aboutsummaryrefslogtreecommitdiffstats
path: root/security/selinux
AgeCommit message (Expand)AuthorFilesLines
2012-09-18xfrm: invalidate dst on policy insertion/deletionNicolas Dichtel1-0/+1
2012-07-31selinux: tag avc cache alloc as non-criticalMel Gorman1-1/+1
2012-07-30Merge branch 'akpm' (Andrew's patch-bomb)Linus Torvalds1-0/+1
2012-07-30c/r: fcntl: add F_GETOWNER_UIDS optionCyrill Gorcunov1-0/+1
2012-07-30selinux: fix selinux_inode_setxattr oopsAl Viro1-5/+10
2012-07-26posix_types.h: Cleanup stale __NFDBITS and related definitionsJosh Boyer1-1/+1
2012-07-24Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-nextLinus Torvalds2-10/+17
2012-07-23Merge branch 'for-linus-2' of git://git.kernel.org/pub/scm/linux/kernel/git/v...Linus Torvalds3-6/+5
2012-07-23switch dentry_open() to struct path, make it grab references itselfAl Viro3-6/+5
2012-07-19Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netDavid S. Miller2-2/+4
2012-07-18Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds2-2/+4
2012-07-16SELinux: do not check open perms if they are not known to policyEric Paris1-1/+1
2012-07-16SELinux: include definition of new capabilitiesEric Paris1-1/+3
2012-06-29netlink: add netlink_kernel_cfg parameter to netlink_kernel_createPablo Neira Ayuso1-1/+5
2012-06-26selinux: netlink: Move away from NLMSG_PUT().David S. Miller1-4/+7
2012-06-07netfilter: selinux: switch hook PFs to nfprotoAlban Crequy1-5/+5
2012-05-31split ->file_mmap() into ->mmap_addr()/->mmap_file()Al Viro1-7/+8
2012-05-31split cap_mmap_addr() out of cap_file_mmap()Al Viro1-1/+1
2012-05-29selinuxfs snprintf() misusesAl Viro1-29/+7
2012-05-21Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/...Linus Torvalds13-306/+383
2012-05-22Merge branch 'master' of git://git.infradead.org/users/eparis/selinux into nextJames Morris13-305/+374
2012-05-08netfilter: remove ip_queue supportPablo Neira Ayuso1-13/+0
2012-04-14Add PR_{GET,SET}_NO_NEW_PRIVS to prevent execve from granting privsAndy Lutomirski1-1/+9
2012-04-09SELinux: remove unused common_audit_data in flush_unauthorized_filesEric Paris1-4/+0
2012-04-09SELinux: avc: remove the useless fields in avc_add_callbackWanlong Gao6-47/+15
2012-04-09SELinux: replace weak GFP_ATOMIC to GFP_KERNEL in avc_add_callbackWanlong Gao1-2/+2
2012-04-09SELinux: unify the selinux_audit_data and selinux_late_audit_dataEric Paris3-91/+16
2012-04-09SELinux: remove auditdeny from selinux_audit_dataEric Paris1-8/+1
2012-04-09LSM: do not initialize common_audit_data to 0Eric Paris2-35/+35
2012-04-09LSM: remove the task field from common_audit_dataEric Paris1-1/+0
2012-04-09LSM: remove the COMMON_AUDIT_DATA_INIT type expansionEric Paris2-35/+35
2012-04-09SELinux: move common_audit_data to a noinline slow path functionEric Paris1-11/+21
2012-04-09SELinux: remove inode_has_perm_noadpEric Paris1-24/+4
2012-04-09SELinux: delay initialization of audit data in selinux_inode_permissionEric Paris3-70/+105
2012-04-09SELinux: if sel_make_bools errors don't leave inconsistent stateEric Paris1-0/+1
2012-04-09SELinux: remove needless sel_div functionEric Paris1-6/+1
2012-04-09SELinux: possible NULL deref in context_struct_to_stringEric Paris1-3/+5
2012-04-09SELinux: audit failed attempts to set invalid labelsEric Paris1-2/+34
2012-04-09SELinux: rename dentry_open to file_openEric Paris1-3/+3
2012-04-09SELinux: check OPEN on truncate callsEric Paris1-1/+5
