aboutsummaryrefslogtreecommitdiffstats
path: root/security/selinux
AgeCommit message (Expand)AuthorFilesLines
2022-05-24Merge tag 'selinux-pr-20220523' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds19-80/+89
2022-05-17selinux: fix bad cleanup on error in hashtab_duplicate()Ondrej Mosnacek1-1/+2
2022-05-03selinux: log anon inode class nameChristian Göttsche1-2/+2
2022-05-03selinux: declare data arrays constChristian Göttsche9-26/+24
2022-05-03selinux: fix indentation level of mls_ops blockChristian Göttsche1-21/+21
2022-05-03selinux: include necessary headers in headersChristian Göttsche6-1/+12
2022-05-03selinux: avoid extra semicolonChristian Göttsche1-9/+9
2022-05-03selinux: update parameter documentationChristian Göttsche2-1/+2
2022-05-03selinux: resolve checkpatch errorsChristian Göttsche3-18/+9
2022-04-14selinux: don't sleep when CONFIG_SECURITY_SELINUX_CHECKREQPROT_VALUE is truePaul Moore2-3/+3
2022-04-04selinux: checkreqprot is deprecated, add some ssleep() discomfortPaul Moore3-3/+11
2022-04-04selinux: runtime disable is deprecated, add some ssleep() discomfortPaul Moore1-0/+2
2022-04-04selinux: Remove redundant assignmentsMichal Orzel3-4/+2
2022-03-28Merge tag 'ptrace-cleanups-for-v5.18' of git://git.kernel.org/pub/scm/linux/k...Linus Torvalds1-1/+0
2022-03-24Merge tag 'net-next-5.18' of git://git.kernel.org/pub/scm/linux/kernel/git/ne...Linus Torvalds1-1/+5
2022-03-21Merge tag 'selinux-pr-20220321' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds18-212/+201
2022-03-10tracehook: Remove tracehook.hEric W. Biederman1-1/+0
2022-03-03net: rtnetlink: Add RTM_SETSTATSPetr Machata1-0/+1
2022-03-02selinux: shorten the policy capability enum namesPaul Moore5-24/+24
2022-03-01rtnetlink: add new rtm tunnel api for tunnel id filteringRoopa Prabhu1-1/+4
2022-02-25selinux: allow FIOCLEX and FIONCLEX with policy capabilityRichard Haines4-1/+16
2022-02-22selinux: fix misuse of mutex_is_locked()Ondrej Mosnacek1-2/+2
2022-02-18selinux: use correct type for context lengthChristian Göttsche1-1/+1
2022-02-18selinux: drop return statement at end of void functionsChristian Göttsche5-8/+0
2022-02-15security: implement sctp_assoc_established hook in selinuxOndrej Mosnacek1-24/+66
2022-02-04selinux: parse contexts for mount options earlyOndrej Mosnacek1-149/+53
2022-02-02selinux: fix double free of cond_list on error pathsVratislav Bendel1-1/+2
2022-02-01selinux: various sparse fixesPaul Moore4-7/+8
2022-02-01selinux: try to use preparsed sid before calling parse_sid()Scott Mayhew1-29/+59
2022-02-01selinux: Fix selinux_sb_mnt_opts_compat()Scott Mayhew1-34/+41
2022-01-27LSM: general protection fault in legacy_parse_paramCasey Schaufler1-3/+2
2022-01-27selinux: fix a type cast problem in cred_init_security()Paul Moore1-1/+1
2022-01-26selinux: drop unused macroChristian Göttsche1-2/+0
2022-01-26selinux: simplify cred_init_securityChristian Göttsche1-2/+1
2022-01-26selinux: do not discard const qualifier in castChristian Göttsche1-2/+2
2022-01-26selinux: drop unused parameter of avtab_insert_nodeChristian Göttsche1-3/+3
2022-01-26selinux: drop cast to same typeChristian Göttsche1-1/+1
2022-01-26selinux: enclose macro arguments in parenthesisChristian Göttsche3-7/+7
2022-01-26selinux: declare name parameter of hash_eval constChristian Göttsche1-1/+1
2022-01-25selinux: declare path parameters of _genfs_sid constChristian Göttsche2-5/+5
2022-01-25selinux: check return value of sel_make_avc_filesChristian Göttsche1-0/+2
2022-01-25selinux: access superblock_security_struct in LSM blob wayGONG, Ruiqi1-2/+2
