aboutsummaryrefslogtreecommitdiffstats
path: root/security/selinux/avc.c
AgeCommit message (Expand)AuthorFilesLines
2025-10-23selinux: improve bucket distribution uniformity of avc_hash()Hongru Zhang1-1/+2
2025-10-23selinux: Introduce a new config to make avc cache slot size adjustableHongru Zhang1-3/+3
2025-08-12selinux: Remove redundant __GFP_NOWARNQianfeng Rong1-7/+6
2025-02-03selinux: fix spelling errorTanya Agarwal1-1/+1
2025-01-04selinux: match extended permissions to their base permissionsThiébaud Weksteen1-27/+34
2024-09-16Merge tag 'selinux-pr-20240911' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-14/+6
2024-08-28selinux: simplify avc_xperms_audit_required()Zhen Lei1-2/+2
2024-08-27selinux: replace kmem_cache_create() with KMEM_CACHE()Eric Suen1-12/+4
2024-08-07selinux: add the processing of the failure of avc_add_xperms_decision()Zhen Lei1-1/+5
2024-08-06selinux: fix potential counting error in avc_add_xperms_decision()Zhen Lei1-1/+1
2023-07-19selinux: update my email addressStephen Smalley1-1/+1
2023-07-18selinux: avoid implicit conversions in the AVC codeChristian Göttsche1-7/+8
2023-05-08selinux: drop return at end of void function avc_insert()Christian Göttsche1-1/+0
2023-05-08selinux: avc: drop unused function avc_disable()Christian Göttsche1-19/+0
2023-04-04selinux: stop returning node from avc_insert()Stephen Smalley1-13/+11
2023-03-14selinux: stop passing selinux_state pointers and their offspringStephen Smalley1-111/+86
2023-03-08selinux: uninline unlikely parts of avc_has_perm_noaudit()Paul Moore1-28/+57
2022-05-03selinux: declare data arrays constChristian Göttsche1-1/+1
2022-04-04selinux: Remove redundant assignmentsMichal Orzel1-2/+2
2021-10-13selinux: fix all of the W=1 build warningsPaul Moore1-1/+12
2021-06-11selinux: kill 'flags' argument in avc_has_perm_flags() and avc_audit()Al Viro1-19/+1
2021-06-11selinux: slow_avc_audit has become non-blockingAl Viro1-20/+8
2021-06-10selinux: use __GFP_NOWARN with GFP_NOWAIT in the AVCMinchan Kim1-6/+7
2021-05-10selinux: Corrected comment to match kernel-doc commentSouptick Joarder1-1/+1
2021-01-12selinux: mark some global variables __ro_after_initOndrej Mosnacek1-5/+5
2020-08-21selinux: add basic filtering for audit trace eventsPeter Enderborg1-13/+15
2020-08-21selinux: add tracepoint on audited eventsThiébaud Weksteen1-0/+5
2019-12-21selinux: ensure we cleanup the internal AVC counters on error in avc_update()Jaihind Yadav1-1/+1
2019-12-10selinux: ensure we cleanup the internal AVC counters on error in avc_insert()Paul Moore1-27/+24
2019-12-09selinux: fall back to ref-walk if audit is requiredStephen Smalley1-19/+5
2019-12-09selinux: revert "stop passing MAY_NOT_BLOCK to the AVC upon follow_link"Stephen Smalley1-2/+22
2019-06-19treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500Thomas Gleixner1-4/+1
2019-06-11selinux: log raw contexts as untrusted stringsOndrej Mosnacek1-2/+8
2019-02-05selinux: fix avc audit messagesStephen Smalley1-3/+3
2019-01-28selinux: replace BUG_ONs with WARN_ONs in avc.cOndrej Mosnacek1-2/+4
2019-01-25selinux: log invalid contexts in AVCsOndrej Mosnacek1-0/+15
2019-01-25selinux: replace some BUG_ON()s with a WARN_ON()Ondrej Mosnacek1-2/+3
2019-01-25selinux: inline some AVC functions used only onceOndrej Mosnacek1-82/+58
2019-01-10selinux: stop passing MAY_NOT_BLOCK to the AVC upon follow_linkStephen Smalley1-22/+2
2019-01-10selinux: avoid silent denials in permissive mode under RCU walkStephen Smalley1-2/+21
2018-06-19selinux: Cleanup printk logging in avcpeter enderborg1-1/+1
2018-03-20selinux: wrap AVC stateStephen Smalley1-122/+162
2018-03-02selinux: rename the {is,set}_enforcing() functionsPaul Moore1-1/+1
2018-03-01selinux: wrap global selinux stateStephen Smalley1-6/+10
2017-09-12Merge tag 'selinux-pr-20170831' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-9/+7
