aboutsummaryrefslogtreecommitdiffstats
path: root/security
AgeCommit message (Expand)AuthorFilesLines
2013-07-11Merge branch 'for-3.11' of git://linux-nfs.org/~bfields/linuxLinus Torvalds1-1/+1
2013-07-09Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-nextLinus Torvalds1-1/+1
2013-07-09Merge tag 'nfs-for-3.11-1' of git://git.linux-nfs.org/projects/trondmy/linux-nfsLinus Torvalds6-15/+138
2013-07-03Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds31-583/+949
2013-07-03Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds2-7/+19
2013-07-02Merge branch 'for-3.11' of git://git.kernel.org/pub/scm/linux/kernel/git/tj/c...Linus Torvalds1-38/+18
2013-06-29SELinux: Institute file_path_has_perm()David Howells1-6/+18
2013-06-29Replace a bunch of file->dentry->d_inode refs with file_inode()David Howells1-1/+1
2013-06-20evm: audit integrity metadata failuresMimi Zohar1-1/+14
2013-06-20integrity: move integrity_audit_msg()Mimi Zohar7-33/+36
2013-06-08NFS: Extend NFS xattr handlers to accept the security namespaceDavid Quigley1-0/+1
2013-06-08NFS: Client implementation of Labeled-NFSDavid Quigley1-0/+4
2013-06-08SELinux: Add new labeling type native labelsDavid Quigley3-10/+32
2013-06-08LSM: Add flags field to security_sb_set_mnt_opts for in kernel mount data.David Quigley3-5/+19
2013-06-08Security: Add Hook to test if the particular xattr is part of a MAC model.David Quigley4-0/+29
2013-06-08Security: Add hook to calculate context based on a negative dentry.David Quigley3-0/+53
2013-06-05Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netDavid S. Miller1-20/+14
2013-06-03Smack: Fix the bug smackcipso can't set CIPSO correctlyPassion,Zhao1-1/+1
2013-05-31selinux: fix the labeled xfrm/IPsec reference count handlingPaul Moore1-20/+14
2013-05-28net: pass info struct via netdevice notifierJiri Pirko1-1/+1
2013-05-28Smack: Fix possible NULL pointer dereference at smk_netlbl_mls()Tetsuo Handa1-0/+2
2013-05-28Smack: Add smkfstransmute mount optionCasey Schaufler2-5/+21
2013-05-28Smack: Improve access check performanceCasey Schaufler4-249/+282
2013-05-28Smack: Local IPv6 port based controlsCasey Schaufler2-40/+319
2013-05-24device_cgroup: simplify cgroup tree walk in propagate_exception()Tejun Heo1-38/+18
2013-05-13security: cap_inode_getsecctx returning garbageJ. Bruce Fields1-1/+1
2013-05-12apparmor: no need to delay vfree()Al Viro1-21/+3
2013-05-12Merge tag 'aa-3.10' of git://git.kernel.org/pub/scm/linux/kernel/git/jj/linux...James Morris19-248/+286
2013-05-07aio: don't include aio.h in sched.hKent Overstreet2-0/+3
2013-05-01Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds3-8/+4
2013-05-01Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-nextLinus Torvalds2-4/+3
2013-04-30Merge branch 'akpm' (incoming from Andrew)Linus Torvalds1-3/+10
2013-04-30KEYS: split call to call_usermodehelper_fns()Lucas De Marchi1-3/+10
2013-04-30Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds9-108/+222
2013-04-29Merge branch 'for-3.10' of git://git.kernel.org/pub/scm/linux/kernel/git/tj/c...Linus Torvalds1-56/+211
2013-04-29tomoyo_close_control: don't bother with return valueAl Viro3-8/+4
2013-04-28apparmor: fix fully qualified name parsingJohn Johansen1-2/+4
2013-04-28apparmor: fix setprocattr arg processing for onexecJohn Johansen1-16/+21
