aboutsummaryrefslogtreecommitdiffstats
path: root/security/selinux
AgeCommit message (Expand)AuthorFilesLines
2012-04-03lsm_audit: don't specify the audit pre/post callbacks in 'struct common_audit...Linus Torvalds1-3/+1
2012-04-03SELinux: do not allocate stack space for AVC data unless neededEric Paris2-14/+27
2012-04-03SELinux: remove avd from slow_avc_audit()Eric Paris1-2/+2
2012-04-03SELinux: remove avd from selinux_audit_dataEric Paris1-1/+0
2012-04-03LSM: shrink the common_audit_data data unionEric Paris1-42/+63
2012-04-03LSM: shrink sizeof LSM specific portion of common_audit_dataEric Paris3-17/+104
2012-03-31Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds2-71/+48
2012-03-31get rid of pointless includes of ext2_fs.hAl Viro1-5/+4
2012-03-31selinuxfs: merge dentry allocation into sel_make_dir()Al Viro1-66/+44
2012-03-31selinux: inline avc_audit() and avc_has_perm_noaudit() into callerLinus Torvalds1-2/+2
2012-03-31selinux: don't inline slow-path code into avc_has_perm_noaudit()Linus Torvalds1-14/+38
2012-03-29Merge branch 'x86-x32-for-linus' of git://git.kernel.org/pub/scm/linux/kernel...Linus Torvalds1-1/+1
2012-03-28Remove all #inclusions of asm/system.hDavid Howells1-1/+0
2012-03-26SELinux: selinux/xfrm.h needs net/flow.hDavid Howells1-0/+2
2012-03-22security: optimize avc_audit() common pathLinus Torvalds1-29/+41
2012-02-19Replace the fd_sets in struct fdtable with an array of unsigned longsDavid Howells1-1/+1
2012-02-14security: trim security.hAl Viro1-0/+2
2012-01-14Merge branch 'for-linus' of git://selinuxproject.org/~jmorris/linux-securityLinus Torvalds1-33/+11
2012-01-10Merge branch 'for-linus' of git://selinuxproject.org/~jmorris/linux-securityLinus Torvalds2-11/+5
2012-01-09Merge branch 'next' into for-linusJames Morris2-11/+5
2012-01-08Merge branch 'for-linus2' of git://git.kernel.org/pub/scm/linux/kernel/git/vi...Linus Torvalds1-5/+5
2012-01-06vfs: prefer ->dentry->d_sb to ->mnt->mnt_sbAl Viro1-1/+1
2012-01-05security: remove the security_netlink_recv hook as it is equivalent to capable()Eric Paris1-19/+0
2012-01-05ptrace: do not audit capability check when outputing /proc/pid/statEric Paris1-1/+1
2012-01-05capabilities: remove the task from capable LSM hook entirelyEric Paris1-13/+10
2012-01-05selinux: sparse fix: fix several warnings in the security server codJames Morris5-7/+9
2012-01-05selinux: sparse fix: fix warnings in netlink codeJames Morris6-5/+6
2012-01-05selinux: sparse fix: eliminate warnings for selinuxfsJames Morris3-6/+4
2012-01-05selinux: sparse fix: declare selinux_disable() in security.hJames Morris2-1/+1
2012-01-05selinux: sparse fix: move selinux_complete_initJames Morris2-1/+1
2012-01-05selinux: sparse fix: make selinux_secmark_refcount staticJames Morris1-1/+1
2012-01-03get rid of open-coded S_ISREG(), etc.Al Viro1-1/+1
2012-01-03switch ->mknod() to umode_tAl Viro1-1/+1
2012-01-03switch ->create() to umode_tAl Viro1-1/+1
2012-01-03switch vfs_mkdir() and ->mkdir() to umode_tAl Viro1-1/+1
2011-12-23Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netDavid S. Miller1-1/+3
2011-12-21SELinux: Fix RCU deref check warning in sel_netport_insert()David Howells1-1/+3
2011-12-20SELinux: Fix RCU deref check warning in sel_netport_insert()David Howells1-1/+3
2011-12-19selinux: Casting (void *) value returned by kmalloc is uselessThomas Meyer1-1/+1
