aboutsummaryrefslogtreecommitdiffstats
path: root/security/smack
AgeCommit message (Expand)AuthorFilesLines
2024-03-14lsm: use 32-bit compatible data types in LSM syscallsCasey Schaufler1-2/+2
2024-03-12Merge tag 'lsm-pr-20240312' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-1/+3
2024-02-15security: Align inode_setattr hook definition with EVMRoberto Sassu1-1/+3
2024-02-14Smack: use init_task_smack() in smack_cred_transfer()Casey Schaufler1-6/+1
2024-01-24smack: Initialize the in-memory inode in smack_inode_init_security()Roberto Sassu1-1/+6
2024-01-24smack: Always determine inode labels in smack_inode_init_security()Roberto Sassu1-39/+39
2024-01-24smack: Handle SMACK64TRANSMUTE in smack_inode_setsecurity()Roberto Sassu1-0/+9
2024-01-24smack: Set SMACK64TRANSMUTE only for dirs in smack_inode_setxattr()Roberto Sassu1-1/+2
2024-01-11Merge tag 'for-6.8/io_uring-2024-01-08' of git://git.kernel.dk/linuxLinus Torvalds1-1/+1
2024-01-10Merge tag 'header_cleanup-2024-01-10' of https://evilpiepirate.org/git/bcachefsLinus Torvalds1-0/+1
2023-12-24lsm: new security_file_ioctl_compat() hookAlfred Piccioni1-0/+1
2023-12-20shm: Slim down dependenciesKent Overstreet1-0/+1
2023-12-12io_uring: split out cmd api into a separate headerPavel Begunkov1-1/+1
2023-11-12lsm: mark the lsm_id variables are marked as staticPaul Moore1-1/+1
2023-11-12lsm: consolidate buffer size handling into lsm_fill_user_ctx()Paul Moore1-17/+6
2023-11-12Smack: implement setselfattr and getselfattr hooksCasey Schaufler1-5/+90
2023-11-12LSM: Identify modules by more than nameCasey Schaufler1-1/+7
2023-08-30Merge tag 'Smack-for-6.6' of https://github.com/cschaufler/smack-nextLinus Torvalds1-2/+2
2023-08-30Merge tag 'lsm-pr-20230829' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds2-29/+41
2023-08-15vfs, security: Fix automount superblock LSM init problem, preventing NFS sb s...David Howells1-0/+51
2023-08-07smackfs: Prevent underflow in smk_set_cipso()Dan Carpenter1-1/+1
2023-08-07security: smack: smackfs: fix typo (lables->labels)Tóth János1-1/+1
2023-07-10smack: Set the SMACK64TRANSMUTE xattr in smack_inode_init_security()Roberto Sassu2-18/+29
2023-07-10security: Allow all LSMs to provide xattrs for inode_init_security hookRoberto Sassu1-12/+13
2023-05-11smack: Record transmuting in smk_transmutedRoberto Sassu2-12/+30
2023-05-11smack: Retrieve transmuting information in smack_inode_getsecurity()Roberto Sassu1-4/+18
2023-04-24Merge tag 'Smack-for-6.4' of https://github.com/cschaufler/smack-nextLinus Torvalds1-40/+24
2023-04-05Smack: Improve mount process memory useCasey Schaufler1-39/+23
2023-03-20selinux: remove the runtime disable functionalityPaul Moore1-2/+2
2023-03-08smack_lsm: remove unnecessary type castingXU pengfei1-1/+1
2023-02-22Merge tag 'Smack-for-6.3' of https://github.com/cschaufler/smack-nextLinus Torvalds1-3/+14
2023-02-21smackfs: Added check catlenDenis Arefev1-3/+14
2023-01-19fs: port acl to mnt_idmapChristian Brauner1-6/+6
2023-01-19fs: port xattr to mnt_idmapChristian Brauner1-7/+7
2023-01-19fs: port ->permission() to pass mnt_idmapChristian Brauner1-2/+2
2022-12-13Merge tag 'lsm-pr-20221212' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-9/+10
2022-11-04lsm: make security_socket_getpeersec_stream() sockptr_t safePaul Moore1-9/+10
2022-10-20smack: implement get, set and remove acl hookChristian Brauner1-0/+71
