summaryrefslogtreecommitdiff
path: root/security/selinux/hooks.c
AgeCommit message (Expand)Author
2014-05-15selinux: reject setexeccon() on MNT_NOSUID applications with -EACCESPaul Moore
2014-05-01selinux: Report permissive mode in avc: denied messages.Stephen Smalley
2014-03-31Merge tag 'v3.14' into nextPaul Moore
2014-03-10selinux: add gfp argument to security_xfrm_policy_alloc and fix callersNikolay Aleksandrov
2014-03-05selinux: correctly label /proc inodes in use before the policy is loadedPaul Moore
2014-02-28selinux: put the mmap() DAC controls before the MAC controlsPaul Moore
2014-01-23Merge tag 'v3.13' into nextPaul Moore
2014-01-21Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds
2014-01-12SELinux: Fix possible NULL pointer dereference in selinux_inode_permission()Steven Rostedt
2014-01-07Merge branch 'master' of git://git.infradead.org/users/pcmoore/selinux into nextJames Morris
2013-12-23selinux: selinux_setprocattr()->ptrace_parent() needs rcu_read_lock()Oleg Nesterov
2013-12-23selinux: fix broken peer recv checkChad Hanson
2013-12-16selinux: selinux_setprocattr()->ptrace_parent() needs rcu_read_lock()Oleg Nesterov
2013-12-16SELinux: remove duplicated include from hooks.cWei Yongjun
2013-12-15Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds
2013-12-15Revert "selinux: consider filesystem subtype in policies"Linus Torvalds
2013-12-13selinux: revert 102aefdda4d8275ce7d7100bc16c88c74272b260Paul Moore
2013-12-13Merge branch 'master' of git://git.infradead.org/users/pcmoore/selinux_fixes ...James Morris
2013-12-12selinux: process labeled IPsec TCP SYN-ACK packets properly in selinux_ip_pos...Paul Moore
2013-12-12selinux: look for IPsec labels on both inbound and outbound packetsPaul Moore
2013-12-12selinux: handle TCP SYN-ACK packets correctly in selinux_ip_postroute()Paul Moore
2013-12-12selinux: handle TCP SYN-ACK packets correctly in selinux_ip_output()Paul Moore
2013-12-11selinux: fix broken peer recv checkChad Hanson
2013-12-10selinux: process labeled IPsec TCP SYN-ACK packets properly in selinux_ip_pos...Paul Moore
2013-12-09selinux: look for IPsec labels on both inbound and outbound packetsPaul Moore
2013-12-04selinux: pull address family directly from the request_sock structPaul Moore
2013-12-04selinux: handle TCP SYN-ACK packets correctly in selinux_ip_postroute()Paul Moore
2013-12-04selinux: handle TCP SYN-ACK packets correctly in selinux_ip_output()Paul Moore
2013-11-26Merge tag 'v3.12'Paul Moore
2013-11-21Merge branch 'for-linus2' of git://git.kernel.org/pub/scm/linux/kernel/git/jm...Linus Torvalds
2013-11-08Merge tag 'v3.12'Paul Moore
2013-10-23Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netDavid S. Miller
2013-10-22Merge branch 'master' of git://git.infradead.org/users/pcmoore/selinux into r...James Morris
2013-10-14netfilter: pass hook ops to hookfnPatrick McHardy
2013-10-04selinux: remove 'flags' parameter from avc_audit()Linus Torvalds
2013-10-04selinux: remove 'flags' parameter from inode_has_permLinus Torvalds
2013-09-30net ipv4: Convert ipv4.ip_local_port_range to be per netns v3Eric W. Biederman
2013-09-18Merge git://git.infradead.org/users/eparis/selinuxPaul Moore
2013-08-28Revert "SELinux: do not handle seclabel as a special flag"Eric Paris
2013-08-28selinux: consider filesystem subtype in policiesAnand Avati
2013-07-25Add SELinux policy capability for always checking packet and peer classes.Chris PeBenito
2013-07-25SELinux: use a helper function to determine seclabelEric Paris
2013-07-25SELinux: pass a superblock to security_fs_useEric Paris
2013-07-25SELinux: do not handle seclabel as a special flagEric Paris
2013-07-25SELinux: do all flags twiddling in one placeEric Paris
2013-07-25SELinux: rename SE_SBLABELSUPP to SBLABEL_MNTEric Paris
2013-07-25SELinux: use define for number of bits in the mnt flags maskEric Paris
2013-07-25SELinux: make it harder to get the number of mnt opts wrongEric Paris
2013-07-25SELinux: remove crazy contortions around procEric Paris
2013-07-25SELinux: Enable setting security contexts on rootfs inodes.Stephen Smalley