aboutsummaryrefslogtreecommitdiffstats
path: root/include/linux/lsm_hooks.h
AgeCommit message (Expand)AuthorFilesLines
2023-11-12LSM: syscalls for current process attributesCasey Schaufler1-0/+1
2023-11-12LSM: Identify modules by more than nameCasey Schaufler1-2/+14
2023-07-10security: Allow all LSMs to provide xattrs for inode_init_security hookRoberto Sassu1-0/+20
2023-04-24Merge tag 'lsm-pr-20230420' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-1624/+1
2023-03-24selinux: clean up dead code after removing runtime disableLukas Bulwahn1-23/+0
2023-03-20selinux: remove the runtime disable functionalityPaul Moore1-7/+0
2023-03-10security: Introduce LSM_ORDER_LAST and set it for the integrity LSMRoberto Sassu1-0/+1
2023-03-06lsm: move the remaining LSM hook comments to security/security.cPaul Moore1-168/+0
2023-03-06lsm: move the io_uring hook comments to security/security.cPaul Moore1-17/+0
2023-03-06lsm: move the perf hook comments to security/security.cPaul Moore1-17/+0
2023-03-06lsm: move the bpf hook comments to security/security.cPaul Moore1-36/+0
2023-03-06lsm: move the audit hook comments to security/security.cPaul Moore1-32/+0
2023-03-06lsm: move the binder hook comments to security/security.cPaul Moore1-22/+0
2023-03-06lsm: move the sysv hook comments to security/security.cPaul Moore1-141/+0
2023-03-06lsm: move the key hook comments to security/security.cPaul Moore1-32/+0
2023-03-06lsm: move the xfrm hook comments to security/security.cPaul Moore1-73/+0
2023-03-06lsm: move the Infiniband hook comments to security/security.cPaul Moore1-22/+0
2023-03-06lsm: move the SCTP hook comments to security/security.cPaul Moore1-33/+0
2023-03-06lsm: move the socket hook comments to security/security.cPaul Moore1-191/+0
2023-03-06lsm: move the AF_UNIX hook comments to security/security.cPaul Moore1-26/+0
2023-03-06lsm: move the netlink hook comments to security/security.cPaul Moore1-13/+0
2023-03-06lsm: move the task hook comments to security/security.cPaul Moore1-210/+0
2023-03-06lsm: move the file hook comments to security/security.cPaul Moore1-104/+0
2023-03-06lsm: move the kernfs hook comments to security/security.cPaul Moore1-9/+0
2023-03-06lsm: move the inode hook comments to security/security.cPaul Moore1-303/+0
2023-03-06lsm: move the filesystem hook comments to security/security.cPaul Moore1-106/+0
2023-03-06lsm: move the fs_context hook comments to security/security.cPaul Moore1-17/+0
2023-03-06lsm: move the program execution hook comments to security/security.cPaul Moore1-52/+0
2023-01-19fs: port xattr to mnt_idmapChristian Brauner1-1/+1
2022-12-13Merge tag 'lsm-pr-20221212' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-99/+142
2022-12-13Merge tag 'landlock-6.2-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git...Linus Torvalds1-1/+9
2022-12-09lsm: Fix description of fs_context_parse_paramRoberto Sassu1-3/+0
2022-12-06lsm: Add/fix return values in lsm_hooks.h and fix formattingRoberto Sassu1-83/+138
2022-12-06lsm: Clarify documentation of vm_enough_memory hookRoberto Sassu1-1/+5
2022-11-04lsm: make security_socket_getpeersec_stream() sockptr_t safePaul Moore1-2/+2
2022-10-25lsm: remove obsoleted comments for security hooksGaosheng Cui1-13/+0
2022-10-20security: add get, remove and set acl hookChristian Brauner1-0/+12
2022-10-19security: Create file_truncate hook from path_truncate hookGünther Noack1-1/+9