2013-04-28apparmor: localize getting the security context to a few macrosJohn Johansen4-21/+24
2013-04-28apparmor: fix sparse warningsJohn Johansen2-11/+11
2013-04-28apparmor: Fix smatch warning in aa_remove_profilesJohn Johansen1-8/+6
2013-04-28apparmor: fix the audit type tableJohn Johansen1-1/+1
2013-04-28apparmor: reserve and mask off the top 8 bits of the base fieldJohn Johansen1-7/+9
2013-04-28apparmor: move the free_profile fn ahead of aa_alloc_profileJohn Johansen1-75/+75
2013-04-28apparmor: remove sid from profilesJohn Johansen4-21/+11
2013-04-28apparmor: move perm defines into policy_unpackJohn Johansen2-2/+3
2013-04-28apparmor: misc cleanup of matchJohn Johansen2-8/+14
2013-04-28apparmor: relax the restrictions on setting rlimitsJohn Johansen1-3/+12
2013-04-28apparmor: remove "permipc" commandJohn Johansen3-9/+0
2013-04-28apparmor: use common fn to clear task_context for domain transitionsJohn Johansen3-16/+20
2013-04-28apparmor: add kvzalloc to handle zeroing for kvmallocJohn Johansen3-8/+22
2013-04-28apparmor: add utility function to get an arbitrary tasks profile.John Johansen4-32/+49
2013-04-28apparmor: fix error code to failure message mapping for name lookupJohn Johansen1-1/+1
2013-04-28apparmor: refactor profile mode macrosJohn Johansen1-6/+6
2013-04-28apparmor: Remove -W1 warningsJohn Johansen2-6/+0
2013-04-28apparmor: fix auditing of domain transition failures due to incomplete policyJohn Johansen1-0/+2
2013-04-22Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netDavid S. Miller3-0/+18
2013-04-18devcg: remove parent_cgroup.Rami Rosen1-2/+0
2013-04-17ima: eliminate passing d_name.name to process_measurement()Mimi Zohar1-9/+5
2013-04-09selinux: add a skb_owned_by() hookEric Dumazet3-0/+18
2013-04-08devcg: remove broken_hierarchy tagTejun Heo1-9/+0
2013-04-03Smack: include magic.h in smackfs.cCasey Schaufler1-0/+1
2013-04-02selinux: make security_sb_clone_mnt_opts return an error on context mismatchJeff Layton3-7/+39
2013-04-01Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netDavid S. Miller1-3/+1
2013-03-28Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebi...Linus Torvalds1-3/+1
2013-03-28selinux: replace obsolete NLMSG_* with type safe nlmsg_*Hong zhi guo2-4/+3
2013-03-26yama: Better permission check for ptracemeEric W. Biederman1-3/+1
2013-03-20devcg: propagate local changes down the hierarchyAristeu Rozanski1-7/+132
2013-03-20devcg: use css_online and css_offlineAristeu Rozanski1-17/+42
2013-03-20devcg: prepare may_access() for hierarchy supportAristeu Rozanski1-18/+31
2013-03-20devcg: expand may_access() logicAristeu Rozanski1-9/+12
2013-03-19Fix NULL pointer dereference in smack_inode_unlink() and smack_inode_rmdir()Igor Zhbanov1-2/+2
2013-03-19Smack: add support for modification of existing rulesRafal Krypa1-79/+170
2013-03-19smack: SMACK_MAGIC to include/uapi/linux/magic.hJarkko Sakkinen1-5/+0
2013-03-19Smack: add missing support for transmute bit in smack_str_from_perm()Rafal Krypa1-0/+2
2013-03-19Smack: prevent revoke-subject from failing when unseen label is written to itRafal Krypa1-3/+1
2013-03-19selinux: use GFP_ATOMIC under spin_lockDan Carpenter1-1/+1
2013-03-18tomoyo: use DEFINE_SRCU() to define tomoyo_ssLai Jiangshan1-3/+2
2013-03-12Fix: compat_rw_copy_check_uvector() misuse in aio, readv, writev, and securit...Mathieu Desnoyers1-2/+2
