summaryrefslogtreecommitdiff
path: root/security/apparmor/include/policy.h
Commit message (Expand)AuthorAgeFilesLines
* apparmor: refactor code that alloc null profilesJohn Johansen2022-10-241-2/+4
* apparmor: rework profile->rules to be a listJohn Johansen2022-10-031-1/+16
* apparmor: refactor profile rules and attachmentsJohn Johansen2022-10-031-33/+51
* apparmor: add the ability for policy to specify a permission tableJohn Johansen2022-10-031-1/+4
* apparmor: add user mode flagJohn Johansen2022-10-031-0/+3
* apparmor: extend permissions to support a label and tag stringJohn Johansen2022-10-031-2/+4
* apparmor: preparse for state being more than just an integerJohn Johansen2022-10-031-7/+7
* apparmor: convert policy lookup to use accept as an indexJohn Johansen2022-10-031-0/+12
* apparmor: convert xmatch to using the new shared policydb structJohn Johansen2022-10-031-3/+1
* apparmor: combine file_rules and aa_policydb into a single shared structJohn Johansen2022-10-031-3/+11
* apparmor: compute policydb permission on profile loadJohn Johansen2022-10-031-0/+1
* apparmor: convert xmatch to use aa_perms structureJohn Johansen2022-10-031-1/+2
* apparmor: compute xmatch permissions on profile loadMike Salvatore2022-10-031-0/+2
* apparmor: allow label to carry debug flagsJohn Johansen2022-07-191-0/+4
* apparmor: fix overlapping attachment computationJohn Johansen2022-07-191-1/+1
* apparmor: update policy capable checks to use a labelJohn Johansen2021-02-071-2/+4
* apparmor: fix PROFILE_MEDIATES for untrusted inputJohn Johansen2019-06-181-1/+10
* treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 441Thomas Gleixner2019-06-051-5/+1
* apparmor: Parse secmark policyMatthew Garrett2018-10-031-0/+3
* apparmor: remove POLICY_MEDIATES_SAFEJohn Johansen2018-03-131-11/+1
* apparmor: add base infastructure for socket mediationJohn Johansen2018-03-131-0/+11
* apparmor: convert attaching profiles via xattrs to use dfa matchingJohn Johansen2018-02-091-2/+0
* apparmor: Add support for attaching profiles via xattr, presence and valueMatthew Garrett2018-02-091-0/+6
* Revert "apparmor: add base infastructure for socket mediation"Linus Torvalds2017-10-261-13/+0
* apparmor: add base infastructure for socket mediationJohn Johansen2017-09-221-0/+13
* apparmor: switch from profiles to using labels on contextsJohn Johansen2017-06-101-78/+32
* apparmor: add fn to test if profile supports a given mediation classJohn Johansen2017-06-101-0/+10
* apparmor: provide finer control over policy managementJohn Johansen2017-06-101-2/+6
* apparmor: move permissions into their own file to be more easily sharedJohn Johansen2017-06-081-0/+1
* apparmor: allow profiles to provide info to disconnected pathsJohn Johansen2017-06-081-0/+2
* Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/...Linus Torvalds2017-02-211-142/+57
|\
| * apparmor: support querying extended trusted helper extra dataWilliam Hua2017-01-161-0/+16
| * apparmor: change op from int to const char *John Johansen2017-01-161-1/+2
| * apparmor: pass the subject profile into profile replace/removeJohn Johansen2017-01-161-3/+4
| * apparmor: allow introspecting the loaded policy pre internal transformJohn Johansen2017-01-161-2/+3
| * apparmor: add profile and ns params to aa_may_manage_policy()John Johansen2017-01-161-1/+1
| * apparmor: add ns being viewed as a param to policy_admin_capable()John Johansen2017-01-161-1/+1
| * apparmor: add ns being viewed as a param to policy_view_capable()John Johansen2017-01-161-1/+3
| * apparmor: Make aa_remove_profile() callable from a different viewJohn Johansen2017-01-161-1/+1
| * apparmor: name null-XXX profiles after the executableJohn Johansen2017-01-161-1/+2
| * apparmor: pass gfp_t parameter into profile allocationJohn Johansen2017-01-161-1/+1
| * apparmor: refactor prepare_ns() and make usable from different viewsJohn Johansen2017-01-161-1/+2
| * apparmor: add fn to lookup profiles by fqnameJohn Johansen2017-01-161-0/+2
| * apparmor: add strn version of lookup_profile fnJohn Johansen2017-01-161-0/+2
| * apparmor: rename replacedby to proxyJohn Johansen2017-01-161-10/+10
| * apparmor: rename PFLAG_INVALID to PFLAG_STALEJohn Johansen2017-01-161-3/+3
| * apparmor: rename namespace to ns to improve code line lengthsJohn Johansen2017-01-161-4/+4
| * apparmor: split apparmor policy namespaces code into its own fileJohn Johansen2017-01-161-106/+6
| * apparmor: split out shared policy_XXX fns to libJohn Johansen2017-01-161-13/+0
| * apparmor: move lib definitions into separate lib includeJohn Johansen2017-01-161-0/+1
View Lorry Controller Status