Age | Commit message (Collapse) | Author |
|
Some application suites have external crash handlers that depend
on being able to use ptrace to generate crash reports (KDE, Wine,
Chromium, Firefox, etc). Since the inferior process has a defined
application-specific relationship with the debugger, allow the inferior
to express that relationship by declaring who can call PTRACE_ATTACH
against it. The inferior can use prctl() with PR_SET_PTRACER to allow a
specific PID and its descendants to perform the ptrace instead of only
a direct ancestor.
Signed-off-by: Kees Cook <kees.cook@canonical.com>
---
v2:
- kmalloc, spinlock init, and doc typo corrections from Tetsuo Handa.
- make sure to replace if possible on add, thanks to Eric Paris.
v3:
- make sure to use thread group leader when searching for exceptions.
v4:
- make sure to use thread group leader when creating exceptions.
v5:
- make sure to use thread group leader when deleting exceptions.
Signed-off-by: Tim Gardner <tim.gardner@canonical.com>
|
|
The current LSM interface to cred_free is not sufficient for allowing
an LSM to track the life and death of a task. This patch adds the
task_free hook so that an LSM can clean up resources on task death.
Signed-off-by: Kees Cook <kees.cook@canonical.com>
Signed-off-by: Tim Gardner <tim.gardner@canonical.com>
|
|
This adds the Yama Linux Security Module to collect several security
features (symlink, hardlink, and ptrace restrictions) that have existed
in various forms over the years and have been carried outside the mainline
kernel by other Linux distributions like Openwall and grsecurity.
Signed-off-by: Kees Cook <kees.cook@canonical.com>
---
v2:
- add rcu locking, thanks to Tetsuo Handa.
- add Documentation/Yama.txt for summary of features.
v3:
- drop needless cap_ callbacks.
- fix usage of get_task_comm.
- drop CONFIG_ of sysctl defaults, as recommended by Andi Kleen.
- require SYSCTL.
v4:
- drop accidentally included fs/exec.c chunk.
v5:
- resend, with ptrace relationship interface
v6:
- merge with 2.6.39, thanks to Andy Whitcroft
Signed-off-by: Tim Gardner <tim.gardner@canonical.com>
|
|
Signed-off-by: Andy Whitcroft <apw@canonical.com>
|
|
Clean up the updater to record and use the real sha1 of the tip of the
standalone tree as well as recording and tracking the nominal tip in the
changelog for commit generation.
Signed-off-by: Andy Whitcroft <apw@canonical.com>
|
|
Remaining Ubuntu Changes:
UBUNTU: ubuntu: AUFS -- suppress benign plink warning messages
Upstream Changelog:
commit c6b76974311efc5bf3eddf921cd015b6aae46935
Author: J. R. Okajima <hooanon05@yahoo.co.jp>
Date: Fri Apr 15 18:14:01 2011 +0900
aufs: for .38, replace dcache_lock by i_lock
Signed-off-by: J. R. Okajima <hooanon05@yahoo.co.jp>
commit 02687391b4084d24af377a774ae25911df49b9e3
Author: J. R. Okajima <hooanon05@yahoo.co.jp>
Date: Thu Apr 14 10:47:58 2011 +0900
aufs: possible bugfix, aufs_link supports for a flushed plink
In aufs_link(), the given dentry may be a psuedo-link. In this case,
aufs should detect it and call vfs_link() for the real inode on the
highest branch.
A new function au_h_d_alias() is introduced.
Signed-off-by: J. R. Okajima <hooanon05@yahoo.co.jp>
commit a74d7008d25093b5d1fecb7f33df98570fddbf7e
Author: J. R. Okajima <hooanon05@yahoo.co.jp>
Date: Wed Apr 13 23:10:40 2011 +0900
aufs: debug, new debug print au_dpri_dalias
Signed-off-by: J. R. Okajima <hooanon05@yahoo.co.jp>
commit ad8f42b1ece790644d3a050907009a48153de71c
Author: J. R. Okajima <hooanon05@yahoo.co.jp>
Date: Tue Apr 12 23:38:58 2011 +0900
aufs: possible bugfix, decode_by_ino support for obsolete dentry
In decoding the NFS file handle, the cached dentry may be obsoleted by
aufs branch mgmt. To support this case, decode_by_ino() returns NULL to
force falling to the next level of decoding, eg decode_by_dir_ino.
