linux/security, branch v2.6.34-rc2 Linux kernel source tree https://git.amat.us/linux/atom/security?h=v2.6.34-rc2 2010-03-14T20:51:29Z tomoyo: fix potential use after free 2010-03-14T20:51:29Z Dan Carpenter error27@gmail.com 2010-03-13T11:14:22Z urn:sha1:181427a7e01beab76c789414334375839f026128 The original code returns a freed pointer. This function is expected to return NULL on errors. Signed-off-by: Dan Carpenter <error27@gmail.com> Acked-by: Tetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp> Signed-off-by: James Morris <jmorris@namei.org> Merge branch 'for-next' into for-linus 2010-03-08T15:55:37Z Jiri Kosina jkosina@suse.cz 2010-03-08T15:55:37Z urn:sha1:318ae2edc3b29216abd8a2510f3f80b764f06858 Conflicts: Documentation/filesystems/proc.txt arch/arm/mach-u300/include/mach/debug-macro.S drivers/net/qlge/qlge_ethtool.c drivers/net/qlge/qlge_main.c drivers/net/typhoon.c Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs-2.6 2010-03-04T16:15:33Z Linus Torvalds torvalds@linux-foundation.org 2010-03-04T16:15:33Z urn:sha1:0f2cc4ecd81dc1917a041dc93db0ada28f8356fa * 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs-2.6: (52 commits) init: Open /dev/console from rootfs mqueue: fix typo "failues" -> "failures" mqueue: only set error codes if they are really necessary mqueue: simplify do_open() error handling mqueue: apply mathematics distributivity on mq_bytes calculation mqueue: remove unneeded info->messages initialization mqueue: fix mq_open() file descriptor leak on user-space processes fix race in d_splice_alias() set S_DEAD on unlink() and non-directory rename() victims vfs: add NOFOLLOW flag to umount(2) get rid of ->mnt_parent in tomoyo/realpath hppfs can use existing proc_mnt, no need for do_kern_mount() in there Mirror MS_KERNMOUNT in ->mnt_flags get rid of useless vfsmount_lock use in put_mnt_ns() Take vfsmount_lock to fs/internal.h get rid of insanity with namespace roots in tomoyo take check for new events in namespace (guts of mounts_poll()) to namespace.c Don't mess with generic_permission() under ->d_lock in hpfs sanitize const/signedness for udf nilfs: sanitize const/signedness in dealing with ->d_name.name ... Fix up fairly trivial (famous last words...) conflicts in drivers/infiniband/core/uverbs_main.c and security/tomoyo/realpath.c get rid of ->mnt_parent in tomoyo/realpath 2010-03-03T19:08:00Z Al Viro viro@zeniv.linux.org.uk 2010-02-05T14:37:21Z urn:sha1:440b3c6c160f7d0a985f24ad1f4c24e00ee2d936 Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> get rid of insanity with namespace roots in tomoyo 2010-03-03T19:07:59Z Al Viro viro@zeniv.linux.org.uk 2010-02-05T06:41:33Z urn:sha1:37afdc7960ab493f827b5df9dc1b71b63b44331c passing *any* namespace root to __d_path() as root is equivalent to just passing it {NULL, NULL}; no need to bother with finding the root of our namespace in there. Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> fix mnt_mountpoint abuse in smack 2010-03-03T19:07:56Z Al Viro viro@zeniv.linux.org.uk 2010-01-30T20:27:27Z urn:sha1:de27a5bf9caef3f1fca1f315aa58eee54fbf929a (mnt,mnt_mountpoint) pair is conceptually wrong; if you want to use it for generating pathname and for nothing else *and* if you know that vfsmount tree is unchanging, you can get away with that, but the right solution for that is (mnt,mnt_root). Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> Merge branch 'next' into for-linus 2010-02-28T22:36:31Z James Morris jmorris@namei.org 2010-02-28T22:36:31Z urn:sha1:b4ccebdd37ff70d349321a198f416ba737a5e833 Merge branch 'core-rcu-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/linux-2.6-tip 2010-02-28T18:13:16Z Linus Torvalds torvalds@linux-foundation.org 2010-02-28T18:13:16Z urn:sha1:642c4c75a765d7a3244ab39c8e6fb09be21eca5b * 'core-rcu-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/linux-2.6-tip: (44 commits) rcu: Fix accelerated GPs for last non-dynticked CPU rcu: Make non-RCU_PROVE_LOCKING rcu_read_lock_sched_held() understand boot rcu: Fix accelerated grace periods for last non-dynticked CPU rcu: Export rcu_scheduler_active rcu: Make rcu_read_lock_sched_held() take boot time into account rcu: Make lockdep_rcu_dereference() message less alarmist sched, cgroups: Fix module export rcu: Add RCU_CPU_STALL_VERBOSE to dump detailed per-task information rcu: Fix rcutorture mod_timer argument to delay one jiffy rcu: Fix deadlock in TREE_PREEMPT_RCU CPU stall detection rcu: Convert to raw_spinlocks rcu: Stop overflowing signed integers rcu: Use canonical URL for Mathieu's dissertation rcu: Accelerate grace period if last non-dynticked CPU rcu: Fix citation of Mathieu's dissertation rcu: Documentation update for CONFIG_PROVE_RCU security: Apply lockdep-based checking to rcu_dereference() uses idr: Apply lockdep-based diagnostics to rcu_dereference() uses radix-tree: Disable RCU lockdep checking in radix tree vfs: Abstract rcu_dereference_check for files-fdtable use ... SELinux: Make selinux_kernel_create_files_as() shouldn't just always return 0 2010-02-26T03:54:23Z David Howells dhowells@redhat.com 2010-02-26T01:56:16Z urn:sha1:ef57471a73b67a7b65fd8708fd55c77cb7c619af Make selinux_kernel_create_files_as() return an error when it gets one, rather than unconditionally returning 0. Without this, cachefiles doesn't return an error if the SELinux policy doesn't let it create files with the label of the directory at the base of the cache. Signed-off-by: David Howells <dhowells@redhat.com> Signed-off-by: James Morris <jmorris@namei.org> TOMOYO: Protect find_task_by_vpid() with RCU. 2010-02-25T22:20:11Z Tetsuo Handa penguin-kernel@i-love.sakura.ne.jp 2010-02-25T08:19:25Z urn:sha1:1fcdc7c527010b144d3951f9ce25faedf264933c Holding tasklist_lock is no longer sufficient for find_task_by_vpid(). Explicit rcu_read_lock() is required. Signed-off-by: Tetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp> -- security/tomoyo/common.c | 4 ++++ 1 file changed, 4 insertions(+) Signed-off-by: James Morris <jmorris@namei.org>