2011-12-06inet_diag: Partly rename inet_ to sock_Pavel Emelyanov1-1/+1
2011-12-03ipv6: Add fragment reporting to ipv6_skip_exthdr().Jesse Gross1-1/+2
2011-11-22net: remove ipv6_addr_copy()Alexey Dobriyan2-4/+4
2011-11-16Merge branch 'master'; commit 'v3.2-rc2' into nextJames Morris2-0/+2
2011-11-16selinuxfs: remove custom hex_to_bin()Andy Shevchenko1-10/+4
2011-10-31selinux: Add export.h to files using EXPORT_SYMBOL/THIS_MODULEPaul Gortmaker2-0/+2
2011-09-09selinux: sparse fix: fix several warnings in the security server codeJames Morris5-7/+9
2011-09-09selinux: sparse fix: include selinux.h in exports.cJames Morris1-0/+1
2011-09-09selinux: sparse fix: fix warnings in netlink codeJames Morris6-5/+6
2011-09-09selinux: sparse fix: eliminate warnings for selinuxfsJames Morris3-6/+4
2011-09-09selinux: sparse fix: declare selinux_disable() in security.hJames Morris2-1/+1
2011-09-09selinux: sparse fix: move selinux_complete_initJames Morris2-1/+1
2011-09-09selinux: sparse fix: make selinux_secmark_refcount staticJames Morris1-1/+1
2011-08-01doc: Update the email address for Paul Moore in various source filesPaul Moore15-15/+15
2011-07-26atomic: use <linux/atomic.h>Arun Sharma2-2/+2
2011-07-24VFS : mount lock scalability for internal mountsTim Chen1-0/+1
2011-07-22Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds2-2/+3
2011-07-22Merge branch 'core-rcu-for-linus' of git://git.kernel.org/pub/scm/linux/kerne...Linus Torvalds2-36/+4
2011-07-22Merge branch 'ptrace' of git://git.kernel.org/pub/scm/linux/kernel/git/oleg/miscLinus Torvalds1-2/+2
2011-07-20security,rcu: Convert call_rcu(sel_netport_free) to kfree_rcu()Lai Jiangshan1-18/+2
2011-07-20security,rcu: Convert call_rcu(sel_netnode_free) to kfree_rcu()Lai Jiangshan1-18/+2
2011-07-20selinux: don't transliterate MAY_NOT_BLOCK to IPERM_FLAG_RCUAl Viro2-3/+3
2011-07-20->permission() sanitizing: don't pass flags to ->inode_permission()Al Viro1-2/+3
2011-06-22ptrace: s/tracehook_tracer_task()/ptrace_parent()/Tejun Heo1-2/+2
2011-06-15Merge branch 'for-linus' of git://git.infradead.org/users/eparis/selinux into...James Morris2-1/+39
2011-06-14SELinux: skip file_name_trans_write() when policy downgraded.Roy.Li1-0/+3
2011-06-08selinux: simplify and clean up inode_has_perm()Linus Torvalds1-10/+15
2011-05-26selinux: don't pass in NULL avd to avc_has_perm_noauditLinus Torvalds2-11/+4
2011-05-26selinux: fix case of names with whitespace/multibytes on /selinux/createKohei Kaigai1-1/+36
2011-05-26Merge commit 'v2.6.39' into 20110526Eric Paris5-16/+21
2011-05-24Merge branch 'master' of git://git.infradead.org/users/eparis/selinux into fo...James Morris8-156/+304
2011-05-23Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jik...Linus Torvalds1-4/+4
2011-05-19selinux: avoid unnecessary avc cache stat hit countLinus Torvalds3-9/+11
2011-05-19selinux: de-crapify avc cache stat code generationLinus Torvalds1-5/+1
2011-05-19Merge branch 'core-rcu-for-linus' of git://git.kernel.org/pub/scm/linux/kerne...Linus Torvalds1-17/+1
2011-05-13Merge branch 'for-linus' of git://git.infradead.org/users/eparis/selinux into...James Morris1-4/+0
2011-05-12SELinux: delete debugging printks from filename_trans rule processingEric Paris1-4/+0
2011-05-11SELINUX: add /sys/fs/selinux mount point to put selinuxfsGreg Kroah-Hartman1-1/+11
2011-05-07security,rcu: convert call_rcu(sel_netif_free) to kfree_rcu()Lai Jiangshan1-17/+1
