Seth/kernel_amazon_mt8127-common
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
384,277 Commits 3 Branches 1 Tag
cm-14.1
Commit Graph

59196 Commits

Author SHA1 Message Date
ggow fddef9b0e1 Add required changes for austin and ford 2019-04-21 09:20:06 +01:00
Tom Marshall 672c40a112 kernel: Only expose su when daemon is running 
It has been claimed that the PG implementation of 'su' has security
vulnerabilities even when disabled.  Unfortunately, the people that
find these vulnerabilities often like to keep them private so they
can profit from exploits while leaving users exposed to malicious
hackers.

In order to reduce the attack surface for vulnerabilites, it is
therefore necessary to make 'su' completely inaccessible when it
is not in use (except by the root and system users).

Change-Id: I79716c72f74d0b7af34ec3a8054896c6559a181d
 2018-05-03 18:44:36 +02:00
Al Viro 0f63c0e88f introduce ->iterate(), ctx->pos, dir_emit() 
New method - ->iterate(file, ctx).  That's the replacement for ->readdir();
it takes callback from ctx->actor, uses ctx->pos instead of file->f_pos and
calls dir_emit(ctx, ...) instead of filldir(data, ...).  It does *not*
update file->f_pos (or look at it, for that matter); iterate_dir() does the
update.

Note that dir_emit() takes the offset from ctx->pos (and eventually
filldir_t will lose that argument).

Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
 2018-05-03 18:37:22 +02:00
Al Viro 0f8376923b introduce iterate_dir() and dir_context 
iterate_dir(): new helper, replacing vfs_readdir().

struct dir_context: contains the readdir callback (and will get more stuff
in it), embedded into whatever data that callback wants to deal with;
eventually, we'll be passing it to ->readdir() replacement instead of
(data,filldir) pair.

Change-Id: Idb3843e77b97d52490b297b1f9e7d7efab18eaef
Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
 2018-05-03 18:33:29 +02:00
Jeff Vander Stoep a4a18acb07 security: add ioctl specific auditing to lsm_audit 
(cherry pick from commit 671a2781ff01abf4fdc8904881fc3abd3a8279af)

Add information about ioctl calls to the LSM audit data. Log the
file path and command number.

