels

mirror of https://git.proxmox.com/git/mirror_ubuntu-kernels.git synced 2025-12-10 03:50:10 +00:00

History

Stephen Smalley 37ca5389b8 AUDIT: Fix remaining cases of direct logging of untrusted strings by avc_audit Per Steve Grubb's observation that there are some remaining cases where avc_audit() directly logs untrusted strings without escaping them, here is a patch that changes avc_audit() to use audit_log_untrustedstring() or audit_log_hex() as appropriate. Note that d_name.name is nul- terminated by d_alloc(), and that sun_path is nul-terminated by unix_mkname(), so it is not necessary for the AVC to create nul- terminated copies or to alter audit_log_untrustedstring to take a length argument. In the case of an abstract name, we use audit_log_hex() with an explicit length. Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov> Signed-off-by: David Woodhouse <dwmw2@infradead.org>		2005-05-24 21:28:28 +01:00
..
include	[PATCH] SELinux: add finer grained permissions to Netlink audit processing	2005-05-01 08:58:40 -07:00
ss	Merge with master.kernel.org:/pub/scm/linux/kernel/git/torvalds/linux-2.6.git	2005-05-19 11:54:00 +01:00
avc.c	AUDIT: Fix remaining cases of direct logging of untrusted strings by avc_audit	2005-05-24 21:28:28 +01:00
hooks.c	AUDIT: Add message types to audit records	2005-05-13 18:17:42 +01:00
Kconfig	Linux-2.6.12-rc2	2005-04-16 15:20:36 -07:00
Makefile	Linux-2.6.12-rc2	2005-04-16 15:20:36 -07:00
netif.c	Linux-2.6.12-rc2	2005-04-16 15:20:36 -07:00
netlink.c	Linux-2.6.12-rc2	2005-04-16 15:20:36 -07:00
nlmsgtab.c	AUDIT: Treat all user messages identically.	2005-05-18 10:21:07 +01:00
selinuxfs.c	Linux-2.6.12-rc2	2005-04-16 15:20:36 -07:00