2022-10-03Merge tag 'lsm-pr-20221003' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-0/+4
2022-08-26lsm,io_uring: add LSM hooks for the new uring_cmd file opLuis Chamberlain1-0/+3
2022-08-16security, lsm: Introduce security_create_user_ns()Frederick Lawler1-0/+4
2022-07-15security: Add LSM hook to setgroups() syscallMicah Morton1-0/+7
2022-05-24Merge tag 'landlock-5.19-rc1' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds1-0/+1
2022-05-23LSM: Remove double path_rename hook calls for RENAME_EXCHANGEMickaël Salaün1-0/+1
2022-05-13security: declare member holding string literal constChristian Göttsche1-2/+2
2022-02-15security: add sctp_assoc_established hookOndrej Mosnacek1-0/+5
2021-12-06security,selinux: remove security_add_mnt_opt()Ondrej Mosnacek1-2/+0
2021-11-22lsm: security_task_getsecid_subj() -> security_current_getsecid_subj()Paul Moore1-5/+3
2021-11-12net,lsm,selinux: revert the security_sctp_assoc_established() hookPaul Moore1-5/+0
2021-11-03security: add sctp_assoc_established hookXin Long1-0/+5
2021-11-03security: pass asoc to sctp_assoc_request and sctp_sk_cloneXin Long1-4/+4
2021-10-20security: Return xattr name from security_dentry_init_security()Vivek Goyal1-0/+3
2021-10-14binder: use cred instead of task for selinux checksTodd Kjos1-7/+7
2021-09-19lsm,io_uring: add LSM hooks to io_uringPaul Moore1-0/+13
2021-05-01Merge tag 'landlock_v34' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds1-0/+4
2021-04-22fs,security: Add sb_delete hookMickaël Salaün1-0/+3
2021-04-22LSM: Infrastructure management of the superblockCasey Schaufler1-0/+1
2021-03-22lsm: separate security_task_getsecid() into subjective and objective variantsPaul Moore1-3/+9
2021-03-22lsm,selinux: add new hook to compare new mount to an existing mountOlga Kornievskaia1-0/+6
2021-02-23Merge tag 'idmapped-mounts-v5.12' of git://git.kernel.org/pub/scm/linux/kerne...Linus Torvalds1-0/+1
2021-01-24commoncap: handle idmapped mountsChristian Brauner1-0/+1
2021-01-14security: add inode_init_security_anon() LSM hookLokesh Gidra1-0/+9
2020-11-23lsm,selinux: pass flowi_common instead of flowi to the LSM hooksPaul Moore1-1/+1
2020-10-25treewide: Convert macro and uses of __section(foo) to __section("foo")Joe Perches1-2/+2
2020-10-05LSM: Add "contents" flag to kernel_read_file hookKees Cook1-0/+3
2020-10-05LSM: Introduce kernel_post_load_data() hookKees Cook1-0/+10
2020-08-11Merge tag 'for-v5.9' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris...Linus Torvalds1-1/+1
2020-08-06LSM: drop duplicated words in header file commentsRandy Dunlap1-1/+1
2020-06-14Merge tag 'LSM-add-setgid-hook-5.8-author-fix' of git://github.com/micah-mort...Linus Torvalds1-0/+9
2020-06-14security: Add LSM hooks to set*gid syscallsThomas Cedeno1-0/+9
2020-06-13Merge tag 'notifications-20200601' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds1-0/+14
2020-06-04Merge branch 'exec-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/eb...Linus Torvalds1-24/+32
2020-05-29exec: Compute file based creds only onceEric W. Biederman1-11/+11
2020-05-29exec: Add a per bprm->file version of per_clearEric W. Biederman1-0/+2
2020-05-21exec: Convert security_bprm_set_creds into security_bprm_repopulate_credsEric W. Biederman1-2/+2
2020-05-20exec: Factor security_bprm_creds_for_exec out of security_bprm_set_credsEric W. Biederman1-22/+28
