aboutsummaryrefslogtreecommitdiffstats
path: root/security
AgeCommit message (Expand)AuthorFilesLines
2012-10-25apparmor: fix IRQ stack overflow during free_profileJohn Johansen1-1/+23
2012-10-17apparmor: fix apparmor OOPS in audit_log_untrustedstring+0x1c/0x40John Johansen1-1/+1
2012-10-16fix a leak in replace_fd() usersAl Viro1-11/+7
2012-10-14Merge branch 'modules-next' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds7-63/+129
2012-10-11consitify do_mount() argumentsAl Viro7-13/+14
2012-10-09Merge branch 'akpm' (Andrew's patch-bomb)Linus Torvalds2-8/+3
2012-10-09mm: kill vma flag VM_RESERVED and mm->reserved_vm counterKonstantin Khlebnikov1-1/+1
2012-10-09mm: use mm->exe_file instead of first VM_EXECUTABLE vma->vm_fileKonstantin Khlebnikov1-7/+2
2012-10-09Merge tag 'asm-generic' of git://git.kernel.org/pub/scm/linux/kernel/git/arnd...Linus Torvalds1-1/+1
2012-10-08KEYS: Add payload preparsing opportunity prior to key instantiate or updateDavid Howells7-63/+129
2012-10-07Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds2-4/+4
2012-10-06device_cgroup: rename whitelist to exception listAristeu Rozanski1-99/+99
2012-10-06device_cgroup: convert device_cgroup internally to policy + exceptionsAristeu Rozanski1-98/+134
2012-10-06device_cgroup: introduce dev_whitelist_clean()Aristeu Rozanski1-5/+17
2012-10-06device_cgroup: add "deny_all" in dev_cgroup structureAristeu Rozanski1-0/+5
2012-10-05ima: fix bug in argument orderDmitry Kasatkin2-4/+4
2012-10-04UAPI: (Scripted) Disintegrate include/asm-genericDavid Howells1-1/+1
2012-10-02Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/...Linus Torvalds17-228/+793
2012-10-02Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds1-52/+21
2012-10-02Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-nextLinus Torvalds1-3/+2
2012-10-02Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebi...Linus Torvalds25-136/+148
2012-10-02Merge branch 'for-3.7-hierarchy' of git://git.kernel.org/pub/scm/linux/kernel...Linus Torvalds1-0/+9
2012-10-02Merge branch 'for-3.7' of git://git.kernel.org/pub/scm/linux/kernel/git/tj/wqLinus Torvalds2-5/+5
2012-10-01Merge branch 'core-urgent-for-linus' of git://git.kernel.org/pub/scm/linux/ke...Linus Torvalds1-2/+0
2012-10-01Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jik...Linus Torvalds1-1/+0
2012-09-28Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netDavid S. Miller1-0/+1
2012-09-28Merge tag 'v3.6-rc7' into nextJames Morris2-8/+3
2012-09-26make get_file() return its argumentAl Viro1-2/+1
2012-09-26new helper: iterate_fd()Al Viro1-35/+22
2012-09-26switch flush_unauthorized_files() to replace_fd()Al Viro1-32/+15
2012-09-21userns: Teach security_path_chown to take kuids and kgidsEric W. Biederman4-8/+10
2012-09-21userns: Add user namespace support to IMAEric W. Biederman2-9/+10
2012-09-21userns: Convert EVM to deal with kuids and kgids in it's hmac computationEric W. Biederman1-2/+2
2012-09-21userns: Convert selinux to use kuid and kgid where appropriateEric W. Biederman2-4/+4
2012-09-21userns: Convert tomoyo to use kuid and kgid where appropriateEric W. Biederman4-20/+31
2012-09-21userns: Convert apparmor to use kuid and kgid where appropriateEric W. Biederman4-10/+12
2012-09-19ima: change flags container data typeDmitry Kasatkin1-1/+1
2012-09-18xfrm: invalidate dst on policy insertion/deletionNicolas Dichtel1-0/+1
2012-09-18Smack: setprocattr memory leak fixCasey Schaufler1-12/+2
2012-09-18Smack: implement revoking all rules for a subject labelRafal Krypa1-0/+75
2012-09-18Smack: remove task_wait() hook.Casey Schaufler1-29/+8
2012-09-14cgroup: mark subsystems with broken hierarchy support and whine if cgroups ar...Tejun Heo1-0/+9
2012-09-13userns: Convert security/keys to the new userns infrastructureEric W. Biederman8-83/+79
2012-09-13ima: audit log hashesPeter Moody5-6/+55
2012-09-13ima: generic IMA action flag handlingDmitry Kasatkin4-19/+26
2012-09-13task_work: Revert "hold task_lock around checks in keyctl"Oleg Nesterov1-2/+0
2012-09-12ima: rename ima_must_appraise_or_measureDmitry Kasatkin3-4/+4
