aboutsummaryrefslogtreecommitdiffstats
path: root/security/security.c
AgeCommit message (Expand)AuthorFilesLines
2023-10-04lsm: fix a spelling mistakePaul Moore1-1/+1
2023-09-14lsm: constify 'sb' parameter in security_sb_kern_mount()Khadija Kamran1-1/+1
2023-09-14lsm: constify 'bprm' parameter in security_bprm_committed_creds()Khadija Kamran1-1/+1
2023-09-13lsm: constify 'bprm' parameter in security_bprm_committing_creds()Khadija Kamran1-1/+1
2023-09-13lsm: constify 'file' parameter in security_bprm_creds_from_file()Khadija Kamran1-1/+1
2023-09-13lsm: constify 'sb' parameter in security_quotactl()Khadija Kamran1-1/+1
2023-08-30Merge tag 'lsm-pr-20230829' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-29/+61
2023-08-29Merge tag 'net-next-6.6' of git://git.kernel.org/pub/scm/linux/kernel/git/net...Linus Torvalds1-1/+1
2023-08-15lsm: constify the 'file' parameter in security_binder_transfer_file()Khadija Kamran1-1/+1
2023-08-15vfs, security: Fix automount superblock LSM init problem, preventing NFS sb s...David Howells1-0/+14
2023-08-08lsm: constify the 'target' parameter in security_capget()Khadija Kamran1-1/+1
2023-07-31lsm: add comment block for security_sk_classify_flow LSM hookKhadija Kamran1-0/+7
2023-07-26security: Fix ret values doc for security_inode_init_security()Roberto Sassu1-2/+2
2023-07-14security: Constify sk in the sk_getsecid hook.Guillaume Nault1-1/+1
2023-07-10evm: Align evm_inode_init_security() definition with LSM infrastructureRoberto Sassu1-2/+2
2023-07-10security: Allow all LSMs to provide xattrs for inode_init_security hookRoberto Sassu1-24/+49
2023-07-10lsm: fix typo in security_file_lock() comment headerPairman Guo1-1/+1
2023-06-27Merge tag 'lsm-pr-20230626' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-2/+2
2023-05-25lsm: fix a number of misspellingsPaul Moore1-2/+2
2023-05-18security, lsm: Introduce security_mptcp_add_subflow()Paolo Abeni1-0/+17
2023-04-24Merge tag 'lsm-pr-20230420' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-102/+2628
2023-03-23security: Remove security_old_inode_init_security()Roberto Sassu1-11/+0
2023-03-20selinux: remove the runtime disable functionalityPaul Moore1-2/+2
2023-03-10security: Introduce LSM_ORDER_LAST and set it for the integrity LSMRoberto Sassu1-3/+9
2023-03-08lsm: fix a badly named parameter in security_get_getsecurity()Paul Moore1-5/+5
2023-03-08lsm: fix doc warnings in the LSM hook commentsPaul Moore1-16/+17
2023-03-06lsm: styling fixes to security/security.cPaul Moore1-84/+98
2023-03-06lsm: move the remaining LSM hook comments to security/security.cPaul Moore1-0/+231
2023-03-06lsm: move the io_uring hook comments to security/security.cPaul Moore1-0/+26
2023-03-06lsm: move the perf hook comments to security/security.cPaul Moore1-0/+39
2023-03-06lsm: move the bpf hook comments to security/security.cPaul Moore1-0/+65
2023-03-06lsm: move the audit hook comments to security/security.cPaul Moore1-0/+41
2023-03-06lsm: move the binder hook comments to security/security.cPaul Moore1-0/+36
2023-03-06lsm: move the sysv hook comments to security/security.cPaul Moore1-0/+191
2023-03-06lsm: move the key hook comments to security/security.cPaul Moore1-0/+40
2023-03-06lsm: move the xfrm hook comments to security/security.cPaul Moore1-0/+103
2023-03-06lsm: move the Infiniband hook comments to security/security.cPaul Moore1-0/+34
2023-03-06lsm: move the SCTP hook comments to security/security.cPaul Moore1-0/+43
