aboutsummaryrefslogtreecommitdiffstats
path: root/security/security.c
AgeCommit message (Expand)AuthorFilesLines
2019-03-12Merge branch 'work.mount' of git://git.kernel.org/pub/scm/linux/kernel/git/vi...Linus Torvalds1-0/+10
2019-03-07Merge tag 'audit-pr-20190305' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds1-4/+2
2019-02-28introduce cloning of fs_contextAl Viro1-0/+5
2019-02-28vfs: Add LSM hooks for the new mount APIDavid Howells1-0/+5
2019-02-25LSM: Ignore "security=" when "lsm=" is specifiedKees Cook1-2/+6
2019-01-31audit: remove unused actx param from audit_rule_matchRichard Guy Briggs1-4/+2
2019-01-22Merge tag 'v5.0-rc3' into next-generalJames Morris1-0/+7
2019-01-18LSM: Make some functions staticWei Yongjun1-3/+3
2019-01-18LSM: Make lsm_early_cred() and lsm_early_task() local functions.Tetsuo Handa1-16/+11
2019-01-16LSM: Check for NULL cred-security on freeJames Morris1-0/+7
2019-01-10LSM: generalize flag passing to security_capableMicah Morton1-9/+5
2019-01-08LSM: Infrastructure management of the ipc security blobCasey Schaufler1-4/+87
2019-01-08LSM: Infrastructure management of the task securityCasey Schaufler1-1/+53
2019-01-08LSM: Infrastructure management of the inode securityCasey Schaufler1-2/+62
2019-01-08LSM: Infrastructure management of the file securityCasey Schaufler1-3/+51
2019-01-08Infrastructure management of the cred security blobCasey Schaufler1-2/+87
2019-01-08procfs: add smack subdir to attrsCasey Schaufler1-4/+20
2019-01-08capability: Initialize as LSM_ORDER_FIRSTKees Cook1-5/+0
2019-01-08LSM: Introduce enum lsm_orderKees Cook1-1/+8
2019-01-08Yama: Initialize as ordered LSMKees Cook1-1/+0
2019-01-08LoadPin: Initialize as ordered LSMKees Cook1-1/+0
2019-01-08LSM: Split LSM preparation from initializationKees Cook1-6/+15
2019-01-08LSM: Add all exclusive LSMs to ordered initializationCasey Schaufler1-25/+20
2019-01-08LSM: Separate idea of "major" LSM from "exclusive" LSMKees Cook1-0/+12
2019-01-08LSM: Refactor "security=" in terms of enable/disableKees Cook1-8/+20
2019-01-08LSM: Prepare for reorganizing "security=" logicKees Cook1-9/+8
2019-01-08LSM: Tie enabling logic to presence in ordered listKees Cook1-3/+11
2019-01-08LSM: Introduce "lsm=" for boottime LSM selectionKees Cook1-1/+13
2019-01-08LSM: Introduce CONFIG_LSMKees Cook1-5/+22
2019-01-08LSM: Build ordered list of LSMs to initializeKees Cook1-5/+53
2019-01-08LSM: Lift LSM selection out of individual LSMsKees Cook1-31/+71
2019-01-08LSM: Provide separate ordered initializationKees Cook1-0/+21
2019-01-05Merge branch 'mount.part1' of git://git.kernel.org/pub/scm/linux/kernel/git/v...Linus Torvalds1-13/+26
2018-12-21LSM: new method: ->sb_add_mnt_opt()Al Viro1-3/+5
2018-12-21LSM: hide struct security_mnt_opts from any generic codeAl Viro1-9/+18
2018-12-21LSM: turn sb_eat_lsm_opts() into a methodAl Viro1-10/+1
2018-12-21btrfs: sanitize security_mnt_opts useAl Viro1-0/+1
2018-12-21LSM: split ->sb_set_mnt_opts() out of ->sb_kern_mount()Al Viro1-3/+2
2018-12-21new helper: security_sb_eat_lsm_opts()Al Viro1-3/+12
2018-12-21LSM: lift extracting and parsing LSM options into the caller of ->sb_remount()Al Viro1-2/+3
2018-12-21LSM: lift parsing LSM options into the caller of ->sb_kern_mount()Al Viro1-2/+3