2022-10-06Merge tag 'pull-path' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfsLinus Torvalds1-1/+1
2022-10-03Merge tag 'Smack-for-6.1' of https://github.com/cschaufler/smack-nextLinus Torvalds2-12/+17
2022-09-27smack: cleanup obsolete mount option flagsXiu Jianfeng1-9/+0
2022-09-27smack: lsm: remove the unneeded result variableXu Panda1-3/+1
2022-09-27SMACK: Add sk_clone_security LSM hookLontke Michael1-0/+16
2022-09-01->getprocattr(): attribute name is const char *, TYVM...Al Viro1-1/+1
2022-08-26Smack: Provide read control for io_uring_cmdCasey Schaufler1-0/+32
2022-08-01smack: Remove the redundant lsm_inode_allocXiu Jianfeng1-7/+0
2022-08-01smack: Replace kzalloc + strncpy with kstrndupGONG, Ruiqi1-5/+2
2022-06-04Merge tag 'pull-18-rc1-work.mount' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds1-0/+1
2022-05-23smack: Remove redundant assignmentsMichal Orzel1-1/+0
2022-05-19move mount-related externs from fs.h to mount.hAl Viro1-0/+1
2022-02-28Fix incorrect type in assignment of ipv6 port for auditCasey Schaufler1-1/+1
2021-11-22lsm: security_task_getsecid_subj() -> security_current_getsecid_subj()Paul Moore2-21/+4
2021-11-01Merge tag 'selinux-pr-20211101' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-0/+46
2021-11-01Merge tag 'Smack-for-5.16' of https://github.com/cschaufler/smack-nextLinus Torvalds3-44/+34
2021-10-22smackfs: use netlbl_cfg_cipsov4_del() for deleting cipso_v4_doiTetsuo Handa1-1/+1
2021-10-22smackfs: use __GFP_NOFAIL for smk_cipso_doi()Tetsuo Handa1-3/+1
2021-10-13Smack: fix W=1 build warningsCasey Schaufler1-12/+18
2021-10-12smack: remove duplicated hook functionFlorian Westphal1-23/+3
2021-09-28Smack:- Use overlay inode label in smack_inode_copy_up()Vishal Goel1-1/+1
2021-09-24smack: Guard smack_ipv6_lock definition within a SMACK_IPV6_PORT_LABELING blockSebastian Andrzej Siewior1-3/+6
2021-09-23selinux,smack: fix subjective/objective credential use mixupsPaul Moore1-2/+2
2021-09-19Smack: Brutalist io_uring supportCasey Schaufler1-0/+46
2021-09-15smackfs: Fix use-after-free in netlbl_catmap_walk()Pawan Gupta1-1/+4
2021-07-20smack: mark 'smack_enabled' global variable as __initdataAustin Kim2-2/+2
2021-07-20Smack: Fix wrong semantics in smk_access_entry()Tianjia Zhang1-9/+8
2021-06-08Smack: fix doc warningChenXiaoSong1-1/+4
2021-05-18Revert "Smack: Handle io_uring kernel thread privileges"Jens Axboe1-3/+2
2021-05-10smackfs: restrict bytes count in smk_set_cipso()Tetsuo Handa1-0/+2
2021-05-10security/smack/: fix misspellings using codespell toolXiong Zhenwu1-1/+1
2021-05-01Merge tag 'landlock_v34' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds2-26/+15
2021-04-22LSM: Infrastructure management of the superblockCasey Schaufler2-26/+15
2021-03-22smack: differentiate between subjective and objective task credentialsPaul Moore2-14/+44
2021-03-22lsm: separate security_task_getsecid() into subjective and objective variantsPaul Moore1-1/+2
2021-02-23Merge tag 'idmapped-mounts-v5.12' of git://git.kernel.org/pub/scm/linux/kerne...Linus Torvalds1-9/+13
2021-02-02smackfs: restrict bytes count in smackfs write functionsSabyrzhan Tasbolatov1-2/+19
2021-01-24commoncap: handle idmapped mountsChristian Brauner1-6/+8
2021-01-24xattr: handle idmapped mountsTycho Andersen1-3/+5
2020-12-24Merge tag 'Smack-for-5.11-io_uring-fix' of git://github.com/cschaufler/smack-...Linus Torvalds1-2/+3
2020-12-22Smack: Handle io_uring kernel thread privilegesCasey Schaufler1-2/+3
