aboutsummaryrefslogtreecommitdiffstats
path: root/security/security.c
AgeCommit message (Expand)AuthorFilesLines
2025-04-22lsm: Move security_netlink_send to under CONFIG_SECURITY_NETWORKSong Liu1-18/+18
2025-03-30Merge tag 'bpf-next-6.15' of git://git.kernel.org/pub/scm/linux/kernel/git/bp...Linus Torvalds1-6/+9
2025-03-15security: Propagate caller information in bpf hooksBlaise Boscaccy1-6/+9
2025-02-26perf: Remove unnecessary parameter of security checkLuo Gengkun1-3/+2
2025-02-07io_uring,lsm,selinux: add LSM hooks for io_uring_setup()Hamza Mahfooz1-0/+12
2025-01-22Merge tag 'AT_EXECVE_CHECK-v6.14-rc1' of git://git.kernel.org/pub/scm/linux/k...Linus Torvalds1-0/+10
2025-01-04security: remove redundant assignment to return variableColin Ian King1-3/+1
2024-12-18exec: Add a new AT_EXECVE_CHECK flag to execveat(2)Mickaël Salaün1-0/+10
2024-12-04lsm: lsm_context in security_dentry_init_securityCasey Schaufler1-5/+4
2024-12-04lsm: use lsm_context in security_inode_getsecctxCasey Schaufler1-6/+6
2024-12-04lsm: replace context+len with lsm_contextCasey Schaufler1-19/+15
2024-12-04lsm: ensure the correct LSM context releaserCasey Schaufler1-4/+4
2024-11-21Merge tag 'fsnotify_for_v6.13-rc1' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds1-8/+1
2024-11-18Merge tag 'lsm-pr-20241112' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-30/+66
2024-10-14fsnotify, lsm: Decouple fsnotify from lsmSong Liu1-8/+1
2024-10-11lsm: create new security_cred_getlsmprop LSM hookCasey Schaufler1-0/+15
2024-10-11lsm: use lsm_prop in security_inode_getsecidCasey Schaufler1-6/+5
2024-10-11lsm: use lsm_prop in security_current_getsecidCasey Schaufler1-14/+14
2024-10-11lsm: use lsm_prop in security_ipc_getsecidCasey Schaufler1-7/+7
2024-10-11lsm: add lsmprop_to_secctx hookCasey Schaufler1-0/+21
2024-10-11lsm: use lsm_prop in security_audit_rule_matchCasey Schaufler1-3/+4
2024-10-09bcachefs: do not use PF_MEMALLOC_NORECLAIMMichal Hocko1-4/+6
2024-09-24Merge tag 'bpf-next-6.12-struct-fd' of git://git.kernel.org/pub/scm/linux/ker...Linus Torvalds1-1/+1
2024-09-12security,bpf: constify struct path in bpf_token_create() LSM hookAndrii Nakryiko1-1/+1
2024-09-09security: Update file_set_fowner documentationMickaël Salaün1-0/+2
2024-08-26lsm: remove LSM_COUNT and LSM_CONFIG_COUNTTetsuo Handa1-33/+4
2024-08-22lsm: replace indirect LSM hook calls with static callsKP Singh1-64/+155
2024-08-20lsm: add security_inode_setintegrity() hookFan Wu1-0/+20
2024-08-20ipe: add support for dm-verity as a trust providerDeven Bowers1-11/+12
2024-08-20block,lsm: add LSM blob and new LSM hooks for block devicesDeven Bowers1-0/+103
2024-08-20initramfs,lsm: add a security hook to do_populate_rootfs()Fan Wu1-0/+10
2024-08-19lsm: add IPE lsmDeven Bowers1-1/+2
2024-08-12lsm: add the inode_free_security_rcu() LSM implementation hookPaul Moore1-16/+16
2024-08-12lsm: cleanup lsm_hooks.hPaul Moore1-1/+1
2024-07-31lsm: Refactor return value of LSM hook inode_copy_up_xattrXu Kuohai1-8/+3
2024-07-31lsm: Refactor return value of LSM hook vm_enough_memoryXu Kuohai1-6/+5
2024-07-29lsm: infrastructure management of the perf_event security blobCasey Schaufler1-2/+18
2024-07-29lsm: infrastructure management of the infiniband blobCasey Schaufler1-2/+15
2024-07-29lsm: infrastructure management of the dev_tun blobCasey Schaufler1-2/+15
2024-07-29lsm: add helper for blob allocationsCasey Schaufler1-64/+33
