Age | Commit message (Expand) | Author | Files | Lines |
2017-05-09 | Merge branch 'work.misc' of git://git.kernel.org/pub/scm/linux/kernel/git/vir... | Linus Torvalds | 3 | -4/+4 |
2017-05-08 | apparmorfs: replace CURRENT_TIME with current_time() | Deepa Dinamani | 1 | -1/+1 |
2017-05-08 | treewide: use kv[mz]alloc* rather than opencoded variants | Michal Hocko | 1 | -16/+6 |
2017-05-08 | mm: introduce kv[mz]alloc helpers | Michal Hocko | 5 | -44/+3 |
2017-05-03 | Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/... | Linus Torvalds | 41 | -590/+851 |
2017-05-02 | Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next | Linus Torvalds | 1 | -0/+1 |
2017-05-02 | Merge tag 'docs-4.12' of git://git.lwn.net/linux | Linus Torvalds | 1 | -4/+8 |
2017-05-01 | Merge branch 'work.uaccess' of git://git.kernel.org/pub/scm/linux/kernel/git/... | Linus Torvalds | 2 | -10/+1 |
2017-04-26 | fs: constify tree_descr arrays passed to simple_fill_super() | Eric Biggers | 3 | -4/+4 |
2017-04-26 | HAVE_ARCH_HARDENED_USERCOPY is unconditional now | Al Viro | 1 | -9/+0 |
2017-04-21 | Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net | David S. Miller | 3 | -27/+39 |
2017-04-19 | Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/zohar/li... | James Morris | 2 | -34/+94 |
2017-04-19 | Merge branch 'smack-for-4.12' of git://github.com/cschaufler/smack-next into ... | James Morris | 2 | -4/+2 |
2017-04-19 | Merge branch 'stable-4.12' of git://git.infradead.org/users/pcmoore/selinux i... | James Morris | 8 | -60/+57 |
2017-04-18 | KEYS: fix keyctl_set_reqkey_keyring() to not leak thread keyrings | Eric Biggers | 2 | -24/+31 |
2017-04-18 | KEYS: Change the name of the dead type to ".dead" to prevent user access | David Howells | 1 | -1/+1 |
2017-04-18 | KEYS: Disallow keyrings beginning with '.' to be joined as session keyrings | David Howells | 1 | -2/+7 |
2017-04-18 | Merge tag 'keys-next-20170412' of git://git.kernel.org/pub/scm/linux/kernel/g... | James Morris | 12 | -49/+568 |
2017-04-11 | keys: select CONFIG_CRYPTO when selecting DH / KDF | Stephan Müller | 1 | -0/+1 |
2017-04-07 | apparmor: Make path_max parameter readonly | John Johansen | 1 | -1/+1 |
2017-04-07 | apparmor: fix parameters so that the permission test is bypassed at boot | John Johansen | 2 | -26/+23 |
2017-04-07 | apparmor: fix invalid reference to index variable of iterator line 836 | John Johansen | 1 | -2/+4 |
2017-04-07 | apparmor: use SHASH_DESC_ON_STACK | Nicolas Iooss | 1 | -19/+13 |
2017-04-07 | security/apparmor/lsm.c: set debug messages | Valentin Rothberg | 1 | -1/+1 |
2017-04-07 | apparmor: fix boolreturn.cocci warnings | kbuild test robot | 1 | -2/+2 |
2017-04-04 | Smack: Use GFP_KERNEL for smk_netlbl_mls(). | Tetsuo Handa | 1 | -1/+1 |
2017-04-04 | smack: fix double free in smack_parse_opts_str() | Tetsuo Handa | 1 | -3/+1 |
2017-04-04 | KEYS: add SP800-56A KDF support for DH | Stephan Mueller | 7 | -18/+275 |
2017-04-04 | KEYS: Add KEYCTL_RESTRICT_KEYRING | Mat Martineau | 4 | -0/+170 |
2017-04-04 | KEYS: Consistent ordering for __key_link_begin and restrict check | Mat Martineau | 1 | -11/+13 |
2017-04-04 | KEYS: Use structure to capture key restriction function and data | Mat Martineau | 6 | -16/+108 |
2017-04-03 | KEYS: Split role of the keyring pointer for keyring restrict functions | Mat Martineau | 2 | -4/+7 |
2017-04-03 | KEYS: Use a typedef for restrict_link function pointers | Mat Martineau | 2 | -9/+3 |