2020-12-16Merge tag 'Smack-for-5.11' of git://github.com/cschaufler/smack-nextLinus Torvalds2-5/+5
2020-12-03security: add const qualifier to struct sock in various placesFlorian Westphal1-2/+2
2020-11-16security/smack: remove unused varible 'rc'Alex Shi1-2/+1
2020-11-13Smack: fix kernel-doc interface on functionsAlex Shi1-3/+4
2020-10-13Merge tag 'Smack-for-5.10' of git://github.com/cschaufler/smack-nextLinus Torvalds4-149/+200
2020-10-05Smack: Remove unnecessary variable initializationCasey Schaufler1-1/+1
2020-09-22Smack: Fix build when NETWORK_SECMARK is not setCasey Schaufler1-0/+7
2020-09-11Smack: Use the netlabel cacheCasey Schaufler4-38/+68
2020-09-11Smack: Set socket labels only onceCasey Schaufler2-89/+98
2020-09-11Smack: Consolidate uses of secmark into a functionCasey Schaufler1-28/+33
2020-08-23treewide: Use fallthrough pseudo-keywordGustavo A. R. Silva1-1/+1
2020-07-27Smack: prevent underflow in smk_set_cipso()Dan Carpenter1-1/+1
2020-07-27Smack: fix another vsscanf out of boundsDan Carpenter1-0/+4
2020-07-14Smack: fix use-after-free in smk_write_relabel_self()Eric Biggers1-2/+11
2020-06-13Merge tag 'notifications-20200601' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds1-8/+104
2020-06-04Merge branch 'exec-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/eb...Linus Torvalds1-6/+3
2020-05-20exec: Factor security_bprm_creds_for_exec out of security_bprm_set_credsEric W. Biederman1-6/+3
2020-05-19smack: Implement the watch_key and post_notification hooksDavid Howells1-1/+82
2020-05-19keys: Make the KEY_NEED_* perms an enum rather than a maskDavid Howells1-7/+22
2020-05-11Smack: Remove unused inline function smk_ad_setfield_u_fs_path_mntYueHaibing1-4/+0
2020-05-06Smack:- Remove redundant inode_smack cacheCasey Schaufler1-8/+1
2020-05-06Smack:- Remove mutex lock "smk_lock" from inode_smackCasey Schaufler2-7/+2
2020-05-06Smack: slab-out-of-bounds in vsscanfCasey Schaufler1-0/+10
2020-05-06smack: remove redundant structure variable from header.Maninder Singh1-1/+0
2020-05-06smack: avoid unused 'sip' variable warningArnd Bergmann2-23/+8
2020-02-08Merge branch 'merge.nfs-fs_parse.1' of git://git.kernel.org/pub/scm/linux/ker...Linus Torvalds1-7/+2
2020-02-07fs_parse: fold fs_parameter_desc/fs_parameter_specAl Viro1-6/+2
2020-02-07fs_parser: remove fs_parameter_description name fieldEric Sandeen1-1/+0
2020-02-05broken ping to ipv6 linklocal addresses on debian busterCasey Schaufler1-22/+19
2019-10-23pipe: Reduce #inclusion of pipe_fs_i.hDavid Howells1-1/+0
2019-09-23Merge tag 'smack-for-5.4-rc1' of git://github.com/cschaufler/smack-nextLinus Torvalds2-23/+23
2019-09-04smack: use GFP_NOFS while holding inode_smack::smk_lockEric Biggers2-4/+4
2019-09-04security: smack: Fix possible null-pointer dereferences in smack_socket_sock_...Jia-Ju Bai1-0/+2
2019-09-04smack: fix some kernel-doc notationsluanshi1-18/+15
2019-09-04Smack: Don't ignore other bprm->unsafe flags if LSM_UNSAFE_PTRACE is setJann Horn1-1/+2
2019-07-19Merge branch 'work.mount0' of git://git.kernel.org/pub/scm/linux/kernel/git/v...Linus Torvalds1-12/+22
2019-07-10Revert "Merge tag 'keys-acl-20190703' of git://git.kernel.org/pub/scm/linux/k...Linus Torvalds1-2/+1
2019-07-08Merge tag 'keys-acl-20190703' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds1-1/+2
2019-07-04vfs: Convert smackfs to use the new mount APIDavid Howells1-12/+22
2019-06-27keys: Replace uid/gid/perm permissions checking with an ACLDavid Howells1-1/+2
