aboutsummaryrefslogtreecommitdiffstats
path: root/security
AgeCommit message (Expand)AuthorFilesLines
2013-03-28Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebi...Linus Torvalds1-3/+1
2013-03-26yama: Better permission check for ptracemeEric W. Biederman1-3/+1
2013-03-19selinux: use GFP_ATOMIC under spin_lockDan Carpenter1-1/+1
2013-03-12Fix: compat_rw_copy_check_uvector() misuse in aio, readv, writev, and securit...Mathieu Desnoyers1-2/+2
2013-03-12keys: fix race with concurrent install_user_keyrings()David Howells1-1/+1
2013-03-03userns: Stop oopsing in key_change_session_keyringEric W. Biederman1-1/+1
2013-03-03Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds1-9/+0
2013-02-27hlist: drop the node parameter from iteratorsSasha Levin2-15/+7
2013-02-27selinux: opened file can't have NULL or negative ->f_path.dentryAl Viro1-9/+0
2013-02-26Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds11-42/+32
2013-02-26kill f_vfsmntAl Viro1-1/+1
2013-02-26block: fix part_pack_uuid() build errorMimi Zohar1-5/+6
2013-02-26ima: "remove enforce checking duplication" merge fixMimi Zohar1-1/+2
2013-02-22new helper: file_inode(file)Al Viro10-41/+31
2013-02-21device_cgroup: don't grab mutex in rcu callbackJerry Snitselaar1-9/+12
2013-02-21Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/...Linus Torvalds18-193/+552
2013-02-21KEYS: Revert one application of "Fix unreachable code" patchDavid Howells1-0/+2
2013-02-06ima: digital signature verification using asymmetric keysDmitry Kasatkin5-1/+150
2013-02-06ima: rename hash calculation functionsDmitry Kasatkin3-9/+9
2013-02-06ima: use new crypto_shash API instead of old crypto_hashDmitry Kasatkin3-38/+41
2013-02-06ima: add policy support for file system uuidDmitry Kasatkin1-1/+21
2013-02-06evm: add file system uuid to EVM hmacDmitry Kasatkin4-0/+18
2013-01-28Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netLinus Torvalds5-20/+88
2013-01-22ima: differentiate appraise status only for hook specific rulesMimi Zohar2-6/+12
2013-01-22ima: per hook cache integrity appraisal statusMimi Zohar6-25/+136
2013-01-22ima: increase iint flag sizeMimi Zohar1-12/+12
2013-01-22ima: added policy support for 'security.ima' typeDmitry Kasatkin4-1/+25
2013-01-22security/device_cgroup: lock assert fails in dev_exception_clean()Jerry Snitselaar1-0/+2
2013-01-22evm: checking if removexattr is not a NULLDmitry Kasatkin1-2/+2
2013-01-16ima: forbid write access to files with digital signaturesDmitry Kasatkin1-2/+5
2013-01-16ima: move full pathname resolution to separate functionDmitry Kasatkin3-31/+38
2013-01-16integrity: reduce storage size for ima_status and evm_statusDmitry Kasatkin1-2/+2
2013-01-16ima: rename FILE_MMAP to MMAP_CHECKMimi Zohar4-7/+8
2013-01-16ima: remove security.ima hexdumpDmitry Kasatkin1-5/+0
2013-01-16ima: remove enforce checking duplicationDmitry Kasatkin1-32/+20
2013-01-16ima: set appraise status in fix mode only when xattr is fixedDmitry Kasatkin1-5/+6
2013-01-16evm: remove unused cleanup functionsDmitry Kasatkin3-16/+0
2013-01-16ima: re-initialize IMA policy LSM infoMimi Zohar1-10/+58
2013-01-14tun: fix LSM/SELinux labeling of tun/tap devicesPaul Moore4-19/+87
2013-01-14selinux: add the "attach_queue" permission to the "tun_socket" classPaul Moore1-1/+1