2017-09-05selinux: remove AVC init audit log messageRichard Guy Briggs1-2/+0
2017-08-17selinux: update my email addressStephen Smalley1-1/+1
2017-08-08selinux: use GFP_NOWAIT in the AVC kmem_cachesMichal Hocko1-8/+6
2015-08-15Merge branch 'next' of git://git.infradead.org/users/pcmoore/selinux into nextJames Morris1-16/+402
2015-07-13selinux: Augment BUG_ON assertion for secclass_map.Stephen Smalley1-1/+2
2015-07-13selinux: extended permissions for ioctlsJeff Vander Stoep1-15/+400
2015-05-11security/selinux: pass 'flags' arg to avc_audit() and avc_has_perm_flags()NeilBrown1-1/+17
2015-04-06selinux: remove unnecessary pointer reassignmentJeff Vander Stoep1-4/+2
2015-02-04selinux: Remove unused function avc_sidcmp()Rickard Strandqvist1-5/+0
2014-06-03selinux: Report permissive mode in avc: denied messages.Stephen Smalley1-1/+6
2013-10-04selinux: remove 'flags' parameter from avc_audit()Linus Torvalds1-1/+1
2013-10-04selinux: avc_has_perm_flags has no more usersLinus Torvalds1-6/+3
2013-02-27hlist: drop the node parameter from iteratorsSasha Levin1-13/+6
2012-07-31selinux: tag avc cache alloc as non-criticalMel Gorman1-1/+1
2012-04-09SELinux: avc: remove the useless fields in avc_add_callbackWanlong Gao1-26/+6
2012-04-09SELinux: replace weak GFP_ATOMIC to GFP_KERNEL in avc_add_callbackWanlong Gao1-2/+2
2012-04-09SELinux: unify the selinux_audit_data and selinux_late_audit_dataEric Paris1-16/+15
2012-04-09LSM: do not initialize common_audit_data to 0Eric Paris1-1/+1
2012-04-09LSM: remove the COMMON_AUDIT_DATA_INIT type expansionEric Paris1-1/+1
2012-04-09SELinux: delay initialization of audit data in selinux_inode_permissionEric Paris1-62/+1
2012-04-03lsm_audit: don't specify the audit pre/post callbacks in 'struct common_audit...Linus Torvalds1-3/+1
2012-04-03SELinux: do not allocate stack space for AVC data unless neededEric Paris1-12/+15
2012-04-03SELinux: remove avd from slow_avc_audit()Eric Paris1-2/+2
2012-04-03LSM: shrink sizeof LSM specific portion of common_audit_dataEric Paris1-16/+18
2012-03-31selinux: inline avc_audit() and avc_has_perm_noaudit() into callerLinus Torvalds1-2/+2
2012-03-31selinux: don't inline slow-path code into avc_has_perm_noaudit()Linus Torvalds1-14/+38
2012-03-22security: optimize avc_audit() common pathLinus Torvalds1-29/+41
2011-07-20selinux: don't transliterate MAY_NOT_BLOCK to IPERM_FLAG_RCUAl Viro1-1/+1
2011-05-26selinux: don't pass in NULL avd to avc_has_perm_noauditLinus Torvalds1-10/+2
2011-05-24Merge branch 'master' of git://git.infradead.org/users/eparis/selinux into fo...James Morris1-1/+1
2011-05-19selinux: avoid unnecessary avc cache stat hit countLinus Torvalds1-5/+4
2011-05-19selinux: de-crapify avc cache stat code generationLinus Torvalds1-5/+1
2011-04-25SELINUX: Make selinux cache VFS RCU walks safeEric Paris1-7/+29
2011-04-25LSM: split LSM_AUDIT_DATA_FS into _PATH and _INODEEric Paris1-1/+1
2011-04-25SELINUX: Make selinux cache VFS RCU walks safeEric Paris1-7/+29
2010-08-02SELinux: special dontaudit for access checksEric Paris1-2/+22
2010-08-02selinux: remove all rcu head initializationsPaul E. McKenney1-1/+0
2010-04-28LSM Audit: rename LSM_AUDIT_NO_AUDIT to LSM_AUDIT_DATA_NONEEric Paris1-2/+1
2010-03-08Merge branch 'for-next' into for-linusJiri Kosina1-3/+3
2010-02-05fix comment typos in avc.cJustin P. Mattock1-3/+3
2010-02-03selinux: Only audit permissions specified in policyStephen Smalley1-10/+7
2010-01-18selinux: change the handling of unknown classesStephen Smalley1-4/+1
2009-11-24SELinux: print denials for buggy kernel with unknown permsEric Paris1-1/+1
2009-10-07selinux: dynamic class/perm discoveryStephen Smalley1-68/+8
2009-09-23SELinux: do not destroy the avc_cache_nodepEric Paris1-4/+15
2009-09-14SELinux: flush the avc before disabling SELinuxEric Paris1-0/+2
2009-09-14SELinux: seperate avc_cache flushingEric Paris1-7/+17
2009-08-17SELinux: Convert avc_audit to use lsm_audit.hThomas Liu1-156/+41