2020-05-19security: Add hooks to rule on setting a watchDavid Howells1-0/+5
2020-05-19security: Add a hook for the point of notification insertionDavid Howells1-0/+9
2020-05-05docs: filesystems: convert mount_api.txt to ReSTMauro Carvalho Chehab1-1/+1
2020-03-31Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net-nextLinus Torvalds1-616/+12
2020-03-31Merge branch 'next-general' of git://git.kernel.org:/pub/scm/linux/kernel/git...Linus Torvalds1-1/+35
2020-03-30security: Refactor declaration of LSM hooksKP Singh1-616/+12
2020-02-19security: <linux/lsm_hooks.h>: fix all kernel-doc warningsRandy Dunlap1-1/+35
2019-10-17perf_event: Add support for LSM and SELinux checksJoel Fernandes (Google)1-0/+15
2019-09-28Merge branch 'next-lockdown' of git://git.kernel.org/pub/scm/linux/kernel/git...Linus Torvalds1-0/+13
2019-09-23Merge tag 'selinux-pr-20190917' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-1/+8
2019-08-19security: Add a "locked down" LSM hookMatthew Garrett1-0/+7
2019-08-19security: Support early LSMsMatthew Garrett1-0/+6
2019-08-12fanotify, inotify, dnotify, security: add security hook for fs notificationsAaron Goidel1-1/+8
2019-06-08docs: fix broken documentation linksMauro Carvalho Chehab1-1/+1
2019-05-07Merge branch 'work.mount-syscalls' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds1-0/+6
2019-05-07Merge tag 'selinux-pr-20190507' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-0/+13
2019-03-26LSM: lsm_hooks.h: fix documentation formatDenis Efremov1-14/+9
2019-03-26LSM: fix documentation for the shm_* hooksDenis Efremov1-18/+18
2019-03-26LSM: fix documentation for the sem_* hooksDenis Efremov1-16/+16
2019-03-26LSM: fix documentation for the msg_queue_* hooksDenis Efremov1-19/+19
2019-03-26LSM: fix documentation for the audit_* hooksDenis Efremov1-4/+4
2019-03-26LSM: fix documentation for the path_chmod hookDenis Efremov1-4/+5
2019-03-26LSM: fix documentation for the socket_getpeersec_dgram hookDenis Efremov1-5/+5
2019-03-26LSM: fix documentation for the task_setscheduler hookDenis Efremov1-3/+1
2019-03-26LSM: fix documentation for the socket_post_create hookDenis Efremov1-3/+3
2019-03-26LSM: fix documentation for the syslog hookDenis Efremov1-2/+1
2019-03-26LSM: fix documentation for sb_copy_data hookDenis Efremov1-1/+0
2019-03-25LSM: lsm_hooks.h - fix missing colon in docstringOndrej Mosnacek1-1/+1
2019-03-20LSM: add new hook for kernfs node initializationOndrej Mosnacek1-0/+13
2019-03-20vfs: syscall: Add move_mount(2) to move mounts aroundDavid Howells1-0/+6
2019-03-12Merge branch 'work.mount' of git://git.kernel.org/pub/scm/linux/kernel/git/vi...Linus Torvalds1-0/+21
2019-03-07Merge tag 'audit-pr-20190305' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds1-3/+1
2019-02-28introduce cloning of fs_contextAl Viro1-0/+7
2019-02-28vfs: Add LSM hooks for the new mount APIDavid Howells1-0/+14
2019-01-31audit: remove unused actx param from audit_rule_matchRichard Guy Briggs1-3/+1
2019-01-18LSM: Make lsm_early_cred() and lsm_early_task() local functions.Tetsuo Handa1-5/+0
2019-01-10LSM: generalize flag passing to security_capableMicah Morton1-3/+5
2019-01-08LSM: Infrastructure management of the ipc security blobCasey Schaufler1-0/+2
2019-01-08LSM: Infrastructure management of the task securityCasey Schaufler1-0/+2
2019-01-08LSM: Infrastructure management of the inode securityCasey Schaufler1-0/+3
