aboutsummaryrefslogtreecommitdiffstats
path: root/security/selinux/ss
AgeCommit message (Expand)AuthorFilesLines
4 daysMerge tag 'selinux-pr-20251201' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-36/+3
2025-10-23selinux: improve bucket distribution uniformity of avc_hash()Hongru Zhang1-0/+6
2025-10-23selinux: Move avtab_hash() to a shared location for future reuseHongru Zhang1-40/+1
2025-10-22selinux: move initcalls to the LSM frameworkPaul Moore1-19/+7
2025-07-28Merge tag 'selinux-pr-20250725' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds4-1/+43
2025-06-19selinux: add __GFP_NOWARN to hashtab_init() allocationsPaul Moore1-1/+2
2025-06-19selinux: introduce neveraudit typesStephen Smalley3-0/+41
2025-06-19selinux: change security_compute_sid to return the ssid or tsid on matchStephen Smalley1-5/+11
2025-04-12selinux: remove a duplicated includePaul Moore1-1/+0
2025-04-11selinux: support wildcard match in genfsconTakaya Saeki1-4/+15
2025-04-11selinux: constify network address pointerChristian Göttsche1-2/+2
2025-03-17selinux: get netif_wildcard policycap from policy instead of cacheChristian Göttsche1-2/+1
2025-03-07selinux: support wildcard network interface namesChristian Göttsche1-3/+13
2025-01-21Merge tag 'selinux-pr-20250121' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds14-149/+149
2025-01-07selinux: make more use of str_read() when loading the policyChristian Göttsche3-22/+12
2025-01-07selinux: avoid unnecessary indirection in struct level_datumChristian Göttsche3-17/+10
2025-01-07selinux: use known type instead of void pointerChristian Göttsche8-74/+77
2025-01-07selinux: rename comparison functions for clarityChristian Göttsche7-16/+16
2025-01-07selinux: rework match_ipv6_addrmask()Christian Göttsche1-7/+5
2025-01-07selinux: constify and reconcile function parameter namesChristian Göttsche2-3/+3
2025-01-07selinux: avoid using types indicating user space interactionChristian Göttsche1-1/+1
2025-01-04selinux: match extended permissions to their base permissionsThiébaud Weksteen1-7/+21
2024-12-15selinux: ignore unknown extended permissionsThiébaud Weksteen1-2/+6
2024-12-13selinux: add support for xperms in conditional policiesChristian Göttsche5-8/+24
2024-12-11selinux: use native iterator typesChristian Göttsche1-2/+2
2024-11-18Merge tag 'lsm-pr-20241112' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-3/+3
2024-10-11lsm: remove lsm_prop scaffoldingCasey Schaufler1-4/+0
2024-10-11lsm: use lsm_prop in security_audit_rule_matchCasey Schaufler1-3/+7
2024-10-07selinux: Add netlink xperm supportThiébaud Weksteen2-38/+45
2024-08-27selinux: replace kmem_cache_create() with KMEM_CACHE()Eric Suen3-11/+4
2024-07-29selinux: Streamline type determination in security_compute_sidCanfeng Guo1-17/+19
2024-07-16Merge tag 'selinux-pr-20240715' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-1/+1
2024-07-02selinux: Use 1UL for EBITMAP_BIT to match maps typeCanfeng Guo1-1/+1
2024-06-13ima: Avoid blocking in RCU read-side critical sectionGUO Zihua1-2/+3
2024-04-30selinux: constify source policy in cond_policydb_dup()Christian Göttsche4-14/+17
2024-04-30selinux: avoid printk_ratelimit()Christian Göttsche1-2/+1
2024-04-04selinux: clarify return code in filename_trans_read_helper_compat()Ondrej Mosnacek1-0/+1
2024-03-27selinux: use u32 as bit position type in ebitmap codeChristian Göttsche2-35/+34
2024-03-27selinux: improve symtab string hashingChristian Göttsche1-11/+11