2012-09-08netlink: hide struct module parameter in netlink_kernel_createPablo Neira Ayuso1-2/+1
2012-09-08netlink: kill netlink_set_nonrootPablo Neira Ayuso1-1/+1
2012-09-07ima: digital signature verification supportDmitry Kasatkin2-19/+52
2012-09-07ima: add support for different security.ima data typesMimi Zohar3-14/+17
2012-09-07ima: add ima_inode_setxattr/removexattr function and callsMimi Zohar2-0/+63
2012-09-07ima: replace iint spinblock with rwlock/read_lockDmitry Kasatkin1-9/+7
2012-09-07ima: allocating iint improvementsDmitry Kasatkin2-35/+23
2012-09-07ima: add appraise action keywords and default rulesMimi Zohar2-40/+116
2012-09-07ima: integrity appraisal extensionMimi Zohar11-53/+351
2012-09-08Yama: handle 32-bit userspace prctlKees Cook1-1/+1
2012-09-05security: allow Yama to be unconditionally stackedKees Cook3-4/+39
2012-09-01AppArmor: remove af_names.h from .gitignorePaul Bolle1-1/+0
2012-08-22ima: enable the IBM vTPM as the default TPM in the PPC64 caseKent Yoder1-0/+1
2012-08-22tpm: Move tpm_get_random api into the TPM device driverKent Yoder1-42/+12
2012-08-20workqueue: deprecate system_nrt[_freezable]_wqTejun Heo2-5/+5
2012-08-17Yama: access task_struct->comm directlyKees Cook1-8/+2
2012-08-10Yama: higher restrictions should block PTRACE_TRACEMEKees Cook1-0/+41
2012-07-31selinux: tag avc cache alloc as non-criticalMel Gorman1-1/+1
2012-07-30Merge branch 'akpm' (Andrew's patch-bomb)Linus Torvalds1-0/+1
2012-07-30c/r: fcntl: add F_GETOWNER_UIDS optionCyrill Gorcunov1-0/+1
2012-07-30selinux: fix selinux_inode_setxattr oopsAl Viro1-5/+10
2012-07-30smack: off by one errorAlan Cox1-4/+4
2012-07-26posix_types.h: Cleanup stale __NFDBITS and related definitionsJosh Boyer1-1/+1
2012-07-24Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-nextLinus Torvalds2-10/+17
2012-07-23Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/...Linus Torvalds17-87/+114
2012-07-23Merge branch 'for-linus-2' of git://git.kernel.org/pub/scm/linux/kernel/git/v...Linus Torvalds6-26/+18
2012-07-23switch dentry_open() to struct path, make it grab references itselfAl Viro3-6/+5
2012-07-22hold task_lock around checks in keyctlAl Viro1-0/+2
2012-07-22merge task_work and rcu_head, get rid of separate allocation for keyring caseAl Viro3-28/+12
2012-07-22trimming task_work: kill ->dataAl Viro3-8/+15
2012-07-19Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netDavid S. Miller2-2/+4
2012-07-18Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds2-2/+4
2012-07-16SELinux: do not check open perms if they are not known to policyEric Paris1-1/+1
2012-07-16SELinux: include definition of new capabilitiesEric Paris1-1/+3
2012-07-13Smack: don't show empty rules when /smack/load or /smack/load2 is readRafal Krypa1-2/+3
2012-07-13Smack: user access check boundsCasey Schaufler1-14/+12
2012-07-13Smack: onlycap limits on CAP_MAC_ADMINCasey Schaufler4-26/+34
2012-07-13Smack: fix smack_new_inode bogositiesCasey Schaufler3-8/+2
2012-07-05ima: audit is compiled only when enabledDmitry Kasatkin4-5/+13
2012-07-05ima: ima_initialized is set only if successfulDmitry Kasatkin1-1/+2
2012-07-05ima: add policy for pseudo fsDmitry Kasatkin1-0/+2
2012-07-05Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netDavid S. Miller1-0/+1
2012-07-03security: Fix nommu build.Paul Mundt1-0/+1
2012-07-02ima: remove unused cleanup functionsDmitry Kasatkin3-20/+0
2012-07-02ima: free securityfs violations fileDmitry Kasatkin1-0/+1
2012-07-02ima: use full pathnames in measurement listMimi Zohar2-7/+39
2012-07-02security: Fix nommu build.Paul Mundt1-0/+1
2012-06-29netlink: add netlink_kernel_cfg parameter to netlink_kernel_createPablo Neira Ayuso1-1/+5
2012-06-26selinux: netlink: Move away from NLMSG_PUT().David S. Miller1-4/+7
2012-06-10Merge commit 'v3.5-rc2' into nextJames Morris16-186/+173
2012-06-07netfilter: selinux: switch hook PFs to nfprotoAlban Crequy1-5/+5
2012-06-01Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds7-72/+80
2012-06-01take calculation of final prot in security_mmap_file() into a helperAl Viro1-18/+28
