aboutsummaryrefslogtreecommitdiffstats
path: root/security/smack
AgeCommit message (Expand)AuthorFilesLines
2023-04-24Merge tag 'Smack-for-6.4' of https://github.com/cschaufler/smack-nextLinus Torvalds1-40/+24
2023-04-05Smack: Improve mount process memory useCasey Schaufler1-39/+23
2023-03-20selinux: remove the runtime disable functionalityPaul Moore1-2/+2
2023-03-08smack_lsm: remove unnecessary type castingXU pengfei1-1/+1
2023-02-22Merge tag 'Smack-for-6.3' of https://github.com/cschaufler/smack-nextLinus Torvalds1-3/+14
2023-02-21smackfs: Added check catlenDenis Arefev1-3/+14
2023-01-19fs: port acl to mnt_idmapChristian Brauner1-6/+6
2023-01-19fs: port xattr to mnt_idmapChristian Brauner1-7/+7
2023-01-19fs: port ->permission() to pass mnt_idmapChristian Brauner1-2/+2
2022-12-13Merge tag 'lsm-pr-20221212' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-9/+10
2022-11-04lsm: make security_socket_getpeersec_stream() sockptr_t safePaul Moore1-9/+10
2022-10-20smack: implement get, set and remove acl hookChristian Brauner1-0/+71
2022-10-06Merge tag 'pull-path' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfsLinus Torvalds1-1/+1
2022-10-03Merge tag 'Smack-for-6.1' of https://github.com/cschaufler/smack-nextLinus Torvalds2-12/+17
2022-09-27smack: cleanup obsolete mount option flagsXiu Jianfeng1-9/+0
2022-09-27smack: lsm: remove the unneeded result variableXu Panda1-3/+1
2022-09-27SMACK: Add sk_clone_security LSM hookLontke Michael1-0/+16
2022-09-01->getprocattr(): attribute name is const char *, TYVM...Al Viro1-1/+1
2022-08-26Smack: Provide read control for io_uring_cmdCasey Schaufler1-0/+32
2022-08-01smack: Remove the redundant lsm_inode_allocXiu Jianfeng1-7/+0
2022-08-01smack: Replace kzalloc + strncpy with kstrndupGONG, Ruiqi1-5/+2
2022-06-04Merge tag 'pull-18-rc1-work.mount' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds1-0/+1
2022-05-23smack: Remove redundant assignmentsMichal Orzel1-1/+0
2022-05-19move mount-related externs from fs.h to mount.hAl Viro1-0/+1
2022-02-28Fix incorrect type in assignment of ipv6 port for auditCasey Schaufler1-1/+1
2021-11-22lsm: security_task_getsecid_subj() -> security_current_getsecid_subj()Paul Moore2-21/+4
2021-11-01Merge tag 'selinux-pr-20211101' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-0/+46
2021-11-01Merge tag 'Smack-for-5.16' of https://github.com/cschaufler/smack-nextLinus Torvalds3-44/+34
2021-10-22smackfs: use netlbl_cfg_cipsov4_del() for deleting cipso_v4_doiTetsuo Handa1-1/+1
2021-10-22smackfs: use __GFP_NOFAIL for smk_cipso_doi()Tetsuo Handa1-3/+1
2021-10-13Smack: fix W=1 build warningsCasey Schaufler1-12/+18
2021-10-12smack: remove duplicated hook functionFlorian Westphal1-23/+3
2021-09-28Smack:- Use overlay inode label in smack_inode_copy_up()Vishal Goel1-1/+1
2021-09-24smack: Guard smack_ipv6_lock definition within a SMACK_IPV6_PORT_LABELING blockSebastian Andrzej Siewior1-3/+6
2021-09-23selinux,smack: fix subjective/objective credential use mixupsPaul Moore1-2/+2
2021-09-19Smack: Brutalist io_uring supportCasey Schaufler1-0/+46
2021-09-15smackfs: Fix use-after-free in netlbl_catmap_walk()Pawan Gupta1-1/+4
2021-07-20smack: mark 'smack_enabled' global variable as __initdataAustin Kim2-2/+2
2021-07-20Smack: Fix wrong semantics in smk_access_entry()Tianjia Zhang1-9/+8
2021-06-08Smack: fix doc warningChenXiaoSong1-1/+4
2021-05-18Revert "Smack: Handle io_uring kernel thread privileges"Jens Axboe1-3/+2
