aboutsummaryrefslogtreecommitdiffstats
path: root/security
AgeCommit message (Expand)AuthorFilesLines
2012-01-23Merge git://git.samba.org/sfrench/cifs-2.6Linus Torvalds3-0/+39
2012-01-19keys: fix user_defined key sparse messagesMimi Zohar1-3/+3
2012-01-19ima: fix cred sparse warningMimi Zohar1-1/+2
2012-01-17keys: add a "logon" key typeJeff Layton3-0/+39
2012-01-17Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds9-22/+34
2012-01-17Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds2-15/+20
2012-01-18integrity: digital signature config option name changeDmitry Kasatkin3-4/+4
2012-01-18lib: digital signature config option name changeDmitry Kasatkin1-1/+1
2012-01-18encrypted-keys: fix rcu and sparse messagesMimi Zohar2-2/+2
2012-01-18keys: fix trusted/encrypted keys sparse rcu_assign_pointer messagesMimi Zohar3-4/+6
2012-01-18KEYS: Add missing smp_rmb() primitives to the keyring search codeDavid Howells2-8/+18
2012-01-18TOMOYO: Accept \000 as a valid character.Tetsuo Handa1-3/+3
2012-01-17audit: no leading space in audit_log_d_path prefixKees Cook1-2/+2
2012-01-17audit: treat s_id as an untrusted stringKees Cook2-13/+18
2012-01-14Merge branch 'for-linus' of git://selinuxproject.org/~jmorris/linux-securityLinus Torvalds5-85/+27
2012-01-13module_param: make bool parameters really bool (drivers & misc)Rusty Russell2-11/+11
2012-01-10Merge branch 'for-linus' of git://selinuxproject.org/~jmorris/linux-securityLinus Torvalds16-59/+259
2012-01-10securityfs: fix object creation racesAl Viro1-141/+50
2012-01-09Merge branch 'for-3.3' of git://git.kernel.org/pub/scm/linux/kernel/git/tj/cg...Linus Torvalds1-3/+4
2012-01-09Merge branch 'next' into for-linusJames Morris16-59/+259
2012-01-08Merge branch 'for-linus2' of git://git.kernel.org/pub/scm/linux/kernel/git/vi...Linus Torvalds13-60/+46
2012-01-06switch security_path_chmod() to struct path *Al Viro4-17/+11
2012-01-06vfs: prefer ->dentry->d_sb to ->mnt->mnt_sbAl Viro2-3/+3
2012-01-06Merge branches 'vfsmount-guts', 'umode_t' and 'partitions' into ZAl Viro10-34/+34
2012-01-05security: remove the security_netlink_recv hook as it is equivalent to capable()Eric Paris4-34/+0
2012-01-05ptrace: do not audit capability check when outputing /proc/pid/statEric Paris1-1/+1
2012-01-05capabilities: remove all _real_ interfacesEric Paris1-24/+0
2012-01-05capabilities: introduce security_capable_noauditEric Paris1-0/+6
2012-01-05capabilities: reverse arguments to security_capableEric Paris1-1/+1
2012-01-05capabilities: remove the task from capable LSM hook entirelyEric Paris4-30/+24
2012-01-05selinux: sparse fix: fix several warnings in the security server codJames Morris5-7/+9
2012-01-05selinux: sparse fix: fix warnings in netlink codeJames Morris6-5/+6
2012-01-05selinux: sparse fix: eliminate warnings for selinuxfsJames Morris3-6/+4
2012-01-05selinux: sparse fix: declare selinux_disable() in security.hJames Morris2-1/+1
2012-01-05selinux: sparse fix: move selinux_complete_initJames Morris2-1/+1
2012-01-05selinux: sparse fix: make selinux_secmark_refcount staticJames Morris1-1/+1
2012-01-04Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netDavid S. Miller1-1/+1
2012-01-03vfs: trim includes a bitAl Viro1-0/+1
2012-01-03switch ->path_mknod() to umode_tAl Viro4-4/+4