2024-03-27selinux: dump statistics for more hash tablesChristian Göttsche2-7/+19
2024-03-27selinux: update numeric format specifiers for ebitmapsChristian Göttsche1-6/+6
2024-03-26selinux: reject invalid ebitmapsChristian Göttsche1-0/+11
2024-02-23selinux: fix style issues in security/selinux/ss/symtab.cPaul Moore1-1/+3
2024-02-23selinux: fix style issues in security/selinux/ss/symtab.hPaul Moore1-5/+4
2024-02-23selinux: fix style issues in security/selinux/ss/sidtab.cPaul Moore1-32/+37
2024-02-23selinux: fix style issues in security/selinux/ss/sidtab.hPaul Moore1-17/+19
2024-02-23selinux: fix style issues in security/selinux/ss/services.hPaul Moore1-1/+2
2024-02-23selinux: fix style issues in security/selinux/ss/policydb.cPaul Moore1-192/+213
2024-02-23selinux: fix style issues in security/selinux/ss/policydb.hPaul Moore1-97/+95
2024-02-23selinux: fix style issues in security/selinux/ss/mls_types.hPaul Moore1-16/+16
2024-02-23selinux: fix style issues in security/selinux/ss/mls.cPaul Moore1-50/+33
2024-02-23selinux: fix style issues in security/selinux/ss/mls.hPaul Moore1-39/+19
2024-02-23selinux: fix style issues in security/selinux/ss/hashtab.cPaul Moore1-12/+11
2024-02-23selinux: fix style issues in security/selinux/ss/hashtab.hPaul Moore1-18/+17
2024-02-23selinux: fix style issues in security/selinux/ss/ebitmap.cPaul Moore1-28/+28
2024-02-23selinux: fix style issues in security/selinux/ss/ebitmap.hPaul Moore1-19/+23
2024-02-23selinux: fix style issues in security/selinux/ss/context.hPaul Moore1-1/+1
2024-02-23selinux: fix style issues in security/selinux/ss/context.hPaul Moore1-19/+22
2024-02-23selinux: fix style issues in security/selinux/ss/constraint.hPaul Moore1-33/+34
2024-02-23selinux: fix style issues in security/selinux/ss/conditional.cPaul Moore1-35/+33
2024-02-23selinux: fix style issues in security/selinux/ss/conditional.hPaul Moore1-12/+11
2024-02-23selinux: fix style issues in security/selinux/ss/avtab.cPaul Moore1-54/+51
2024-02-23selinux: fix style issues in security/selinux/ss/avtab.hPaul Moore1-37/+37
2023-11-21selinux: introduce an initial SID for early boot processesOndrej Mosnacek2-1/+39
2023-11-20selinux: refactor avtab_node comparisonsJacob Satterfield1-60/+41
2023-11-16selinux: update filenametr_hash() to use full_name_hash()Paul Moore1-9/+2
2023-10-03selinux: simplify avtab_insert_node() prototypeJacob Satterfield1-13/+7
2023-09-13selinux: hweight optimization in avtab_read_itemJacob Satterfield1-5/+2
2023-09-13selinux: improve role transition hashingChristian Göttsche1-1/+1
2023-09-13selinux: simplify avtab slot calculationChristian Göttsche1-7/+1
2023-09-13selinux: print sum of chain lengths^2 for hash tablesChristian Göttsche4-3/+9
2023-09-12selinux: Annotate struct sidtab_str_cache with __counted_byKees Cook1-1/+1
2023-08-30Merge tag 'selinux-pr-20230829' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds20-152/+147
2023-08-18selinux: set next pointer before attaching to listChristian Göttsche1-1/+1
2023-08-09selinux: avoid implicit conversions in policydb codeChristian Göttsche1-32/+37
2023-08-09selinux: make left shifts well definedChristian Göttsche1-6/+6
2023-08-09selinux: update type for number of class permissions in services codeChristian Göttsche2-2/+2
2023-08-09selinux: avoid implicit conversions in avtab codeChristian Göttsche1-12/+12
2023-08-09selinux: revert SECINITSID_INIT supportPaul Moore1-27/+0