2018-12-12security: audit and remove any unnecessary uses of module.hPaul Gortmaker1-1/+1
2018-10-24Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-16/+27
2018-10-10LSM: Don't ignore initialization failuresKees Cook1-1/+3
2018-10-10LSM: Provide init debugging infrastructureKees Cook1-0/+18
2018-10-10LSM: Convert from initcall to struct lsm_infoKees Cook1-9/+5
2018-10-10LSM: Remove initcall tracingKees Cook1-7/+1
2018-10-10LSM: Rename .security_initcall section to .lsm_infoKees Cook1-2/+2
2018-10-10LSM: Correctly announce start of LSM initializationKees Cook1-1/+2
2018-10-03signal: Distinguish between kernel_siginfo and siginfoEric W. Biederman1-1/+1
2018-08-22init: allow initcall tables to be emitted using relative referencesArd Biesheuvel1-7/+10
2018-08-15Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds1-1/+6
2018-08-15Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-0/+13
2018-07-18integrity: prevent deadlock during digsig verification.Mikhail Kurinnoi1-1/+6
2018-07-17security: check for kstrdup() failure in lsm_append()Eric Biggers1-0/+2
2018-07-17security: export security_kernel_load_data functionArnd Bergmann1-0/+1
2018-07-16ima: based on policy require signed kexec kernel imagesMimi Zohar1-1/+6
2018-07-16security: define new LSM hook named security_kernel_load_dataMimi Zohar1-0/+5
2018-07-12->file_open(): lose cred argumentAl Viro1-1/+1
2018-07-12security_file_open(): lose cred argumentAl Viro1-2/+2
2018-05-04security: add hook for socketpair()David Herrmann1-0/+6
2018-04-10Merge tag 'trace-v4.17' of git://git.kernel.org/pub/scm/linux/kernel/git/rost...Linus Torvalds1-1/+7
2018-04-07Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds1-0/+7
2018-04-07Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-13/+13
2018-04-06Merge tag 'selinux-pr-20180403' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-0/+22
2018-04-06init, tracing: instrument security and console initcall trace eventsAbderrahmane Benbachir1-1/+7
2018-03-31security: convert security hooks to use hlistSargun Dhillon1-11/+11
2018-03-23security: Add a cred_getsecid hookMatthew Garrett1-0/+7
2018-03-22msg/security: Pass kern_ipc_perm not msg_queue into the msg_queue security hooksEric W. Biederman1-6/+6
2018-03-22shm/security: Pass kern_ipc_perm not shmid_kernel into the shm security hooksEric W. Biederman1-5/+5
2018-03-22sem/security: Pass kern_ipc_perm not sem_array into the sem security hooksEric W. Biederman1-5/+5
2018-03-07usb, signal, security: only pass the cred, not the secid, to kill_pid_info_as...Stephen Smalley1-2/+2
2018-02-22security: Add support for SCTP security hooksRichard Haines1-0/+22
2017-10-20security: bpf: Add LSM hooks for bpf object related syscallChenbo Feng1-0/+32
2017-09-12Merge tag 'selinux-pr-20170831' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-5/+0
2017-08-01LSM: drop bprm_secureexec hookKees Cook1-5/+0
2017-07-18LSM: Remove security_task_create() hook.Tetsuo Handa1-5/+0
2017-06-09security/selinux: allow security_sb_clone_mnt_opts to enable/disable native l...Scott Mayhew1-2/+5
2017-05-23IB/core: Enforce security on management datagramsDaniel Jurgens1-0/+6
2017-05-23selinux lsm IB/core: Implement LSM notification systemDaniel Jurgens1-0/+20
2017-05-23IB/core: Enforce PKey security on QPsDaniel Jurgens1-0/+22
