aboutsummaryrefslogtreecommitdiffstats
path: root/security/selinux/hooks.c
AgeCommit message (Expand)AuthorFilesLines
4 daysselinux: rename the cred_security_struct variables to "crsec"Paul Moore1-115/+115
4 daysselinux: move avdcache to per-task security structStephen Smalley1-13/+18
4 daysselinux: rename task_security_struct to cred_security_structStephen Smalley1-34/+34
2025-10-03Merge tag 'pull-qstr' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfsLinus Torvalds1-1/+1
2025-09-30Merge tag 'lsm-pr-20250926' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-46/+10
2025-09-30Merge tag 'selinux-pr-20250926' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-3/+7
2025-09-30Merge tag 'audit-pr-20250926' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds1-0/+5
2025-09-15security_dentry_init_security(): constify qstr argumentAl Viro1-1/+1
2025-09-07selinux: enable per-file labeling for functionfsNeill Kapron1-2/+6
2025-09-01copy_process: pass clone_flags as u64 across calltreeSimon Schuster1-1/+1
2025-08-30audit: add record for multiple object contextsCasey Schaufler1-1/+3
2025-08-30audit: add record for multiple task security contextsCasey Schaufler1-0/+3
2025-08-11lsm,selinux: Add LSM blob support for BPF objectsBlaise Boscaccy1-46/+10
2025-08-11selinux: use a consistent method to get full socket from skbTianjia Zhang1-1/+1
2025-07-28Merge tag 'selinux-pr-20250725' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-1/+13
2025-07-04tree-wide: s/struct fileattr/struct file_kattr/gChristian Brauner1-2/+2
2025-07-01selinux: implement inode_file_[g|s]etattr hooksAndrey Albershteyn1-0/+14
2025-06-19selinux: optimize selinux_inode_getattr/permission() based on neveraudit|perm...Stephen Smalley1-1/+13
2025-05-28Merge tag 'net-next-6.16' of git://git.kernel.org/pub/scm/linux/kernel/git/ne...Linus Torvalds1-40/+1
2025-04-12selinux: fix the kdoc header for task_avdcache_updatePaul Moore1-1/+1
2025-04-11net: Retire DCCP socket.Kuniyuki Iwashima1-40/+1
2025-04-11selinux: reduce path walk overheadPaul Moore1-54/+171
2025-04-01Merge tag 'driver-core-6.15-rc1' of git://git.kernel.org/pub/scm/linux/kernel...Linus Torvalds1-2/+5
2025-03-30Merge tag 'bpf-next-6.15' of git://git.kernel.org/pub/scm/linux/kernel/git/bp...Linus Torvalds1-3/+3
2025-03-25Merge tag 'selinux-pr-20250323' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-10/+48
2025-03-25Merge tag 'lsm-pr-20250323' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-1/+15
2025-03-15security: Propagate caller information in bpf hooksBlaise Boscaccy1-3/+3
2025-02-27selinux: add FILE__WATCH_MOUNTNSMiklos Szeredi1-0/+3
2025-02-26selinux: add permission checks for loading other kinds of kernel files"Kipp N. Davis"1-10/+48
2025-02-26perf: Remove unnecessary parameter of security checkLuo Gengkun1-1/+1
2025-02-15kernfs: Use RCU to access kernfs_node::name.Sebastian Andrzej Siewior1-2/+5
2025-02-07io_uring,lsm,selinux: add LSM hooks for io_uring_setup()Hamza Mahfooz1-0/+14
2025-02-07selinux: always check the file label in selinux_kernel_read_file()Paul Moore1-1/+1
2025-01-23Merge tag 'fsnotify_hsm_for_v6.14-rc1' of git://git.kernel.org/pub/scm/linux/...Linus Torvalds1-1/+2
2025-01-21Merge tag 'selinux-pr-20250121' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-5/+5
2025-01-21Merge tag 'lsm-pr-20250121' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-15/+34
2025-01-07selinux: avoid using types indicating user space interactionChristian Göttsche1-1/+1