2013-03-12keys: fix race with concurrent install_user_keyrings()David Howells1-1/+1
2013-03-03userns: Stop oopsing in key_change_session_keyringEric W. Biederman1-1/+1
2013-03-03Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds1-9/+0
2013-02-27hlist: drop the node parameter from iteratorsSasha Levin2-15/+7
2013-02-27selinux: opened file can't have NULL or negative ->f_path.dentryAl Viro1-9/+0
2013-02-26Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds11-42/+32
2013-02-26kill f_vfsmntAl Viro1-1/+1
2013-02-26block: fix part_pack_uuid() build errorMimi Zohar1-5/+6
2013-02-26ima: "remove enforce checking duplication" merge fixMimi Zohar1-1/+2
2013-02-22new helper: file_inode(file)Al Viro10-41/+31
2013-02-21device_cgroup: don't grab mutex in rcu callbackJerry Snitselaar1-9/+12
2013-02-21Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/...Linus Torvalds18-193/+552
2013-02-21KEYS: Revert one application of "Fix unreachable code" patchDavid Howells1-0/+2
2013-02-06ima: digital signature verification using asymmetric keysDmitry Kasatkin5-1/+150
2013-02-06ima: rename hash calculation functionsDmitry Kasatkin3-9/+9
2013-02-06ima: use new crypto_shash API instead of old crypto_hashDmitry Kasatkin3-38/+41
2013-02-06ima: add policy support for file system uuidDmitry Kasatkin1-1/+21
2013-02-06evm: add file system uuid to EVM hmacDmitry Kasatkin4-0/+18
2013-01-28Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netLinus Torvalds5-20/+88
2013-01-22ima: differentiate appraise status only for hook specific rulesMimi Zohar2-6/+12
2013-01-22ima: per hook cache integrity appraisal statusMimi Zohar6-25/+136
2013-01-22ima: increase iint flag sizeMimi Zohar1-12/+12
2013-01-22ima: added policy support for 'security.ima' typeDmitry Kasatkin4-1/+25
2013-01-22security/device_cgroup: lock assert fails in dev_exception_clean()Jerry Snitselaar1-0/+2
2013-01-22evm: checking if removexattr is not a NULLDmitry Kasatkin1-2/+2
2013-01-16ima: forbid write access to files with digital signaturesDmitry Kasatkin1-2/+5
2013-01-16ima: move full pathname resolution to separate functionDmitry Kasatkin3-31/+38
2013-01-16integrity: reduce storage size for ima_status and evm_statusDmitry Kasatkin1-2/+2
2013-01-16ima: rename FILE_MMAP to MMAP_CHECKMimi Zohar4-7/+8
2013-01-16ima: remove security.ima hexdumpDmitry Kasatkin1-5/+0
2013-01-16ima: remove enforce checking duplicationDmitry Kasatkin1-32/+20
2013-01-16ima: set appraise status in fix mode only when xattr is fixedDmitry Kasatkin1-5/+6
2013-01-16evm: remove unused cleanup functionsDmitry Kasatkin3-16/+0
2013-01-16ima: re-initialize IMA policy LSM infoMimi Zohar1-10/+58
2013-01-14tun: fix LSM/SELinux labeling of tun/tap devicesPaul Moore4-19/+87
2013-01-14selinux: add the "attach_queue" permission to the "tun_socket" classPaul Moore1-1/+1
2012-12-24ima: fallback to MODULE_SIG_ENFORCE for existing kernel module syscallMimi Zohar3-5/+11
2012-12-20keys: fix unreachable codeAlan Cox1-2/+0
2012-12-19Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netLinus Torvalds1-0/+2
2012-12-19Merge tag 'modules-next-for-linus' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds6-3/+43
2012-12-18Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebi...Linus Torvalds1-8/+17