2017-04-03 | security, keys: convert key_user.usage from atomic_t to refcount_t | Elena Reshetova | 4 | -6/+7 |
2017-04-03 | security, keys: convert key.usage from atomic_t to refcount_t | Elena Reshetova | 5 | -10/+10 |
2017-04-02 | kernel-api.rst: fix a series of errors when parsing C files | mchehab@s-opensource.com | 1 | -4/+8 |
2017-03-31 | selinux: Fix an uninitialized variable bug | Dan Carpenter | 1 | -1/+1 |
2017-03-30 | TOMOYO: Use designated initializers | Kees Cook | 2 | -16/+16 |
2017-03-29 | selinux: Remove unnecessary check of array base in selinux_set_mapping() | Matthias Kaehlcke | 1 | -1/+1 |
2017-03-29 | selinuxfs: Use seq_puts() in sel_avc_stats_seq_show() | Markus Elfring | 1 | -4/+4 |
2017-03-29 | selinux: Adjust two checks for null pointers | Markus Elfring | 1 | -2/+2 |
2017-03-29 | selinux: Use kmalloc_array() in sidtab_init() | Markus Elfring | 1 | -1/+1 |
2017-03-29 | selinux: Return directly after a failed kzalloc() in roles_init() | Markus Elfring | 1 | -2/+1 |
2017-03-29 | selinux: Return directly after a failed kzalloc() in perm_read() | Markus Elfring | 1 | -2/+1 |
2017-03-29 | selinux: Return directly after a failed kzalloc() in common_read() | Markus Elfring | 1 | -2/+1 |
2017-03-29 | selinux: Return directly after a failed kzalloc() in class_read() | Markus Elfring | 1 | -2/+1 |
2017-03-29 | selinux: Return directly after a failed kzalloc() in role_read() | Markus Elfring | 1 | -2/+1 |
2017-03-29 | selinux: Return directly after a failed kzalloc() in type_read() | Markus Elfring | 1 | -2/+1 |
2017-03-29 | selinux: Return directly after a failed kzalloc() in user_read() | Markus Elfring | 1 | -2/+1 |
2017-03-29 | selinux: Improve another size determination in sens_read() | Markus Elfring | 1 | -1/+1 |
2017-03-29 | selinux: Return directly after a failed kzalloc() in sens_read() | Markus Elfring | 1 | -2/+1 |
2017-03-29 | selinux: Return directly after a failed kzalloc() in cat_read() | Markus Elfring | 1 | -2/+1 |
2017-03-28 | rtnetlink: Add RTM_DELNETCONF | David Ahern | 1 | -0/+1 |
2017-03-28 | new helper: uaccess_kernel() | Al Viro | 1 | -1/+1 |
2017-03-28 | LSM: Revive security_task_alloc() hook and per "struct task_struct" security ... | Tetsuo Handa | 1 | -0/+5 |
2017-03-24 | LSM: Initialize security_hook_heads upon registration. | Tetsuo Handa | 1 | -354/+7 |
2017-03-23 | selinux: Delete an unnecessary variable initialisation in range_read() | Markus Elfring | 1 | -1/+1 |
2017-03-23 | selinux: Return directly after a failed next_entry() in range_read() | Markus Elfring | 1 | -1/+1 |
2017-03-23 | selinux: Delete an unnecessary variable assignment in filename_trans_read() | Markus Elfring | 1 | -1/+0 |
2017-03-23 | selinux: One function call less in genfs_read() after null pointer detection | Markus Elfring | 1 | -2/+3 |
2017-03-23 | selinux: Return directly after a failed next_entry() in genfs_read() | Markus Elfring | 1 | -1/+1 |
2017-03-23 | selinux: Delete an unnecessary return statement in policydb_destroy() | Markus Elfring | 1 | -2/+0 |
2017-03-23 | selinux: Use kcalloc() in policydb_index() | Markus Elfring | 1 | -9/+9 |
2017-03-23 | selinux: Adjust four checks for null pointers | Markus Elfring | 1 | -4/+4 |
2017-03-23 | selinux: Use kmalloc_array() in hashtab_create() | Markus Elfring | 1 | -1/+1 |
2017-03-23 | selinux: Improve size determinations in four functions | Markus Elfring | 1 | -4/+4 |