2024-07-29lsm: infrastructure management of the key security blobCasey Schaufler1-2/+37
2024-07-29lsm: infrastructure management of the sock securityCasey Schaufler1-1/+35
2024-07-16Merge tag 'lsm-pr-20240715' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-22/+48
2024-06-13ima: Avoid blocking in RCU read-side critical sectionGUO Zihua1-2/+4
2024-06-03lsm: fixup the inode xattr capability handlingPaul Moore1-22/+48
2024-04-09security: allow finer granularity in permitting copy-up of security xattrsStefan Berger1-2/+3
2024-04-03security: Place security_path_post_mknod() where the original IMA call wasRoberto Sassu1-2/+2
2024-03-14lsm: handle the NULL buffer case in lsm_fill_user_ctx()Paul Moore1-1/+7
2024-03-14lsm: use 32-bit compatible data types in LSM syscallsCasey Schaufler1-6/+6
2024-03-12Merge tag 'lsm-pr-20240312' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-400/+381
2024-02-22Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/netJakub Kicinski1-2/+5
2024-02-22lsm: use default hook return value in call_int_hook()Ondrej Mosnacek1-307/+225
2024-02-21lsm: fix typos in security/security.c comment headersPairman Guo1-4/+4
2024-02-15integrity: Remove LSMRoberto Sassu1-2/+0
2024-02-15evm: Make it independent from 'integrity' LSMRoberto Sassu1-2/+2
2024-02-15evm: Move to LSM infrastructureRoberto Sassu1-33/+10
2024-02-15ima: Move IMA-Appraisal to LSM infrastructureRoberto Sassu1-13/+0
2024-02-15ima: Move to LSM infrastructureRoberto Sassu1-51/+12
2024-02-15integrity: Move integrity_kernel_module_request() to IMARoberto Sassu1-1/+1
2024-02-15security: Introduce key_post_create_or_update hookRoberto Sassu1-0/+19
2024-02-15security: Introduce inode_post_remove_acl hookRoberto Sassu1-0/+17
2024-02-15security: Introduce inode_post_set_acl hookRoberto Sassu1-0/+17
2024-02-15security: Introduce inode_post_create_tmpfile hookRoberto Sassu1-0/+15
2024-02-15security: Introduce path_post_mknod hookRoberto Sassu1-0/+14
2024-02-15security: Introduce file_release hookRoberto Sassu1-0/+11
2024-02-15security: Introduce file_post_open hookRoberto Sassu1-0/+17
2024-02-15security: Introduce inode_post_removexattr hookRoberto Sassu1-0/+14
2024-02-15security: Introduce inode_post_setattr hookRoberto Sassu1-0/+16
2024-02-15security: Align inode_setattr hook definition with EVMRoberto Sassu1-1/+1
2024-02-15evm: Align evm_inode_post_setxattr() definition with LSM infrastructureRoberto Sassu1-1/+1
2024-02-15evm: Align evm_inode_setxattr() definition with LSM infrastructureRoberto Sassu1-1/+1
2024-02-15ima: Align ima_inode_removexattr() definition with LSM infrastructureRoberto Sassu1-1/+1
2024-02-15ima: Align ima_inode_setxattr() definition with LSM infrastructureRoberto Sassu1-1/+1
2024-02-15ima: Align ima_file_mprotect() definition with LSM infrastructureRoberto Sassu1-1/+1
2024-02-14lsm: fix integer overflow in lsm_set_self_attr() syscallJann Horn1-2/+5
2024-02-01Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/netJakub Kicinski1-5/+40
2024-01-30lsm: fix default return value of the socket_getpeersec_*() hooksOndrej Mosnacek1-4/+27
2024-01-26lsm: fix the logic in security_inode_getsecctx()Ondrej Mosnacek1-1/+13
2024-01-24bpf,lsm: Add BPF token LSM hooksAndrii Nakryiko1-0/+60
2024-01-24bpf,lsm: Refactor bpf_map_alloc/bpf_map_free LSM hooksAndrii Nakryiko1-6/+10
2024-01-24bpf,lsm: Refactor bpf_prog_alloc/bpf_prog_free LSM hooksAndrii Nakryiko1-10/+15
2024-01-09Merge tag 'integrity-v6.8' of git://git.kernel.org/pub/scm/linux/kernel/git/z...Linus Torvalds1-1/+1