2021-05-10smackfs: restrict bytes count in smk_set_cipso()Tetsuo Handa1-0/+2
2021-05-10security/smack/: fix misspellings using codespell toolXiong Zhenwu1-1/+1
2021-05-01Merge tag 'landlock_v34' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds2-26/+15
2021-04-22LSM: Infrastructure management of the superblockCasey Schaufler2-26/+15
2021-03-22smack: differentiate between subjective and objective task credentialsPaul Moore2-14/+44
2021-03-22lsm: separate security_task_getsecid() into subjective and objective variantsPaul Moore1-1/+2
2021-02-23Merge tag 'idmapped-mounts-v5.12' of git://git.kernel.org/pub/scm/linux/kerne...Linus Torvalds1-9/+13
2021-02-02smackfs: restrict bytes count in smackfs write functionsSabyrzhan Tasbolatov1-2/+19
2021-01-24commoncap: handle idmapped mountsChristian Brauner1-6/+8
2021-01-24xattr: handle idmapped mountsTycho Andersen1-3/+5
2020-12-24Merge tag 'Smack-for-5.11-io_uring-fix' of git://github.com/cschaufler/smack-...Linus Torvalds1-2/+3
2020-12-22Smack: Handle io_uring kernel thread privilegesCasey Schaufler1-2/+3
2020-12-16Merge tag 'Smack-for-5.11' of git://github.com/cschaufler/smack-nextLinus Torvalds2-5/+5
2020-12-03security: add const qualifier to struct sock in various placesFlorian Westphal1-2/+2
2020-11-16security/smack: remove unused varible 'rc'Alex Shi1-2/+1
2020-11-13Smack: fix kernel-doc interface on functionsAlex Shi1-3/+4
2020-10-13Merge tag 'Smack-for-5.10' of git://github.com/cschaufler/smack-nextLinus Torvalds4-149/+200
2020-10-05Smack: Remove unnecessary variable initializationCasey Schaufler1-1/+1
2020-09-22Smack: Fix build when NETWORK_SECMARK is not setCasey Schaufler1-0/+7
2020-09-11Smack: Use the netlabel cacheCasey Schaufler4-38/+68
2020-09-11Smack: Set socket labels only onceCasey Schaufler2-89/+98
2020-09-11Smack: Consolidate uses of secmark into a functionCasey Schaufler1-28/+33
2020-08-23treewide: Use fallthrough pseudo-keywordGustavo A. R. Silva1-1/+1
2020-07-27Smack: prevent underflow in smk_set_cipso()Dan Carpenter1-1/+1
2020-07-27Smack: fix another vsscanf out of boundsDan Carpenter1-0/+4
2020-07-14Smack: fix use-after-free in smk_write_relabel_self()Eric Biggers1-2/+11
2020-06-13Merge tag 'notifications-20200601' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds1-8/+104
2020-06-04Merge branch 'exec-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/eb...Linus Torvalds1-6/+3
2020-05-20exec: Factor security_bprm_creds_for_exec out of security_bprm_set_credsEric W. Biederman1-6/+3
2020-05-19smack: Implement the watch_key and post_notification hooksDavid Howells1-1/+82
2020-05-19keys: Make the KEY_NEED_* perms an enum rather than a maskDavid Howells1-7/+22
2020-05-11Smack: Remove unused inline function smk_ad_setfield_u_fs_path_mntYueHaibing1-4/+0
2020-05-06Smack:- Remove redundant inode_smack cacheCasey Schaufler1-8/+1
2020-05-06Smack:- Remove mutex lock "smk_lock" from inode_smackCasey Schaufler2-7/+2
2020-05-06Smack: slab-out-of-bounds in vsscanfCasey Schaufler1-0/+10
2020-05-06smack: remove redundant structure variable from header.Maninder Singh1-1/+0
2020-05-06smack: avoid unused 'sip' variable warningArnd Bergmann2-23/+8
2020-02-08Merge branch 'merge.nfs-fs_parse.1' of git://git.kernel.org/pub/scm/linux/ker...Linus Torvalds1-7/+2
2020-02-07fs_parse: fold fs_parameter_desc/fs_parameter_specAl Viro1-6/+2