2017-05-22Sync to mainline for security submaintainers to work againstJames Morris1-4/+8
2017-05-15LSM: Enable multiple calls to security_add_hooks() for the same LSMMickaël Salaün1-0/+19
2017-05-03Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/...Linus Torvalds1-352/+18
2017-04-02kernel-api.rst: fix a series of errors when parsing C filesmchehab@s-opensource.com1-4/+8
2017-03-28LSM: Revive security_task_alloc() hook and per "struct task_struct" security ...Tetsuo Handa1-0/+5
2017-03-24LSM: Initialize security_hook_heads upon registration.Tetsuo Handa1-354/+7
2017-03-06security: mark LSM hooks as __ro_after_initJames Morris1-1/+1
2017-03-06prlimit,security,selinux: add a security hook for prlimitStephen Smalley1-0/+8
2017-02-10Merge branch 'stable-4.11' of git://git.infradead.org/users/pcmoore/selinux i...James Morris1-8/+2
2017-01-19LSM: Add /sys/kernel/security/lsmCasey Schaufler1-0/+38
2017-01-12security,selinux,smack: kill security_task_wait hookStephen Smalley1-6/+0
2017-01-09proc,security: move restriction on writing /proc/pid/attr nodes to procStephen Smalley1-2/+2
2016-08-08security, overlayfs: Provide hook to correctly label newly created filesVivek Goyal1-0/+11
2016-08-08security,overlayfs: Provide security hook for copy up of xattrs for overlay fileVivek Goyal1-0/+8
2016-08-08security, overlayfs: provide copy up security hook for unioned filesVivek Goyal1-0/+8
2016-08-06Merge branch 'work.const-qstr' of git://git.kernel.org/pub/scm/linux/kernel/g...Linus Torvalds1-1/+1
2016-07-20qstr: constify dentry_init_securityAl Viro1-1/+1
2016-06-06LSM: Fix for security_inode_getsecurity and -EOPNOTSUPPCasey Schaufler1-4/+25
2016-05-19Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/...Linus Torvalds1-1/+1
2016-05-17Merge branch 'work.const-path' of git://git.kernel.org/pub/scm/linux/kernel/g...Linus Torvalds1-14/+14
2016-04-22security: Introduce security_settime64()Baolin Wang1-1/+1
2016-04-21LSM: LoadPin for kernel file loading restrictionsKees Cook1-0/+1
2016-04-11security: drop the unused hook skb_owned_byPaolo Abeni1-1/+0
2016-03-28constify security_sb_pivotroot()Al Viro1-1/+1
2016-03-28constify security_path_chroot()Al Viro1-1/+1
2016-03-28constify security_path_{link,rename}Al Viro1-3/+3
2016-03-28constify security_path_{mkdir,mknod,symlink}Al Viro1-3/+3
2016-03-28constify security_path_{unlink,rmdir}Al Viro1-2/+2
2016-03-28constify chmod_common/security_path_chmodAl Viro1-1/+1
2016-03-28constify security_sb_mount()Al Viro1-1/+1
2016-03-28constify chown_common/security_path_chownAl Viro1-1/+1
2016-03-28constify security_path_truncate()Al Viro1-1/+1
2016-02-21module: replace copy_module_from_fd with kernel versionMimi Zohar1-12/+0
2016-02-21security: define kernel_read_file hookMimi Zohar1-0/+13
2016-02-21firmware: replace call to fw_read_file_contents() with kernel versionMimi Zohar1-13/+0
2016-02-20ima: define a new hook to measure and appraise a file already in memoryMimi Zohar1-1/+6
2016-02-18vfs: define kernel_read_file_id enumerationMimi Zohar1-2/+3
2016-02-18vfs: define a generic function to read a file from the kernelMimi Zohar1-0/+8
2015-12-24security: Add hook to invalidate inode security labelsAndreas Gruenbacher1-0/+8
2015-12-24security: Make inode argument of inode_getsecid non-constAndreas Gruenbacher1-1/+1