2019-06-19treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500Thomas Gleixner2-8/+2
2019-06-14Smack: Restore the smackfsdef mount option and add missing prefixesCasey Schaufler1-5/+7
2019-06-05treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 372Thomas Gleixner3-15/+3
2019-05-21treewide: Add SPDX license identifier - Makefile/KconfigThomas Gleixner2-0/+2
2019-04-30Smack: Fix kbuild reported build errorCasey Schaufler1-0/+2
2019-04-29smack: Check address length before reading address familyTetsuo Handa1-4/+15
2019-04-03Smack: Fix IPv6 handling of 0 secmarkCasey Schaufler1-0/+2
2019-04-02Smack: Create smack_rule cache to optimize memory usageCasey Schaufler3-3/+11
2019-04-02smack: removal of global rule listVishal Goel1-38/+15
2019-03-12Merge branch 'work.mount' of git://git.kernel.org/pub/scm/linux/kernel/git/vi...Linus Torvalds2-15/+96
2019-03-07Merge tag 'audit-pr-20190305' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds1-3/+1
2019-02-28introduce cloning of fs_contextAl Viro1-0/+49
2019-02-28smack: Implement filesystem context security hooksDavid Howells2-15/+47
2019-02-22security: mark expected switch fall-throughs and add a missing breakGustavo A. R. Silva1-2/+1
2019-01-31audit: remove unused actx param from audit_rule_matchRichard Guy Briggs1-3/+1
2019-01-18LSM: Make lsm_early_cred() and lsm_early_task() local functions.Tetsuo Handa1-2/+0
2019-01-10LSM: generalize flag passing to security_capableMicah Morton1-1/+1
2019-01-08LSM: Infrastructure management of the ipc security blobCasey Schaufler2-30/+6
2019-01-08Smack: Abstract use of ipc security blobsCasey Schaufler2-5/+20
2019-01-08LSM: Infrastructure management of the inode securityCasey Schaufler2-60/+18
2019-01-08Smack: Abstract use of inode security blobCasey Schaufler2-18/+23
2019-01-08LSM: Infrastructure management of the file securityCasey Schaufler2-14/+3
2019-01-08Smack: Abstract use of file security blobCasey Schaufler2-4/+13
2019-01-08Infrastructure management of the cred security blobCasey Schaufler2-55/+27
2019-01-08Smack: Abstract use of cred security blobCasey Schaufler4-43/+53
2019-01-08LSM: Separate idea of "major" LSM from "exclusive" LSMKees Cook1-1/+1
2019-01-08LSM: Lift LSM selection out of individual LSMsKees Cook1-3/+0
2019-01-08LSM: Introduce LSM_FLAG_LEGACY_MAJORKees Cook1-0/+1
2019-01-05Merge branch 'mount.part1' of git://git.kernel.org/pub/scm/linux/kernel/git/v...Linus Torvalds1-222/+137
2018-12-21smack: rewrite smack_sb_eat_lsm_opts()Al Viro1-85/+23
2018-12-21smack: get rid of match_token()Al Viro1-18/+38
2018-12-21smack: take the guts of smack_parse_opts_str() into a new helperAl Viro1-57/+57
2018-12-21LSM: new method: ->sb_add_mnt_opt()Al Viro1-1/+0
2018-12-21smack: switch to private smack_mnt_optsAl Viro1-102/+55
2018-12-21LSM: hide struct security_mnt_opts from any generic codeAl Viro1-8/+30
2018-12-21LSM: turn sb_eat_lsm_opts() into a methodAl Viro1-1/+15
2018-12-21LSM: split ->sb_set_mnt_opts() out of ->sb_kern_mount()Al Viro1-15/+0
2018-12-21LSM: lift parsing LSM options into the caller of ->sb_kern_mount()Al Viro1-20/+3
2018-12-21smack: make smack_parse_opts_str() clean up on failureAl Viro1-0/+1
2018-12-03smack: fix access permissions for keyringZoran Markovic1-3/+9
2018-10-25Merge branch 'next-smack' of git://git.kernel.org/pub/scm/linux/kernel/git/jm...Linus Torvalds2-7/+11
2018-10-24Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-1/+4