In decode_by_dir_ino(), a new lookup is issued and the dentry will be
refreshed.
Signed-off-by: J. R. Okajima <hooanon05@yahoo.co.jp>
commit 1f2bca01f562d4247494bbf20bcd8860b341d30c
Author: J. R. Okajima <hooanon05@yahoo.co.jp>
Date: Thu Apr 7 22:07:34 2011 +0900
aufs: tiny, note about ./include/linux/Kbuild
Signed-off-by: J. R. Okajima <hooanon05@yahoo.co.jp>
commit 2bc4f0f5c84d7f06f24afc30a3d527b6c5762bdf
Author: J. R. Okajima <hooanon05@yahoo.co.jp>
Date: Thu Apr 7 00:25:09 2011 +0900
aufs: for 2.6.39, more lockdep mgmt
a missing lockdep_off/on().
Signed-off-by: J. R. Okajima <hooanon05@yahoo.co.jp>
commit 27e557259bad6ebc48d4a811d5ef9db94070aa8b
Author: J. R. Okajima <hooanon05@yahoo.co.jp>
Date: Mon Apr 4 02:35:07 2011 +0900
aufs: tiny, delete an unnecessary space
Signed-off-by: J. R. Okajima <hooanon05@yahoo.co.jp>
commit cfab7ccc2ecc838898a3f1a6bb6203ac433791a9
Author: J. R. Okajima <hooanon05@yahoo.co.jp>
Date: Fri Apr 1 14:25:49 2011 +0900
aufs: for 2.6.39, lockdep upgrades
Simply insert lockdef_off/on() calls in "sub-VFS" character of aufs.
Signed-off-by: J. R. Okajima <hooanon05@yahoo.co.jp>
commit 17eac367b03334e57a93e8051eb712add24d2534
Author: J. R. Okajima <hooanon05@yahoo.co.jp>
Date: Fri Apr 1 16:31:22 2011 +0900
aufs: for 2.6.39, limit the support for IMA
Since it acquires i_mutex and causes a deadlock, replace a
ima_file_check() call by i_readcount_inc().
Signed-off-by: J. R. Okajima <hooanon05@yahoo.co.jp>
commit 4b09fd3cf305c00199059dddb977eea15b43bd47
Author: J. R. Okajima <hooanon05@yahoo.co.jp>
Date: Fri Apr 1 14:18:28 2011 +0900
aufs: for 2.6.39, a_op->sync_page is removed
Signed-off-by: J. R. Okajima <hooanon05@yahoo.co.jp>
commit 8c6f250f54267fd05c2213d5e4a424ea5927dc3b
Author: J. R. Okajima <hooanon05@yahoo.co.jp>
Date: Fri Apr 1 14:17:44 2011 +0900
aufs stdalone: for 2.6.39, CONFIG_EXPORTFS becomes boolean
Signed-off-by: J. R. Okajima <hooanon05@yahoo.co.jp>
commit 0932903afb6ceda5523240a9187b7896c446432d
Author: J. R. Okajima <hooanon05@yahoo.co.jp>
Date: Fri Apr 1 14:17:03 2011 +0900
aufs stdalone: for 2.6.39, export inode_sb_list_lock
The role of inode_lock is split into several locks.
Simply aufs follows it.
Export inode_sb_list_lock for modules.