2015-12-24security: Make inode argument of inode_getsecurity non-constAndreas Gruenbacher1-1/+1
2015-09-08Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/...Linus Torvalds1-8/+3
2015-09-01Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebi...Linus Torvalds1-1/+1
2015-08-26LSM: restore certain default error codesJan Beulich1-5/+6
2015-07-28Yama: remove needless CONFIG_SECURITY_YAMA_STACKEDKees Cook1-8/+3
2015-07-10vfs: Commit to never having exectuables on proc and sysfs.Eric W. Biederman1-1/+1
2015-06-27Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/...Linus Torvalds1-279/+676
2015-05-12LSM: Switch to lists of hooksCasey Schaufler1-96/+474
2015-05-12LSM: Introduce security hook calling MacrosCasey Schaufler1-207/+226
2015-05-12LSM: Split security.hCasey Schaufler1-1/+1
2015-05-11security: make inode_follow_link RCU-walk awareNeilBrown1-3/+4
2015-05-10SECURITY: remove nameidata arg from inode_follow_link.NeilBrown1-2/+2
2015-04-15VFS: security/: d_backing_inode() annotationsDavid Howells1-25/+25
2015-04-11Merge branch 'for-davem' into for-nextAl Viro1-5/+0
2015-04-11switch security_inode_getattr() to struct path *Al Viro1-3/+3
2015-03-20Revert "selinux: add a skb_owned_by() hook"Eric Dumazet1-5/+0
2015-02-15Merge tag 'char-misc-3.20-rc1' of git://git.kernel.org/pub/scm/linux/kernel/g...Linus Torvalds1-0/+23
2015-01-25Add security hooks to binder and implement the hooks for SELinux.Stephen Smalley1-0/+23
2015-01-20fs: introduce f_op->mmap_capabilities for nommu mmap supportChristoph Hellwig1-7/+6
2014-09-09security: make security_file_set_fowner, f_setown and __f_setown void returnJeff Layton1-2/+2
2014-07-25ima: add support for measuring and appraising firmwareMimi Zohar1-1/+6
2014-07-25security: introduce kernel_fw_from_file hookKees Cook1-0/+6
2014-06-24Merge commit 'v3.15' into nextJames Morris1-2/+20
2014-04-14Merge tag 'keys-20140314' of git://git.kernel.org/pub/scm/linux/kernel/git/dh...James Morris1-1/+1
2014-04-01vfs: add cross-renameMiklos Szeredi1-0/+16
2014-04-01security: add flags to rename hooksMiklos Szeredi1-2/+4
2014-03-14KEYS: Move the flags representing required permission to linux/key.hDavid Howells1-1/+1
2014-03-10selinux: add gfp argument to security_xfrm_policy_alloc and fix callersNikolay Aleksandrov1-2/+4
2013-10-22Merge branch 'master' of git://git.infradead.org/users/pcmoore/selinux into r...James Morris1-9/+4
2013-09-18Merge git://git.infradead.org/users/eparis/selinuxPaul Moore1-9/+4
2013-07-25lsm: split the xfrm_state_alloc_security() hook implementationPaul Moore1-9/+4
2013-07-25xattr: Constify ->name member of "struct xattr".Tetsuo Handa1-5/+3
2013-06-08NFS: Extend NFS xattr handlers to accept the security namespaceDavid Quigley1-0/+1
2013-06-08LSM: Add flags field to security_sb_set_mnt_opts for in kernel mount data.David Quigley1-2/+5
2013-06-08Security: Add Hook to test if the particular xattr is part of a MAC model.David Quigley1-0/+6
2013-06-08Security: Add hook to calculate context based on a negative dentry.David Quigley1-0/+10
2013-04-30Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds1-2/+2
2013-04-09selinux: add a skb_owned_by() hookEric Dumazet1-0/+5
2013-04-02selinux: make security_sb_clone_mnt_opts return an error on context mismatchJeff Layton1-2/+2