2012-12-24ima: fallback to MODULE_SIG_ENFORCE for existing kernel module syscallMimi Zohar3-5/+11
2012-12-20keys: fix unreachable codeAlan Cox1-2/+0
2012-12-19Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netLinus Torvalds1-0/+2
2012-12-19Merge tag 'modules-next-for-linus' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds6-3/+43
2012-12-18Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebi...Linus Torvalds1-8/+17
2012-12-17Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebi...Linus Torvalds1-3/+9
2012-12-16Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds8-102/+153
2012-12-15bridge: update selinux perm table for RTM_NEWMDB and RTM_DELMDBAmerigo Wang1-0/+2
2012-12-14Fix cap_capable to only allow owners in the parent user namespace to have caps.Eric W. Biederman1-8/+17
2012-12-14Smack: create a sysfs mount point for smackfsCasey Schaufler1-0/+17
2012-12-14Smack: use select not depends in KconfigCasey Schaufler1-1/+5
2012-12-14ima: support new kernel module syscallMimi Zohar5-4/+33
2012-12-14security: introduce kernel_module_from_file hookKees Cook2-0/+11
2012-12-13Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jik...Linus Torvalds1-2/+0
2012-12-12Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-nextLinus Torvalds1-0/+3
2012-12-12Merge branch 'for-3.8' of git://git.kernel.org/pub/scm/linux/kernel/git/tj/cg...Linus Torvalds1-4/+16
2012-12-10rtnetlink: add missing message types to selinux perm tableCong Wang1-0/+2
2012-12-07bridge: export multicast database via netlinkCong Wang1-0/+1
2012-11-21selinux: fix sel_netnode_insert() suspicious rcu dereferenceDave Jones1-1/+2
2012-11-20Yama: remove locking from delete pathKees Cook1-7/+42
2012-11-20Yama: add RCU to drop read lockingKees Cook1-23/+24
2012-11-20userns: Kill task_user_nsEric W. Biederman1-3/+9
2012-11-19cgroup: rename ->create/post_create/pre_destroy/destroy() to ->css_alloc/onli...Tejun Heo1-4/+4
2012-11-06device_cgroup: add lockdep assertsTejun Heo1-0/+12
2012-11-06device_cgroup: fix RCU usageTejun Heo1-3/+3
2012-11-06device_cgroup: fix unchecked cgroup parent usageAristeu Rozanski1-2/+10
2012-10-28Merge branch 'master' into for-nextJiri Kosina51-676/+1396
2012-10-25device_cgroup: add proper checking when changing default behaviorAristeu Rozanski1-1/+18
2012-10-25device_cgroup: stop using simple_strtoul()Aristeu Rozanski1-6/+22
2012-10-25device_cgroup: rename deny_all to behaviorAristeu Rozanski1-11/+14
2012-10-25cgroup: fix invalid rcu dereferenceJiri Slaby1-8/+7
2012-10-25keys: Fix unreachable codeAlan Cox1-2/+0
2012-10-25apparmor: fix IRQ stack overflow during free_profileJohn Johansen1-1/+23
2012-10-17apparmor: fix apparmor OOPS in audit_log_untrustedstring+0x1c/0x40John Johansen1-1/+1
2012-10-16fix a leak in replace_fd() usersAl Viro1-11/+7
2012-10-14Merge branch 'modules-next' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds7-63/+129
2012-10-11consitify do_mount() argumentsAl Viro7-13/+14
2012-10-09Merge branch 'akpm' (Andrew's patch-bomb)Linus Torvalds2-8/+3
2012-10-09mm: kill vma flag VM_RESERVED and mm->reserved_vm counterKonstantin Khlebnikov1-1/+1
2012-10-09mm: use mm->exe_file instead of first VM_EXECUTABLE vma->vm_fileKonstantin Khlebnikov1-7/+2