2017-03-23 | selinux: Delete an unnecessary return statement in cond_compute_av() | Markus Elfring | 1 | -1/+0 |
2017-03-23 | selinux: Use kmalloc_array() in cond_init_bool_indexes() | Markus Elfring | 1 | -2/+3 |
2017-03-13 | ima: provide ">" and "<" operators for fowner/uid/euid rules. | Mikhail Kurinnoi | 1 | -28/+87 |
2017-03-10 | selinux: check for address length in selinux_socket_bind() | Alexander Potapenko | 1 | -0/+8 |
2017-03-07 | ima: accept previously set IMA_NEW_FILE | Daniel Glöckner | 1 | -2/+3 |
2017-03-06 | integrity: mark default IMA rules as __ro_after_init | James Morris | 1 | -4/+4 |
2017-03-06 | selinux: constify nlmsg permission tables | James Morris | 1 | -5/+5 |
2017-03-06 | security: mark LSM hooks as __ro_after_init | James Morris | 8 | -8/+8 |
2017-03-06 | security: introduce CONFIG_SECURITY_WRITABLE_HOOKS | James Morris | 2 | -0/+11 |
2017-03-06 | selinux: fix kernel BUG on prlimit(..., NULL, NULL) | Stephen Smalley | 1 | -0/+2 |
2017-03-06 | prlimit,security,selinux: add a security hook for prlimit | Stephen Smalley | 3 | -1/+23 |
2017-03-03 | Merge branch 'WIP.sched-core-for-linus' of git://git.kernel.org/pub/scm/linux... | Linus Torvalds | 10 | -1/+18 |
2017-03-02 | sched/headers: Prepare to remove the <linux/magic.h> include from <linux/sche... | Ingo Molnar | 1 | -0/+2 |
2017-03-02 | sched/headers: Prepare to use <linux/rcuupdate.h> instead of <linux/rculist.h... | Ingo Molnar | 4 | -0/+7 |
2017-03-02 | sched/headers: Prepare for new header dependencies before moving code to <lin... | Ingo Molnar | 2 | -0/+2 |
2017-03-02 | sched/headers: Prepare to remove <linux/cred.h> inclusion from <linux/sched.h> | Ingo Molnar | 4 | -0/+5 |
2017-03-02 | sched/headers: Prepare for new header dependencies before moving code to <lin... | Ingo Molnar | 1 | -0/+1 |
2017-03-02 | sched/headers: Prepare for new header dependencies before moving code to <lin... | Ingo Molnar | 1 | -1/+1 |
2017-03-02 | selinux: wrap cgroup seclabel support with its own policy capability | Stephen Smalley | 4 | -4/+12 |
2017-03-02 | KEYS: Differentiate uses of rcu_dereference_key() and user_key_payload() | David Howells | 4 | -8/+8 |
2017-02-27 | lib/vsprintf.c: remove %Z support | Alexey Dobriyan | 2 | -2/+2 |
2017-02-24 | mm, fs: reduce fault, page_mkwrite, and pfn_mkwrite to take only vmf | Dave Jiang | 1 | -3/+2 |
2017-02-23 | Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebi... | Linus Torvalds | 4 | -6/+6 |
2017-02-22 | Merge tag 'driver-core-4.11-rc1' of git://git.kernel.org/pub/scm/linux/kernel... | Linus Torvalds | 2 | -3/+39 |
2017-02-22 | Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next | Linus Torvalds | 2 | -3/+8 |
2017-02-21 | Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/... | Linus Torvalds | 54 | -1839/+3314 |
2017-02-20 | Merge branch 'locking-core-for-linus' of git://git.kernel.org/pub/scm/linux/k... | Linus Torvalds | 2 | -8/+2 |
2017-02-11 | Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net | David S. Miller | 1 | -1/+1 |
2017-02-10 | KEYS: Use memzero_explicit() for secret data | Dan Carpenter | 1 | -1/+1 |
2017-02-10 | KEYS: Fix an error code in request_master_key() | Dan Carpenter | 1 | -1/+1 |
2017-02-10 | Merge branch 'stable-4.11' of git://git.infradead.org/users/pcmoore/selinux i... | James Morris | 9 | -276/+327 |
2017-02-08 | selinux: fix off-by-one in setprocattr | Stephen Smalley | 1 | -1/+1 |