2023-08-08selinux: use GFP_KERNEL while reading binary policyChristian Göttsche1-5/+5
2023-08-03selinux: avoid implicit conversions in services codeChristian Göttsche1-11/+12
2023-08-03selinux: avoid implicit conversions in mls codeChristian Göttsche1-4/+6
2023-08-03selinux: use identical iterator type in hashtab_duplicate()Christian Göttsche1-1/+2
2023-07-28selinux: move debug functions into debug configurationChristian Göttsche5-3/+20
2023-07-20selinux: introduce SECURITY_SELINUX_DEBUG configurationChristian Göttsche1-4/+4
2023-07-19selinux: update my email addressStephen Smalley19-19/+19
2023-07-19selinux: add missing newlines in pr_err() statementsChristian Göttsche1-3/+3
2023-07-19selinux: drop avtab_search()Christian Göttsche4-42/+8
2023-07-18selinux: fix implicit conversions in the symtabChristian Göttsche2-2/+2
2023-07-18selinux: use consistent type for AV rule specifierChristian Göttsche3-3/+3
2023-07-18selinux: avoid avtab overflowsChristian Göttsche1-2/+2
2023-07-18selinux: check for multiplication overflow in put_entry()Christian Göttsche1-2/+5
2023-07-10selinux: introduce an initial SID for early boot processesOndrej Mosnacek1-0/+27
2023-06-05selinux: avoid bool as identifier nameChristian Göttsche2-5/+5
2023-05-23selinux: deprecated fs oconChristian Göttsche2-1/+5
2023-05-18selinux: keep context struct members in syncChristian Göttsche1-0/+1
2023-05-08selinux: small cleanups in selinux_audit_rule_init()Paul Moore1-20/+18
2023-05-08selinux: declare read-only data arrays constChristian Göttsche1-1/+1
2023-05-08selinux: retain const qualifier on string literal in avtab_hash_eval()Christian Göttsche2-2/+2
2023-05-08selinux: adjust typos in commentsChristian Göttsche1-1/+1
2023-05-08selinux: do not leave dangling pointer behindChristian Göttsche1-0/+1
2023-03-14selinux: stop passing selinux_state pointers and their offspringStephen Smalley2-206/+141
2022-12-13Merge tag 'selinux-pr-20221212' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds4-45/+50
2022-11-09selinux: remove the sidtab context conversion indirect callsPaul Moore4-44/+45
2022-10-19selinux: enable use of both GFP_KERNEL and GFP_ATOMIC in convert_context()GONG, Ruiqi3-5/+6
2022-08-30selinux: declare read-only parameters constChristian Göttsche4-29/+31
2022-06-14selinux: Add boundary check in put_entry()Xiu Jianfeng1-0/+2
2022-06-13selinux: fix memleak in security_read_state_kernel()Xiu Jianfeng1-1/+8
2022-05-24Merge tag 'selinux-pr-20220523' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds3-55/+48
2022-05-17selinux: fix bad cleanup on error in hashtab_duplicate()Ondrej Mosnacek1-1/+2
2022-05-03selinux: declare data arrays constChristian Göttsche3-20/+18
2022-05-03selinux: fix indentation level of mls_ops blockChristian Göttsche1-21/+21
2022-05-03selinux: avoid extra semicolonChristian Göttsche1-9/+9
2022-05-03selinux: resolve checkpatch errorsChristian Göttsche1-8/+4
2022-04-04selinux: Remove redundant assignmentsMichal Orzel1-1/+0
2022-03-21Merge tag 'selinux-pr-20220321' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds8-21/+13
2022-02-18selinux: drop return statement at end of void functionsChristian Göttsche4-6/+0
2022-02-02selinux: fix double free of cond_list on error pathsVratislav Bendel1-1/+2
2022-01-26selinux: drop unused macroChristian Göttsche1-2/+0
2022-01-26selinux: drop unused parameter of avtab_insert_nodeChristian Göttsche1-3/+3
2022-01-26selinux: drop cast to same typeChristian Göttsche1-1/+1