2012-10-09Merge tag 'asm-generic' of git://git.kernel.org/pub/scm/linux/kernel/git/arnd...Linus Torvalds1-1/+1
2012-10-08KEYS: Add payload preparsing opportunity prior to key instantiate or updateDavid Howells7-63/+129
2012-10-07Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds2-4/+4
2012-10-06device_cgroup: rename whitelist to exception listAristeu Rozanski1-99/+99
2012-10-06device_cgroup: convert device_cgroup internally to policy + exceptionsAristeu Rozanski1-98/+134
2012-10-06device_cgroup: introduce dev_whitelist_clean()Aristeu Rozanski1-5/+17
2012-10-06device_cgroup: add "deny_all" in dev_cgroup structureAristeu Rozanski1-0/+5
2012-10-05ima: fix bug in argument orderDmitry Kasatkin2-4/+4
2012-10-04UAPI: (Scripted) Disintegrate include/asm-genericDavid Howells1-1/+1
2012-10-02Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/...Linus Torvalds17-228/+793
2012-10-02Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds1-52/+21
2012-10-02Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-nextLinus Torvalds1-3/+2
2012-10-02Merge branch 'modsign-keys-devel' into security-next-keysDavid Howells7-63/+129
2012-10-02KEYS: Use keyring_alloc() to create special keyringsDavid Howells1-0/+1
2012-10-02KEYS: Reduce initial permissions on keysDavid Howells4-19/+33
2012-10-02KEYS: Make the session and process keyrings per-threadDavid Howells3-54/+33
2012-10-02Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebi...Linus Torvalds25-136/+148
2012-10-02Merge branch 'for-3.7-hierarchy' of git://git.kernel.org/pub/scm/linux/kernel...Linus Torvalds1-0/+9
2012-10-02Merge branch 'for-3.7' of git://git.kernel.org/pub/scm/linux/kernel/git/tj/wqLinus Torvalds2-5/+5
2012-10-01Merge branch 'core-urgent-for-linus' of git://git.kernel.org/pub/scm/linux/ke...Linus Torvalds1-2/+0
2012-10-01Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jik...Linus Torvalds1-1/+0
2012-09-28Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netDavid S. Miller1-0/+1
2012-09-28key: Fix resource leakAlan Cox1-2/+2
2012-09-28keys: Fix unreachable codeAlan Cox1-2/+0
2012-09-28Merge tag 'v3.6-rc7' into nextJames Morris2-8/+3
2012-09-26make get_file() return its argumentAl Viro1-2/+1
2012-09-26new helper: iterate_fd()Al Viro1-35/+22
2012-09-26switch flush_unauthorized_files() to replace_fd()Al Viro1-32/+15
2012-09-21userns: Teach security_path_chown to take kuids and kgidsEric W. Biederman4-8/+10
2012-09-21userns: Add user namespace support to IMAEric W. Biederman2-9/+10
2012-09-21userns: Convert EVM to deal with kuids and kgids in it's hmac computationEric W. Biederman1-2/+2
2012-09-21userns: Convert selinux to use kuid and kgid where appropriateEric W. Biederman2-4/+4
2012-09-21userns: Convert tomoyo to use kuid and kgid where appropriateEric W. Biederman4-20/+31
2012-09-21userns: Convert apparmor to use kuid and kgid where appropriateEric W. Biederman4-10/+12
2012-09-19ima: change flags container data typeDmitry Kasatkin1-1/+1
2012-09-18xfrm: invalidate dst on policy insertion/deletionNicolas Dichtel1-0/+1
2012-09-18Smack: setprocattr memory leak fixCasey Schaufler1-12/+2
2012-09-18Smack: implement revoking all rules for a subject labelRafal Krypa1-0/+75
2012-09-18Smack: remove task_wait() hook.Casey Schaufler1-29/+8