2012-04-09SELinux: add default_type statementsEric Paris4-6/+33
2012-04-09SELinux: allow default source/target selectors for user/role/rangeEric Paris6-8/+109
2012-04-09SELinux: loosen DAC perms on reading policyEric Paris1-1/+1
2012-04-09SELinux: allow seek operations on the file exposing policyEric Paris1-0/+1
2012-04-03lsm_audit: don't specify the audit pre/post callbacks in 'struct common_audit...Linus Torvalds1-3/+1
2012-04-03SELinux: do not allocate stack space for AVC data unless neededEric Paris2-14/+27
2012-04-03SELinux: remove avd from slow_avc_audit()Eric Paris1-2/+2
2012-04-03SELinux: remove avd from selinux_audit_dataEric Paris1-1/+0
2012-04-03LSM: shrink the common_audit_data data unionEric Paris1-42/+63
2012-04-03LSM: shrink sizeof LSM specific portion of common_audit_dataEric Paris3-17/+104
2012-03-31Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds2-71/+48
2012-03-31get rid of pointless includes of ext2_fs.hAl Viro1-5/+4
2012-03-31selinuxfs: merge dentry allocation into sel_make_dir()Al Viro1-66/+44
2012-03-31selinux: inline avc_audit() and avc_has_perm_noaudit() into callerLinus Torvalds1-2/+2
2012-03-31selinux: don't inline slow-path code into avc_has_perm_noaudit()Linus Torvalds1-14/+38
2012-03-29Merge branch 'x86-x32-for-linus' of git://git.kernel.org/pub/scm/linux/kernel...Linus Torvalds1-1/+1
2012-03-28Remove all #inclusions of asm/system.hDavid Howells1-1/+0
2012-03-26SELinux: selinux/xfrm.h needs net/flow.hDavid Howells1-0/+2
2012-03-22security: optimize avc_audit() common pathLinus Torvalds1-29/+41
2012-02-19Replace the fd_sets in struct fdtable with an array of unsigned longsDavid Howells1-1/+1
2012-02-14security: trim security.hAl Viro1-0/+2
2012-01-14Merge branch 'for-linus' of git://selinuxproject.org/~jmorris/linux-securityLinus Torvalds1-33/+11
2012-01-10Merge branch 'for-linus' of git://selinuxproject.org/~jmorris/linux-securityLinus Torvalds2-11/+5
2012-01-09Merge branch 'next' into for-linusJames Morris2-11/+5
2012-01-08Merge branch 'for-linus2' of git://git.kernel.org/pub/scm/linux/kernel/git/vi...Linus Torvalds1-5/+5
2012-01-06vfs: prefer ->dentry->d_sb to ->mnt->mnt_sbAl Viro1-1/+1
2012-01-05security: remove the security_netlink_recv hook as it is equivalent to capable()Eric Paris1-19/+0
2012-01-05ptrace: do not audit capability check when outputing /proc/pid/statEric Paris1-1/+1
2012-01-05capabilities: remove the task from capable LSM hook entirelyEric Paris1-13/+10
2012-01-05selinux: sparse fix: fix several warnings in the security server codJames Morris5-7/+9
2012-01-05selinux: sparse fix: fix warnings in netlink codeJames Morris6-5/+6
2012-01-05selinux: sparse fix: eliminate warnings for selinuxfsJames Morris3-6/+4
2012-01-05selinux: sparse fix: declare selinux_disable() in security.hJames Morris2-1/+1
2012-01-05selinux: sparse fix: move selinux_complete_initJames Morris2-1/+1
2012-01-05selinux: sparse fix: make selinux_secmark_refcount staticJames Morris1-1/+1
2012-01-03get rid of open-coded S_ISREG(), etc.Al Viro1-1/+1
2012-01-03switch ->mknod() to umode_tAl Viro1-1/+1
2012-01-03switch ->create() to umode_tAl Viro1-1/+1
2012-01-03switch vfs_mkdir() and ->mkdir() to umode_tAl Viro1-1/+1
2011-12-23Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netDavid S. Miller1-1/+3
2011-12-21SELinux: Fix RCU deref check warning in sel_netport_insert()David Howells1-1/+3