2025-01-07Merge tag 'selinux-pr-20250107' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-3/+3
2025-01-04selinux: match extended permissions to their base permissionsThiébaud Weksteen1-3/+3
2024-12-15selinux: add netlink nlmsg_type audit messageThiébaud Weksteen1-2/+2
2024-12-11selinux: Fix SCTP error inconsistency in selinux_socket_bind()Mikhail Ivanov1-1/+1
2024-12-11selinux: use native iterator typesChristian Göttsche1-1/+1
2024-12-10fsnotify: introduce pre-content permission eventsAmir Goldstein1-1/+2
2024-12-04lsm: secctx provider check on releaseCasey Schaufler1-8/+5
2024-12-04lsm: lsm_context in security_dentry_init_securityCasey Schaufler1-4/+4
2024-12-04lsm: use lsm_context in security_inode_getsecctxCasey Schaufler1-4/+6
2024-12-04lsm: replace context+len with lsm_contextCasey Schaufler1-5/+18
2024-12-04lsm: ensure the correct LSM context releaserCasey Schaufler1-2/+9
2024-11-30selinux: use sk_to_full_sk() in selinux_ip_output()Eric Dumazet1-1/+1
2024-11-18Merge tag 'lsm-pr-20241112' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-17/+32
2024-10-11lsm: remove lsm_prop scaffoldingCasey Schaufler1-17/+1
2024-10-11lsm: create new security_cred_getlsmprop LSM hookCasey Schaufler1-0/+8
2024-10-11lsm: use lsm_prop in security_inode_getsecidCasey Schaufler1-6/+9
2024-10-11lsm: use lsm_prop in security_current_getsecidCasey Schaufler1-6/+11
2024-10-11lsm: use lsm_prop in security_ipc_getsecidCasey Schaufler1-3/+6
2024-10-11lsm: add lsmprop_to_secctx hookCasey Schaufler1-2/+14
2024-10-07selinux: Add netlink xperm supportThiébaud Weksteen1-9/+42
2024-09-24Merge tag 'bpf-next-6.12-struct-fd' of git://git.kernel.org/pub/scm/linux/ker...Linus Torvalds1-1/+1
2024-09-24Merge tag 'lsm-pr-20240923' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-1/+1
2024-09-19selinux,smack: properly reference the LSM blob in security_watch_key()Paul Moore1-1/+1
2024-09-16Merge tag 'lsm-pr-20240911' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-116/+60
2024-09-16Merge tag 'selinux-pr-20240911' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-1/+6
2024-09-16Merge tag 'vfs-6.12.file' of git://git.kernel.org/pub/scm/linux/kernel/git/vf...Linus Torvalds1-1/+1
2024-09-12security,bpf: constify struct path in bpf_token_create() LSM hookAndrii Nakryiko1-1/+1
2024-08-31Merge tag 'lsm-pr-20240830' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-2/+2
2024-08-28selinux,smack: don't bypass permissions check in inode_setsecctx hookScott Mayhew1-2/+2
2024-08-28file: reclaim 24 bytes from f_ownerChristian Brauner1-1/+1
2024-08-26selinux: annotate false positive data race to avoid KCSAN warningsStephen Smalley1-1/+6
2024-08-08selinux: revert our use of vma_is_initial_heap()Paul Moore1-1/+11
2024-07-31lsm: Refactor return value of LSM hook inode_copy_up_xattrXu Kuohai1-2/+2
2024-07-31lsm: Refactor return value of LSM hook vm_enough_memoryXu Kuohai1-11/+4
2024-07-29lsm: infrastructure management of the perf_event security blobCasey Schaufler1-14/+4
2024-07-29lsm: infrastructure management of the infiniband blobCasey Schaufler1-13/+3
2024-07-29lsm: infrastructure management of the dev_tun blobCasey Schaufler1-16/+6
2024-07-29lsm: infrastructure management of the key security blobCasey Schaufler1-17/+4
2024-07-29lsm: infrastructure management of the sock securityCasey Schaufler1-43/+37
2024-07-09selinux,smack: remove the capability checks in the removexattr hooksPaul Moore1-8/+2
2024-06-03lsm: fixup the inode xattr capability handlingPaul Moore1-8/+20