Signed-off-by: J. R. Okajima <hooanon05@yahoo.co.jp>
commit 102c58ce81b28613a53b65657bc45e6c52d56534
Author: J. R. Okajima <hooanon05@yahoo.co.jp>
Date: Fri Apr 1 14:16:22 2011 +0900
aufs: for 2.6.39, split inode_lock into several locks
The role of inode_lock was split into several locks.
Simply aufs follows it.
Signed-off-by: J. R. Okajima <hooanon05@yahoo.co.jp>
commit a2235254f63941d7bcd4099bfbabd134465c3600
Author: J. R. Okajima <hooanon05@yahoo.co.jp>
Date: Fri Apr 1 14:11:11 2011 +0900
aufs: for 2.6.39, replace __lookup_one_len by vfsub_name_hash
By the commit,
6a96ba5 2011-03-14 kill __lookup_one_len()
the function was removed and merged into lookup_one_len().
Signed-off-by: J. R. Okajima <hooanon05@yahoo.co.jp>
commit 5ec0835848ad10501993a1ef21ab69c9a6a6b01c
Author: J. R. Okajima <hooanon05@yahoo.co.jp>
Date: Tue Mar 29 16:26:35 2011 +0900
aufs: tiny, support for new fmode macros
Signed-off-by: J. R. Okajima <hooanon05@yahoo.co.jp>
commit 26a0f8af5829c88d42db3446ae3778127c7a3f0c
Author: J. R. Okajima <hooanon05@yahoo.co.jp>
Date: Wed Mar 23 02:27:17 2011 +0900
aufs: version string for aufs2.1-39
Signed-off-by: J. R. Okajima <hooanon05@yahoo.co.jp>
commit eef0b4de3c91b95cb48d33286500a486ea3f4424
Author: J. R. Okajima <hooanon05@yahoo.co.jp>
Date: Wed Mar 23 02:13:27 2011 +0900
aufs: version string for aufs2.1-38
Signed-off-by: J. R. Okajima <hooanon05@yahoo.co.jp>
commit b7f6b930cc0671ccbd7ba4cc0f3aff35ee995834
Author: J. R. Okajima <hooanon05@yahoo.co.jp>
Date: Tue Mar 22 23:43:56 2011 +0900
aufs: update donators
Signed-off-by: J. R. Okajima <hooanon05@yahoo.co.jp>
commit 1c0c29f20a09d1767bfb97348f28b23a056ca5c7
Author: J. R. Okajima <hooanon05@yahoo.co.jp>
Date: Wed Mar 2 13:36:35 2011 +0900
aufs: refine a mutex for mmap 3/3, add a condition
Acquire fi_mmap mutex lock only when necessary, ie. the file is not
mmapped yet.
Signed-off-by: J. R. Okajima <hooanon05@yahoo.co.jp>
commit 6c4dbe7a9a28134e0246bafbcbdfac1614539fbd
Author: J. R. Okajima <hooanon05@yahoo.co.jp>
Date: Wed Mar 2 13:34:55 2011 +0900
aufs: refine a mutex for mmap 2/3, replace lockdep_off by dep_map
Since it can hide an important debug message, calling lockdep_off/on is
a bad approach. But aufs_mmap() does it in switching the owner of
fi_mmap mutex lock. Delegating a top-half of aufs_mmap() and switching
the owner of fi_mmap is still an ugly approach, but I don't find another
way.
Without lockdep_off, the kernel debugging feature produces a false
message.
Stop calling lockdep_off/on, use lockdep_acquire/release instead thus we
can get benefit from the debugging feature.
This is slightly tricky and a feature for debugging only.
