Commit Graph

452 Commits (ab3540626435c01e08fe58ce544311a78430f112)

Author SHA1 Message Date
Linus Torvalds ab35406264 selinux: remove 'flags' parameter from avc_audit() 9 years ago
Linus Torvalds 19e49834d2 selinux: remove 'flags' parameter from inode_has_perm 9 years ago
Tetsuo Handa 9548906b2b xattr: Constify ->name member of "struct xattr". 9 years ago
David Howells 13f8e9810b SELinux: Institute file_path_has_perm() 9 years ago
David Quigley aa9c266962 NFS: Client implementation of Labeled-NFS 9 years ago
David Quigley eb9ae68650 SELinux: Add new labeling type native labels 9 years ago
David Quigley 649f6e7718 LSM: Add flags field to security_sb_set_mnt_opts for in kernel mount data. 9 years ago
David Quigley 746df9b59c Security: Add Hook to test if the particular xattr is part of a MAC model. 9 years ago
David Quigley d47be3dfec Security: Add hook to calculate context based on a negative dentry. 9 years ago
Eric Dumazet ca10b9e9a8 selinux: add a skb_owned_by() hook 10 years ago
Jeff Layton 094f7b69ea selinux: make security_sb_clone_mnt_opts return an error on context mismatch 10 years ago
Hong zhi guo 77954983ad selinux: replace obsolete NLMSG_* with type safe nlmsg_* 10 years ago
Al Viro 45e09bd51b selinux: opened file can't have NULL or negative ->f_path.dentry 10 years ago
Al Viro 496ad9aa8e new helper: file_inode(file) 10 years ago
Paul Moore 5dbbaf2de8 tun: fix LSM/SELinux labeling of tun/tap devices 10 years ago
Al Viro 45525b26a4 fix a leak in replace_fd() users 10 years ago
Al Viro 808d4e3cfd consitify do_mount() arguments 10 years ago
Al Viro cb0942b812 make get_file() return its argument 10 years ago
Al Viro c3c073f808 new helper: iterate_fd() 10 years ago
Al Viro ee97cd872d switch flush_unauthorized_files() to replace_fd() 10 years ago
Cyrill Gorcunov 1d151c337d c/r: fcntl: add F_GETOWNER_UIDS option 10 years ago
Al Viro e3fea3f70f selinux: fix selinux_inode_setxattr oops 10 years ago
Josh Boyer 8ded2bbc18 posix_types.h: Cleanup stale __NFDBITS and related definitions 10 years ago
Al Viro 765927b2d5 switch dentry_open() to struct path, make it grab references itself 10 years ago
Eric Paris 3d2195c332 SELinux: do not check open perms if they are not known to policy 10 years ago
Alban Crequy 2597a8344c netfilter: selinux: switch hook PFs to nfproto 10 years ago
Al Viro e5467859f7 split ->file_mmap() into ->mmap_addr()/->mmap_file() 10 years ago
Al Viro d007794a18 split cap_mmap_addr() out of cap_file_mmap() 10 years ago
Andy Lutomirski 259e5e6c75 Add PR_{GET,SET}_NO_NEW_PRIVS to prevent execve from granting privs 11 years ago
Eric Paris c737f8284c SELinux: remove unused common_audit_data in flush_unauthorized_files 11 years ago
Eric Paris 899838b25f SELinux: unify the selinux_audit_data and selinux_late_audit_data 11 years ago
Eric Paris 50c205f5e5 LSM: do not initialize common_audit_data to 0 11 years ago
Eric Paris b466066f9b LSM: remove the task field from common_audit_data 11 years ago
Eric Paris bd5e50f9c1 LSM: remove the COMMON_AUDIT_DATA_INIT type expansion 11 years ago
Eric Paris d4cf970d07 SELinux: move common_audit_data to a noinline slow path function 11 years ago
Eric Paris 602a8dd6ea SELinux: remove inode_has_perm_noadp 11 years ago
Eric Paris 2e33405785 SELinux: delay initialization of audit data in selinux_inode_permission 11 years ago
Eric Paris d6ea83ec68 SELinux: audit failed attempts to set invalid labels 11 years ago
Eric Paris 83d498569e SELinux: rename dentry_open to file_open 11 years ago
Eric Paris 95dbf73931 SELinux: check OPEN on truncate calls 11 years ago
Eric Paris 48c62af68a LSM: shrink the common_audit_data data union 11 years ago
Eric Paris 3b3b0e4fc1 LSM: shrink sizeof LSM specific portion of common_audit_data 11 years ago
Al Viro 2f99c36986 get rid of pointless includes of ext2_fs.h 11 years ago
David Howells 1fd36adcd9 Replace the fd_sets in struct fdtable with an array of unsigned longs 11 years ago
Al Viro 4040153087 security: trim security.h 11 years ago
Al Viro d8c9584ea2 vfs: prefer ->dentry->d_sb to ->mnt->mnt_sb 11 years ago
Eric Paris fd77846152 security: remove the security_netlink_recv hook as it is equivalent to capable() 11 years ago
Eric Paris 69f594a389 ptrace: do not audit capability check when outputing /proc/pid/stat 11 years ago
Eric Paris 6a9de49115 capabilities: remove the task from capable LSM hook entirely 11 years ago
James Morris 2653812e14 selinux: sparse fix: fix several warnings in the security server cod 11 years ago