2017-02-08 | Merge branch 'stable-4.10' of git://git.infradead.org/users/pcmoore/selinux i... | James Morris | 1 | -1/+1 |
2017-02-07 | selinux: allow changing labels for cgroupfs | Antonio Murdaca | 1 | -0/+2 |
2017-02-07 | selinux: fix off-by-one in setprocattr | Stephen Smalley | 1 | -1/+1 |
2017-01-27 | ima: allow to check MAY_APPEND | Lans Zhang | 2 | -4/+5 |
2017-01-27 | ima: fix ima_d_path() possible race with rename | Mimi Zohar | 3 | -6/+24 |
2017-01-27 | Merge branch 'smack-for-4.11' of git://github.com/cschaufler/smack-next into ... | James Morris | 3 | -27/+95 |
2017-01-24 | Introduce a sysctl that modifies the value of PROT_SOCK. | Krister Johansen | 1 | -1/+2 |
2017-01-24 | exec: Remove LSM_UNSAFE_PTRACE_CAP | Eric W. Biederman | 4 | -5/+4 |
2017-01-24 | exec: Test the ptracer's saved cred to see if the tracee can gain caps | Eric W. Biederman | 1 | -1/+2 |
2017-01-24 | exec: Don't reset euid and egid when the tracee has CAP_SETUID | Eric W. Biederman | 1 | -1/+1 |
2017-01-19 | Introduce STATIC_USERMODEHELPER to mediate call_usermodehelper() | Greg Kroah-Hartman | 1 | -0/+35 |
2017-01-19 | Make static usermode helper binaries constant | Greg Kroah-Hartman | 1 | -3/+4 |
2017-01-19 | LSM: Add /sys/kernel/security/lsm | Casey Schaufler | 9 | -9/+71 |
2017-01-16 | apparmor: fix undefined reference to `aa_g_hash_policy' | John Johansen | 1 | -1/+1 |
2017-01-16 | apparmor: replace remaining BUG_ON() asserts with AA_BUG() | John Johansen | 4 | -5/+5 |
2017-01-16 | apparmor: fix restricted endian type warnings for policy unpack | John Johansen | 1 | -6/+6 |
2017-01-16 | apparmor: fix restricted endian type warnings for dfa unpack | John Johansen | 2 | -12/+12 |
2017-01-16 | apparmor: add check for apparmor enabled in module parameters missing it | John Johansen | 1 | -0/+10 |
2017-01-16 | apparmor: add per cpu work buffers to avoid allocating buffers at every hook | John Johansen | 2 | -1/+103 |
2017-01-16 | apparmor: sysctl to enable unprivileged user ns AppArmor policy loading | Tyler Hicks | 2 | -1/+47 |
2017-01-16 | apparmor: support querying extended trusted helper extra data | William Hua | 5 | -0/+245 |
2017-01-16 | apparmor: update cap audit to check SECURITY_CAP_NOAUDIT | John Johansen | 1 | -6/+10 |
2017-01-16 | apparmor: make computing policy hashes conditional on kernel parameter | John Johansen | 2 | -29/+32 |
2017-01-16 | apparmor: convert change_profile to use fqname later to give better control | John Johansen | 5 | -66/+28 |
2017-01-16 | apparmor: fix change_hat debug output | John Johansen | 1 | -4/+5 |
2017-01-16 | apparmor: remove unused op parameter from simple_write_to_buffer() | John Johansen | 1 | -6/+3 |
2017-01-16 | apparmor: change aad apparmor_audit_data macro to a fn macro | John Johansen | 12 | -161/+155 |
2017-01-16 | apparmor: change op from int to const char * | John Johansen | 10 | -134/+84 |
2017-01-16 | apparmor: rename context abreviation cxt to the more standard ctx | John Johansen | 5 | -144/+150 |
2017-01-16 | apparmor: fail task profile update if current_cred isn't real_cred | John Johansen | 1 | -0/+3 |
2017-01-16 | apparmor: add per policy ns .load, .replace, .remove interface files | John Johansen | 2 | -22/+130 |
2017-01-16 | apparmor: pass the subject profile into profile replace/remove | John Johansen | 3 | -16/+21 |
2017-01-16 | apparmor: audit policy ns specified in policy load | John Johansen | 3 | -24/+77 |