Signed-off-by: Jeff Vander Stoep <jeffv@google.com>
Acked-by: Nick Kralevich <nnk@google.com>
[PM: subject line tweak]
Signed-off-by: Paul Moore <pmoore@redhat.com>
Bug: 22846070
Change-Id: I88a6ecdd59297a315a6fb9c82c0a798bdb6bafaa
 2018-04-20 19:26:01 +02:00
Stricted bdecc6d184 Merge tag 'v3.10.108' into update 
This is the 3.10.108 stable release
 2018-03-21 23:07:40 +01:00
Stricted 073b9047a0 Merge tag 'v3.10.107' into update 
This is the 3.10.107 stable release
 2018-03-21 23:07:35 +01:00
Stricted 47e5ca72da Merge tag 'v3.10.106' into update 
This is the 3.10.106 stable release
 2018-03-21 23:06:23 +01:00
Stricted ad957d335c Merge tag 'v3.10.105' into update 
This is the 3.10.105 stable release
 2018-03-21 23:00:38 +01:00
Stricted c8df40eb3e Merge tag 'v3.10.104' into update 
This is the 3.10.104 stable release
 2018-03-21 22:58:25 +01:00
Stricted b9e7bc93d6 Merge tag 'v3.10.103' into update 
This is the 3.10.103 stable release
 2018-03-21 22:58:21 +01:00
Stricted a8732f92e3 Merge tag 'v3.10.102' into update 
This is the 3.10.102 stable release
 2018-03-21 22:54:09 +01:00
Stricted 9aae3dad3d Merge tag 'v3.10.101' into update 
This is the 3.10.101 stable release
 2018-03-21 22:52:41 +01:00
Stricted 93481ad93e Merge tag 'v3.10.100' into update 
This is the 3.10.100 stable release
 2018-03-21 22:52:38 +01:00
Stricted d09f889ac9 Merge tag 'v3.10.99' into update 
This is the 3.10.99 stable release
 2018-03-21 22:51:42 +01:00
Stricted 647f2da1e2 Merge tag 'v3.10.98' into update 
This is the 3.10.98 stable release
 2018-03-21 22:51:37 +01:00
Stricted dd388bd4cd Merge tag 'v3.10.97' into update 
This is the 3.10.97 stable release
 2018-03-21 22:51:04 +01:00
Stricted ca0dd0f30e Merge tag 'v3.10.96' into update 
This is the 3.10.96 stable release
 2018-03-21 22:51:00 +01:00
Stricted f3d34b554f Merge tag 'v3.10.95' into update 
This is the 3.10.95 stable release
 2018-03-21 22:50:56 +01:00
Stricted 9a68094070 Merge tag 'v3.10.94' into update 
This is the 3.10.94 stable release
 2018-03-21 22:49:45 +01:00
Stricted 3884fb9807 Merge tag 'v3.10.93' into update 
This is the 3.10.93 stable release
 2018-03-21 22:49:39 +01:00
Stricted 4511a4e21f Merge tag 'v3.10.92' into update 
This is the 3.10.92 stable release
 2018-03-21 22:49:35 +01:00
Stricted d50b84c473 Merge tag 'v3.10.91' into update 
This is the 3.10.91 stable release
 2018-03-21 22:48:36 +01:00
Stricted 8441062777 Merge tag 'v3.10.90' into update 
This is the 3.10.90 stable release
 2018-03-21 22:47:31 +01:00
Stricted 15bd15baa8 Merge tag 'v3.10.89' into update 
This is the 3.10.89 stable release
 2018-03-21 22:47:28 +01:00
Stricted 97a3fbdc30 Merge tag 'v3.10.88' into update 
This is the 3.10.88 stable release
 2018-03-21 22:47:25 +01:00
Stricted 38b8911896 Merge tag 'v3.10.85' into update 
This is the 3.10.85 stable release
 2018-03-21 22:46:39 +01:00
Stricted 81575b8770 Merge tag 'v3.10.83' into update 
This is the 3.10.83 stable release
 2018-03-21 22:46:32 +01:00
Stricted 5eab702925 Merge tag 'v3.10.80' into update 
This is the 3.10.80 stable release
 2018-03-21 22:45:22 +01:00
Stricted 705e3c2e81 Merge tag 'v3.10.79' into update 
This is the 3.10.79 stable release
 2018-03-21 22:44:42 +01:00
Stricted 9d35d890f3 Merge tag 'v3.10.78' into update 
This is the 3.10.78 stable release
 2018-03-21 22:44:38 +01:00
Stricted 9b13083065 Merge tag 'v3.10.77' into update 
This is the 3.10.77 stable release
 2018-03-21 22:44:34 +01:00
Stricted 85511b9d61 Merge tag 'v3.10.76' into update 
This is the 3.10.76 stable release
 2018-03-21 22:42:30 +01:00
Stricted 446a42c9b2 Merge tag 'v3.10.75' into update 
This is the 3.10.75 stable release
 2018-03-21 22:41:10 +01:00
Stricted eff333fa3b Merge tag 'v3.10.73' into update 
This is the 3.10.73 stable release
 2018-03-21 22:41:03 +01:00
Stricted 5d8d08710c Merge tag 'v3.10.71' into update 
This is the 3.10.71 stable release
 2018-03-21 22:40:50 +01:00
Stricted 1713de5594 Merge tag 'v3.10.70' into update 
This is the 3.10.70 stable release
 2018-03-21 22:40:47 +01:00
Stricted 4a2455f795 Merge tag 'v3.10.69' into update 
This is the 3.10.69 stable release
 2018-03-21 22:39:46 +01:00
Stricted b2d402e5a4 Merge tag 'v3.10.67' into update 
This is the 3.10.67 stable release
 2018-03-21 22:36:30 +01:00
Stricted 90cb50b720 Merge tag 'v3.10.65' into update 
This is the 3.10.65 stable release
 2018-03-21 22:36:23 +01:00
Stricted d242a5721c Merge tag 'v3.10.64' into update 
This is the 3.10.64 stable release
 2018-03-21 22:33:51 +01:00
Stricted 620f7405fd Merge tag 'v3.10.62' into update 
This is the 3.10.62 stable release
 2018-03-21 22:31:45 +01:00
Stricted 7887027a47 Merge tag 'v3.10.61' into update 
This is the 3.10.61 stable release
 2018-03-21 22:31:40 +01:00
Stricted 6f56b75961 Merge tag 'v3.10.60' into update 
This is the 3.10.60 stable release
 2018-03-21 22:31:34 +01:00
Stricted 583be8778f Merge tag 'v3.10.59' into update 
This is the 3.10.59 stable release
 2018-03-21 22:31:29 +01:00
Stricted 3af310ffc1 Merge tag 'v3.10.58' into update 
This is the 3.10.58 stable release
 2018-03-21 22:31:25 +01:00
Stricted f5aa73ff5c Merge tag 'v3.10.57' into update 
This is the 3.10.57 stable release
 2018-03-21 22:28:46 +01:00
Stricted f29ec40f35 Merge tag 'v3.10.56' into update 
This is the 3.10.56 stable release
 2018-03-21 22:24:54 +01:00
Stricted b435043299 Merge tag 'v3.10.55' into update 
This is the 3.10.55 stable release
 2018-03-21 22:13:57 +01:00
Stricted 4b9e97964e import PULS_20180308 2018-03-13 20:30:12 +01:00