2022-01-11Merge tag 'selinux-pr-20220110' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds3-66/+24
2021-12-27selinux: initialize proto variable in selinux_ip_postroute_compat()Tom Rix1-1/+1
2021-12-21selinux: minor tweaks to selinux_add_opt()Paul Moore1-8/+10
2021-12-21selinux: fix potential memleak in selinux_add_opt()Bernard Zhao1-2/+10
2021-12-16selinux: fix sleeping function called from invalid contextScott Mayhew1-14/+19
2021-12-06security,selinux: remove security_add_mnt_opt()Ondrej Mosnacek1-39/+0
2021-12-05selinux: Use struct_size() helper in kmalloc()Xiu Jianfeng2-3/+3
2021-11-22lsm: security_task_getsecid_subj() -> security_current_getsecid_subj()Paul Moore1-16/+3
2021-11-19selinux: fix NULL-pointer dereference when hashtab allocation failsOndrej Mosnacek1-5/+12
2021-11-12net,lsm,selinux: revert the security_sctp_assoc_established() hookPaul Moore1-13/+1
2021-11-03security: implement sctp_assoc_established hook in selinuxXin Long1-1/+13
2021-11-03security: pass asoc to sctp_assoc_request and sctp_sk_cloneXin Long3-22/+22
2021-11-01Merge tag 'selinux-pr-20211101' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds8-244/+202
2021-10-20security: Return xattr name from security_dentry_init_security()Vivek Goyal1-1/+5
2021-10-19selinux: fix a sock regression in selinux_ip_postroute_compat()Paul Moore1-2/+2
2021-10-14binder: use cred instead of task for selinux checksTodd Kjos1-35/+13
2021-10-13selinux: fix all of the W=1 build warningsPaul Moore6-8/+33
2021-10-13selinux: make better use of the nf_hook_state passed to the NF hooksPaul Moore1-27/+25
2021-10-11selinux: fix race condition when computing ocontext SIDsOndrej Mosnacek1-85/+77
2021-10-11selinux: remove unneeded ipv6 hook wrappersFlorian Westphal1-62/+18
2021-10-07Merge branch 'master' of git://git.kernel.org/pub/scm/linux/kernel/git/klassert/David S. Miller1-1/+3
2021-09-30selinux: remove the SELinux lockdown implementationPaul Moore2-32/+0
2021-09-28selinux: enable genfscon labeling for securityfsChristian Göttsche1-1/+2
2021-09-23selinux,smack: fix subjective/objective credential use mixupsPaul Moore1-2/+2
2021-09-19selinux: add support for the io_uring access controlsPaul Moore2-0/+36
2021-09-14include/uapi/linux/xfrm.h: Fix XFRM_MSG_MAPPING ABI breakageEugene Syromiatnikov1-1/+3
2021-09-02Merge tag 'integrity-v5.15' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-2/+4
2021-08-31Merge tag 'net-next-5.15' of git://git.kernel.org/pub/scm/linux/kernel/git/ne...Linus Torvalds2-2/+6
2021-08-31Merge tag 'selinux-pr-20210830' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds2-0/+6
2021-08-05Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/netJakub Kicinski1-6/+4
2021-08-02selinux: correct the return value when loads initial sidsXiu Jianfeng1-6/+4
2021-07-29mctp: Add MCTP baseJeremy Kerr2-2/+6
2021-07-23ima: Add digest and digest_len params to the functions to measure a bufferRoberto Sassu1-2/+4
2021-07-14selinux: return early for possible NULL audit buffersAustin Kim2-0/+6
2021-06-11selinux: kill 'flags' argument in avc_has_perm_flags() and avc_audit()Al Viro3-31/+5
2021-06-11selinux: slow_avc_audit has become non-blockingAl Viro3-35/+10
2021-06-11selinux: Fix kernel-docYang Li1-1/+22
2021-06-10selinux: use __GFP_NOWARN with GFP_NOWAIT in the AVCMinchan Kim1-6/+7
2021-05-14lsm_audit,selinux: pass IB device name by referenceOndrej Mosnacek1-1/+1
2021-05-10selinux: Remove redundant assignment to rcJiapeng Chong2-5/+0