2020-02-07fs_parser: remove fs_parameter_description name fieldEric Sandeen1-1/+0
2020-02-05broken ping to ipv6 linklocal addresses on debian busterCasey Schaufler1-22/+19
2019-10-23pipe: Reduce #inclusion of pipe_fs_i.hDavid Howells1-1/+0
2019-09-23Merge tag 'smack-for-5.4-rc1' of git://github.com/cschaufler/smack-nextLinus Torvalds2-23/+23
2019-09-04smack: use GFP_NOFS while holding inode_smack::smk_lockEric Biggers2-4/+4
2019-09-04security: smack: Fix possible null-pointer dereferences in smack_socket_sock_...Jia-Ju Bai1-0/+2
2019-09-04smack: fix some kernel-doc notationsluanshi1-18/+15
2019-09-04Smack: Don't ignore other bprm->unsafe flags if LSM_UNSAFE_PTRACE is setJann Horn1-1/+2
2019-07-19Merge branch 'work.mount0' of git://git.kernel.org/pub/scm/linux/kernel/git/v...Linus Torvalds1-12/+22
2019-07-10Revert "Merge tag 'keys-acl-20190703' of git://git.kernel.org/pub/scm/linux/k...Linus Torvalds1-2/+1
2019-07-08Merge tag 'keys-acl-20190703' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds1-1/+2
2019-07-04vfs: Convert smackfs to use the new mount APIDavid Howells1-12/+22
2019-06-27keys: Replace uid/gid/perm permissions checking with an ACLDavid Howells1-1/+2
2019-06-19treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500Thomas Gleixner2-8/+2
2019-06-14Smack: Restore the smackfsdef mount option and add missing prefixesCasey Schaufler1-5/+7
2019-06-05treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 372Thomas Gleixner3-15/+3
2019-05-21treewide: Add SPDX license identifier - Makefile/KconfigThomas Gleixner2-0/+2
2019-04-30Smack: Fix kbuild reported build errorCasey Schaufler1-0/+2
2019-04-29smack: Check address length before reading address familyTetsuo Handa1-4/+15
2019-04-03Smack: Fix IPv6 handling of 0 secmarkCasey Schaufler1-0/+2
2019-04-02Smack: Create smack_rule cache to optimize memory usageCasey Schaufler3-3/+11
2019-04-02smack: removal of global rule listVishal Goel1-38/+15
2019-03-12Merge branch 'work.mount' of git://git.kernel.org/pub/scm/linux/kernel/git/vi...Linus Torvalds2-15/+96
2019-03-07Merge tag 'audit-pr-20190305' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds1-3/+1
2019-02-28introduce cloning of fs_contextAl Viro1-0/+49
2019-02-28smack: Implement filesystem context security hooksDavid Howells2-15/+47
2019-02-22security: mark expected switch fall-throughs and add a missing breakGustavo A. R. Silva1-2/+1
2019-01-31audit: remove unused actx param from audit_rule_matchRichard Guy Briggs1-3/+1
2019-01-18LSM: Make lsm_early_cred() and lsm_early_task() local functions.Tetsuo Handa1-2/+0
2019-01-10LSM: generalize flag passing to security_capableMicah Morton1-1/+1
2019-01-08LSM: Infrastructure management of the ipc security blobCasey Schaufler2-30/+6
2019-01-08Smack: Abstract use of ipc security blobsCasey Schaufler2-5/+20
2019-01-08LSM: Infrastructure management of the inode securityCasey Schaufler2-60/+18
2019-01-08Smack: Abstract use of inode security blobCasey Schaufler2-18/+23
2019-01-08LSM: Infrastructure management of the file securityCasey Schaufler2-14/+3
2019-01-08Smack: Abstract use of file security blobCasey Schaufler2-4/+13
2019-01-08Infrastructure management of the cred security blobCasey Schaufler2-55/+27
2019-01-08Smack: Abstract use of cred security blobCasey Schaufler4-43/+53
2019-01-08LSM: Separate idea of "major" LSM from "exclusive" LSMKees Cook1-1/+1
2019-01-08LSM: Lift LSM selection out of individual LSMsKees Cook1-3/+0