2013-01-14tun: fix LSM/SELinux labeling of tun/tap devicesPaul Moore1-5/+23
2012-12-14ima: support new kernel module syscallMimi Zohar1-1/+6
2012-12-14security: introduce kernel_module_from_file hookKees Cook1-0/+5
2012-10-11consitify do_mount() argumentsAl Viro1-2/+2
2012-10-02Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/...Linus Torvalds1-0/+27
2012-09-21userns: Teach security_path_chown to take kuids and kgidsEric W. Biederman1-1/+1
2012-09-07ima: add ima_inode_setxattr/removexattr function and callsMimi Zohar1-0/+6
2012-09-05security: allow Yama to be unconditionally stackedKees Cook1-0/+21
2012-07-03security: Fix nommu build.Paul Mundt1-0/+1
2012-07-02security: Fix nommu build.Paul Mundt1-0/+1
2012-06-01take calculation of final prot in security_mmap_file() into a helperAl Viro1-18/+28
2012-06-01take security_mmap_file() outside of ->mmap_semAl Viro1-3/+30
2012-05-31split ->file_mmap() into ->mmap_addr()/->mmap_file()Al Viro1-4/+8
2012-04-09SELinux: rename dentry_open to file_openEric Paris1-2/+2
2012-02-14security: trim security.hAl Viro1-0/+2
2012-02-14mm: collapse security_vm_enough_memory() variants into a single functionAl Viro1-14/+0
2012-02-10security: create task_free security callbackKees Cook1-0/+5
2012-01-14Merge branch 'for-linus' of git://selinuxproject.org/~jmorris/linux-securityLinus Torvalds1-30/+5
2012-01-06switch security_path_chmod() to struct path *Al Viro1-4/+3
2012-01-05security: remove the security_netlink_recv hook as it is equivalent to capable()Eric Paris1-6/+0
2012-01-05capabilities: remove all _real_ interfacesEric Paris1-24/+0
2012-01-05capabilities: introduce security_capable_noauditEric Paris1-0/+6
2012-01-05capabilities: reverse arguments to security_capableEric Paris1-1/+1
2012-01-05capabilities: remove the task from capable LSM hook entirelyEric Paris1-4/+3
2012-01-03switch ->path_mknod() to umode_tAl Viro1-1/+1
2012-01-03switch ->path_mkdir() to umode_tAl Viro1-1/+1
2012-01-03switch security_path_chmod() to umode_tAl Viro1-1/+1
2012-01-03switch ->mknod() to umode_tAl Viro1-1/+1
2012-01-03switch ->create() to umode_tAl Viro1-1/+1
2012-01-03switch vfs_mkdir() and ->mkdir() to umode_tAl Viro1-1/+1
2012-01-03security: Fix security_old_inode_init_security() when CONFIG_SECURITY is not setJan Kara1-1/+1
2011-10-25Merge branch 'next' of git://selinuxproject.org/~jmorris/linux-securityLinus Torvalds1-11/+65
2011-10-18bluetooth: Properly clone LSM attributes to newly created child connectionsPaul Moore1-0/+1
2011-09-14evm: fix security/security_old_init_security return codeMimi Zohar1-2/+2
2011-09-09security: sparse fix: Move security_fixup_op to security.hJames Morris1-3/+0
2011-08-09Merge branch 'next-evm' of git://git.kernel.org/pub/scm/linux/kernel/git/zoha...James Morris1-7/+64
2011-07-20->permission() sanitizing: don't pass flags to exec_permission()Al Viro1-10/+0
2011-07-20->permission() sanitizing: don't pass flags to ->inode_permission()Al Viro1-2/+5
2011-07-18evm: add evm_inode_setattr to prevent updating an invalid security.evmMimi Zohar1-1/+6
2011-07-18evm: call evm_inode_init_security from security_inode_init_securityMimi Zohar1-6/+12
generated by cgit 1.2.3-korg (git 2.43.0) at 2025-12-08 21:20:38 +0000