2021-05-10selinux: Corrected comment to match kernel-doc commentSouptick Joarder1-1/+1
2021-05-10selinux: delete selinux_xfrm_policy_lookup() useless argumentZhongjun Tan2-2/+2
2021-05-10selinux: constify some avtab function argumentsOndrej Mosnacek3-21/+26
2021-05-10selinux: simplify duplicate_policydb_cond_list() by using kmemdup()Ondrej Mosnacek1-5/+6
2021-05-01Merge tag 'landlock_v34' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds3-37/+30
2021-04-29Merge tag 'net-next-5.13' of git://git.kernel.org/pub/scm/linux/kernel/git/ne...Linus Torvalds1-1/+4
2021-04-27Merge tag 'selinux-pr-20210426' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds8-48/+232
2021-04-22LSM: Infrastructure management of the superblockCasey Schaufler3-37/+30
2021-04-21selinux: add proper NULL termination to the secclass_map permissionsPaul Moore1-2/+3
2021-04-09Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/netJakub Kicinski6-112/+185
2021-04-09Merge tag 'selinux-pr-20210409' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds6-112/+185
2021-04-07selinux: fix race between old and new sidtabOndrej Mosnacek3-37/+145
2021-04-02selinux: fix cond_list corruption when changing booleansOndrej Mosnacek3-69/+33
2021-04-02selinux: make nslot handling in avtab more robustOndrej Mosnacek1-10/+11
2021-03-25Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/netDavid S. Miller3-41/+59
2021-03-22selinux: clarify task subjective and objective credentialsPaul Moore1-39/+73
2021-03-22lsm: separate security_task_getsecid() into subjective and objective variantsPaul Moore1-1/+2
2021-03-22lsm,selinux: add new hook to compare new mount to an existing mountOlga Kornievskaia1-0/+56
2021-03-22Merge tag 'selinux-pr-20210322' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds3-41/+59
2021-03-18selinuxfs: unify policy load error reportingOndrej Mosnacek1-6/+3
2021-03-18selinux: fix variable scope issue in live sidtab conversionOndrej Mosnacek3-33/+55
2021-03-18selinux: don't log MAC_POLICY_LOAD record on failed policy loadOndrej Mosnacek1-2/+1
2021-03-11nexthop: Add netlink defines and enumerators for resilient NH groupsIdo Schimmel1-1/+4
2021-03-08selinux: fix misspellings using codespell toolXiong Zhenwu1-1/+1
2021-03-08selinux: fix misspellings using codespell toolXiong Zhenwu1-1/+1
2021-03-08selinux: measure state and policy capabilitiesLakshmi Ramasubramanian4-5/+96
2021-03-08selinux: Allow context mounts for unpriviliged overlayfsVivek Goyal1-1/+2
2021-02-23Merge tag 'idmapped-mounts-v5.12' of git://git.kernel.org/pub/scm/linux/kerne...Linus Torvalds1-9/+14
2021-02-21Merge tag 'integrity-v5.12' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds5-10/+127
2021-01-24commoncap: handle idmapped mountsChristian Brauner1-8/+12
2021-01-24xattr: handle idmapped mountsTycho Andersen1-1/+2
2021-01-24inode: make init and permission helpers idmapped mount awareChristian Brauner1-2/+2
2021-01-14selinux: include a consumer of the new IMA critical data hookLakshmi Ramasubramanian5-10/+127
2021-01-14selinux: teach SELinux about anonymous inodesDaniel Colascione2-0/+59
2021-01-13selinux: fall back to SECURITY_FS_USE_GENFS if no xattr supportOndrej Mosnacek1-25/+52
2021-01-12selinux: mark selinux_xfrm_refcount as __read_mostlyOndrej Mosnacek1-1/+1
2021-01-12selinux: mark some global variables __ro_after_initOndrej Mosnacek6-12/+12
2021-01-12selinux: make selinuxfs_mount staticOndrej Mosnacek2-2/+1
2021-01-12selinux: drop the unnecessary aurule_callback variableOndrej Mosnacek1-7/+3