2024-05-15Merge tag 'integrity-v6.10' of ssh://ra.kernel.org/pub/scm/linux/kernel/git/z...Linus Torvalds1-1/+1
2024-04-09security: allow finer granularity in permitting copy-up of security xattrsStefan Berger1-1/+1
2024-03-27selinux: make more use of current_sid()Christian Göttsche1-16/+6
2024-03-26selinux: cleanup selinux_lsm_getattr()Paul Moore1-18/+18
2024-03-14lsm: use 32-bit compatible data types in LSM syscallsCasey Schaufler1-2/+2
2024-03-12Merge tag 'lsm-pr-20240312' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-1/+2
2024-03-12Merge tag 'selinux-pr-20240312' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-13/+15
2024-02-29Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/netJakub Kicinski1-1/+1
2024-02-23selinux: fix lsm_get_self_attr()Mickaël Salaün1-1/+1
2024-02-15security: Align inode_setattr hook definition with EVMRoberto Sassu1-1/+2
2024-02-02selinux: only filter copy-up xattrs following initializationDavid Disseldorp1-2/+3
2024-02-02selinux: correct return values in selinux_socket_getpeersec_dgram()Paul Moore1-6/+8
2024-01-25selinux: reduce the object class calculations at inode init timePaul Moore1-5/+4
2024-01-24bpf,selinux: Allocate bpf_security_struct per BPF tokenAndrii Nakryiko1-0/+25
2024-01-24bpf,lsm: Refactor bpf_map_alloc/bpf_map_free LSM hooksAndrii Nakryiko1-3/+4
2024-01-24bpf,lsm: Refactor bpf_prog_alloc/bpf_prog_free LSM hooksAndrii Nakryiko1-7/+8
2024-01-11Merge tag 'for-6.8/io_uring-2024-01-08' of git://git.kernel.dk/linuxLinus Torvalds1-1/+1
2024-01-10Merge tag 'header_cleanup-2024-01-10' of https://evilpiepirate.org/git/bcachefsLinus Torvalds1-0/+1
2024-01-09Merge tag 'lsm-pr-20240105' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-28/+145
2024-01-09Merge tag 'selinux-pr-20240105' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-1/+35
2024-01-04selinux: Fix error priority for bind with AF_UNSPEC on PF_INET6 socketMickaël Salaün1-0/+7
2023-12-24lsm: new security_file_ioctl_compat() hookAlfred Piccioni1-0/+28
2023-12-20shm: Slim down dependenciesKent Overstreet1-0/+1
2023-12-15cred: get rid of CONFIG_DEBUG_CREDENTIALSJens Axboe1-6/+0
2023-12-12io_uring: split out cmd api into a separate headerPavel Begunkov1-1/+1
2023-12-07selinux: remove the wrong comment about multithreaded process handlingMunehisa Kamata1-1/+0
2023-11-21selinux: introduce an initial SID for early boot processesOndrej Mosnacek1-0/+28
2023-11-12lsm: mark the lsm_id variables are marked as staticPaul Moore1-1/+1
2023-11-12lsm: consolidate buffer size handling into lsm_fill_user_ctx()Paul Moore1-21/+23
2023-11-12SELinux: Add selfattr hooksCasey Schaufler1-27/+107
2023-11-12LSM: Identify modules by more than nameCasey Schaufler1-1/+8
2023-10-30Merge tag 'lsm-pr-20231030' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-5/+5
2023-09-14lsm: constify 'sb' parameter in security_sb_kern_mount()Khadija Kamran1-1/+1
2023-09-14lsm: constify 'bprm' parameter in security_bprm_committed_creds()Khadija Kamran1-1/+1
2023-09-13lsm: constify 'bprm' parameter in security_bprm_committing_creds()Khadija Kamran1-1/+1
2023-09-13lsm: constify 'sb' parameter in security_quotactl()Khadija Kamran1-2/+2
2023-09-12selinux: fix handling of empty opts in selinux_fs_context_submount()Ondrej Mosnacek1-2/+8
2023-08-30Merge tag 'lsm-pr-20230829' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-13/+14
2023-08-30Merge tag 'selinux-pr-20230829' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-64/+58