2023-03-06lsm: move the socket hook comments to security/security.cPaul Moore1-0/+322
2023-03-06lsm: move the AF_UNIX hook comments to security/security.cPaul Moore1-1/+41
2023-03-06lsm: move the netlink hook comments to security/security.cPaul Moore1-0/+13
2023-03-06lsm: move the task hook comments to security/security.cPaul Moore1-0/+334
2023-03-06lsm: move the file hook comments to security/security.cPaul Moore1-0/+151
2023-03-06lsm: move the kernfs hook comments to security/security.cPaul Moore1-0/+10
2023-03-06lsm: move the inode hook comments to security/security.cPaul Moore1-0/+524
2023-03-06lsm: move the filesystem hook comments to security/security.cPaul Moore1-0/+181
2023-03-06lsm: move the fs_context hook comments to security/security.cPaul Moore1-0/+23
2023-03-06lsm: move the program execution hook comments to security/security.cPaul Moore1-0/+69
2023-02-22Merge tag 'integrity-v6.3' of git://git.kernel.org/pub/scm/linux/kernel/git/z...Linus Torvalds1-3/+4
2023-01-31ima: Align ima_file_mmap() parameters with mmap_file LSM hookRoberto Sassu1-3/+4
2023-01-19fs: port acl to mnt_idmapChristian Brauner1-10/+10
2023-01-19fs: port xattr to mnt_idmapChristian Brauner1-9/+9
2023-01-19fs: port ->permission() to pass mnt_idmapChristian Brauner1-2/+2
2023-01-19fs: port ->setattr() to pass mnt_idmapChristian Brauner1-2/+2
2022-12-13Merge tag 'lsm-pr-20221212' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-12/+39
2022-12-13Merge tag 'landlock-6.2-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git...Linus Torvalds1-5/+11
2022-11-16LSM: Better reporting of actual LSMs at bootKees Cook1-9/+36
2022-11-04lsm: make security_socket_getpeersec_stream() sockptr_t safePaul Moore1-3/+3
2022-10-20integrity: implement get and set acl hookChristian Brauner1-2/+19
2022-10-20security: add get, remove and set acl hookChristian Brauner1-0/+25
2022-10-19landlock: Support file truncationGünther Noack1-5/+6
2022-10-19security: Create file_truncate hook from path_truncate hookGünther Noack1-0/+5
2022-10-09Merge tag 'powerpc-6.1-1' of git://git.kernel.org/pub/scm/linux/kernel/git/po...Linus Torvalds1-0/+2
2022-10-06Merge tag 'pull-path' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfsLinus Torvalds1-2/+2
2022-10-03Merge tag 'lsm-pr-20221003' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-0/+5
2022-09-28powerpc/rtas: block error injection when locked downNathan Lynch1-0/+1
2022-09-28powerpc/pseries: block untrusted device tree changes when locked downNathan Lynch1-0/+1
2022-09-01->getprocattr(): attribute name is const char *, TYVM...Al Viro1-2/+2
2022-08-26lsm,io_uring: add LSM hooks for the new uring_cmd file opLuis Chamberlain1-0/+4
2022-08-16security, lsm: Introduce security_create_user_ns()Frederick Lawler1-0/+5
2022-08-02Merge tag 'safesetid-6.0' of https://github.com/micah-morton/linuxLinus Torvalds1-0/+5
2022-07-15security: Add LSM hook to setgroups() syscallMicah Morton1-0/+5
2022-06-26security: pass down mount idmapping to setattr hookChristian Brauner1-2/+3
2022-05-24Merge tag 'landlock-5.19-rc1' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds1-8/+1
2022-05-24Merge tag 'selinux-pr-20220523' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-1/+1
2022-05-24Merge tag 'kernel-hardening-v5.19-rc1' of git://git.kernel.org/pub/scm/linux/...Linus Torvalds1-5/+4
2022-05-24lockdown: also lock down previous kgdb useDaniel Thompson1-0/+2