2021-01-12selinux: remove unused global variablesOndrej Mosnacek4-4/+0
2021-01-04selinux: fix inconsistency between inode_getxattr and inode_listsecurityAmir Goldstein1-0/+4
2021-01-04selinux: handle MPTCP consistently with TCPPaolo Abeni1-1/+2
2020-12-16Merge tag 'selinux-pr-20201214' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds5-20/+26
2020-12-03security: add const qualifier to struct sock in various placesFlorian Westphal1-1/+1
2020-11-23lsm,selinux: pass flowi_common instead of flowi to the LSM hooksPaul Moore3-9/+10
2020-11-23selinux: Fix fall-through warnings for ClangGustavo A. R. Silva1-0/+1
2020-11-14Merge tag 'selinux-pr-20201113' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-1/+3
2020-11-12selinux: Fix error return code in sel_ib_pkey_sid_slow()Chen Zhou1-1/+3
2020-11-12selinux: drop super_block backpointer from superblock_security_structOndrej Mosnacek2-4/+2
2020-11-05selinux: fix inode_doinit_with_dentry() LABEL_INVALID error handlingPaul Moore1-18/+13
2020-10-27selinux: allow dontauditx and auditallowx rules to take effect without allowxbauen11-3/+1
2020-10-27selinux: fix error initialization in inode_doinit_with_dentry()Tianyue Ren1-3/+16
2020-10-15Merge tag 'char-misc-5.10-rc1' of git://git.kernel.org/pub/scm/linux/kernel/g...Linus Torvalds1-3/+5
2020-10-13Merge tag 'selinux-pr-20201012' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds17-498/+1068
2020-10-05LSM: Add "contents" flag to kernel_read_file hookKees Cook1-2/+3
2020-10-05LSM: Introduce kernel_post_load_data() hookKees Cook1-1/+1
2020-10-05fs/kernel_read_file: Split into separate include fileScott Branden1-0/+1
2020-09-15selinux: Add helper functions to get and set checkreqprotLakshmi Ramasubramanian3-5/+16
2020-09-11selinux: access policycaps with READ_ONCE/WRITE_ONCEStephen Smalley2-8/+9
2020-08-31selinux: simplify away security_policydb_len()Ondrej Mosnacek3-30/+10
2020-08-27selinux: move policy mutex to selinux_state, use in lockdep checksStephen Smalley4-43/+22
2020-08-26selinux: fix error handling bugs in security_load_policy()Dan Carpenter1-11/+23
2020-08-25selinux: convert policy read-write lock to RCUStephen Smalley4-218/+280
2020-08-24selinux: delete repeated words in commentsRandy Dunlap1-3/+3
2020-08-23treewide: Use fallthrough pseudo-keywordGustavo A. R. Silva2-10/+2
2020-08-21selinux: add basic filtering for audit trace eventsPeter Enderborg1-13/+15
2020-08-21selinux: add tracepoint on audited eventsThiébaud Weksteen1-0/+5
2020-08-21selinux: Create new booleans and class dirs out of treeDaniel Burgener1-23/+90
2020-08-21selinux: Standardize string literal usage for selinuxfs directory namesDaniel Burgener1-4/+6
2020-08-21selinux: Refactor selinuxfs directory populating functionsDaniel Burgener1-20/+25
2020-08-21selinux: Create function for selinuxfs directory cleanupDaniel Burgener1-14/+25
2020-08-20selinux: permit removing security.selinux xattr before policy loadStephen Smalley1-0/+3
2020-08-20selinux: fix memdup.cocci warningskernel test robot1-3/+2
2020-08-19selinux: avoid dereferencing the policy prior to initializationStephen Smalley1-0/+60
2020-08-19selinux: fix allocation failure check on newpolicy->sidtabColin Ian King1-1/+1
2020-08-17selinux: refactor changing booleansStephen Smalley8-64/+368
2020-08-17selinux: move policy commit after updating selinuxfsStephen Smalley6-80/+104
2020-08-17selinux: encapsulate policy state, refactor policy loadStephen Smalley2-192/+221
2020-08-17scripts/selinux,selinux: update mdp to enable policy capabilitiesStephen Smalley4-26/+40
