aboutsummaryrefslogtreecommitdiffstats
path: root/security/selinux
AgeCommit message (Expand)AuthorFilesLines
2023-04-12selinux: ensure av_permissions.h is built when neededPaul Moore1-1/+1
2023-04-12selinux: fix Makefile dependencies of flask.hOndrej Mosnacek1-2/+2
2023-04-04selinux: stop returning node from avc_insert()Stephen Smalley1-13/+11
2023-03-20selinux: remove the runtime disable functionalityPaul Moore4-137/+8
2023-03-20selinux: remove the 'checkreqprot' functionalityPaul Moore4-56/+11
2023-03-14selinux: stop passing selinux_state pointers and their offspringStephen Smalley18-995/+651
2023-03-08selinux: uninline unlikely parts of avc_has_perm_noaudit()Paul Moore1-28/+57
2023-02-23Merge tag 'mm-stable-2023-02-20-13-37' of git://git.kernel.org/pub/scm/linux/...Linus Torvalds1-3/+3
2023-02-09mm: replace vma->vm_flags direct modifications with modifier callsSuren Baghdasaryan1-3/+3
2023-01-19fs: port inode_owner_or_capable() to mnt_idmapChristian Brauner1-3/+2
2023-01-19fs: port acl to mnt_idmapChristian Brauner1-3/+3
2023-01-19fs: port xattr to mnt_idmapChristian Brauner1-4/+5
2023-01-19fs: port ->permission() to pass mnt_idmapChristian Brauner1-2/+2
2022-12-13Merge tag 'lsm-pr-20221212' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-7/+6
2022-12-13Merge tag 'selinux-pr-20221212' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds5-47/+52
2022-12-12Merge tag 'fs.acl.rework.v6.2' of git://git.kernel.org/pub/scm/linux/kernel/g...Linus Torvalds1-0/+22
2022-11-09selinux: remove the sidtab context conversion indirect callsPaul Moore4-44/+45
2022-11-04lsm: make security_socket_getpeersec_stream() sockptr_t safePaul Moore1-7/+6
2022-10-20selinux: implement get, set and remove acl hookChristian Brauner1-0/+22
2022-10-19selinux: enable use of both GFP_KERNEL and GFP_ATOMIC in convert_context()GONG, Ruiqi3-5/+6
2022-10-17selinux: increase the deprecation sleep for checkreqprot and runtime disablePaul Moore1-2/+2
2022-10-06Merge tag 'pull-path' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfsLinus Torvalds1-1/+1
2022-10-03Merge tag 'lsm-pr-20221003' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds2-0/+11
2022-10-03Merge tag 'selinux-pr-20221003' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds6-53/+46
2022-09-14selinux: remove the unneeded result variableXu Panda1-15/+9
2022-09-01->getprocattr(): attribute name is const char *, TYVM...Al Viro1-1/+1
2022-08-30selinux: declare read-only parameters constChristian Göttsche4-29/+31
2022-08-30selinux: use int arrays for boolean valuesChristian Göttsche1-5/+5
2022-08-30selinux: remove an unneeded variable in sel_make_class_dir_entries()ye xingchen1-4/+1
2022-08-26selinux: implement the security_uring_cmd() LSM hookPaul Moore2-1/+25
2022-08-16selinux: Implement userns_create hookFrederick Lawler2-0/+11
2022-08-02Merge tag 'selinux-pr-20220801' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds5-13/+19
2022-06-20selinux: selinux_add_opt() callers free memoryXiu Jianfeng1-7/+4
2022-06-15selinux: free contexts previously transferred in selinux_add_opt()Christian Göttsche1-7/+4
2022-06-14selinux: Add boundary check in put_entry()Xiu Jianfeng1-0/+2
2022-06-13selinux: fix memleak in security_read_state_kernel()Xiu Jianfeng1-1/+8
2022-06-10selinux: fix typos in commentsJonas Lindner2-3/+3
2022-06-07selinux: drop unnecessary NULL checkChristian Göttsche1-1/+1
2022-06-07selinux: add __randomize_layout to selinux_audit_dataGONG, Ruiqi1-1/+1