2012-01-03switch ->path_mkdir() to umode_tAl Viro4-4/+4
2012-01-03tomoyo_mini_stat: switch to umode_tAl Viro2-3/+3
2012-01-03switch securityfs_create_file() to umode_tAl Viro3-8/+8
2012-01-03switch security_path_chmod() to umode_tAl Viro4-4/+4
2012-01-03get rid of open-coded S_ISREG(), etc.Al Viro2-2/+2
2012-01-03switch ->mknod() to umode_tAl Viro3-3/+3
2012-01-03switch ->create() to umode_tAl Viro3-3/+3
2012-01-03switch vfs_mkdir() and ->mkdir() to umode_tAl Viro3-3/+3
2012-01-03vfs: for usbfs, etc. internal vfsmounts ->mnt_sb->s_root == ->mnt_rootAl Viro1-1/+1
2012-01-03btrfs, nfs, apparmor: don't pull mnt_namespace.h for no reason...Al Viro1-1/+0
2012-01-03tomoyo: stop including hell knows whatAl Viro1-8/+0
2012-01-03security: Fix security_old_inode_init_security() when CONFIG_SECURITY is not setJan Kara1-1/+1
2011-12-23Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netDavid S. Miller4-35/+66
2011-12-21SELinux: Fix RCU deref check warning in sel_netport_insert()David Howells1-1/+3
2011-12-20SELinux: Fix RCU deref check warning in sel_netport_insert()David Howells1-1/+3
2011-12-20evm: prevent racing during tfm allocationDmitry Kasatkin1-0/+9
2011-12-20evm: key must be set once during initializationDmitry Kasatkin1-4/+6
2011-12-19ima: fix invalid memory referenceRoberto Sassu1-5/+11
2011-12-19ima: free duplicate measurement memoryRoberto Sassu2-2/+3
2011-12-19selinux: Casting (void *) value returned by kmalloc is uselessThomas Meyer1-1/+1
2011-12-16apparmor: fix module parameter handlingRusty Russell1-3/+3
2011-12-12cgroup: introduce cgroup_taskset and use it in subsys->can_attach(), cancel_a...Tejun Heo1-3/+4
2011-12-12Security: tomoyo: add .gitignore fileGreg Kroah-Hartman1-0/+2
2011-12-12tomoyo: add missing rcu_dereference()Kees Cook1-1/+1
2011-12-09apparmor: add missing rcu_dereference()Kees Cook1-1/+1
2011-12-08TOMOYO: Fix pathname handling of disconnected paths.Tetsuo Handa1-1/+9
2011-12-08evm: prevent racing during tfm allocationDmitry Kasatkin1-3/+11
2011-12-08evm: key must be set once during initializationDmitry Kasatkin1-7/+8
2011-12-06fix apparmor dereferencing potentially freed dentry, sanitize __d_path() APIAl Viro2-29/+39
2011-12-06inet_diag: Partly rename inet_ to sock_Pavel Emelyanov1-1/+1
2011-12-03ipv6: Add fragment reporting to ipv6_skip_exthdr().Jesse Gross2-2/+4
2011-11-22net: remove ipv6_addr_copy()Alexey Dobriyan3-6/+6
2011-11-22digsig: build dependency fixDmitry Kasatkin1-1/+1
2011-11-18Merge branch 'next-evm-digsig' of git://git.kernel.org/pub/scm/linux/kernel/g...James Morris7-30/+226
2011-11-18Merge branch 'encrypted-key-fixes' of git://git.kernel.org/pub/scm/linux/kern...James Morris3-4/+9
2011-11-18Merge branch 'for-1111' of git://gitorious.org/smack-next/kernel into for-linusJames Morris1-76/+39
2011-11-17KEYS: Give key types their own lockdep class for key->semDavid Howells1-0/+3
2011-11-16encrypted-keys: module build fixesMimi Zohar2-3/+8
2011-11-16encrypted-keys: fix error return codeMimi Zohar1-1/+1
2011-11-16Merge branch 'master'; commit 'v3.2-rc2' into nextJames Morris10-7/+14
2011-11-15KEYS: Fix a NULL pointer deref in the user-defined key typeDavid Howells1-1/+2
2011-11-16selinuxfs: remove custom hex_to_bin()Andy Shevchenko1-10/+4
2011-11-11Smack: smackfs cipso seq read repairCasey Schaufler1-76/+39