2011-05-04Merge branch 'for-linus' of git://git.infradead.org/users/eparis/selinux into...James Morris2-4/+5
2011-04-28flex_array: flex_array_prealloc takes a number of elements, not an endEric Paris1-3/+3
2011-04-28SELinux: pass last path component in may_createEric Paris1-1/+2
2011-04-28SELinux: introduce path_has_permEric Paris1-14/+30
2011-04-28flex_array: flex_array_prealloc takes a number of elements, not an endEric Paris1-3/+3
2011-04-28SELinux: pass last path component in may_createEric Paris1-1/+2
2011-04-28SELinux: put name based create rules in a hashtableEric Paris3-61/+135
2011-04-28SELinux: generic hashtab entry counterEric Paris1-2/+2
2011-04-28SELinux: calculate and print hashtab stats with a generic functionEric Paris1-19/+13
2011-04-28SELinux: skip filename trans rules if ttype does not match parent dirEric Paris3-0/+17
2011-04-28SELinux: rename filename_compute_type argument to *type instead of *conEric Paris1-3/+3
2011-04-28SELinux: fix comment to state filename_compute_type takes an objname not a qstrEric Paris1-1/+1
2011-04-26Merge branch 'master' into for-nextJiri Kosina5-32/+69
2011-04-25SELINUX: Make selinux cache VFS RCU walks safeEric Paris3-25/+55
2011-04-25LSM: separate LSM_AUDIT_DATA_DENTRY from LSM_AUDIT_DATA_PATHEric Paris1-13/+13
2011-04-25LSM: split LSM_AUDIT_DATA_FS into _PATH and _INODEEric Paris2-26/+26
2011-04-25SELINUX: Make selinux cache VFS RCU walks safeEric Paris3-25/+55
2011-04-25SECURITY: Move exec_permission RCU checks into security modulesAndi Kleen1-1/+5
2011-04-25SELinux: security_read_policy should take a size_t not ssize_tEric Paris2-2/+2
2011-04-25SELinux: silence build warning when !CONFIG_BUGEric Paris2-0/+3
2011-04-22SECURITY: Move exec_permission RCU checks into security modulesAndi Kleen1-1/+5
2011-04-20SELinux: delete debugging printks from filename_trans rule processingEric Paris1-4/+0
2011-04-10treewide: remove extra semicolonsJustin P. Mattock1-4/+4
2011-04-07Initialize policydb.process_class eariler.Harry Ciao1-5/+5
2011-04-07selinux: Fix regression for XorgStephen Smalley1-1/+1
2011-04-01selinux: add type_transition with name extension support for selinuxfsKohei Kaigai3-12/+25
2011-03-31Fix common misspellingsLucas De Marchi2-3/+3
2011-03-29selinux: Fix regression for XorgStephen Smalley1-1/+1
2011-03-28SELinux: Write class field in role_trans_write.Harry Ciao1-2/+9
2011-03-28SELinux: Compute role in newcontext for all classesHarry Ciao1-11/+9
2011-03-28SELinux: Add class support to the role_trans structureHarry Ciao3-2/+18
2011-03-23userns: rename is_owner_or_cap to inode_owner_or_capableSerge E. Hallyn1-1/+1
2011-03-23userns: security: make capabilities relative to the user namespaceSerge E. Hallyn1-5/+8
2011-03-16Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next-2.6Linus Torvalds3-7/+9
2011-03-12net: Put flowi_* prefix on AF independent members of struct flowiDavid S. Miller2-3/+3
2011-03-08Merge branch 'master' of git://git.infradead.org/users/eparis/selinux into nextJames Morris10-201/+413
2011-03-08Merge branch 'master'; commit 'v2.6.38-rc7' into nextJames Morris4-5/+8
2011-03-03SELinux: implement the new sb_remount LSM hookEric Paris1-0/+86
2011-03-03SELinux: Compute SID for the newly created socketHarry Ciao1-6/+21
2011-03-03SELinux: Socket retains creator role and MLS attributeHarry Ciao3-7/+29