Signed-off-by: J. R. Okajima <hooanon05@yahoo.co.jp>
commit dcdfe3b9d0e67b2a9636813d452159495d205e92
Author: J. R. Okajima <hooanon05@yahoo.co.jp>
Date: Wed Mar 2 13:26:14 2011 +0900
aufs: refine a mutex for mmap 1/3, move functions and make them static
Signed-off-by: J. R. Okajima <hooanon05@yahoo.co.jp>
commit dcb6ad5eba7d9ef18909068285eefbb1cfe5e589
Author: John Johansen <john.johansen@canonical.com>
Date: Mon Feb 28 22:19:38 2011 -0800
Fix aufs call of security_path_mknod
The security_path_mknod hook requires an encoded 'dev' for its 'dev' paramet
but aufs is calling security_path_mknod with a 'dev' that was already
converted by 'new_decode_dev(dev)'. However security_path_mknod and its
consumer TOMOYO is expecting 'dev' rather than 'new_decode_dev(dev)'.
This will result in TOMOYO doing new_decode_dev(new_decode_dev(dev))
(which is wrong) when security_path_mknod() is called from aufs' vfsub_mknod
Signed-off-by: Tetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp>
Signed-off-by: John Johansen <john.johansen@canonical.com>
Signed-off-by: J. R. Okajima <hooanon05@yahoo.co.jp>
commit 36d328cd7d0a68b79b4cbc9dad0af7653b403d36
Author: J. R. Okajima <hooanon05@yahoo.co.jp>
Date: Wed Feb 23 01:25:05 2011 +0900
aufs: update the donators list
Signed-off-by: J. R. Okajima <hooanon05@yahoo.co.jp>
commit f4f4f752d0e83a59b8b36cc6870ca8635ff6f8af
Author: J. R. Okajima <hooanon05@yahoo.co.jp>
Date: Mon Feb 14 20:57:35 2011 +0900
aufs: tiny, support verbose by au_br_mod()
Signed-off-by: J. R. Okajima <hooanon05@yahoo.co.jp>
commit 6c2bad0b72d2299476a6fa8f6a6da0b4a2e115eb
Author: J. R. Okajima <hooanon05@yahoo.co.jp>
Date: Mon Feb 14 15:32:24 2011 +0900
aufs: new ioctl AUFS_CTL_IBUSY
This new ioctl interface receives an inode number and a branch index.
When the actual (hidden) ino on that branch is in use and makes the
branch busy (un-removable), returns the h_ino.
Signed-off-by: J. R. Okajima <hooanon05@yahoo.co.jp>
commit 5c0aa28ddfc1510834a5eac418e71f242d6061c9
Author: J. R. Okajima <hooanon05@yahoo.co.jp>
Date: Mon Feb 14 14:22:18 2011 +0900
aufs: new functions to test EBUSY
Extract parts from test_dentry_busy() and test_inode_busy() and create
new helper functions au_test_dbusy() and au_test_ibusy().
These functions will be used by a new ioctl to test EBUSY in the future.
Signed-off-by: J. R. Okajima <hooanon05@yahoo.co.jp>
Signed-off-by: Andy Whitcroft <apw@canonical.com>
|
|
Signed-off-by: Andy Whitcroft <apw@canonical.com>
|
|
Signed-off-by: Andy Whitcroft <apw@canonical.com>
|
|
Ignore: yes
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
Ignore: yes
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
Ignore: yes
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
Ignore: yes
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
Now that we've officially started uploading to the Oneiric archive, use
the 2.6.39-0.5 ABI's generated for amd64, i386, and powerpc (armel
failed to build). Also remove the ABI ignore files from amd64, i386,
and powerpc.
Ignore: yes
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
When building on arm we run into the following build error due to
gcc-4.6 optimizing do_div into a uldivmod call:
ERROR: "__aeabi_uldivmod" [drivers/scsi/megaraid/megaraid_sas.ko] undefined!
Inline some assembly to prevent the compiler optimization.
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
Signed-off-by: Tim Gardner <tim.gardner@canonical.com>
|
|
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
Ignore: yes
Signed-off-by: Tim Gardner <tim.gardner@canonical.com>
|
|
Signed-off-by: Tim Gardner <tim.gardner@canonical.com>
|
|
BugLink: http://bugs.launchpad.net/bugs/732046
It turns out that including cp437 alone is not sufficient to mount
a vfat file system. With this additional module, things were reported
to be working.