2011-11-09evm: digital signature verification supportDmitry Kasatkin3-30/+142
2011-11-09integrity: digital signature verification using multiple keyringsDmitry Kasatkin4-0/+84
2011-11-06Merge branch 'modsplit-Oct31_2011' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds2-0/+2
2011-11-02Merge branch 'for-linus' of git://git.selinuxproject.org/~jmorris/linux-securityLinus Torvalds1-0/+30
2011-11-02Merge branch 'for-linus' of git://github.com/richardweinberger/linuxLinus Torvalds1-1/+1
2011-11-02um: switch to use of drivers/KconfigAl Viro1-1/+1
2011-10-31security: follow rename pack_hex_byte() to hex_byte_pack()Andy Shevchenko2-2/+2
2011-10-31Cross Memory AttachChristopher Yeoh2-2/+2
2011-10-31selinux: Add export.h to files using EXPORT_SYMBOL/THIS_MODULEPaul Gortmaker2-0/+2
2011-10-29TOMOYO: Fix interactive judgment functionality.Tetsuo Handa1-0/+30
2011-10-25Merge branch 'next' of git://selinuxproject.org/~jmorris/linux-securityLinus Torvalds72-1201/+4164
2011-10-22Merge branch 'master' of git://gitorious.org/smack-next/kernel into nextJames Morris3-24/+51
2011-10-22TOMOYO: Fix incomplete read after seek.Tetsuo Handa1-0/+1
2011-10-20Smack: allow to access /smack/access as normal userJarkko Sakkinen3-23/+50
2011-10-19TOMOYO: Fix unused kernel config option.Tetsuo Handa1-2/+4
2011-10-18bluetooth: Properly clone LSM attributes to newly created child connectionsPaul Moore1-0/+1
2011-10-18Smack: fix: invalid length set for the result of /smack/accessJarkko Sakkinen1-1/+1
2011-10-14Smack: compilation fixJarkko Sakkinen1-0/+1
2011-10-12Smack: fix for /smack/access output, use string instead of byteJarkko Sakkinen1-2/+5
2011-10-12Smack: domain transition protections (v3)Jarkko Sakkinen1-11/+42
2011-10-12Smack: Provide information for UDS getsockopt(SO_PEERCRED)Casey Schaufler1-0/+9
2011-10-12Smack: Clean up commentsCasey Schaufler3-12/+10
2011-10-12Smack: Repair processing of fcntlCasey Schaufler1-25/+42
2011-10-12Smack: Rule list lookup performanceCasey Schaufler4-121/+220
2011-10-12Smack: check permissions from user space (v2)Jarkko Sakkinen1-63/+117
2011-10-12TOMOYO: Fix quota and garbage collector.Tetsuo Handa2-0/+18
2011-10-12TOMOYO: Remove redundant tasklist_lock.Tetsuo Handa1-4/+0
2011-09-28TOMOYO: Fix domain transition failure warning.Tetsuo Handa1-1/+2
2011-09-27Merge branch 'next-hex2bin' of git://github.com/mzohar/linux-evm into nextJames Morris2-7/+26
2011-09-26TOMOYO: Remove tomoyo_policy_memory_lock spinlock.Tetsuo Handa3-27/+27
2011-09-26TOMOYO: Simplify garbage collector.Tetsuo Handa5-319/+186
2011-09-26TOMOYO: Fix make namespacecheck warnings.Tetsuo Handa5-7/+9
2011-09-20encrypted-keys: check hex2bin resultMimi Zohar1-3/+11
2011-09-20trusted-keys: check hex2bin resultMimi Zohar1-4/+15
2011-09-19TOMOYO: Allow specifying domain transition preference.Tetsuo Handa5-12/+137
2011-09-15encrypted-keys: IS_ERR need include/err.hStephen Rothwell1-0/+1
2011-09-15Merge branch 'next-evm' of git://github.com/mzohar/linux-evm into nextJames Morris14-84/+155
2011-09-15TOMOYO: Bump version.Tetsuo Handa3-9/+9
2011-09-14evm: clean verification statusDmitry Kasatkin1-0/+1
2011-09-14evm: permit mode bits to be updatedMimi Zohar1-17/+13
2011-09-14evm: posix acls modify i_modeMimi Zohar3-5/+46