2022-05-24Merge tag 'selinux-pr-20220523' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds19-80/+89
2022-05-17selinux: fix bad cleanup on error in hashtab_duplicate()Ondrej Mosnacek1-1/+2
2022-05-03selinux: log anon inode class nameChristian Göttsche1-2/+2
2022-05-03selinux: declare data arrays constChristian Göttsche9-26/+24
2022-05-03selinux: fix indentation level of mls_ops blockChristian Göttsche1-21/+21
2022-05-03selinux: include necessary headers in headersChristian Göttsche6-1/+12
2022-05-03selinux: avoid extra semicolonChristian Göttsche1-9/+9
2022-05-03selinux: update parameter documentationChristian Göttsche2-1/+2
2022-05-03selinux: resolve checkpatch errorsChristian Göttsche3-18/+9
2022-04-14selinux: don't sleep when CONFIG_SECURITY_SELINUX_CHECKREQPROT_VALUE is truePaul Moore2-3/+3
2022-04-04selinux: checkreqprot is deprecated, add some ssleep() discomfortPaul Moore3-3/+11
2022-04-04selinux: runtime disable is deprecated, add some ssleep() discomfortPaul Moore1-0/+2
2022-04-04selinux: Remove redundant assignmentsMichal Orzel3-4/+2
2022-03-28Merge tag 'ptrace-cleanups-for-v5.18' of git://git.kernel.org/pub/scm/linux/k...Linus Torvalds1-1/+0
2022-03-24Merge tag 'net-next-5.18' of git://git.kernel.org/pub/scm/linux/kernel/git/ne...Linus Torvalds1-1/+5
2022-03-21Merge tag 'selinux-pr-20220321' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds18-212/+201
2022-03-10tracehook: Remove tracehook.hEric W. Biederman1-1/+0
2022-03-03net: rtnetlink: Add RTM_SETSTATSPetr Machata1-0/+1
2022-03-02selinux: shorten the policy capability enum namesPaul Moore5-24/+24
2022-03-01rtnetlink: add new rtm tunnel api for tunnel id filteringRoopa Prabhu1-1/+4
2022-02-25selinux: allow FIOCLEX and FIONCLEX with policy capabilityRichard Haines4-1/+16
2022-02-22selinux: fix misuse of mutex_is_locked()Ondrej Mosnacek1-2/+2
2022-02-18selinux: use correct type for context lengthChristian Göttsche1-1/+1
2022-02-18selinux: drop return statement at end of void functionsChristian Göttsche5-8/+0
2022-02-15security: implement sctp_assoc_established hook in selinuxOndrej Mosnacek1-24/+66
2022-02-04selinux: parse contexts for mount options earlyOndrej Mosnacek1-149/+53
2022-02-02selinux: fix double free of cond_list on error pathsVratislav Bendel1-1/+2
2022-02-01selinux: various sparse fixesPaul Moore4-7/+8
2022-02-01selinux: try to use preparsed sid before calling parse_sid()Scott Mayhew1-29/+59
2022-02-01selinux: Fix selinux_sb_mnt_opts_compat()Scott Mayhew1-34/+41
2022-01-27LSM: general protection fault in legacy_parse_paramCasey Schaufler1-3/+2
2022-01-27selinux: fix a type cast problem in cred_init_security()Paul Moore1-1/+1
2022-01-26selinux: drop unused macroChristian Göttsche1-2/+0
2022-01-26selinux: simplify cred_init_securityChristian Göttsche1-2/+1
2022-01-26selinux: do not discard const qualifier in castChristian Göttsche1-2/+2
2022-01-26selinux: drop unused parameter of avtab_insert_nodeChristian Göttsche1-3/+3
2022-01-26selinux: drop cast to same typeChristian Göttsche1-1/+1
2022-01-26selinux: enclose macro arguments in parenthesisChristian Göttsche3-7/+7
2022-01-26selinux: declare name parameter of hash_eval constChristian Göttsche1-1/+1
2022-01-25selinux: declare path parameters of _genfs_sid constChristian Göttsche2-5/+5
2022-01-25selinux: check return value of sel_make_avc_filesChristian Göttsche1-0/+2
2022-01-25selinux: access superblock_security_struct in LSM blob wayGONG, Ruiqi1-2/+2
2022-01-11Merge tag 'selinux-pr-20220110' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds3-66/+24