2019-01-08LSM: Infrastructure management of the file securityCasey Schaufler1-0/+1
2019-01-08Infrastructure management of the cred security blobCasey Schaufler1-0/+12
2019-01-08capability: Initialize as LSM_ORDER_FIRSTKees Cook1-2/+0
2019-01-08LSM: Introduce enum lsm_orderKees Cook1-0/+6
2019-01-08Yama: Initialize as ordered LSMKees Cook1-5/+0
2019-01-08LoadPin: Initialize as ordered LSMKees Cook1-5/+0
2019-01-08LSM: Separate idea of "major" LSM from "exclusive" LSMKees Cook1-0/+1
2019-01-08LSM: Tie enabling logic to presence in ordered listKees Cook1-1/+1
2019-01-08LSM: Lift LSM selection out of individual LSMsKees Cook1-1/+0
2019-01-08LSM: Plumb visibility into optional "enabled" stateKees Cook1-0/+1
2019-01-08LSM: Introduce LSM_FLAG_LEGACY_MAJORKees Cook1-0/+3
2018-12-21LSM: new method: ->sb_add_mnt_opt()Al Viro1-2/+3
2018-12-21LSM: hide struct security_mnt_opts from any generic codeAl Viro1-5/+6
2018-12-21LSM: turn sb_eat_lsm_opts() into a methodAl Viro1-2/+2
2018-12-21LSM: split ->sb_set_mnt_opts() out of ->sb_kern_mount()Al Viro1-2/+1
2018-12-21LSM: lift extracting and parsing LSM options into the caller of ->sb_remount()Al Viro1-1/+2
2018-12-21LSM: lift parsing LSM options into the caller of ->sb_kern_mount()Al Viro1-1/+2
2018-10-24Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-0/+12
2018-10-10LSM: Record LSM name in struct lsm_infoKees Cook1-0/+1
2018-10-10LSM: Convert security_initcall() into DEFINE_LSM()Kees Cook1-3/+2
2018-10-10LSM: Convert from initcall to struct lsm_infoKees Cook1-0/+12
2018-10-03signal: Distinguish between kernel_siginfo and siginfoEric W. Biederman1-2/+2
2018-08-15Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-0/+6
2018-07-16security: define new LSM hook named security_kernel_load_dataMimi Zohar1-0/+6
2018-07-12->file_open(): lose cred argumentAl Viro1-1/+1
2018-05-04security: add hook for socketpair()David Herrmann1-0/+7
2018-04-07Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds1-0/+6
2018-04-07Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-219/+220
2018-04-06Merge tag 'selinux-pr-20180403' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-0/+36
2018-03-31security: convert security hooks to use hlistSargun Dhillon1-214/+214
2018-03-23security: Add a cred_getsecid hookMatthew Garrett1-0/+6
2018-03-22msg/security: Pass kern_ipc_perm not msg_queue into the msg_queue security hooksEric W. Biederman1-6/+6
2018-03-22shm/security: Pass kern_ipc_perm not shmid_kernel into the shm security hooksEric W. Biederman1-5/+5
2018-03-22sem/security: Pass kern_ipc_perm not sem_array into the sem security hooksEric W. Biederman1-5/+5
2018-03-07usb, signal, security: only pass the cred, not the secid, to kill_pid_info_as...Stephen Smalley1-2/+3
2018-02-22security: Add support for SCTP security hooksRichard Haines1-0/+36
2017-10-20security: bpf: Add LSM hooks for bpf object related syscallChenbo Feng1-0/+54
2017-09-12Merge tag 'selinux-pr-20170831' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-7/+0
2017-08-01LSM: drop bprm_secureexec hookKees Cook1-9/+5
2017-07-25sync to Linus v4.13-rc2 for subsystem developers to work againstJames Morris1-15/+14
2017-07-19Merge tag 'gcc-plugins-v4.13-rc2' of git://git.kernel.org/pub/scm/linux/kerne...Linus Torvalds1-2/+2
2017-07-18LSM: Remove security_task_create() hook.Tetsuo Handa1-7/+0
2017-07-05Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/...Linus Torvalds1-1/+38