2022-01-26selinux: enclose macro arguments in parenthesisChristian Göttsche2-5/+5
2022-01-26selinux: declare name parameter of hash_eval constChristian Göttsche1-1/+1
2022-01-25selinux: declare path parameters of _genfs_sid constChristian Göttsche1-3/+3
2022-01-11Merge tag 'selinux-pr-20220110' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-1/+1
2021-12-05selinux: Use struct_size() helper in kmalloc()Xiu Jianfeng1-1/+1
2021-11-19selinux: fix NULL-pointer dereference when hashtab allocation failsOndrej Mosnacek1-5/+12
2021-10-13selinux: fix all of the W=1 build warningsPaul Moore3-4/+15
2021-10-11selinux: fix race condition when computing ocontext SIDsOndrej Mosnacek1-85/+77
2021-08-31Merge tag 'selinux-pr-20210830' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-0/+2
2021-08-02selinux: correct the return value when loads initial sidsXiu Jianfeng1-6/+4
2021-07-14selinux: return early for possible NULL audit buffersAustin Kim1-0/+2
2021-06-11selinux: Fix kernel-docYang Li1-1/+22
2021-05-10selinux: Remove redundant assignment to rcJiapeng Chong2-5/+0
2021-05-10selinux: constify some avtab function argumentsOndrej Mosnacek3-21/+26
2021-05-10selinux: simplify duplicate_policydb_cond_list() by using kmemdup()Ondrej Mosnacek1-5/+6
2021-05-01Merge tag 'landlock_v34' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds1-1/+2
2021-04-27Merge tag 'selinux-pr-20210426' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds2-2/+2
2021-04-22LSM: Infrastructure management of the superblockCasey Schaufler1-1/+2
2021-04-09Merge tag 'selinux-pr-20210409' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds6-112/+185
2021-04-07selinux: fix race between old and new sidtabOndrej Mosnacek3-37/+145
2021-04-02selinux: fix cond_list corruption when changing booleansOndrej Mosnacek3-69/+33
2021-04-02selinux: make nslot handling in avtab more robustOndrej Mosnacek1-10/+11
2021-03-22Merge tag 'selinux-pr-20210322' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-24/+39
2021-03-18selinux: fix variable scope issue in live sidtab conversionOndrej Mosnacek1-24/+39
2021-03-08selinux: fix misspellings using codespell toolXiong Zhenwu1-1/+1
2021-03-08selinux: measure state and policy capabilitiesLakshmi Ramasubramanian1-1/+1
2021-02-21Merge tag 'integrity-v5.12' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-9/+55
2021-01-14selinux: include a consumer of the new IMA critical data hookLakshmi Ramasubramanian1-9/+55
2021-01-12selinux: mark some global variables __ro_after_initOndrej Mosnacek3-4/+4
2021-01-12selinux: drop the unnecessary aurule_callback variableOndrej Mosnacek1-7/+3
2020-10-27selinux: allow dontauditx and auditallowx rules to take effect without allowxbauen11-3/+1
2020-10-13Merge tag 'selinux-pr-20201012' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds10-365/+793
2020-09-11selinux: access policycaps with READ_ONCE/WRITE_ONCEStephen Smalley1-1/+2
2020-08-31selinux: simplify away security_policydb_len()Ondrej Mosnacek1-23/+4
2020-08-27selinux: move policy mutex to selinux_state, use in lockdep checksStephen Smalley1-29/+8
2020-08-26selinux: fix error handling bugs in security_load_policy()Dan Carpenter1-11/+23
2020-08-25selinux: convert policy read-write lock to RCUStephen Smalley2-214/+278
2020-08-23treewide: Use fallthrough pseudo-keywordGustavo A. R. Silva1-3/+1
2020-08-20selinux: fix memdup.cocci warningskernel test robot1-3/+2
2020-08-19selinux: avoid dereferencing the policy prior to initializationStephen Smalley1-0/+60