2012-09-14cgroup: mark subsystems with broken hierarchy support and whine if cgroups ar...Tejun Heo1-0/+9
2012-09-13userns: Convert security/keys to the new userns infrastructureEric W. Biederman8-83/+79
2012-09-13ima: audit log hashesPeter Moody5-6/+55
2012-09-13ima: generic IMA action flag handlingDmitry Kasatkin4-19/+26
2012-09-13task_work: Revert "hold task_lock around checks in keyctl"Oleg Nesterov1-2/+0
2012-09-13KEYS: Add payload preparsing opportunity prior to key instantiate or updateDavid Howells7-63/+129
2012-09-12ima: rename ima_must_appraise_or_measureDmitry Kasatkin3-4/+4
2012-09-08netlink: hide struct module parameter in netlink_kernel_createPablo Neira Ayuso1-2/+1
2012-09-08netlink: kill netlink_set_nonrootPablo Neira Ayuso1-1/+1
2012-09-07ima: digital signature verification supportDmitry Kasatkin2-19/+52
2012-09-07ima: add support for different security.ima data typesMimi Zohar3-14/+17
2012-09-07ima: add ima_inode_setxattr/removexattr function and callsMimi Zohar2-0/+63
2012-09-07ima: replace iint spinblock with rwlock/read_lockDmitry Kasatkin1-9/+7
2012-09-07ima: allocating iint improvementsDmitry Kasatkin2-35/+23
2012-09-07ima: add appraise action keywords and default rulesMimi Zohar2-40/+116
2012-09-07ima: integrity appraisal extensionMimi Zohar11-53/+351
2012-09-08Yama: handle 32-bit userspace prctlKees Cook1-1/+1
2012-09-05security: allow Yama to be unconditionally stackedKees Cook3-4/+39
2012-09-01AppArmor: remove af_names.h from .gitignorePaul Bolle1-1/+0
2012-08-22ima: enable the IBM vTPM as the default TPM in the PPC64 caseKent Yoder1-0/+1
2012-08-22tpm: Move tpm_get_random api into the TPM device driverKent Yoder1-42/+12
2012-08-20workqueue: deprecate system_nrt[_freezable]_wqTejun Heo2-5/+5
2012-08-17Yama: access task_struct->comm directlyKees Cook1-8/+2
2012-08-10Yama: higher restrictions should block PTRACE_TRACEMEKees Cook1-0/+41
2012-07-31selinux: tag avc cache alloc as non-criticalMel Gorman1-1/+1
2012-07-30Merge branch 'akpm' (Andrew's patch-bomb)Linus Torvalds1-0/+1
2012-07-30c/r: fcntl: add F_GETOWNER_UIDS optionCyrill Gorcunov1-0/+1
2012-07-30selinux: fix selinux_inode_setxattr oopsAl Viro1-5/+10
2012-07-30smack: off by one errorAlan Cox1-4/+4
2012-07-26posix_types.h: Cleanup stale __NFDBITS and related definitionsJosh Boyer1-1/+1
2012-07-24Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-nextLinus Torvalds2-10/+17
2012-07-23Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/...Linus Torvalds17-87/+114
2012-07-23Merge branch 'for-linus-2' of git://git.kernel.org/pub/scm/linux/kernel/git/v...Linus Torvalds6-26/+18
2012-07-23switch dentry_open() to struct path, make it grab references itselfAl Viro3-6/+5
2012-07-22hold task_lock around checks in keyctlAl Viro1-0/+2
2012-07-22merge task_work and rcu_head, get rid of separate allocation for keyring caseAl Viro3-28/+12
2012-07-22trimming task_work: kill ->dataAl Viro3-8/+15
2012-07-19Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netDavid S. Miller2-2/+4
2012-07-18Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds2-2/+4
2012-07-16SELinux: do not check open perms if they are not known to policyEric Paris1-1/+1
2012-07-16SELinux: include definition of new capabilitiesEric Paris1-1/+3