2009-07-13Revert "SELinux: Convert avc_audit to use lsm_audit.h"James Morris1-48/+170
2009-07-13SELinux: Convert avc_audit to use lsm_audit.hThomas Liu1-170/+48
2009-06-25selinux: clean up avc node cache when disabling selinuxThomas Liu1-0/+6
2009-06-19Merge branch 'master' into nextJames Morris1-1/+1
2009-06-19Add audit messages on type boundary violationsKaiGai Kohei1-1/+1
2009-04-02Permissive domain in userspace object managerKaiGai Kohei1-1/+1
2009-02-14SELinux: convert the avc cache hash list to an hlistEric Paris1-20/+27
2009-02-14SELinux: code readability with avc_cacheEric Paris1-19/+44
2009-02-14SELinux: remove unused av.decided fieldEric Paris1-10/+5
2009-02-14SELinux: more careful use of avd in avc_has_perm_noauditEric Paris1-19/+24
2009-02-14SELinux: remove the unused ae.usedEric Paris1-21/+7
2009-02-14SELinux: check seqno when updating an avc_nodeEric Paris1-3/+6
2009-01-05SELinux: shrink sizeof av_inhert selinux_class_perm and contextEric Paris1-7/+9
2008-10-31misc: replace NIPQUAD()Harvey Harrison1-1/+1
2008-10-29net: replace %p6 with %pI6Harvey Harrison1-1/+1
2008-10-28misc: replace NIP6_FMT with %p6 format specifierHarvey Harrison1-1/+1
2008-08-29SELinux: add boundary support and thread context assignmentKaiGai Kohei1-1/+1
2008-04-28Audit: standardize string audit interfacesEric Paris1-1/+1
2008-04-22SELinux fixups needed for preemptable RCU from -rtPaul E. McKenney1-0/+9
2008-04-21SELinux: one little, two little, three little whitespaces, the avc.c saga.Eric Paris1-28/+28
2008-04-21SELinux: clean up printksEric Paris1-1/+1
2008-04-18selinux: introduce permissive typesEric Paris1-4/+5
2008-04-18SELinux: requesting no permissions in avc_has_perm_noaudit is a BUG()Eric Paris1-1/+3
2008-02-14d_path: Use struct path in struct avc_audit_dataJan Blunck1-5/+10
2008-01-30SELinux: Only store the network interface's ifindexPaul Moore1-3/+12
2007-10-17SELinux: Improve read/write performanceYuichi Nakamura1-0/+5
2007-07-22[PATCH] get rid of AVC_PATH postponed treatmentAl Viro1-7/+8
2007-07-20mm: Remove slab destructors from kmem_cache_create().Paul Mundt1-1/+1
2007-07-11SELinux: Use %lu for inode->i_no when printing avcTobias Oed1-1/+1
2007-07-11SELinux: allow preemption between transition permission checksStephen Smalley1-4/+6
2007-04-26selinux: remove userland security class and permission definitionsStephen Smalley1-0/+2
2007-02-11[PATCH] Transform kmem_cache_alloc()+memset(0) -> kmem_cache_zalloc().Robert P. J. Day1-2/+1
2006-12-07[PATCH] slab: remove kmem_cache_tChristoph Lameter1-1/+1
2006-12-07[PATCH] slab: remove SLAB_ATOMICChristoph Lameter1-1/+1
2006-12-04[PATCH] selinux endianness annotationsAl Viro1-1/+1
2006-11-28SELinux: export object class and permission definitionsChad Sellers1-12/+11
2006-05-01[PATCH] support for context based audit filteringDarrel Goeddel1-6/+7
2006-02-07[PATCH] selinux: require AUDITStephen Smalley1-2/+0
2006-01-13[NET]: Use NIP6_FMT in kernel.hJoe Perches1-3/+2
2005-09-13Merge master.kernel.org:/pub/scm/linux/kernel/git/dwmw2/audit-2.6 Linus Torvalds1-2/+2
2005-09-05[PATCH] selinux: endian notationsAlexey Dobriyan1-2/+2
2005-06-22AUDIT: Wait for backlog to clear when generating messages.David Woodhouse1-2/+2
2005-05-24AUDIT: Fix remaining cases of direct logging of untrusted strings by avc_auditStephen Smalley1-13/+9
2005-05-21Fix oops due to thinko in avc_audit()David Woodhouse1-1/+1
2005-05-21AUDIT: Avoid sleeping function in SElinux AVC audit.Stephen Smalley1-9/+8
2005-05-19Restore logging of pid= and comm= in AVC audit messagesDavid Woodhouse1-0/+7
2005-05-13AUDIT: Add message types to audit recordsSteve Grubb1-2/+2
2005-05-11Add audit_log_typeChris Wright1-1/+1
2005-04-18[PATCH] SELinux: fix deadlock on dcache lockStephen Smalley1-34/+0
2005-04-16Linux-2.6.12-rc2v2.6.12-rc2Linus Torvalds1-0/+949
generated by cgit 1.2.3-korg (git 2.43.0) at 2025-12-05 04:42:08 +0000