2012-12-17Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebi...Linus Torvalds1-3/+9
2012-12-16Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds8-102/+153
2012-12-15bridge: update selinux perm table for RTM_NEWMDB and RTM_DELMDBAmerigo Wang1-0/+2
2012-12-14Fix cap_capable to only allow owners in the parent user namespace to have caps.Eric W. Biederman1-8/+17
2012-12-14Smack: create a sysfs mount point for smackfsCasey Schaufler1-0/+17
2012-12-14Smack: use select not depends in KconfigCasey Schaufler1-1/+5
2012-12-14ima: support new kernel module syscallMimi Zohar5-4/+33
2012-12-14security: introduce kernel_module_from_file hookKees Cook2-0/+11
2012-12-13Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jik...Linus Torvalds1-2/+0
2012-12-12Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-nextLinus Torvalds1-0/+3
2012-12-12Merge branch 'for-3.8' of git://git.kernel.org/pub/scm/linux/kernel/git/tj/cg...Linus Torvalds1-4/+16
2012-12-10rtnetlink: add missing message types to selinux perm tableCong Wang1-0/+2
2012-12-07bridge: export multicast database via netlinkCong Wang1-0/+1
2012-11-21selinux: fix sel_netnode_insert() suspicious rcu dereferenceDave Jones1-1/+2
2012-11-20Yama: remove locking from delete pathKees Cook1-7/+42
2012-11-20Yama: add RCU to drop read lockingKees Cook1-23/+24
2012-11-20userns: Kill task_user_nsEric W. Biederman1-3/+9
2012-11-19cgroup: rename ->create/post_create/pre_destroy/destroy() to ->css_alloc/onli...Tejun Heo1-4/+4
2012-11-06device_cgroup: add lockdep assertsTejun Heo1-0/+12
2012-11-06device_cgroup: fix RCU usageTejun Heo1-3/+3
2012-11-06device_cgroup: fix unchecked cgroup parent usageAristeu Rozanski1-2/+10
2012-10-28Merge branch 'master' into for-nextJiri Kosina51-676/+1396
2012-10-25device_cgroup: add proper checking when changing default behaviorAristeu Rozanski1-1/+18
2012-10-25device_cgroup: stop using simple_strtoul()Aristeu Rozanski1-6/+22
2012-10-25device_cgroup: rename deny_all to behaviorAristeu Rozanski1-11/+14
2012-10-25cgroup: fix invalid rcu dereferenceJiri Slaby1-8/+7
2012-10-25keys: Fix unreachable codeAlan Cox1-2/+0
2012-10-25apparmor: fix IRQ stack overflow during free_profileJohn Johansen1-1/+23
2012-10-17apparmor: fix apparmor OOPS in audit_log_untrustedstring+0x1c/0x40John Johansen1-1/+1
2012-10-16fix a leak in replace_fd() usersAl Viro1-11/+7
2012-10-14Merge branch 'modules-next' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds7-63/+129
2012-10-11consitify do_mount() argumentsAl Viro7-13/+14
2012-10-09Merge branch 'akpm' (Andrew's patch-bomb)Linus Torvalds2-8/+3
2012-10-09mm: kill vma flag VM_RESERVED and mm->reserved_vm counterKonstantin Khlebnikov1-1/+1
2012-10-09mm: use mm->exe_file instead of first VM_EXECUTABLE vma->vm_fileKonstantin Khlebnikov1-7/+2
2012-10-09Merge tag 'asm-generic' of git://git.kernel.org/pub/scm/linux/kernel/git/arnd...Linus Torvalds1-1/+1
2012-10-08KEYS: Add payload preparsing opportunity prior to key instantiate or updateDavid Howells7-63/+129
2012-10-07Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds2-4/+4
2012-10-06device_cgroup: rename whitelist to exception listAristeu Rozanski1-99/+99
2012-10-06device_cgroup: convert device_cgroup internally to policy + exceptionsAristeu Rozanski1-98/+134
2012-10-06device_cgroup: introduce dev_whitelist_clean()Aristeu Rozanski1-5/+17