2024-01-09Merge tag 'lsm-pr-20240105' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-12/+261
2023-12-24lsm: new security_file_ioctl_compat() hookAlfred Piccioni1-0/+18
2023-12-20evm: don't copy up 'security.evm' xattrMimi Zohar1-1/+1
2023-12-12fsnotify: optionally pass access range in file permission hooksAmir Goldstein1-7/+1
2023-12-12fsnotify: split fsnotify_perm() into two hooksAmir Goldstein1-2/+2
2023-11-12lsm: convert security_setselfattr() to use memdup_user()Paul Moore1-8/+3
2023-11-12lsm: align based on pointer length in lsm_fill_user_ctx()Paul Moore1-1/+1
2023-11-12lsm: consolidate buffer size handling into lsm_fill_user_ctx()Paul Moore1-24/+31
2023-11-12lsm: correct error codes in security_getselfattr()Paul Moore1-2/+2
2023-11-12lsm: cleanup the size counters in security_getselfattr()Paul Moore1-1/+2
2023-11-12lsm: don't yet account for IMA in LSM_CONFIG_COUNT calculationRoberto Sassu1-1/+0
2023-11-12LSM: Helpers for attribute names and filling lsm_ctxCasey Schaufler1-0/+41
2023-11-12LSM: syscalls for current process attributesCasey Schaufler1-0/+152
2023-11-12proc: Use lsmids instead of lsm names for attrsCasey Schaufler1-8/+7
2023-11-12LSM: Maintain a table of LSM attribute dataCasey Schaufler1-0/+37
2023-11-12LSM: Identify modules by more than nameCasey Schaufler1-6/+6
2023-10-04lsm: fix a spelling mistakePaul Moore1-1/+1
2023-09-14lsm: constify 'sb' parameter in security_sb_kern_mount()Khadija Kamran1-1/+1
2023-09-14lsm: constify 'bprm' parameter in security_bprm_committed_creds()Khadija Kamran1-1/+1
2023-09-13lsm: constify 'bprm' parameter in security_bprm_committing_creds()Khadija Kamran1-1/+1
2023-09-13lsm: constify 'file' parameter in security_bprm_creds_from_file()Khadija Kamran1-1/+1
2023-09-13lsm: constify 'sb' parameter in security_quotactl()Khadija Kamran1-1/+1
2023-08-30Merge tag 'lsm-pr-20230829' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-29/+61
2023-08-29Merge tag 'net-next-6.6' of git://git.kernel.org/pub/scm/linux/kernel/git/net...Linus Torvalds1-1/+1
2023-08-15lsm: constify the 'file' parameter in security_binder_transfer_file()Khadija Kamran1-1/+1
2023-08-15vfs, security: Fix automount superblock LSM init problem, preventing NFS sb s...David Howells1-0/+14
2023-08-08lsm: constify the 'target' parameter in security_capget()Khadija Kamran1-1/+1
2023-07-31lsm: add comment block for security_sk_classify_flow LSM hookKhadija Kamran1-0/+7
2023-07-26security: Fix ret values doc for security_inode_init_security()Roberto Sassu1-2/+2
2023-07-14security: Constify sk in the sk_getsecid hook.Guillaume Nault1-1/+1
2023-07-10evm: Align evm_inode_init_security() definition with LSM infrastructureRoberto Sassu1-2/+2
2023-07-10security: Allow all LSMs to provide xattrs for inode_init_security hookRoberto Sassu1-24/+49
2023-07-10lsm: fix typo in security_file_lock() comment headerPairman Guo1-1/+1
2023-06-27Merge tag 'lsm-pr-20230626' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-2/+2
2023-05-25lsm: fix a number of misspellingsPaul Moore1-2/+2
2023-05-18security, lsm: Introduce security_mptcp_add_subflow()Paolo Abeni1-0/+17
2023-04-24Merge tag 'lsm-pr-20230420' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-102/+2628
2023-03-23security: Remove security_old_inode_init_security()Roberto Sassu1-11/+0
2023-03-20selinux: remove the runtime disable functionalityPaul Moore1-2/+2