2017-01-16 | apparmor: allow introspecting the loaded policy pre internal transform | John Johansen | 8 | -58/+278 |
2017-01-16 | apparmor: add ns name to the audit data for policy loads | John Johansen | 2 | -10/+25 |
2017-01-16 | apparmor: add profile and ns params to aa_may_manage_policy() | John Johansen | 3 | -14/+12 |
2017-01-16 | apparmor: add ns being viewed as a param to policy_admin_capable() | John Johansen | 3 | -10/+16 |
2017-01-16 | apparmor: add ns being viewed as a param to policy_view_capable() | John Johansen | 4 | -8/+35 |
2017-01-16 | apparmor: allow specifying the profile doing the management | John Johansen | 1 | -11/+21 |
2017-01-16 | apparmor: allow introspecting the policy namespace name | John Johansen | 1 | -0/+24 |
2017-01-16 | apparmor: Make aa_remove_profile() callable from a different view | John Johansen | 3 | -5/+7 |
2017-01-16 | apparmor: track ns level so it can be used to help in view checks | John Johansen | 1 | -0/+1 |
2017-01-16 | apparmor: add special .null file used to "close" fds at exec | John Johansen | 3 | -1/+81 |
2017-01-16 | apparmor: provide userspace flag indicating binfmt_elf_mmap change | John Johansen | 1 | -0/+1 |
2017-01-16 | apparmor: add a default null dfa | John Johansen | 6 | -2/+46 |
2017-01-16 | apparmor: allow policydb to be used as the file dfa | John Johansen | 1 | -4/+8 |
2017-01-16 | apparmor: add get_dfa() fn | John Johansen | 1 | -0/+15 |
2017-01-16 | apparmor: prepare to support newer versions of policy | John Johansen | 2 | -10/+25 |
2017-01-16 | apparmor: add support for force complain flag to support learning mode | John Johansen | 1 | -1/+3 |
2017-01-16 | apparmor: remove paranoid load switch | John Johansen | 2 | -16/+10 |
2017-01-16 | apparmor: name null-XXX profiles after the executable | John Johansen | 3 | -17/+47 |
2017-01-16 | apparmor: pass gfp_t parameter into profile allocation | John Johansen | 4 | -8/+9 |
2017-01-16 | apparmor: refactor prepare_ns() and make usable from different views | John Johansen | 5 | -38/+79 |
2017-01-16 | apparmor: update policy_destroy to use new debug asserts | John Johansen | 1 | -9/+2 |
2017-01-16 | apparmor: pass gfp param into aa_policy_init() | John Johansen | 4 | -7/+7 |
2017-01-16 | apparmor: constify policy name and hname | John Johansen | 3 | -4/+4 |
2017-01-16 | apparmor: rename hname_tail to basename | John Johansen | 3 | -4/+4 |
2017-01-16 | apparmor: rename mediated_filesystem() to path_mediated_fs() | John Johansen | 2 | -8/+8 |
2017-01-16 | apparmor: add debug assert AA_BUG and Kconfig to control debug info | John Johansen | 3 | -4/+43 |
2017-01-16 | apparmor: add macro for bug asserts to check that a lock is held | John Johansen | 1 | -0/+11 |
2017-01-16 | apparmor: allow ns visibility question to consider subnses | John Johansen | 4 | -8/+14 |
2017-01-16 | apparmor: add fn to lookup profiles by fqname | John Johansen | 4 | -7/+38 |
2017-01-16 | apparmor: add lib fn to find the "split" for fqnames | John Johansen | 2 | -0/+55 |
2017-01-16 | apparmor: add strn version of aa_find_ns | John Johansen | 2 | -6/+29 |
2017-01-16 | apparmor: add strn version of lookup_profile fn | John Johansen | 2 | -11/+27 |
2017-01-16 | apparmor: rename replacedby to proxy | John Johansen | 5 | -65/+65 |
2017-01-16 | apparmor: rename PFLAG_INVALID to PFLAG_STALE | John Johansen | 3 | -5/+5 |
2017-01-16 | apparmor: rename sid to secid | John Johansen | 4 | -65/+65 |