2012-10-06device_cgroup: add "deny_all" in dev_cgroup structureAristeu Rozanski1-0/+5
2012-10-05ima: fix bug in argument orderDmitry Kasatkin2-4/+4
2012-10-04UAPI: (Scripted) Disintegrate include/asm-genericDavid Howells1-1/+1
2012-10-02Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/...Linus Torvalds17-228/+793
2012-10-02Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds1-52/+21
2012-10-02Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-nextLinus Torvalds1-3/+2
2012-10-02Merge branch 'modsign-keys-devel' into security-next-keysDavid Howells7-63/+129
2012-10-02KEYS: Use keyring_alloc() to create special keyringsDavid Howells1-0/+1
2012-10-02KEYS: Reduce initial permissions on keysDavid Howells4-19/+33
2012-10-02KEYS: Make the session and process keyrings per-threadDavid Howells3-54/+33
2012-10-02Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebi...Linus Torvalds25-136/+148
2012-10-02Merge branch 'for-3.7-hierarchy' of git://git.kernel.org/pub/scm/linux/kernel...Linus Torvalds1-0/+9
2012-10-02Merge branch 'for-3.7' of git://git.kernel.org/pub/scm/linux/kernel/git/tj/wqLinus Torvalds2-5/+5
2012-10-01Merge branch 'core-urgent-for-linus' of git://git.kernel.org/pub/scm/linux/ke...Linus Torvalds1-2/+0
2012-10-01Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jik...Linus Torvalds1-1/+0
2012-09-28Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netDavid S. Miller1-0/+1
2012-09-28key: Fix resource leakAlan Cox1-2/+2
2012-09-28keys: Fix unreachable codeAlan Cox1-2/+0
2012-09-28Merge tag 'v3.6-rc7' into nextJames Morris2-8/+3
2012-09-26make get_file() return its argumentAl Viro1-2/+1
2012-09-26new helper: iterate_fd()Al Viro1-35/+22
2012-09-26switch flush_unauthorized_files() to replace_fd()Al Viro1-32/+15
2012-09-21userns: Teach security_path_chown to take kuids and kgidsEric W. Biederman4-8/+10
2012-09-21userns: Add user namespace support to IMAEric W. Biederman2-9/+10
2012-09-21userns: Convert EVM to deal with kuids and kgids in it's hmac computationEric W. Biederman1-2/+2
2012-09-21userns: Convert selinux to use kuid and kgid where appropriateEric W. Biederman2-4/+4
2012-09-21userns: Convert tomoyo to use kuid and kgid where appropriateEric W. Biederman4-20/+31
2012-09-21userns: Convert apparmor to use kuid and kgid where appropriateEric W. Biederman4-10/+12
2012-09-19ima: change flags container data typeDmitry Kasatkin1-1/+1
2012-09-18xfrm: invalidate dst on policy insertion/deletionNicolas Dichtel1-0/+1
2012-09-18Smack: setprocattr memory leak fixCasey Schaufler1-12/+2
2012-09-18Smack: implement revoking all rules for a subject labelRafal Krypa1-0/+75
2012-09-18Smack: remove task_wait() hook.Casey Schaufler1-29/+8
2012-09-14cgroup: mark subsystems with broken hierarchy support and whine if cgroups ar...Tejun Heo1-0/+9
2012-09-13userns: Convert security/keys to the new userns infrastructureEric W. Biederman8-83/+79
2012-09-13ima: audit log hashesPeter Moody5-6/+55
2012-09-13ima: generic IMA action flag handlingDmitry Kasatkin4-19/+26
2012-09-13task_work: Revert "hold task_lock around checks in keyctl"Oleg Nesterov1-2/+0
2012-09-13KEYS: Add payload preparsing opportunity prior to key instantiate or updateDavid Howells7-63/+129
generated by cgit 1.2.3-korg (git 2.39.0) at 2024-05-22 05:27:28 +0000