2020-08-04Merge tag 'cap-checkpoint-restore-v5.9' of git://git.kernel.org/pub/scm/linux...Linus Torvalds1-2/+3
2020-08-04Merge tag 'selinux-pr-20200803' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds14-161/+240
2020-07-19capabilities: Introduce CAP_CHECKPOINT_RESTOREAdrian Reber1-2/+3
2020-07-09selinux: complete the inlining of hashtab functionsOndrej Mosnacek2-59/+63
2020-07-09selinux: prepare for inlining of hashtab functionsOndrej Mosnacek7-63/+110
2020-07-08selinux: specialize symtab insert and search functionsOndrej Mosnacek7-56/+69
2020-07-08selinux: Fix spelling mistakes in the commentslihao3-3/+3
2020-06-29selinux: fixed a checkpatch warning with the sizeof macroEthan Edwards1-2/+2
2020-06-23selinux: log error messages on required process class / permissionsStephen Smalley1-5/+15
2020-06-23selinux: allow reading labels before policy is loadedJonathan Lebon1-1/+6
2020-06-21Merge tag 'selinux-pr-20200621' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds2-13/+12
2020-06-17selinux: fix undefined return of cond_evaluate_exprTom Rix1-0/+3
2020-06-16selinux: fix a double free in cond_read_node()/cond_read_list()Tom Rix1-13/+5
2020-06-13Merge tag 'notifications-20200601' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds1-7/+44
2020-06-10selinux: fix double freeTom Rix1-0/+4
2020-06-04Merge branch 'exec-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/eb...Linus Torvalds1-5/+3
2020-06-03Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net-nextLinus Torvalds1-2/+2
2020-06-02Merge tag 'selinux-pr-20200601' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds19-326/+499
2020-05-28Merge tag 'v5.7-rc7' into perf/core, to pick up fixesIngo Molnar2-26/+46
2020-05-20exec: Factor security_bprm_creds_for_exec out of security_bprm_set_credsEric W. Biederman1-5/+3
2020-05-19selinux: Implement the watch_key security hookDavid Howells1-0/+14
2020-05-19keys: Make the KEY_NEED_* perms an enum rather than a maskDavid Howells1-7/+30
2020-05-15bpf, capability: Introduce CAP_BPFAlexei Starovoitov1-2/+2
2020-05-14Merge git://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf-nextDavid S. Miller1-2/+2
2020-05-12selinux: netlabel: Remove unused inline functionYueHaibing1-6/+0
2020-05-06Merge tag 'perf-for-bpf-2020-05-06' of git://git.kernel.org/pub/scm/linux/ker...Alexei Starovoitov1-2/+2
2020-05-01selinux: do not allocate hashtabs dynamicallyOndrej Mosnacek8-146/+116
2020-05-01selinux: fix return value on error in policydb_read()Ondrej Mosnacek1-0/+1
2020-05-01selinux: simplify range_write()Ondrej Mosnacek1-16/+2
2020-05-01selinux: fix error return code in policydb_read()Wei Yongjun1-0/+1
2020-04-30Merge tag 'selinux-pr-20200430' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds2-26/+46
2020-04-30selinux: properly handle multiple messages in selinux_netlink_send()Paul Moore1-25/+45
2020-04-27selinux: fix error return code in cond_read_list()Wei Yongjun1-1/+1
2020-04-22selinux: don't produce incorrect filename_trans_countOndrej Mosnacek2-9/+5
2020-04-22Merge tag 'perf-core-for-mingo-5.8-20200420' of git://git.kernel.org/pub/scm/...Ingo Molnar1-2/+2
2020-04-17selinux: implement new format of filename transitionsOndrej Mosnacek2-26/+189
2020-04-17selinux: move context hashing under sidtabOndrej Mosnacek5-58/+47
2020-04-17selinux: hash context structure directlyOndrej Mosnacek9-42/+69
2020-04-17selinux: store role transitions in a hash tableOndrej Mosnacek3-60/+107
generated by cgit 1.2.3-korg (git 2.39.0) at 2024-05-31 03:49:52 +0000