2023-03-10security: Introduce LSM_ORDER_LAST and set it for the integrity LSMRoberto Sassu1-3/+9
2023-03-08lsm: fix a badly named parameter in security_get_getsecurity()Paul Moore1-5/+5
2023-03-08lsm: fix doc warnings in the LSM hook commentsPaul Moore1-16/+17
2023-03-06lsm: styling fixes to security/security.cPaul Moore1-84/+98
2023-03-06lsm: move the remaining LSM hook comments to security/security.cPaul Moore1-0/+231
2023-03-06lsm: move the io_uring hook comments to security/security.cPaul Moore1-0/+26
2023-03-06lsm: move the perf hook comments to security/security.cPaul Moore1-0/+39
2023-03-06lsm: move the bpf hook comments to security/security.cPaul Moore1-0/+65
2023-03-06lsm: move the audit hook comments to security/security.cPaul Moore1-0/+41
2023-03-06lsm: move the binder hook comments to security/security.cPaul Moore1-0/+36
2023-03-06lsm: move the sysv hook comments to security/security.cPaul Moore1-0/+191
2023-03-06lsm: move the key hook comments to security/security.cPaul Moore1-0/+40
2023-03-06lsm: move the xfrm hook comments to security/security.cPaul Moore1-0/+103
2023-03-06lsm: move the Infiniband hook comments to security/security.cPaul Moore1-0/+34
2023-03-06lsm: move the SCTP hook comments to security/security.cPaul Moore1-0/+43
2023-03-06lsm: move the socket hook comments to security/security.cPaul Moore1-0/+322
2023-03-06lsm: move the AF_UNIX hook comments to security/security.cPaul Moore1-1/+41
2023-03-06lsm: move the netlink hook comments to security/security.cPaul Moore1-0/+13
2023-03-06lsm: move the task hook comments to security/security.cPaul Moore1-0/+334
2023-03-06lsm: move the file hook comments to security/security.cPaul Moore1-0/+151
2023-03-06lsm: move the kernfs hook comments to security/security.cPaul Moore1-0/+10
2023-03-06lsm: move the inode hook comments to security/security.cPaul Moore1-0/+524
2023-03-06lsm: move the filesystem hook comments to security/security.cPaul Moore1-0/+181
2023-03-06lsm: move the fs_context hook comments to security/security.cPaul Moore1-0/+23
2023-03-06lsm: move the program execution hook comments to security/security.cPaul Moore1-0/+69
2023-02-22Merge tag 'integrity-v6.3' of git://git.kernel.org/pub/scm/linux/kernel/git/z...Linus Torvalds1-3/+4
2023-01-31ima: Align ima_file_mmap() parameters with mmap_file LSM hookRoberto Sassu1-3/+4
2023-01-19fs: port acl to mnt_idmapChristian Brauner1-10/+10
2023-01-19fs: port xattr to mnt_idmapChristian Brauner1-9/+9
2023-01-19fs: port ->permission() to pass mnt_idmapChristian Brauner1-2/+2
2023-01-19fs: port ->setattr() to pass mnt_idmapChristian Brauner1-2/+2
2022-12-13Merge tag 'lsm-pr-20221212' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-12/+39
2022-12-13Merge tag 'landlock-6.2-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git...Linus Torvalds1-5/+11
2022-11-16LSM: Better reporting of actual LSMs at bootKees Cook1-9/+36
2022-11-04lsm: make security_socket_getpeersec_stream() sockptr_t safePaul Moore1-3/+3
2022-10-20integrity: implement get and set acl hookChristian Brauner1-2/+19
2022-10-20security: add get, remove and set acl hookChristian Brauner1-0/+25
2022-10-19landlock: Support file truncationGünther Noack1-5/+6
2022-10-19security: Create file_truncate hook from path_truncate hookGünther Noack1-0/+5
2022-10-09Merge tag 'powerpc-6.1-1' of git://git.kernel.org/pub/scm/linux/kernel/git/po...Linus Torvalds1-0/+2
2022-10-06Merge tag 'pull-path' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfsLinus Torvalds1-2/+2