2018-10-10LSM: Record LSM name in struct lsm_infoKees Cook1-0/+1
2018-10-10LSM: Convert security_initcall() into DEFINE_LSM()Kees Cook1-1/+3
2018-10-03signal: Distinguish between kernel_siginfo and siginfoEric W. Biederman1-1/+1
2018-09-18Smack: Mark expected switch fall-throughGustavo A. R. Silva1-1/+1
2018-09-18Smack: ptrace capability use fixesCasey Schaufler1-3/+10
2018-09-18Smack: remove set but not used variable 'root_inode'YueHaibing1-3/+0
2018-08-15Merge branch 'next-smack' of git://git.kernel.org/pub/scm/linux/kernel/git/jm...Linus Torvalds1-6/+16
2018-08-13Merge branch 'work.open3' of git://git.kernel.org/pub/scm/linux/kernel/git/vi...Linus Torvalds1-3/+3
2018-07-23Smack: Inform peer that IPv6 traffic has been blockedPiotr Sawicki1-0/+4
2018-07-23Smack: Check UDP-Lite and DCCP protocols during IPv6 handlingPiotr Sawicki1-1/+3
2018-07-23Smack: Fix handling of IPv4 traffic received by PF_INET6 socketsPiotr Sawicki1-5/+9
2018-07-12->file_open(): lose cred argumentAl Viro1-3/+3
2018-06-23Smack: Mark inode instant in smack_task_to_inodeCasey Schaufler1-0/+1
2018-06-05Merge branch 'smack-for-4.18' of https://github.com/cschaufler/next-smack int...James Morris1-7/+5
2018-06-05Smack: Fix memory leak in smack_inode_getsecctxCasey Schaufler1-7/+5
2018-05-04smack: provide socketpair callbackTom Gundersen1-0/+22
2018-04-11ipc/msg: introduce msgctl(MSG_STAT_ANY)Davidlohr Bueso1-0/+1
2018-04-11ipc/sem: introduce semctl(SEM_STAT_ANY)Davidlohr Bueso1-0/+1
2018-04-11ipc/shm: introduce shmctl(SHM_STAT_ANY)Davidlohr Bueso1-0/+1
2018-04-07Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds1-0/+18
2018-04-07Merge branch 'next-smack' of git://git.kernel.org/pub/scm/linux/kernel/git/jm...Linus Torvalds1-0/+2
2018-04-07Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-7/+5
2018-03-27ipc/smack: Tidy up from the change in type of the ipc security hooksEric W. Biederman1-139/+58
2018-03-27Merge branch 'smack-for-4.17' of git://github.com/cschaufler/next-smack into ...James Morris1-0/+2
2018-03-23security: Add a cred_getsecid hookMatthew Garrett1-0/+18
2018-03-22msg/security: Pass kern_ipc_perm not msg_queue into the msg_queue security hooksEric W. Biederman1-12/+12
2018-03-22shm/security: Pass kern_ipc_perm not shmid_kernel into the shm security hooksEric W. Biederman1-11/+11
2018-03-22sem/security: Pass kern_ipc_perm not sem_array into the sem security hooksEric W. Biederman1-11/+11
2018-03-07usb, signal, security: only pass the cred, not the secid, to kill_pid_info_as...Stephen Smalley1-7/+5
2018-02-28Smack: Handle CGROUP2 in the same way that CGROUPJosé Bollo1-0/+2
2018-01-10Smack: Privilege check on key operationsCasey Schaufler3-11/+34
2017-12-27Smack: fix dereferenced before checkVasyl Gomonovych1-1/+5
2017-11-13Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-0/+79
2017-11-02Smack: Base support for overlayfsCasey Schaufler1-0/+79
2017-10-04lsm: fix smack_inode_removexattr and xattr_getsecurity memleakCasey Schaufler1-30/+25
2017-09-07Merge tag 'secureexec-v4.14-rc1' of git://git.kernel.org/pub/scm/linux/kernel...Linus Torvalds1-31/+3
2017-08-01smack: Remove redundant pdeath_signal clearingKees Cook1-15/+0
2017-08-01smack: Refactor to remove bprm_secureexec hookKees Cook1-17/+4
2017-08-01exec: Rename bprm->cred_prepared to called_set_credsKees Cook1-1/+1
generated by cgit 1.2.3-korg (git 2.39.0) at 2024-05-09 09:21:06 +0000