2022-05-23LSM: Remove double path_rename hook calls for RENAME_EXCHANGEMickaël Salaün1-8/+1
2022-05-13security: declare member holding string literal constChristian Göttsche1-1/+1
2022-04-13security: don't treat structure as an array of struct hlist_headBill Wendling1-5/+4
2022-03-21Merge tag 'selinux-pr-20220321' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-2/+22
2022-02-15security: add sctp_assoc_established hookOndrej Mosnacek1-0/+7
2022-01-29Merge tag 'fixes-v5.17-lsm-ceph-null' of git://git.kernel.org/pub/scm/linux/k...Linus Torvalds1-2/+13
2022-01-28security, lsm: dentry_init_security() Handle multi LSM registrationVivek Goyal1-2/+13
2022-01-27LSM: general protection fault in legacy_parse_paramCasey Schaufler1-2/+15
2021-12-06security,selinux: remove security_add_mnt_opt()Ondrej Mosnacek1-8/+0
2021-11-22lsm: security_task_getsecid_subj() -> security_current_getsecid_subj()Paul Moore1-3/+3
2021-11-12net,lsm,selinux: revert the security_sctp_assoc_established() hookPaul Moore1-7/+0
2021-11-03security: add sctp_assoc_established hookXin Long1-0/+7
2021-11-03security: pass asoc to sctp_assoc_request and sctp_sk_cloneXin Long1-4/+4
2021-10-20security: Return xattr name from security_dentry_init_security()Vivek Goyal1-3/+4
2021-10-14binder: use cred instead of task for selinux checksTodd Kjos1-7/+7
2021-10-14LSM: Avoid warnings about potentially unused hook variablesKees Cook1-1/+1
2021-09-19lsm,io_uring: add LSM hooks to io_uringPaul Moore1-0/+12
2021-08-10bpf: Add lockdown check for probe_write_user helperDaniel Borkmann1-0/+1
2021-08-09bpf: Add _kernel suffix to internal lockdown_bpf_readDaniel Borkmann1-1/+1
2021-06-30Merge tag 'selinux-pr-20210629' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-2/+2
2021-05-21evm: Pass user namespace to set/remove xattr hooksRoberto Sassu1-2/+2
2021-05-10selinux: delete selinux_xfrm_policy_lookup() useless argumentZhongjun Tan1-2/+2
2021-05-01Merge tag 'landlock_v34' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds1-7/+44
2021-04-22fs,security: Add sb_delete hookMickaël Salaün1-0/+5
2021-04-22LSM: Infrastructure management of the superblockCasey Schaufler1-7/+39
2021-03-22lsm: separate security_task_getsecid() into subjective and objective variantsPaul Moore1-3/+10
2021-03-22lsm,selinux: add new hook to compare new mount to an existing mountOlga Kornievskaia1-0/+7
2021-02-23Merge tag 'idmapped-mounts-v5.12' of git://git.kernel.org/pub/scm/linux/kerne...Linus Torvalds1-10/+15
2021-01-24commoncap: handle idmapped mountsChristian Brauner1-10/+15
2021-01-14security: add inode_init_security_anon() LSM hookLokesh Gidra1-0/+8
2020-12-16Merge tag 'selinux-pr-20201214' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-8/+9
2020-12-12Merge branch 'master' of git://git.kernel.org/pub/scm/linux/kernel/git/klasse...Jakub Kicinski1-0/+1
2020-12-03security: add const qualifier to struct sock in various placesFlorian Westphal1-1/+1
2020-11-27xfrm: redact SA secret with lockdown confidentialityAntony Antony1-0/+1
2020-11-23lsm,selinux: pass flowi_common instead of flowi to the LSM hooksPaul Moore1-8/+9
2020-10-05LSM: Add "contents" flag to kernel_read_file hookKees Cook1-3/+4
2020-10-05LSM: Introduce kernel_post_load_data() hookKees Cook1-3/+17
2020-10-05fs/kernel_read_file: Split into separate include fileScott Branden1-0/+1
2020-06-23security: Fix hook iteration and default value for inode_copy_up_xattrKP Singh1-1/+16