2022-10-03Merge tag 'lsm-pr-20221003' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-0/+5
2022-09-28powerpc/rtas: block error injection when locked downNathan Lynch1-0/+1
2022-09-28powerpc/pseries: block untrusted device tree changes when locked downNathan Lynch1-0/+1
2022-09-01->getprocattr(): attribute name is const char *, TYVM...Al Viro1-2/+2
2022-08-26lsm,io_uring: add LSM hooks for the new uring_cmd file opLuis Chamberlain1-0/+4
2022-08-16security, lsm: Introduce security_create_user_ns()Frederick Lawler1-0/+5
2022-08-02Merge tag 'safesetid-6.0' of https://github.com/micah-morton/linuxLinus Torvalds1-0/+5
2022-07-15security: Add LSM hook to setgroups() syscallMicah Morton1-0/+5
2022-06-26security: pass down mount idmapping to setattr hookChristian Brauner1-2/+3
2022-05-24Merge tag 'landlock-5.19-rc1' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds1-8/+1
2022-05-24Merge tag 'selinux-pr-20220523' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-1/+1
2022-05-24Merge tag 'kernel-hardening-v5.19-rc1' of git://git.kernel.org/pub/scm/linux/...Linus Torvalds1-5/+4
2022-05-24lockdown: also lock down previous kgdb useDaniel Thompson1-0/+2
2022-05-23LSM: Remove double path_rename hook calls for RENAME_EXCHANGEMickaël Salaün1-8/+1
2022-05-13security: declare member holding string literal constChristian Göttsche1-1/+1
2022-04-13security: don't treat structure as an array of struct hlist_headBill Wendling1-5/+4
2022-03-21Merge tag 'selinux-pr-20220321' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-2/+22
2022-02-15security: add sctp_assoc_established hookOndrej Mosnacek1-0/+7
2022-01-29Merge tag 'fixes-v5.17-lsm-ceph-null' of git://git.kernel.org/pub/scm/linux/k...Linus Torvalds1-2/+13
2022-01-28security, lsm: dentry_init_security() Handle multi LSM registrationVivek Goyal1-2/+13
2022-01-27LSM: general protection fault in legacy_parse_paramCasey Schaufler1-2/+15
2021-12-06security,selinux: remove security_add_mnt_opt()Ondrej Mosnacek1-8/+0
2021-11-22lsm: security_task_getsecid_subj() -> security_current_getsecid_subj()Paul Moore1-3/+3
2021-11-12net,lsm,selinux: revert the security_sctp_assoc_established() hookPaul Moore1-7/+0
2021-11-03security: add sctp_assoc_established hookXin Long1-0/+7
2021-11-03security: pass asoc to sctp_assoc_request and sctp_sk_cloneXin Long1-4/+4
2021-10-20security: Return xattr name from security_dentry_init_security()Vivek Goyal1-3/+4
2021-10-14binder: use cred instead of task for selinux checksTodd Kjos1-7/+7
2021-10-14LSM: Avoid warnings about potentially unused hook variablesKees Cook1-1/+1
2021-09-19lsm,io_uring: add LSM hooks to io_uringPaul Moore1-0/+12
2021-08-10bpf: Add lockdown check for probe_write_user helperDaniel Borkmann1-0/+1
2021-08-09bpf: Add _kernel suffix to internal lockdown_bpf_readDaniel Borkmann1-1/+1
2021-06-30Merge tag 'selinux-pr-20210629' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-2/+2
2021-05-21evm: Pass user namespace to set/remove xattr hooksRoberto Sassu1-2/+2
2021-05-10selinux: delete selinux_xfrm_policy_lookup() useless argumentZhongjun Tan1-2/+2
2021-05-01Merge tag 'landlock_v34' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds1-7/+44
2021-04-22fs,security: Add sb_delete hookMickaël Salaün1-0/+5
2021-04-22LSM: Infrastructure management of the superblockCasey Schaufler1-7/+39
generated by cgit 1.2.3-korg (git 2.43.0) at 2025-07-03 23:38:23 +0000