2019-01-08LSM: Introduce LSM_FLAG_LEGACY_MAJORKees Cook1-0/+1
2019-01-05Merge branch 'mount.part1' of git://git.kernel.org/pub/scm/linux/kernel/git/v...Linus Torvalds1-222/+137
2018-12-21smack: rewrite smack_sb_eat_lsm_opts()Al Viro1-85/+23
2018-12-21smack: get rid of match_token()Al Viro1-18/+38
2018-12-21smack: take the guts of smack_parse_opts_str() into a new helperAl Viro1-57/+57
2018-12-21LSM: new method: ->sb_add_mnt_opt()Al Viro1-1/+0
2018-12-21smack: switch to private smack_mnt_optsAl Viro1-102/+55
2018-12-21LSM: hide struct security_mnt_opts from any generic codeAl Viro1-8/+30
2018-12-21LSM: turn sb_eat_lsm_opts() into a methodAl Viro1-1/+15
2018-12-21LSM: split ->sb_set_mnt_opts() out of ->sb_kern_mount()Al Viro1-15/+0
2018-12-21LSM: lift parsing LSM options into the caller of ->sb_kern_mount()Al Viro1-20/+3
2018-12-21smack: make smack_parse_opts_str() clean up on failureAl Viro1-0/+1
2018-12-03smack: fix access permissions for keyringZoran Markovic1-3/+9
2018-10-25Merge branch 'next-smack' of git://git.kernel.org/pub/scm/linux/kernel/git/jm...Linus Torvalds2-7/+11
2018-10-24Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-1/+4
2018-10-10LSM: Record LSM name in struct lsm_infoKees Cook1-0/+1
2018-10-10LSM: Convert security_initcall() into DEFINE_LSM()Kees Cook1-1/+3
2018-10-03signal: Distinguish between kernel_siginfo and siginfoEric W. Biederman1-1/+1
2018-09-18Smack: Mark expected switch fall-throughGustavo A. R. Silva1-1/+1
2018-09-18Smack: ptrace capability use fixesCasey Schaufler1-3/+10
2018-09-18Smack: remove set but not used variable 'root_inode'YueHaibing1-3/+0
2018-08-15Merge branch 'next-smack' of git://git.kernel.org/pub/scm/linux/kernel/git/jm...Linus Torvalds1-6/+16
2018-08-13Merge branch 'work.open3' of git://git.kernel.org/pub/scm/linux/kernel/git/vi...Linus Torvalds1-3/+3
2018-07-23Smack: Inform peer that IPv6 traffic has been blockedPiotr Sawicki1-0/+4
2018-07-23Smack: Check UDP-Lite and DCCP protocols during IPv6 handlingPiotr Sawicki1-1/+3
2018-07-23Smack: Fix handling of IPv4 traffic received by PF_INET6 socketsPiotr Sawicki1-5/+9
2018-07-12->file_open(): lose cred argumentAl Viro1-3/+3
2018-06-23Smack: Mark inode instant in smack_task_to_inodeCasey Schaufler1-0/+1
2018-06-05Merge branch 'smack-for-4.18' of https://github.com/cschaufler/next-smack int...James Morris1-7/+5
2018-06-05Smack: Fix memory leak in smack_inode_getsecctxCasey Schaufler1-7/+5
2018-05-04smack: provide socketpair callbackTom Gundersen1-0/+22
2018-04-11ipc/msg: introduce msgctl(MSG_STAT_ANY)Davidlohr Bueso1-0/+1
2018-04-11ipc/sem: introduce semctl(SEM_STAT_ANY)Davidlohr Bueso1-0/+1
2018-04-11ipc/shm: introduce shmctl(SHM_STAT_ANY)Davidlohr Bueso1-0/+1
2018-04-07Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds1-0/+18
2018-04-07Merge branch 'next-smack' of git://git.kernel.org/pub/scm/linux/kernel/git/jm...Linus Torvalds1-0/+2
2018-04-07Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-7/+5
2018-03-27ipc/smack: Tidy up from the change in type of the ipc security hooksEric W. Biederman1-139/+58
2018-03-27Merge branch 'smack-for-4.17' of git://github.com/cschaufler/next-smack into ...James Morris1-0/+2
2018-03-23security: Add a cred_getsecid hookMatthew Garrett1-0/+18
2018-03-22msg/security: Pass kern_ipc_perm not msg_queue into the msg_queue security hooksEric W. Biederman1-12/+12