2020-06-14Merge tag 'LSM-add-setgid-hook-5.8-author-fix' of git://github.com/micah-mort...Linus Torvalds1-0/+6
2020-06-14security: Add LSM hooks to set*gid syscallsThomas Cedeno1-0/+6
2020-06-13Merge tag 'notifications-20200601' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds1-3/+19
2020-06-09Merge tag 'ovl-update-5.8' of git://git.kernel.org/pub/scm/linux/kernel/git/m...Linus Torvalds1-0/+1
2020-06-06Merge tag 'integrity-v5.8' of git://git.kernel.org/pub/scm/linux/kernel/git/z...Linus Torvalds1-1/+6
2020-06-04Merge branch 'exec-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/eb...Linus Torvalds1-2/+7
2020-06-03ovl: call secutiry hook in ovl_real_ioctl()Miklos Szeredi1-0/+1
2020-05-29exec: Compute file based creds only onceEric W. Biederman1-2/+2
2020-05-22ima: verify mprotect change is consistent with mmap policyMimi Zohar1-1/+6
2020-05-21exec: Convert security_bprm_set_creds into security_bprm_repopulate_credsEric W. Biederman1-2/+2
2020-05-20security: Fix hook iteration for secid_to_secctxKP Singh1-2/+14
2020-05-20exec: Factor security_bprm_creds_for_exec out of security_bprm_set_credsEric W. Biederman1-0/+5
2020-05-19keys: Make the KEY_NEED_* perms an enum rather than a maskDavid Howells1-3/+3
2020-05-19security: Add hooks to rule on setting a watchDavid Howells1-0/+7
2020-05-19security: Add a hook for the point of notification insertionDavid Howells1-0/+9
2020-03-30security: Refactor declaration of LSM hooksKP Singh1-11/+30
2020-01-28Merge branch 'for-v5.6' of git://git.kernel.org:/pub/scm/linux/kernel/git/jmo...Linus Torvalds1-1/+0
2020-01-27security: remove EARLY_LSM_COUNT which never usedAlex Shi1-1/+0
2019-12-09security,lockdown,selinux: implement SELinux lockdownStephen Smalley1-0/+33
2019-10-17perf_event: Add support for LSM and SELinux checksJoel Fernandes (Google)1-0/+27
2019-09-28Merge branch 'next-lockdown' of git://git.kernel.org/pub/scm/linux/kernel/git...Linus Torvalds1-8/+48
2019-09-23Merge tag 'selinux-pr-20190917' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-0/+6
2019-08-19security: Add a "locked down" LSM hookMatthew Garrett1-0/+6
2019-08-19security: Support early LSMsMatthew Garrett1-8/+42
2019-08-12fanotify, inotify, dnotify, security: add security hook for fs notificationsAaron Goidel1-0/+6
2019-07-08Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds1-10/+13
2019-06-14LSM: switch to blocking policy update notifiersJanne Karhunen1-10/+13
2019-05-30treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 152Thomas Gleixner1-5/+1
2019-05-07Merge branch 'work.mount-syscalls' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds1-0/+5
2019-03-20LSM: add new hook for kernfs node initializationOndrej Mosnacek1-0/+6
2019-03-20vfs: syscall: Add move_mount(2) to move mounts aroundDavid Howells1-0/+5
2019-03-12Merge branch 'work.mount' of git://git.kernel.org/pub/scm/linux/kernel/git/vi...Linus Torvalds1-0/+10
2019-03-07Merge tag 'audit-pr-20190305' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds1-4/+2
2019-02-28introduce cloning of fs_contextAl Viro1-0/+5
2019-02-28vfs: Add LSM hooks for the new mount APIDavid Howells1-0/+5
2019-02-25LSM: Ignore "security=" when "lsm=" is specifiedKees Cook1-2/+6
2019-01-31audit: remove unused actx param from audit_rule_matchRichard Guy Briggs1-4/+2
2019-01-22Merge tag 'v5.0-rc3' into next-generalJames Morris1-0/+7
2019-01-18LSM: Make some functions staticWei Yongjun1-3/+3