2023-08-29Merge tag 'mm-stable-2023-08-28-18-26' of git://git.kernel.org/pub/scm/linux/...Linus Torvalds1-5/+2
2023-08-29Merge tag 'net-next-6.6' of git://git.kernel.org/pub/scm/linux/kernel/git/net...Linus Torvalds1-2/+2
2023-08-21selinux: use vma_is_initial_stack() and vma_is_initial_heap()Kefeng Wang1-5/+2
2023-08-15lsm: constify the 'file' parameter in security_binder_transfer_file()Khadija Kamran1-4/+4
2023-08-15vfs, security: Fix automount superblock LSM init problem, preventing NFS sb s...David Howells1-0/+22
2023-08-09selinux: revert SECINITSID_INIT supportPaul Moore1-28/+0
2023-08-08lsm: constify the 'target' parameter in security_capget()Khadija Kamran1-1/+1
2023-08-08selinux: update comment on selinux_hooks[]Xiu Jianfeng1-4/+0
2023-07-28selinux: log about VM being executable by defaultChristian Göttsche1-0/+2
2023-07-20selinux: fix a 0/NULL mistmatch in ad_net_init_from_iif()Paul Moore1-1/+1
2023-07-19selinux: introduce and use lsm_ad_net_init*() helpersPaolo Abeni1-41/+43
2023-07-19selinux: update my email addressStephen Smalley1-1/+1
2023-07-19selinux: add missing newlines in pr_err() statementsChristian Göttsche1-1/+1
2023-07-18selinux: de-brand SELinuxStephen Smalley1-1/+1
2023-07-18selinux: avoid implicit conversions in the LSM hooksChristian Göttsche1-16/+10
2023-07-14security: Constify sk in the sk_getsecid hook.Guillaume Nault1-2/+2
2023-07-10selinux: introduce an initial SID for early boot processesOndrej Mosnacek1-0/+28
2023-07-10security: Allow all LSMs to provide xattrs for inode_init_security hookRoberto Sassu1-8/+9
2023-05-30selinux: make labeled NFS work when mounted before policy loadOndrej Mosnacek1-17/+41
2023-05-18selinux: Implement mptcp_add_subflow hookPaolo Abeni1-0/+16
2023-05-08selinux: declare read-only data arrays constChristian Göttsche1-1/+1
2023-05-08selinux: adjust typos in commentsChristian Göttsche1-1/+1
2023-03-20selinux: remove the runtime disable functionalityPaul Moore1-55/+2
2023-03-20selinux: remove the 'checkreqprot' functionalityPaul Moore1-16/+4
2023-03-14selinux: stop passing selinux_state pointers and their offspringStephen Smalley1-341/+208
2023-01-19fs: port inode_owner_or_capable() to mnt_idmapChristian Brauner1-3/+2
2023-01-19fs: port acl to mnt_idmapChristian Brauner1-3/+3
2023-01-19fs: port xattr to mnt_idmapChristian Brauner1-4/+5
2023-01-19fs: port ->permission() to pass mnt_idmapChristian Brauner1-2/+2
2022-12-13Merge tag 'lsm-pr-20221212' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-7/+6
2022-11-04lsm: make security_socket_getpeersec_stream() sockptr_t safePaul Moore1-7/+6
2022-10-20selinux: implement get, set and remove acl hookChristian Brauner1-0/+22
2022-10-06Merge tag 'pull-path' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfsLinus Torvalds1-1/+1
2022-10-03Merge tag 'lsm-pr-20221003' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-0/+9
2022-10-03Merge tag 'selinux-pr-20221003' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-15/+9
2022-09-14selinux: remove the unneeded result variableXu Panda1-15/+9
2022-09-01->getprocattr(): attribute name is const char *, TYVM...Al Viro1-1/+1
2022-08-26selinux: implement the security_uring_cmd() LSM hookPaul Moore1-0/+24
2022-08-16selinux: Implement userns_create hookFrederick Lawler1-0/+9
2022-08-02Merge tag 'selinux-pr-20220801' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-10/+7
2022-06-20selinux: selinux_add_opt() callers free memoryXiu Jianfeng1-7/+4
2022-06-15selinux: free contexts previously transferred in selinux_add_opt()Christian Göttsche1-7/+4