2011-09-14evm: limit verifying current security.evm integrityMimi Zohar1-34/+24
2011-09-14evm: fix security/security_old_init_security return codeMimi Zohar1-2/+2
2011-09-14evm: remove TCG_TPM dependencyMimi Zohar1-2/+1
2011-09-14encrypted-keys: remove trusted-keys dependencyMimi Zohar5-28/+67
2011-09-14encrypted-keys: create encrypted-keys directoryMimi Zohar6-1/+6
2011-09-14TOMOYO: Avoid race when retrying "file execute" permission check.Tetsuo Handa1-34/+22
2011-09-14TOMOYO: Allow domain transition without execve().Tetsuo Handa4-28/+210
2011-09-14TOMOYO: Allow controlling generation of access granted logs for per an entry ...Tetsuo Handa5-1/+38
2011-09-14TOMOYO: Add socket operation restriction support.Tetsuo Handa10-17/+1215
2011-09-14TOMOYO: Add environment variable name restriction support.Tetsuo Handa7-10/+266
2011-09-09security: sparse fix: Move security_fixup_op to security.hJames Morris1-3/+0
2011-09-09selinux: sparse fix: fix several warnings in the security server codeJames Morris5-7/+9
2011-09-09selinux: sparse fix: include selinux.h in exports.cJames Morris1-0/+1
2011-09-09selinux: sparse fix: fix warnings in netlink codeJames Morris6-5/+6
2011-09-09selinux: sparse fix: eliminate warnings for selinuxfsJames Morris3-6/+4
2011-09-09ima: sparse fix: include linux/ima.h in ima_main.cJames Morris1-0/+1
2011-09-09ima: sparse fix: make ima_open_policy staticJames Morris1-1/+1
2011-09-09apparmor: sparse fix: include procattr.h in procattr.cJames Morris1-0/+1
2011-09-09apparmor: sparse fix: rename shadowed variables in policy_unpack.cJames Morris1-6/+6
2011-09-09apparmor: sparse fix: add apparmor.h to lib.cJames Morris1-0/+1
2011-09-09apparmor: sparse fix: include ipc.hJames Morris1-0/+1
2011-09-09selinux: sparse fix: declare selinux_disable() in security.hJames Morris2-1/+1
2011-09-09selinux: sparse fix: move selinux_complete_initJames Morris2-1/+1
2011-09-09selinux: sparse fix: make selinux_secmark_refcount staticJames Morris1-1/+1
2011-09-09apparmor: sparse fix: make aa_create_aafs staticJames Morris1-1/+1
2011-09-09integrity: sparse fix: move iint_initialized to integrity.hJames Morris2-1/+3
2011-09-09TOMOYO: Fix incorrect enforce mode.Tetsuo Handa1-1/+2
2011-08-23KEYS: Correctly destroy key payloads when their keytype is removedDavid Howells3-208/+258
2011-08-23KEYS: The dead key link reaper should be non-reentrantDavid Howells1-3/+3
2011-08-23KEYS: Make the key reaper non-reentrantDavid Howells1-1/+1
2011-08-23KEYS: Move the unreferenced key reaper to the keys garbage collector fileDavid Howells3-76/+85
2011-08-23KEYS: __key_link() should use the RCU deref wrapper for keyring payloadsDavid Howells1-2/+1
2011-08-23KEYS: keyctl_get_keyring_ID() should create a session keyring if create flag setDavid Howells1-2/+12
2011-08-23KEYS: If install_session_keyring() is given a keyring, it should install itDavid Howells1-1/+1
2011-08-18evm: add Kconfig TCG_TPM dependencyMimi Zohar1-1/+1
2011-08-17tomoyo: remove tomoyo_gc_thread()->daemonize()Oleg Nesterov1-1/+1
2011-08-16capabilities: initialize has_capSerge Hallyn1-1/+1
2011-08-12capabilities: do not grant full privs for setuid w/ file caps + no effective ...Zhi Li1-6/+10
2011-08-11evm: fix evm_inode_init_security return codeMimi Zohar1-1/+1