2011-12-20SELinux: Fix RCU deref check warning in sel_netport_insert()David Howells1-1/+3
2011-12-19selinux: Casting (void *) value returned by kmalloc is uselessThomas Meyer1-1/+1
2011-12-06inet_diag: Partly rename inet_ to sock_Pavel Emelyanov1-1/+1
2011-12-03ipv6: Add fragment reporting to ipv6_skip_exthdr().Jesse Gross1-1/+2
2011-11-22net: remove ipv6_addr_copy()Alexey Dobriyan2-4/+4
2011-11-16Merge branch 'master'; commit 'v3.2-rc2' into nextJames Morris2-0/+2
2011-11-16selinuxfs: remove custom hex_to_bin()Andy Shevchenko1-10/+4
2011-10-31selinux: Add export.h to files using EXPORT_SYMBOL/THIS_MODULEPaul Gortmaker2-0/+2
2011-09-09selinux: sparse fix: fix several warnings in the security server codeJames Morris5-7/+9
2011-09-09selinux: sparse fix: include selinux.h in exports.cJames Morris1-0/+1
2011-09-09selinux: sparse fix: fix warnings in netlink codeJames Morris6-5/+6
2011-09-09selinux: sparse fix: eliminate warnings for selinuxfsJames Morris3-6/+4
2011-09-09selinux: sparse fix: declare selinux_disable() in security.hJames Morris2-1/+1
2011-09-09selinux: sparse fix: move selinux_complete_initJames Morris2-1/+1
2011-09-09selinux: sparse fix: make selinux_secmark_refcount staticJames Morris1-1/+1
2011-08-01doc: Update the email address for Paul Moore in various source filesPaul Moore15-15/+15
2011-07-26atomic: use <linux/atomic.h>Arun Sharma2-2/+2
2011-07-24VFS : mount lock scalability for internal mountsTim Chen1-0/+1
2011-07-22Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds2-2/+3
2011-07-22Merge branch 'core-rcu-for-linus' of git://git.kernel.org/pub/scm/linux/kerne...Linus Torvalds2-36/+4
2011-07-22Merge branch 'ptrace' of git://git.kernel.org/pub/scm/linux/kernel/git/oleg/miscLinus Torvalds1-2/+2
2011-07-20security,rcu: Convert call_rcu(sel_netport_free) to kfree_rcu()Lai Jiangshan1-18/+2
2011-07-20security,rcu: Convert call_rcu(sel_netnode_free) to kfree_rcu()Lai Jiangshan1-18/+2
2011-07-20selinux: don't transliterate MAY_NOT_BLOCK to IPERM_FLAG_RCUAl Viro2-3/+3
2011-07-20->permission() sanitizing: don't pass flags to ->inode_permission()Al Viro1-2/+3
2011-06-22ptrace: s/tracehook_tracer_task()/ptrace_parent()/Tejun Heo1-2/+2
2011-06-15Merge branch 'for-linus' of git://git.infradead.org/users/eparis/selinux into...James Morris2-1/+39
2011-06-14SELinux: skip file_name_trans_write() when policy downgraded.Roy.Li1-0/+3
2011-06-08selinux: simplify and clean up inode_has_perm()Linus Torvalds1-10/+15
2011-05-26selinux: don't pass in NULL avd to avc_has_perm_noauditLinus Torvalds2-11/+4
2011-05-26selinux: fix case of names with whitespace/multibytes on /selinux/createKohei Kaigai1-1/+36
2011-05-26Merge commit 'v2.6.39' into 20110526Eric Paris5-16/+21
2011-05-24Merge branch 'master' of git://git.infradead.org/users/eparis/selinux into fo...James Morris8-156/+304
2011-05-23Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jik...Linus Torvalds1-4/+4
2011-05-19selinux: avoid unnecessary avc cache stat hit countLinus Torvalds3-9/+11
2011-05-19selinux: de-crapify avc cache stat code generationLinus Torvalds1-5/+1
2011-05-19Merge branch 'core-rcu-for-linus' of git://git.kernel.org/pub/scm/linux/kerne...Linus Torvalds1-17/+1
2011-05-13Merge branch 'for-linus' of git://git.infradead.org/users/eparis/selinux into...James Morris1-4/+0
2011-05-12SELinux: delete debugging printks from filename_trans rule processingEric Paris1-4/+0