2011-03-03SELinux: Auto-generate security_is_socket_classHarry Ciao1-0/+4
2011-03-03netlink: kill loginuid/sessionid/sid members from struct netlink_skb_parmsPatrick McHardy1-2/+4
2011-02-25Revert "selinux: simplify ioctl checking"Eric Paris1-8/+42
2011-02-25selinux: drop unused packet flow permissionsEric Paris1-2/+1
2011-02-25selinux: Fix packet forwarding checks on postroutingSteffen Klassert1-18/+5
2011-02-25selinux: Fix wrong checks for selinux_policycap_netpeerSteffen Klassert1-18/+6
2011-02-25selinux: Fix check for xfrm selinux context algorithmSteffen Klassert1-1/+1
2011-02-22xfrm: Mark flowi arg to security_xfrm_state_pol_flow_match() const.David S. Miller2-2/+2
2011-02-07CRED: Fix BUG() upon security_cred_alloc_blank() failureTetsuo Handa1-1/+5
2011-02-01security/selinux: fix /proc/sys/ labelingLucian Adrian Grijincu1-102/+18
2011-02-01SELinux: Use dentry name in new object labelingEric Paris6-37/+197
2011-02-01fs/vfs/security: pass last path component to LSM on inode creationEric Paris1-2/+3
2011-01-24selinux: return -ENOMEM when memory allocation failsDavidlohr Bueso2-3/+3
2011-01-24security:selinux: kill unused MAX_AVTAB_HASH_MASK and ebitmap_startbitShan Wei2-2/+0
2011-01-10Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds11-931/+944
2011-01-10headers: path.h reduxAlexey Dobriyan1-1/+0
2011-01-10Merge branch 'master' of git://git.infradead.org/users/eparis/selinux into nextJames Morris10-930/+943
2011-01-10Merge branch 'master' into nextJames Morris2-17/+21
2011-01-07Merge branch 'vfs-scale-working' of git://git.kernel.org/pub/scm/linux/kernel...Linus Torvalds1-6/+10
2011-01-07fs: dcache rationalise dget variantsNick Piggin1-1/+1
2011-01-07fs: dcache remove dcache_lockNick Piggin1-4/+0
2011-01-07fs: dcache scale subdirsNick Piggin1-2/+10
2011-01-05af_unix: Avoid socket->sk NULL OOPS in stream connect security hooks.David S. Miller1-5/+5
2010-12-26Merge branch 'master' of master.kernel.org:/pub/scm/linux/kernel/git/davem/ne...David S. Miller1-5/+1
2010-12-16SELinux: define permissions for DCB netlink messagesEric Paris1-0/+2
2010-12-07selinux: cache sidtab_context_to_sid resultsEric Paris2-2/+39
2010-12-02SELinux: do not compute transition labels on mountpoint labeled filesystemsEric Paris1-1/+4
2010-11-30SELinux: merge policydb_index_classes and policydb_index_othersEric Paris1-59/+10
2010-11-30selinux: convert part of the sym_val_to_name array to use flex_arrayEric Paris5-68/+127
2010-11-30selinux: convert type_val_to_struct to flex_arrayEric Paris3-13/+34
2010-11-30SELinux: do not set automatic i_ino in selinuxfsEric Paris1-1/+0
2010-11-30selinux: rework security_netlbl_secattr_to_sidEric Paris1-21/+21
2010-11-30SELinux: standardize return code handling in selinuxfs.cEric Paris1-171/+157
2010-11-30SELinux: standardize return code handling in selinuxfs.cEric Paris1-337/+311
2010-11-30SELinux: standardize return code handling in policydb.cEric Paris1-287/+268
2010-11-29security: Define CAP_SYSLOGSerge E. Hallyn1-1/+1
2010-11-23SELinux: indicate fatal error in compat netfilter codeEric Paris1-2/+2
2010-11-23SELinux: Only return netlink error when we know the return is fatalEric Paris1-4/+4
2010-11-17SELinux: return -ECONNREFUSED from ip_postroute to signal fatal errorEric Paris1-8/+8
2010-11-15capabilities/syslog: open code cap_syslog logic to fix build failureEric Paris1-5/+1