2011-08-09EVM: ensure trusted and encypted key symbols are available to EVMJames Morris1-1/+3
2011-08-09Merge branch 'next-evm' of git://git.kernel.org/pub/scm/linux/kernel/git/zoha...James Morris19-209/+1089
2011-08-08TOMOYO: Fix incomplete read of /sys/kernel/security/tomoyo/profileTetsuo Handa1-1/+4
2011-08-01doc: Update the email address for Paul Moore in various source filesPaul Moore16-16/+16
2011-07-27Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds24-2647/+5954
2011-07-26Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds1-1/+1
2011-07-26atomic: use <linux/atomic.h>Arun Sharma2-2/+2
2011-07-26ima: fmode_t misspelled as mode_t...Al Viro1-1/+1
2011-07-25Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jik...Linus Torvalds1-1/+0
2011-07-24VFS : mount lock scalability for internal mountsTim Chen1-0/+1
2011-07-22Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds6-14/+9
2011-07-22Merge branch 'core-rcu-for-linus' of git://git.kernel.org/pub/scm/linux/kerne...Linus Torvalds3-45/+5
2011-07-22Merge branch 'ptrace' of git://git.kernel.org/pub/scm/linux/kernel/git/oleg/miscLinus Torvalds2-3/+3
2011-07-20security,rcu: Convert call_rcu(sel_netport_free) to kfree_rcu()Lai Jiangshan1-18/+2
2011-07-20security,rcu: Convert call_rcu(sel_netnode_free) to kfree_rcu()Lai Jiangshan1-18/+2
2011-07-20security,rcu: Convert call_rcu(whitelist_item_free) to kfree_rcu()Lai Jiangshan1-9/+1
2011-07-20get rid of pointless checks for dentry->sb == NULLAl Viro1-1/+1
2011-07-20->permission() sanitizing: don't pass flags to exec_permission()Al Viro1-10/+0
2011-07-20selinux: don't transliterate MAY_NOT_BLOCK to IPERM_FLAG_RCUAl Viro2-3/+3
2011-07-20->permission() sanitizing: don't pass flags to ->inode_permission()Al Viro4-7/+12
2011-07-18evm: add evm_inode_setattr to prevent updating an invalid security.evmMimi Zohar2-1/+21
2011-07-18evm: permit only valid security.evm xattrs to be updatedMimi Zohar1-14/+63
2011-07-18evm: replace hmac_status with evm_statusDmitry Kasatkin3-9/+9
2011-07-18evm: evm_verify_hmac must not return INTEGRITY_UNKNOWNDmitry Kasatkin1-6/+5
2011-07-18evm: additional parameter to pass integrity cache entry 'iint'Dmitry Kasatkin1-10/+8
2011-07-18evm: crypto hash replaced by shashDmitry Kasatkin3-45/+57
2011-07-18evm: call evm_inode_init_security from security_inode_init_securityMimi Zohar1-6/+12
2011-07-18evm: add evm_inode_init_security to initialize new filesMimi Zohar3-0/+61
2011-07-18security: imbed evm calls in security hooksMimi Zohar2-2/+15
2011-07-18evm: add support for different security.evm data typesDmitry Kasatkin3-9/+23
2011-07-18evm: re-releaseMimi Zohar10-1/+632
2011-07-18integrity: move ima inode integrity data managementMimi Zohar13-203/+247
2011-07-18security: new security_inode_init_security API adds function callbackMimi Zohar1-3/+36
2011-07-14TOMOYO: Update kernel-doc.Tetsuo Handa13-62/+269
2011-07-11Merge branch 'master' into for-nextJiri Kosina6-13/+45
2011-07-11TOMOYO: Enable conditional ACL.Tetsuo Handa5-33/+80
2011-07-11TOMOYO: Allow using argv[]/envp[] of execve() as conditions.Tetsuo Handa6-10/+589
2011-07-11TOMOYO: Allow using executable's realpath and symlink's target as conditions.Tetsuo Handa5-4/+228
generated by cgit 1.2.3-korg (git 2.39.0) at 2024-05-15 19:32:09 +0000