2011-05-11SELINUX: add /sys/fs/selinux mount point to put selinuxfsGreg Kroah-Hartman1-1/+11
2011-05-07security,rcu: convert call_rcu(sel_netif_free) to kfree_rcu()Lai Jiangshan1-17/+1
2011-05-04Merge branch 'for-linus' of git://git.infradead.org/users/eparis/selinux into...James Morris2-4/+5
2011-04-28flex_array: flex_array_prealloc takes a number of elements, not an endEric Paris1-3/+3
2011-04-28SELinux: pass last path component in may_createEric Paris1-1/+2
2011-04-28SELinux: introduce path_has_permEric Paris1-14/+30
2011-04-28flex_array: flex_array_prealloc takes a number of elements, not an endEric Paris1-3/+3
2011-04-28SELinux: pass last path component in may_createEric Paris1-1/+2
2011-04-28SELinux: put name based create rules in a hashtableEric Paris3-61/+135
2011-04-28SELinux: generic hashtab entry counterEric Paris1-2/+2
2011-04-28SELinux: calculate and print hashtab stats with a generic functionEric Paris1-19/+13
2011-04-28SELinux: skip filename trans rules if ttype does not match parent dirEric Paris3-0/+17
2011-04-28SELinux: rename filename_compute_type argument to *type instead of *conEric Paris1-3/+3
2011-04-28SELinux: fix comment to state filename_compute_type takes an objname not a qstrEric Paris1-1/+1
2011-04-26Merge branch 'master' into for-nextJiri Kosina5-32/+69
2011-04-25SELINUX: Make selinux cache VFS RCU walks safeEric Paris3-25/+55
2011-04-25LSM: separate LSM_AUDIT_DATA_DENTRY from LSM_AUDIT_DATA_PATHEric Paris1-13/+13
2011-04-25LSM: split LSM_AUDIT_DATA_FS into _PATH and _INODEEric Paris2-26/+26
2011-04-25SELINUX: Make selinux cache VFS RCU walks safeEric Paris3-25/+55
2011-04-25SECURITY: Move exec_permission RCU checks into security modulesAndi Kleen1-1/+5
2011-04-25SELinux: security_read_policy should take a size_t not ssize_tEric Paris2-2/+2
2011-04-25SELinux: silence build warning when !CONFIG_BUGEric Paris2-0/+3
2011-04-22SECURITY: Move exec_permission RCU checks into security modulesAndi Kleen1-1/+5
2011-04-20SELinux: delete debugging printks from filename_trans rule processingEric Paris1-4/+0
2011-04-10treewide: remove extra semicolonsJustin P. Mattock1-4/+4
2011-04-07Initialize policydb.process_class eariler.Harry Ciao1-5/+5
2011-04-07selinux: Fix regression for XorgStephen Smalley1-1/+1
2011-04-01selinux: add type_transition with name extension support for selinuxfsKohei Kaigai3-12/+25
2011-03-31Fix common misspellingsLucas De Marchi2-3/+3
2011-03-29selinux: Fix regression for XorgStephen Smalley1-1/+1
2011-03-28SELinux: Write class field in role_trans_write.Harry Ciao1-2/+9
2011-03-28SELinux: Compute role in newcontext for all classesHarry Ciao1-11/+9
2011-03-28SELinux: Add class support to the role_trans structureHarry Ciao3-2/+18
2011-03-23userns: rename is_owner_or_cap to inode_owner_or_capableSerge E. Hallyn1-1/+1
2011-03-23userns: security: make capabilities relative to the user namespaceSerge E. Hallyn1-5/+8
2011-03-16Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next-2.6Linus Torvalds3-7/+9
2011-03-12net: Put flowi_* prefix on AF independent members of struct flowiDavid S. Miller2-3/+3
2011-03-08Merge branch 'master' of git://git.infradead.org/users/eparis/selinux into nextJames Morris10-201/+413
2011-03-08Merge branch 'master'; commit 'v2.6.38-rc7' into nextJames Morris4-5/+8
2011-03-03SELinux: implement the new sb_remount LSM hookEric Paris1-0/+86