2020-08-19selinux: fix allocation failure check on newpolicy->sidtabColin Ian King1-1/+1
2020-08-17selinux: refactor changing booleansStephen Smalley8-64/+368
2020-08-17selinux: move policy commit after updating selinuxfsStephen Smalley3-44/+53
2020-08-17selinux: encapsulate policy state, refactor policy loadStephen Smalley2-192/+221
2020-08-17scripts/selinux,selinux: update mdp to enable policy capabilitiesStephen Smalley1-11/+1
2020-08-04Merge tag 'selinux-pr-20200803' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds10-157/+231
2020-07-09selinux: complete the inlining of hashtab functionsOndrej Mosnacek2-59/+63
2020-07-09selinux: prepare for inlining of hashtab functionsOndrej Mosnacek7-63/+110
2020-07-08selinux: specialize symtab insert and search functionsOndrej Mosnacek7-56/+69
2020-06-29selinux: fixed a checkpatch warning with the sizeof macroEthan Edwards1-2/+2
2020-06-23selinux: log error messages on required process class / permissionsStephen Smalley1-5/+15
2020-06-21Merge tag 'selinux-pr-20200621' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds2-13/+12
2020-06-17selinux: fix undefined return of cond_evaluate_exprTom Rix1-0/+3
2020-06-16selinux: fix a double free in cond_read_node()/cond_read_list()Tom Rix1-13/+5
2020-06-10selinux: fix double freeTom Rix1-0/+4
2020-06-02Merge tag 'selinux-pr-20200601' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds16-318/+496
2020-05-01selinux: do not allocate hashtabs dynamicallyOndrej Mosnacek8-146/+116
2020-05-01selinux: fix return value on error in policydb_read()Ondrej Mosnacek1-0/+1
2020-05-01selinux: simplify range_write()Ondrej Mosnacek1-16/+2
2020-05-01selinux: fix error return code in policydb_read()Wei Yongjun1-0/+1
2020-04-30Merge tag 'selinux-pr-20200430' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-1/+1
2020-04-27selinux: fix error return code in cond_read_list()Wei Yongjun1-1/+1
2020-04-22selinux: don't produce incorrect filename_trans_countOndrej Mosnacek2-9/+5
2020-04-17selinux: implement new format of filename transitionsOndrej Mosnacek1-25/+187
2020-04-17selinux: move context hashing under sidtabOndrej Mosnacek5-58/+47
2020-04-17selinux: hash context structure directlyOndrej Mosnacek8-41/+68
2020-04-17selinux: store role transitions in a hash tableOndrej Mosnacek3-60/+107
2020-04-16Merge tag 'selinux-pr-20200416' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-4/+4
2020-04-15selinux: drop unnecessary smp_load_acquire() callOndrej Mosnacek1-2/+1
2020-04-15selinux: free str on error in str_read()Ondrej Mosnacek1-4/+4
2020-04-14selinux: fix warning Comparison to boolZou Wei2-3/+3
2020-03-31Merge tag 'selinux-pr-20200330' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds11-515/+352
2020-03-30selinux: clean up indentation issue with assignment statementColin Ian King1-4/+3
2020-03-05selinux: avtab_init() and cond_policydb_init() return voidPaul Moore5-21/+7
2020-03-05selinux: clean up error path in policydb_init()Ondrej Mosnacek1-13/+5
2020-02-27selinux: remove unused initial SIDs and improve handlingStephen Smalley2-26/+25
2020-02-27selinux: reduce the use of hard-coded hash sizesOndrej Mosnacek4-40/+45
2020-02-22selinux: optimize storage of filename transitionsOndrej Mosnacek3-80/+110
2020-02-13selinux: factor out loop body from filename_trans_read()Ondrej Mosnacek1-59/+63
generated by cgit 1.2.3-korg (git 2.43.0) at 2025-12-07 09:43:07 +0000