2017-01-16 | apparmor: rename namespace to ns to improve code line lengths | John Johansen | 8 | -128/+122 |
2017-01-16 | apparmor: split apparmor policy namespaces code into its own file | John Johansen | 10 | -391/+454 |
2017-01-16 | apparmor: split out shared policy_XXX fns to lib | John Johansen | 4 | -132/+137 |
2017-01-16 | apparmor: move lib definitions into separate lib include | John Johansen | 5 | -82/+99 |
2017-01-15 | apparmor: use designated initializers | Kees Cook | 2 | -5/+7 |
2017-01-15 | AppArmor: Use GFP_KERNEL for __aa_kvmalloc(). | Tetsuo Handa | 1 | -1/+2 |
2017-01-14 | locking/atomic, kref: Use kref_get_unless_zero() more | Peter Zijlstra | 2 | -8/+2 |
2017-01-12 | security,selinux,smack: kill security_task_wait hook | Stephen Smalley | 3 | -33/+0 |
2017-01-12 | selinux: drop unused socket security classes | Stephen Smalley | 2 | -12/+0 |
2017-01-10 | Smack: ignore private inode for file functions | Seung-Woo Kim | 1 | -0/+12 |
2017-01-10 | Smack: fix d_instantiate logic for sockfs and pipefs | Rafal Krypa | 1 | -7/+7 |
2017-01-10 | SMACK: Use smk_tskacc() instead of smk_access() for proper logging | Himanshu Shukla | 1 | -4/+1 |
2017-01-10 | Smack: Traverse the smack_known_list using list_for_each_entry_rcu macro | Vishal Goel | 1 | -1/+1 |
2017-01-10 | SMACK: Free the i_security blob in inode using RCU | Himanshu Shukla | 2 | -4/+29 |
2017-01-10 | SMACK: Delete list_head repeated initialization | Himanshu Shukla | 1 | -4/+0 |
2017-01-10 | SMACK: Add new lock for adding entry in smack master list | Vishal Goel | 1 | -0/+5 |
2017-01-10 | Smack: Fix the issue of wrong SMACK label update in socket bind fail case | Vishal Goel | 2 | -0/+21 |
2017-01-10 | Smack: Fix the issue of permission denied error in ipv6 hook | Vishal Goel | 2 | -2/+4 |
2017-01-10 | SMACK: Add the rcu synchronization mechanism in ipv6 hooks | Vishal Goel | 1 | -5/+15 |
2017-01-09 | selinux: default to security isid in sel_make_bools() if no sid is found | Gary Tierney | 1 | -3/+3 |
2017-01-09 | selinux: log errors when loading new policy | Gary Tierney | 1 | -5/+16 |
2017-01-09 | proc,security: move restriction on writing /proc/pid/attr nodes to proc | Stephen Smalley | 4 | -29/+6 |
2017-01-09 | selinux: clean up cred usage and simplify | Stephen Smalley | 3 | -211/+166 |
2017-01-09 | selinux: allow context mounts on tmpfs, ramfs, devpts within user namespaces | Stephen Smalley | 1 | -3/+7 |
2017-01-09 | selinux: handle ICMPv6 consistently with ICMP | Stephen Smalley | 1 | -1/+2 |
2017-01-09 | selinux: add security in-core xattr support for tracefs | Yongqin Liu | 1 | -0/+1 |
2017-01-09 | selinux: support distinctions among all network address families | Stephen Smalley | 5 | -2/+147 |
2016-12-24 | Replace <asm/uaccess.h> with <linux/uaccess.h> globally | Linus Torvalds | 4 | -4/+4 |
2016-12-22 | Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo... | Linus Torvalds | 1 | -0/+2 |
2016-12-21 | selinux: use the kernel headers when building scripts/selinux | Paul Moore | 1 | -0/+2 |
2016-12-20 | ima: platform-independent hash value | Andreas Steffen | 1 | -2/+4 |
2016-12-20 | ima: define a canonical binary_runtime_measurements list format | Mimi Zohar | 5 | -13/+62 |
2016-12-20 | ima: support restoring multiple template formats | Mimi Zohar | 1 | -3/+49 |
2016-12-20 | ima: store the builtin/custom template definitions in a list | Mimi Zohar | 3 | -11/+43 |