2021-12-27selinux: initialize proto variable in selinux_ip_postroute_compat()Tom Rix1-1/+1
2021-12-21selinux: minor tweaks to selinux_add_opt()Paul Moore1-8/+10
2021-12-21selinux: fix potential memleak in selinux_add_opt()Bernard Zhao1-2/+10
2021-12-16selinux: fix sleeping function called from invalid contextScott Mayhew1-14/+19
2021-12-06security,selinux: remove security_add_mnt_opt()Ondrej Mosnacek1-39/+0
2021-12-05selinux: Use struct_size() helper in kmalloc()Xiu Jianfeng2-3/+3
2021-11-22lsm: security_task_getsecid_subj() -> security_current_getsecid_subj()Paul Moore1-16/+3
2021-11-19selinux: fix NULL-pointer dereference when hashtab allocation failsOndrej Mosnacek1-5/+12
2021-11-12net,lsm,selinux: revert the security_sctp_assoc_established() hookPaul Moore1-13/+1
2021-11-03security: implement sctp_assoc_established hook in selinuxXin Long1-1/+13
2021-11-03security: pass asoc to sctp_assoc_request and sctp_sk_cloneXin Long3-22/+22
2021-11-01Merge tag 'selinux-pr-20211101' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds8-244/+202
2021-10-20security: Return xattr name from security_dentry_init_security()Vivek Goyal1-1/+5
2021-10-19selinux: fix a sock regression in selinux_ip_postroute_compat()Paul Moore1-2/+2
2021-10-14binder: use cred instead of task for selinux checksTodd Kjos1-35/+13
2021-10-13selinux: fix all of the W=1 build warningsPaul Moore6-8/+33
2021-10-13selinux: make better use of the nf_hook_state passed to the NF hooksPaul Moore1-27/+25
2021-10-11selinux: fix race condition when computing ocontext SIDsOndrej Mosnacek1-85/+77
2021-10-11selinux: remove unneeded ipv6 hook wrappersFlorian Westphal1-62/+18
2021-10-07Merge branch 'master' of git://git.kernel.org/pub/scm/linux/kernel/git/klassert/David S. Miller1-1/+3
2021-09-30selinux: remove the SELinux lockdown implementationPaul Moore2-32/+0
2021-09-28selinux: enable genfscon labeling for securityfsChristian Göttsche1-1/+2
2021-09-23selinux,smack: fix subjective/objective credential use mixupsPaul Moore1-2/+2
2021-09-19selinux: add support for the io_uring access controlsPaul Moore2-0/+36
2021-09-14include/uapi/linux/xfrm.h: Fix XFRM_MSG_MAPPING ABI breakageEugene Syromiatnikov1-1/+3
2021-09-02Merge tag 'integrity-v5.15' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-2/+4
2021-08-31Merge tag 'net-next-5.15' of git://git.kernel.org/pub/scm/linux/kernel/git/ne...Linus Torvalds2-2/+6
2021-08-31Merge tag 'selinux-pr-20210830' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds2-0/+6
2021-08-05Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/netJakub Kicinski1-6/+4
2021-08-02selinux: correct the return value when loads initial sidsXiu Jianfeng1-6/+4
2021-07-29mctp: Add MCTP baseJeremy Kerr2-2/+6
2021-07-23ima: Add digest and digest_len params to the functions to measure a bufferRoberto Sassu1-2/+4
2021-07-14selinux: return early for possible NULL audit buffersAustin Kim2-0/+6
2021-06-11selinux: kill 'flags' argument in avc_has_perm_flags() and avc_audit()Al Viro3-31/+5
2021-06-11selinux: slow_avc_audit has become non-blockingAl Viro3-35/+10
2021-06-11selinux: Fix kernel-docYang Li1-1/+22
2021-06-10selinux: use __GFP_NOWARN with GFP_NOWAIT in the AVCMinchan Kim1-6/+7
2021-05-14lsm_audit,selinux: pass IB device name by referenceOndrej Mosnacek1-1/+1
2021-05-10selinux: Remove redundant assignment to rcJiapeng Chong2-5/+0
2021-05-10selinux: Corrected comment to match kernel-doc commentSouptick Joarder1-1/+1