2019-01-18LSM: Make lsm_early_cred() and lsm_early_task() local functions.Tetsuo Handa1-16/+11
2019-01-16LSM: Check for NULL cred-security on freeJames Morris1-0/+7
2019-01-10LSM: generalize flag passing to security_capableMicah Morton1-9/+5
2019-01-08LSM: Infrastructure management of the ipc security blobCasey Schaufler1-4/+87
2019-01-08LSM: Infrastructure management of the task securityCasey Schaufler1-1/+53
2019-01-08LSM: Infrastructure management of the inode securityCasey Schaufler1-2/+62
2019-01-08LSM: Infrastructure management of the file securityCasey Schaufler1-3/+51
2019-01-08Infrastructure management of the cred security blobCasey Schaufler1-2/+87
2019-01-08procfs: add smack subdir to attrsCasey Schaufler1-4/+20
2019-01-08capability: Initialize as LSM_ORDER_FIRSTKees Cook1-5/+0
2019-01-08LSM: Introduce enum lsm_orderKees Cook1-1/+8
2019-01-08Yama: Initialize as ordered LSMKees Cook1-1/+0
2019-01-08LoadPin: Initialize as ordered LSMKees Cook1-1/+0
2019-01-08LSM: Split LSM preparation from initializationKees Cook1-6/+15
2019-01-08LSM: Add all exclusive LSMs to ordered initializationCasey Schaufler1-25/+20
2019-01-08LSM: Separate idea of "major" LSM from "exclusive" LSMKees Cook1-0/+12
2019-01-08LSM: Refactor "security=" in terms of enable/disableKees Cook1-8/+20
2019-01-08LSM: Prepare for reorganizing "security=" logicKees Cook1-9/+8
2019-01-08LSM: Tie enabling logic to presence in ordered listKees Cook1-3/+11
2019-01-08LSM: Introduce "lsm=" for boottime LSM selectionKees Cook1-1/+13
2019-01-08LSM: Introduce CONFIG_LSMKees Cook1-5/+22
2019-01-08LSM: Build ordered list of LSMs to initializeKees Cook1-5/+53
2019-01-08LSM: Lift LSM selection out of individual LSMsKees Cook1-31/+71
2019-01-08LSM: Provide separate ordered initializationKees Cook1-0/+21
2019-01-05Merge branch 'mount.part1' of git://git.kernel.org/pub/scm/linux/kernel/git/v...Linus Torvalds1-13/+26
2018-12-21LSM: new method: ->sb_add_mnt_opt()Al Viro1-3/+5
2018-12-21LSM: hide struct security_mnt_opts from any generic codeAl Viro1-9/+18
2018-12-21LSM: turn sb_eat_lsm_opts() into a methodAl Viro1-10/+1
2018-12-21btrfs: sanitize security_mnt_opts useAl Viro1-0/+1
2018-12-21LSM: split ->sb_set_mnt_opts() out of ->sb_kern_mount()Al Viro1-3/+2
2018-12-21new helper: security_sb_eat_lsm_opts()Al Viro1-3/+12
2018-12-21LSM: lift extracting and parsing LSM options into the caller of ->sb_remount()Al Viro1-2/+3
2018-12-21LSM: lift parsing LSM options into the caller of ->sb_kern_mount()Al Viro1-2/+3
2018-12-12security: audit and remove any unnecessary uses of module.hPaul Gortmaker1-1/+1
2018-10-24Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-16/+27
2018-10-10LSM: Don't ignore initialization failuresKees Cook1-1/+3
2018-10-10LSM: Provide init debugging infrastructureKees Cook1-0/+18
2018-10-10LSM: Convert from initcall to struct lsm_infoKees Cook1-9/+5
2018-10-10LSM: Remove initcall tracingKees Cook1-7/+1
2018-10-10LSM: Rename .security_initcall section to .lsm_infoKees Cook1-2/+2
2018-10-10LSM: Correctly announce start of LSM initializationKees Cook1-1/+2
2018-10-03signal: Distinguish between kernel_siginfo and siginfoEric W. Biederman1-1/+1
2018-08-22init: allow initcall tables to be emitted using relative referencesArd Biesheuvel1-7/+10
2018-08-15Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds1-1/+6
2018-08-15Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-0/+13
generated by cgit 1.2.3-korg (git 2.39.0) at 2024-05-29 08:03:33 +0000