2010-10-29convert get_sb_single() usersAl Viro1-5/+4
2010-10-25fs: do not assign default i_ino in new_inodeChristoph Hellwig1-0/+1
2010-10-21selinux: include vmalloc.h for vmalloc_userStephen Rothwell1-0/+1
2010-10-21selinux: implement mmap on /selinux/policyEric Paris2-1/+45
2010-10-21SELinux: allow userspace to read policy back out of the kernelEric Paris12-3/+1256
2010-10-21SELinux: drop useless (and incorrect) AVTAB_MAX_SIZEEric Paris2-3/+2
2010-10-21SELinux: deterministic ordering of range transition rulesEric Paris1-3/+13
2010-10-21security: secid_to_secctx returns len when data is NULLEric Paris1-2/+9
2010-10-21secmark: make secmark object handling genericEric Paris3-49/+25
2010-10-21security: remove unused parameter from security_task_setscheduler()KOSAKI Motohiro1-2/+2
2010-10-21selinux: fix up style problem on /selinux/statusKaiGai Kohei2-11/+7
2010-10-21selinux: change to new flag variablematt mooney1-1/+1
2010-10-21selinux: really fix dependency causing parallel compile failure.Paul Gortmaker2-20/+6
2010-10-21selinux: fix parallel compile errorPaul Gortmaker1-1/+1
2010-10-21selinux: fast status update interface (/selinux/status)KaiGai Kohei5-1/+210
2010-10-21selinux: type_bounds_sanity_check has a meaningless variable declarationEric Paris1-2/+2
2010-08-18tty: fix fu_list abuseNick Piggin1-1/+4
2010-08-18fs: cleanup files_lock lockingNick Piggin1-2/+2
2010-08-10Merge branch 'writable_limits' of git://decibel.fi.muni.cz/~xslaby/linuxLinus Torvalds1-4/+8
2010-08-06SELINUX: Fix build error.Ralf Baechle1-1/+1
2010-08-02selinux: convert the policy type_attr_map to flex_arrayEric Paris3-13/+39
2010-08-02SELinux: Move execmod to the common permsEric Paris1-4/+3
2010-08-02selinux: place open in the common file permsEric Paris2-28/+11
2010-08-02SELinux: special dontaudit for access checksEric Paris3-8/+38
2010-08-02security: make LSMs explicitly mask off permissionsEric Paris1-0/+2
2010-08-02SELinux: break ocontext reading into a separate functionEric Paris1-111/+133
2010-08-02SELinux: move genfs read to a separate functionEric Paris1-105/+133
2010-08-02selinux: fix error codes in symtab_init()Dan Carpenter1-1/+1
2010-08-02selinux: fix error codes in cond_read_bool()Dan Carpenter1-5/+8
2010-08-02selinux: fix error codes in cond_policydb_init()Dan Carpenter1-2/+6
2010-08-02selinux: fix error codes in cond_read_node()Dan Carpenter1-8/+12
2010-08-02selinux: fix error codes in cond_read_av_list()Dan Carpenter1-6/+8
2010-08-02selinux: propagate error codes in cond_read_list()Dan Carpenter1-4/+6
2010-08-02selinux: cleanup return codes in avtab_read_item()Dan Carpenter1-20/+19
2010-08-02selinux: use generic_file_llseekArnd Bergmann1-0/+16
2010-08-02security: move LSM xattrnames to xattr.hMimi Zohar1-3/+0
2010-08-02selinux: Use current_security() when possiblePaul Moore1-11/+6
2010-08-02selinux: Convert socket related access controls to use socket labelsPaul Moore1-74/+45
2010-08-02selinux: Shuffle the sk_security_struct alloc and free routinesPaul Moore1-28/+17
2010-08-02selinux: Consolidate sockcreate_sid logicPaul Moore1-20/+12
2010-08-02selinux: Set the peer label correctly on connected UNIX domain socketsPaul Moore1-16/+14
2010-08-02SELinux: seperate range transition rules to a seperate functionEric Paris1-64/+75
generated by cgit 1.2.3-korg (git 2.39.0) at 2024-05-29 15:31:30 +0000