2021-05-10selinux: delete selinux_xfrm_policy_lookup() useless argumentZhongjun Tan2-2/+2
2021-05-10selinux: constify some avtab function argumentsOndrej Mosnacek3-21/+26
2021-05-10selinux: simplify duplicate_policydb_cond_list() by using kmemdup()Ondrej Mosnacek1-5/+6
2021-05-01Merge tag 'landlock_v34' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds3-37/+30
2021-04-29Merge tag 'net-next-5.13' of git://git.kernel.org/pub/scm/linux/kernel/git/ne...Linus Torvalds1-1/+4
2021-04-27Merge tag 'selinux-pr-20210426' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds8-48/+232
2021-04-22LSM: Infrastructure management of the superblockCasey Schaufler3-37/+30
2021-04-21selinux: add proper NULL termination to the secclass_map permissionsPaul Moore1-2/+3
2021-04-09Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/netJakub Kicinski6-112/+185
2021-04-09Merge tag 'selinux-pr-20210409' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds6-112/+185
2021-04-07selinux: fix race between old and new sidtabOndrej Mosnacek3-37/+145
2021-04-02selinux: fix cond_list corruption when changing booleansOndrej Mosnacek3-68/+32
2021-04-02selinux: make nslot handling in avtab more robustOndrej Mosnacek1-10/+11
2021-03-25Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/netDavid S. Miller3-41/+59
2021-03-22selinux: clarify task subjective and objective credentialsPaul Moore1-39/+73
2021-03-22lsm: separate security_task_getsecid() into subjective and objective variantsPaul Moore1-1/+2
2021-03-22lsm,selinux: add new hook to compare new mount to an existing mountOlga Kornievskaia1-0/+56
2021-03-22Merge tag 'selinux-pr-20210322' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds3-41/+59
2021-03-18selinuxfs: unify policy load error reportingOndrej Mosnacek1-6/+3
2021-03-18selinux: fix variable scope issue in live sidtab conversionOndrej Mosnacek3-33/+55
2021-03-18selinux: don't log MAC_POLICY_LOAD record on failed policy loadOndrej Mosnacek1-2/+1
2021-03-11nexthop: Add netlink defines and enumerators for resilient NH groupsIdo Schimmel1-1/+4
2021-03-08selinux: fix misspellings using codespell toolXiong Zhenwu1-1/+1
2021-03-08selinux: fix misspellings using codespell toolXiong Zhenwu1-1/+1
2021-03-08selinux: measure state and policy capabilitiesLakshmi Ramasubramanian4-5/+96
2021-03-08selinux: Allow context mounts for unpriviliged overlayfsVivek Goyal1-1/+2
2021-02-23Merge tag 'idmapped-mounts-v5.12' of git://git.kernel.org/pub/scm/linux/kerne...Linus Torvalds1-9/+14
2021-02-21Merge tag 'integrity-v5.12' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds5-10/+127
2021-01-24commoncap: handle idmapped mountsChristian Brauner1-8/+12
2021-01-24xattr: handle idmapped mountsTycho Andersen1-1/+2
2021-01-24inode: make init and permission helpers idmapped mount awareChristian Brauner1-2/+2
2021-01-14selinux: include a consumer of the new IMA critical data hookLakshmi Ramasubramanian5-10/+127
2021-01-14selinux: teach SELinux about anonymous inodesDaniel Colascione2-0/+59
2021-01-13selinux: fall back to SECURITY_FS_USE_GENFS if no xattr supportOndrej Mosnacek1-25/+52
2021-01-12selinux: mark selinux_xfrm_refcount as __read_mostlyOndrej Mosnacek1-1/+1
2021-01-12selinux: mark some global variables __ro_after_initOndrej Mosnacek6-12/+12
2021-01-12selinux: make selinuxfs_mount staticOndrej Mosnacek2-2/+1
2021-01-12selinux: drop the unnecessary aurule_callback variableOndrej Mosnacek1-7/+3
2021-01-12selinux: remove unused global variablesOndrej Mosnacek4-4/+0