2017-06-30randstruct: Mark various structs for randomizationKees Cook1-2/+2
2017-06-09security/selinux: allow security_sb_clone_mnt_opts to enable/disable native l...Scott Mayhew1-1/+3
2017-05-23IB/core: Enforce security on management datagramsDaniel Jurgens1-0/+8
2017-05-23IB/core: Enforce PKey security on QPsDaniel Jurgens1-0/+27
2017-05-18doc: security: minor cleanups to build kernel-docKees Cook1-13/+12
2017-03-28LSM: Revive security_task_alloc() hook and per "struct task_struct" security ...Tetsuo Handa1-1/+8
2017-03-06security: introduce CONFIG_SECURITY_WRITABLE_HOOKSJames Morris1-0/+7
2017-03-06prlimit,security,selinux: add a security hook for prlimitStephen Smalley1-3/+15
2017-02-10Merge branch 'stable-4.11' of git://git.infradead.org/users/pcmoore/selinux i...James Morris1-9/+1
2017-01-19LSM: Add /sys/kernel/security/lsmCasey Schaufler1-8/+4
2017-01-12security,selinux,smack: kill security_task_wait hookStephen Smalley1-7/+0
2017-01-10security: Fix inode_getattr documentationMickaël Salaün1-2/+1
2017-01-09proc,security: move restriction on writing /proc/pid/attr nodes to procStephen Smalley1-2/+1
2016-09-19Merge branch 'stable-4.9' of git://git.infradead.org/users/pcmoore/selinux in...James Morris1-0/+36
2016-08-09module: Fully remove the kernel_module_from_file hookMickaël Salaün1-1/+0
2016-08-08security, overlayfs: Provide hook to correctly label newly created filesVivek Goyal1-0/+15
2016-08-08security,overlayfs: Provide security hook for copy up of xattrs for overlay fileVivek Goyal1-0/+10
2016-08-08security, overlayfs: provide copy up security hook for unioned filesVivek Goyal1-0/+11
2016-07-20qstr: constify dentry_init_securityAl Viro1-1/+1
2016-05-19Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/...Linus Torvalds1-1/+5
2016-05-17Merge branch 'work.const-path' of git://git.kernel.org/pub/scm/linux/kernel/g...Linus Torvalds1-14/+14
2016-04-22security: Introduce security_settime64()Baolin Wang1-2/+3
2016-04-21LSM: LoadPin for kernel file loading restrictionsKees Cook1-0/+5
2016-04-11security: drop the unused hook skb_owned_byPaolo Abeni1-1/+0
2016-03-28constify security_sb_pivotroot()Al Viro1-1/+1
2016-03-28constify security_path_chroot()Al Viro1-1/+1
2016-03-28constify security_path_{link,rename}Al Viro1-3/+3
2016-03-28constify security_path_{mkdir,mknod,symlink}Al Viro1-3/+3
2016-03-28constify security_path_{unlink,rmdir}Al Viro1-2/+2
2016-03-28constify chmod_common/security_path_chmodAl Viro1-1/+1
2016-03-28constify security_sb_mount()Al Viro1-1/+1
2016-03-28constify chown_common/security_path_chownAl Viro1-1/+1
2016-03-28constify security_path_truncate()Al Viro1-1/+1
2016-02-21module: replace copy_module_from_fd with kernel versionMimi Zohar1-7/+0
2016-02-21security: define kernel_read_file hookMimi Zohar1-0/+8
2016-02-21firmware: replace call to fw_read_file_contents() with kernel versionMimi Zohar1-11/+0
2016-02-18vfs: define kernel_read_file_id enumerationMimi Zohar1-1/+3
2016-02-18vfs: define a generic function to read a file from the kernelMimi Zohar1-0/+9
2015-12-24security: Add hook to invalidate inode security labelsAndreas Gruenbacher1-0/+6
2015-12-24security: Make inode argument of inode_getsecid non-constAndreas Gruenbacher1-1/+1
2015-12-24security: Make inode argument of inode_getsecurity non-constAndreas Gruenbacher1-1/+1
generated by cgit 1.2.3-korg (git 2.39.0) at 2024-05-18 19:23:44 +0000