2012-07-13Smack: don't show empty rules when /smack/load or /smack/load2 is readRafal Krypa1-2/+3
2012-07-13Smack: user access check boundsCasey Schaufler1-14/+12
2012-07-13Smack: onlycap limits on CAP_MAC_ADMINCasey Schaufler4-26/+34
2012-07-13Smack: fix smack_new_inode bogositiesCasey Schaufler3-8/+2
2012-07-05ima: audit is compiled only when enabledDmitry Kasatkin4-5/+13
2012-07-05ima: ima_initialized is set only if successfulDmitry Kasatkin1-1/+2
2012-07-05ima: add policy for pseudo fsDmitry Kasatkin1-0/+2
2012-07-05Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netDavid S. Miller1-0/+1
2012-07-03security: Fix nommu build.Paul Mundt1-0/+1
2012-07-02ima: remove unused cleanup functionsDmitry Kasatkin3-20/+0
2012-07-02ima: free securityfs violations fileDmitry Kasatkin1-0/+1
2012-07-02ima: use full pathnames in measurement listMimi Zohar2-7/+39
2012-07-02security: Fix nommu build.Paul Mundt1-0/+1
2012-06-29netlink: add netlink_kernel_cfg parameter to netlink_kernel_createPablo Neira Ayuso1-1/+5
2012-06-26selinux: netlink: Move away from NLMSG_PUT().David S. Miller1-4/+7
2012-06-10Merge commit 'v3.5-rc2' into nextJames Morris16-186/+173
2012-06-07netfilter: selinux: switch hook PFs to nfprotoAlban Crequy1-5/+5
2012-06-01Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds7-72/+80
2012-06-01take calculation of final prot in security_mmap_file() into a helperAl Viro1-18/+28
2012-06-01take security_mmap_file() outside of ->mmap_semAl Viro1-3/+30
2012-05-31Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds3-51/+44
2012-05-31aio/vfs: cleanup of rw_copy_check_uvector() and compat_rw_copy_check_uvector()Christopher Yeoh2-2/+2
2012-05-31kmod: convert two call sites to call_usermodehelper_fns()Boaz Harrosh1-10/+3
2012-05-31security/keys/keyctl.c: suppress memory allocation failure warningAndrew Morton1-1/+1
2012-05-31split ->file_mmap() into ->mmap_addr()/->mmap_file()Al Viro6-51/+30
2012-05-31split cap_mmap_addr() out of cap_file_mmap()Al Viro4-12/+26
2012-05-29selinuxfs snprintf() misusesAl Viro1-29/+7
2012-05-25KEYS: Fix some sparse warningsDavid Howells4-4/+6
2012-05-23keys: change keyctl_session_to_parent() to use task_work_add()Oleg Nesterov3-41/+44
2012-05-23TIF_NOTIFY_RESUME is defined on all targets nowAl Viro1-10/+0
2012-05-23Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebi...Linus Torvalds4-29/+41
2012-05-22Merge branch 'for-3.5' of git://git.kernel.org/pub/scm/linux/kernel/git/tj/cg...Linus Torvalds1-8/+2
2012-05-21Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/...Linus Torvalds50-1102/+1857
2012-05-22Merge branch 'master' of git://git.infradead.org/users/eparis/selinux into nextJames Morris29-335/+415
2012-05-18apparmor: fix long path failure due to disconnected pathJohn Johansen1-0/+2
2012-05-18apparmor: fix profile lookup for unconfinedJohn Johansen1-0/+4
2012-05-16ima: fix filename hint to reflect script interpreter nameMimi Zohar1-1/+3
2012-05-16Merge branch 'for-1205' of http://git.gitorious.org/smack-next/kernel into nextJames Morris4-539/+981
2012-05-16KEYS: Don't check for NULL key pointer in key_validate()David Howells1-24/+16
2012-05-14Smack: allow for significantly longer Smack labels v4Casey Schaufler4-526/+941
generated by cgit 1.2.3-korg (git 2.39.0) at 2024-05-03 03:54:06 +0000