2021-01-04selinux: fix inconsistency between inode_getxattr and inode_listsecurityAmir Goldstein1-0/+4
2021-01-04selinux: handle MPTCP consistently with TCPPaolo Abeni1-1/+2
2020-12-16Merge tag 'selinux-pr-20201214' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds5-20/+26
2020-12-03security: add const qualifier to struct sock in various placesFlorian Westphal1-1/+1
2020-11-23lsm,selinux: pass flowi_common instead of flowi to the LSM hooksPaul Moore3-9/+10
2020-11-23selinux: Fix fall-through warnings for ClangGustavo A. R. Silva1-0/+1
2020-11-14Merge tag 'selinux-pr-20201113' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-1/+3
2020-11-12selinux: Fix error return code in sel_ib_pkey_sid_slow()Chen Zhou1-1/+3
2020-11-12selinux: drop super_block backpointer from superblock_security_structOndrej Mosnacek2-4/+2
2020-11-05selinux: fix inode_doinit_with_dentry() LABEL_INVALID error handlingPaul Moore1-18/+13
2020-10-27selinux: allow dontauditx and auditallowx rules to take effect without allowxbauen11-3/+1
2020-10-27selinux: fix error initialization in inode_doinit_with_dentry()Tianyue Ren1-3/+16
2020-10-15Merge tag 'char-misc-5.10-rc1' of git://git.kernel.org/pub/scm/linux/kernel/g...Linus Torvalds1-3/+5
2020-10-13Merge tag 'selinux-pr-20201012' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds17-497/+1067
2020-10-05LSM: Add "contents" flag to kernel_read_file hookKees Cook1-2/+3
2020-10-05LSM: Introduce kernel_post_load_data() hookKees Cook1-1/+1
2020-10-05fs/kernel_read_file: Split into separate include fileScott Branden1-0/+1
2020-09-15selinux: Add helper functions to get and set checkreqprotLakshmi Ramasubramanian3-5/+16
2020-09-11selinux: access policycaps with READ_ONCE/WRITE_ONCEStephen Smalley2-8/+9
2020-08-31selinux: simplify away security_policydb_len()Ondrej Mosnacek3-30/+10
2020-08-27selinux: move policy mutex to selinux_state, use in lockdep checksStephen Smalley4-43/+22
2020-08-26selinux: fix error handling bugs in security_load_policy()Dan Carpenter1-11/+23
2020-08-25selinux: convert policy read-write lock to RCUStephen Smalley4-218/+280
2020-08-24selinux: delete repeated words in commentsRandy Dunlap1-3/+3
2020-08-23treewide: Use fallthrough pseudo-keywordGustavo A. R. Silva2-10/+2
2020-08-21selinux: add basic filtering for audit trace eventsPeter Enderborg1-13/+15
2020-08-21selinux: add tracepoint on audited eventsThiébaud Weksteen1-0/+5
2020-08-21selinux: Create new booleans and class dirs out of treeDaniel Burgener1-23/+90
2020-08-21selinux: Standardize string literal usage for selinuxfs directory namesDaniel Burgener1-4/+6
2020-08-21selinux: Refactor selinuxfs directory populating functionsDaniel Burgener1-20/+25
2020-08-21selinux: Create function for selinuxfs directory cleanupDaniel Burgener1-14/+25
2020-08-20selinux: permit removing security.selinux xattr before policy loadStephen Smalley1-0/+3
2020-08-20selinux: fix memdup.cocci warningskernel test robot1-3/+2
2020-08-19selinux: avoid dereferencing the policy prior to initializationStephen Smalley1-0/+60
2020-08-19selinux: fix allocation failure check on newpolicy->sidtabColin Ian King1-1/+1
2020-08-17selinux: refactor changing booleansStephen Smalley8-64/+368
2020-08-17selinux: move policy commit after updating selinuxfsStephen Smalley6-80/+104
2020-08-17selinux: encapsulate policy state, refactor policy loadStephen Smalley2-192/+221
2020-08-17scripts/selinux,selinux: update mdp to enable policy capabilitiesStephen Smalley4-26/+40
generated by cgit 1.3-korg (git 2.53.0) at 2026-05-01 21:36:10 +0000