Signed-off-by: Stefan Bader <stefan.bader@canonical.com>
Acked-by: John Johansen <john.johansen@canonical.com>
Acked-by: Herton Krzesinski <herton.krzesinski@canonical.com>
Signed-off-by: Tim Gardner <tim.gardner@canonical.com>
|
|
BugLink: https://bugs.launchpad.net/ubuntu/+bug/759913
Signed-off-by: Paolo Pisati <paolo.pisati@canonical.com>
Acked-by: Leann Ogasawara <leann.ogasawara@canonical.com>
Signed-off-by: Tim Gardner <tim.gardner@canonical.com>
|
|
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
Ignore: yes
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
BugLink: http://bugs.launchpad.net/bugs/770430
Signed-off-by: Tim Gardner <tim.gardner@canonical.com>
|
|
BugLink: http://bugs.launchpad.net/bugs/769503
CONFIG_TRANSPARENT_HUGEPAGE_MADVISE=y
Signed-off-by: Tim Gardner <tim.gardner@canonical.com>
|
|
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
Ignore: yes
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
BugLink: http://bugs.launchpad.net/bugs/632327
Signed-off-by: Tim Gardner <tim.gardner@canonical.com>
|
|
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
Ignore: yes
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
This reverts commit be93112accb42c5586a459683d71975cc70673ca.
Bug https://bugzilla.kernel.org/show_bug.cgi?id=27402 reported that some
devices are not working after this commit, so as I don't have the hardware
I'll revert it until a solution comes.
Conflicts:
drivers/bluetooth/ath3k.c
drivers/bluetooth/btusb.c
Signed-off-by: Gustavo F. Padovan <padovan@profusion.mobi>
BugLink: http://bugs.launchpad.net/bugs/720949
cherry-picked from git://git.kernel.org/pub/scm/linux/kernel/git/padovan/bluetooth-2.6.git
Signed-off-by: Herton Ronaldo Krzesinski <herton.krzesinski@canonical.com>
Signed-off-by: Tim Gardner <tim.gardner@canonical.com>
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
BugLink: http://bugs.launchpad.net/bugs/750585
Signed-off-by: Steve Langasek <slangasek@ubuntu.com>
Signed-off-by: Tim Gardner <tim.gardner@canonical.com>
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
ubuntu-2.6/drivers/staging/olpc_dcon/olpc_dcon_xo_1_5.c:155:3: error:
implicit declaration of function 'udelay'
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
ubuntu-2.6/drivers/staging/olpc_dcon/olpc_dcon_xo_1.c:168:3: error:
implicit declaration of function 'udelay'
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
Ignore: yes
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
At some point in the past with config update/consolidation, some framebuffer
drivers got built into the powerpc kernels. This config change builds these
drivers as modules, as the OpenFirmware framebuffer driver is already in the
kernel. This also allows DRM modules to take priority in the case of radeon
cards.
Signed-off-by: Luke Yelavich <themuso@ubuntu.com>
Signed-off-by: Tim Gardner <tim.gardner@canonical.com>
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
Radeon KMS on powerpc gives an oops on startup, leaving the user with a blank
screen. Disable KMS for now so that machines with radeon hardware will at
least work in the console/X.
Signed-off-by: Luke Yelavich <themuso@ubuntu.com>
Signed-off-by: Tim Gardner <tim.gardner@canonical.com>
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
BugLink: https://launchpad.net/bugs/745358
With CONFIG_CRASH_DUMP enabled, the 32-bit powerpc kernels are unbootable,
even with the latest yaboot in natty. Disable it for now so we can have
bootable kernels and disk images again.
Signed-off-by: Luke Yelavich <themuso@ubuntu.com>
Signed-off-by: Tim Gardner <tim.gardner@canonical.com>
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|
|
drivers/staging/rts_pstor/rtsx_chip.c:1599: error: implicit declaration
of function 'vmalloc'
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
|