2011-03-03SELinux: Compute SID for the newly created socketHarry Ciao1-6/+21
2011-03-03SELinux: Socket retains creator role and MLS attributeHarry Ciao3-7/+29
2011-03-03SELinux: Auto-generate security_is_socket_classHarry Ciao1-0/+4
2011-03-03netlink: kill loginuid/sessionid/sid members from struct netlink_skb_parmsPatrick McHardy1-2/+4
2011-02-25Revert "selinux: simplify ioctl checking"Eric Paris1-8/+42
2011-02-25selinux: drop unused packet flow permissionsEric Paris1-2/+1
2011-02-25selinux: Fix packet forwarding checks on postroutingSteffen Klassert1-18/+5
2011-02-25selinux: Fix wrong checks for selinux_policycap_netpeerSteffen Klassert1-18/+6
2011-02-25selinux: Fix check for xfrm selinux context algorithmSteffen Klassert1-1/+1
2011-02-22xfrm: Mark flowi arg to security_xfrm_state_pol_flow_match() const.David S. Miller2-2/+2
2011-02-07CRED: Fix BUG() upon security_cred_alloc_blank() failureTetsuo Handa1-1/+5
2011-02-01security/selinux: fix /proc/sys/ labelingLucian Adrian Grijincu1-102/+18
2011-02-01SELinux: Use dentry name in new object labelingEric Paris6-37/+197
2011-02-01fs/vfs/security: pass last path component to LSM on inode creationEric Paris1-2/+3
2011-01-24selinux: return -ENOMEM when memory allocation failsDavidlohr Bueso2-3/+3
2011-01-24security:selinux: kill unused MAX_AVTAB_HASH_MASK and ebitmap_startbitShan Wei2-2/+0
2011-01-10Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds11-931/+944
2011-01-10headers: path.h reduxAlexey Dobriyan1-1/+0
2011-01-10Merge branch 'master' of git://git.infradead.org/users/eparis/selinux into nextJames Morris10-930/+943
2011-01-10Merge branch 'master' into nextJames Morris2-17/+21
2011-01-07Merge branch 'vfs-scale-working' of git://git.kernel.org/pub/scm/linux/kernel...Linus Torvalds1-6/+10
2011-01-07fs: dcache rationalise dget variantsNick Piggin1-1/+1
2011-01-07fs: dcache remove dcache_lockNick Piggin1-4/+0
2011-01-07fs: dcache scale subdirsNick Piggin1-2/+10
2011-01-05af_unix: Avoid socket->sk NULL OOPS in stream connect security hooks.David S. Miller1-5/+5
2010-12-26Merge branch 'master' of master.kernel.org:/pub/scm/linux/kernel/git/davem/ne...David S. Miller1-5/+1
2010-12-16SELinux: define permissions for DCB netlink messagesEric Paris1-0/+2
2010-12-07selinux: cache sidtab_context_to_sid resultsEric Paris2-2/+39
2010-12-02SELinux: do not compute transition labels on mountpoint labeled filesystemsEric Paris1-1/+4
2010-11-30SELinux: merge policydb_index_classes and policydb_index_othersEric Paris1-59/+10
2010-11-30selinux: convert part of the sym_val_to_name array to use flex_arrayEric Paris5-68/+127
2010-11-30selinux: convert type_val_to_struct to flex_arrayEric Paris3-13/+34
2010-11-30SELinux: do not set automatic i_ino in selinuxfsEric Paris1-1/+0
2010-11-30selinux: rework security_netlbl_secattr_to_sidEric Paris1-21/+21
2010-11-30SELinux: standardize return code handling in selinuxfs.cEric Paris1-171/+157
2010-11-30SELinux: standardize return code handling in selinuxfs.cEric Paris1-337/+311
2010-11-30SELinux: standardize return code handling in policydb.cEric Paris1-287/+268
2010-11-29security: Define CAP_SYSLOGSerge E. Hallyn1-1/+1
2010-11-23SELinux: indicate fatal error in compat netfilter codeEric Paris1-2/+2
2010-11-23SELinux: Only return netlink error when we know the return is fatalEric Paris1-4/+4
generated by cgit 1.2.3-korg (git 2.43.0) at 2025-11-03 16:43:51 +0000