2018-03-22shm/security: Pass kern_ipc_perm not shmid_kernel into the shm security hooksEric W. Biederman1-11/+11
2018-03-22sem/security: Pass kern_ipc_perm not sem_array into the sem security hooksEric W. Biederman1-11/+11
2018-03-07usb, signal, security: only pass the cred, not the secid, to kill_pid_info_as...Stephen Smalley1-7/+5
2018-02-28Smack: Handle CGROUP2 in the same way that CGROUPJosé Bollo1-0/+2
2018-01-10Smack: Privilege check on key operationsCasey Schaufler3-11/+34
2017-12-27Smack: fix dereferenced before checkVasyl Gomonovych1-1/+5
2017-11-13Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-0/+79
2017-11-02Smack: Base support for overlayfsCasey Schaufler1-0/+79
2017-10-04lsm: fix smack_inode_removexattr and xattr_getsecurity memleakCasey Schaufler1-30/+25
2017-09-07Merge tag 'secureexec-v4.14-rc1' of git://git.kernel.org/pub/scm/linux/kernel...Linus Torvalds1-31/+3
2017-08-01smack: Remove redundant pdeath_signal clearingKees Cook1-15/+0
2017-08-01smack: Refactor to remove bprm_secureexec hookKees Cook1-17/+4
2017-08-01exec: Rename bprm->cred_prepared to called_set_credsKees Cook1-1/+1
2017-07-31netfilter: nf_hook_ops structs can be constFlorian Westphal1-1/+1
2017-06-01Smack: Use cap_capable in privilege checkCasey Schaufler2-9/+12
2017-06-01Smack: Safer check for a socket in file_receiveCasey Schaufler1-1/+1
2017-06-01smack: use pernet operations for hook registrationFlorian Westphal1-8/+18
2017-05-09Merge branch 'work.misc' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds1-1/+1
2017-04-26fs: constify tree_descr arrays passed to simple_fill_super()Eric Biggers1-1/+1
2017-04-04Smack: Use GFP_KERNEL for smk_netlbl_mls().Tetsuo Handa1-1/+1
2017-04-04smack: fix double free in smack_parse_opts_str()Tetsuo Handa1-3/+1
2017-03-06security: mark LSM hooks as __ro_after_initJames Morris1-1/+1
2017-02-23Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebi...Linus Torvalds1-1/+1
2017-02-10Merge branch 'stable-4.11' of git://git.infradead.org/users/pcmoore/selinux i...James Morris1-30/+1
2017-01-27Merge branch 'smack-for-4.11' of git://github.com/cschaufler/smack-next into ...James Morris3-27/+95
2017-01-24exec: Remove LSM_UNSAFE_PTRACE_CAPEric W. Biederman1-1/+1
2017-01-19LSM: Add /sys/kernel/security/lsmCasey Schaufler1-1/+1
2017-01-12security,selinux,smack: kill security_task_wait hookStephen Smalley1-20/+0
2017-01-10Smack: ignore private inode for file functionsSeung-Woo Kim1-0/+12
2017-01-10Smack: fix d_instantiate logic for sockfs and pipefsRafal Krypa1-7/+7
2017-01-10SMACK: Use smk_tskacc() instead of smk_access() for proper loggingHimanshu Shukla1-4/+1
2017-01-10Smack: Traverse the smack_known_list using list_for_each_entry_rcu macroVishal Goel1-1/+1
2017-01-10SMACK: Free the i_security blob in inode using RCUHimanshu Shukla2-4/+29
2017-01-10SMACK: Delete list_head repeated initializationHimanshu Shukla1-4/+0
2017-01-10SMACK: Add new lock for adding entry in smack master listVishal Goel1-0/+5
2017-01-10Smack: Fix the issue of wrong SMACK label update in socket bind fail caseVishal Goel2-0/+21
2017-01-10Smack: Fix the issue of permission denied error in ipv6 hookVishal Goel2-2/+4
2017-01-10SMACK: Add the rcu synchronization mechanism in ipv6 hooksVishal Goel1-5/+15
2017-01-09proc,security: move restriction on writing /proc/pid/attr nodes to procStephen Smalley1-10/+1
generated by cgit 1.2.3-korg (git 2.39.0) at 2024-05-31 13:20:30 +0000