2022-06-10selinux: fix typos in commentsJonas Lindner1-2/+2
2022-06-07selinux: drop unnecessary NULL checkChristian Göttsche1-1/+1
2022-05-03selinux: log anon inode class nameChristian Göttsche1-2/+2
2022-04-04selinux: checkreqprot is deprecated, add some ssleep() discomfortPaul Moore1-1/+3
2022-04-04selinux: Remove redundant assignmentsMichal Orzel1-1/+0
2022-03-28Merge tag 'ptrace-cleanups-for-v5.18' of git://git.kernel.org/pub/scm/linux/k...Linus Torvalds1-1/+0
2022-03-10tracehook: Remove tracehook.hEric W. Biederman1-1/+0
2022-02-25selinux: allow FIOCLEX and FIONCLEX with policy capabilityRichard Haines1-0/+6
2022-02-18selinux: drop return statement at end of void functionsChristian Göttsche1-2/+0
2022-02-15security: implement sctp_assoc_established hook in selinuxOndrej Mosnacek1-24/+66
2022-02-04selinux: parse contexts for mount options earlyOndrej Mosnacek1-149/+53
2022-02-01selinux: various sparse fixesPaul Moore1-3/+3
2022-02-01selinux: try to use preparsed sid before calling parse_sid()Scott Mayhew1-29/+59
2022-02-01selinux: Fix selinux_sb_mnt_opts_compat()Scott Mayhew1-34/+41
2022-01-27LSM: general protection fault in legacy_parse_paramCasey Schaufler1-3/+2
2022-01-27selinux: fix a type cast problem in cred_init_security()Paul Moore1-1/+1
2022-01-26selinux: simplify cred_init_securityChristian Göttsche1-2/+1
2022-01-25selinux: access superblock_security_struct in LSM blob wayGONG, Ruiqi1-2/+2
2022-01-11Merge tag 'selinux-pr-20220110' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-63/+21
2021-12-27selinux: initialize proto variable in selinux_ip_postroute_compat()Tom Rix1-1/+1
2021-12-21selinux: minor tweaks to selinux_add_opt()Paul Moore1-8/+10
2021-12-21selinux: fix potential memleak in selinux_add_opt()Bernard Zhao1-2/+10
2021-12-16selinux: fix sleeping function called from invalid contextScott Mayhew1-14/+19
2021-12-06security,selinux: remove security_add_mnt_opt()Ondrej Mosnacek1-39/+0
2021-11-22lsm: security_task_getsecid_subj() -> security_current_getsecid_subj()Paul Moore1-16/+3
2021-11-12net,lsm,selinux: revert the security_sctp_assoc_established() hookPaul Moore1-13/+1
2021-11-03security: implement sctp_assoc_established hook in selinuxXin Long1-1/+13
2021-11-03security: pass asoc to sctp_assoc_request and sctp_sk_cloneXin Long1-11/+11
2021-11-01Merge tag 'selinux-pr-20211101' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-149/+90
2021-10-20security: Return xattr name from security_dentry_init_security()Vivek Goyal1-1/+5
2021-10-19selinux: fix a sock regression in selinux_ip_postroute_compat()Paul Moore1-2/+2
2021-10-14binder: use cred instead of task for selinux checksTodd Kjos1-35/+13
2021-10-13selinux: make better use of the nf_hook_state passed to the NF hooksPaul Moore1-27/+25
2021-10-11selinux: remove unneeded ipv6 hook wrappersFlorian Westphal1-62/+18
2021-09-30selinux: remove the SELinux lockdown implementationPaul Moore1-30/+0
2021-09-28selinux: enable genfscon labeling for securityfsChristian Göttsche1-1/+2
2021-09-23selinux,smack: fix subjective/objective credential use mixupsPaul Moore1-2/+2
2021-09-19selinux: add support for the io_uring access controlsPaul Moore1-0/+34
2021-08-31Merge tag 'net-next-5.15' of git://git.kernel.org/pub/scm/linux/kernel/git/ne...Linus Torvalds1-1/+3
2021-07-29mctp: Add MCTP baseJeremy Kerr1-1/+3
2021-07-14selinux: return early for possible NULL audit buffersAustin Kim1-0/+4
generated by cgit 1.2.3-korg (git 2.43.0) at 2025-11-24 10:34:27 +0000