2012-06-01take security_mmap_file() outside of ->mmap_semAl Viro1-3/+30
2012-05-31Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds3-51/+44
2012-05-31aio/vfs: cleanup of rw_copy_check_uvector() and compat_rw_copy_check_uvector()Christopher Yeoh2-2/+2
2012-05-31kmod: convert two call sites to call_usermodehelper_fns()Boaz Harrosh1-10/+3
2012-05-31security/keys/keyctl.c: suppress memory allocation failure warningAndrew Morton1-1/+1
2012-05-31split ->file_mmap() into ->mmap_addr()/->mmap_file()Al Viro6-51/+30
2012-05-31split cap_mmap_addr() out of cap_file_mmap()Al Viro4-12/+26
2012-05-29selinuxfs snprintf() misusesAl Viro1-29/+7
2012-05-25KEYS: Fix some sparse warningsDavid Howells4-4/+6
2012-05-23keys: change keyctl_session_to_parent() to use task_work_add()Oleg Nesterov3-41/+44
2012-05-23TIF_NOTIFY_RESUME is defined on all targets nowAl Viro1-10/+0
2012-05-23Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebi...Linus Torvalds4-29/+41
2012-05-22Merge branch 'for-3.5' of git://git.kernel.org/pub/scm/linux/kernel/git/tj/cg...Linus Torvalds1-8/+2
2012-05-21Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/...Linus Torvalds50-1102/+1857
2012-05-22Merge branch 'master' of git://git.infradead.org/users/eparis/selinux into nextJames Morris29-335/+415
2012-05-18apparmor: fix long path failure due to disconnected pathJohn Johansen1-0/+2
2012-05-18apparmor: fix profile lookup for unconfinedJohn Johansen1-0/+4
2012-05-16ima: fix filename hint to reflect script interpreter nameMimi Zohar1-1/+3
2012-05-16Merge branch 'for-1205' of http://git.gitorious.org/smack-next/kernel into nextJames Morris4-539/+981
2012-05-16KEYS: Don't check for NULL key pointer in key_validate()David Howells1-24/+16
2012-05-14Smack: allow for significantly longer Smack labels v4Casey Schaufler4-526/+941
2012-05-14gfp flags for security_inode_alloc()?Tetsuo Handa1-4/+4
2012-05-14Smack: recursive tramsmuteCasey Schaufler2-9/+36
2012-05-15Yama: replace capable() with ns_capable()Kees Cook1-2/+2
2012-05-15TOMOYO: Accept manager programs which do not start with / .Tetsuo Handa2-21/+6
2012-05-11KEYS: Add invalidation supportDavid Howells8-28/+110
2012-05-11KEYS: Do LRU discard in full keyringsDavid Howells2-7/+42
2012-05-11KEYS: Permit in-place link replacement in keyring listDavid Howells2-40/+57
2012-05-11KEYS: Perform RCU synchronisation on keys prior to key destructionDavid Howells1-29/+44
2012-05-11KEYS: Announce key type (un)registrationDavid Howells1-0/+3
2012-05-11KEYS: Reorganise keys MakefileDavid Howells1-3/+9
2012-05-11KEYS: Move the key config into security/keys/KconfigDavid Howells2-67/+72
2012-05-08netfilter: remove ip_queue supportPablo Neira Ayuso1-13/+0
2012-05-04Merge tag 'v3.4-rc5' into nextJames Morris3-29/+54
2012-05-03userns: Convert capabilities related permsion checksEric W. Biederman1-15/+26
2012-05-03userns: Store uid and gid values in struct cred with kuid_t and kgid_t typesEric W. Biederman1-2/+1
2012-05-03userns: Convert group_info values from gid_t to kgid_t.Eric W. Biederman1-1/+2
2012-04-26userns: Simplify the user_namespace by making userns->creator a kuid.Eric W. Biederman1-2/+3
2012-04-23Yama: remove an unused variableDan Carpenter1-1/+0
2012-04-19Yama: add additional ptrace scopesKees Cook1-11/+51
2012-04-19security: fix compile error in commoncap.cJonghwan Choi1-0/+1
2012-04-18fcaps: clear the same personality flags as suid when fcaps are usedEric Paris1-0/+5
2012-04-18Smack: move label list initializationCasey Schaufler2-25/+33
2012-04-14Fix execve behavior apparmor for PR_{GET,SET}_NO_NEW_PRIVSJohn Johansen1-4/+35
2012-04-14Add PR_{GET,SET}_NO_NEW_PRIVS to prevent execve from granting privsAndy Lutomirski3-3/+18
2012-04-10Smack: build when CONFIG_AUDIT not definedKees Cook1-4/+15
2012-04-09SELinux: remove unused common_audit_data in flush_unauthorized_filesEric Paris1-4/+0
2012-04-09SELinux: avc: remove the useless fields in avc_add_callbackWanlong Gao6-47/+15
2012-04-09SELinux: replace weak GFP_ATOMIC to GFP_KERNEL in avc_add_callbackWanlong Gao1-2/+2
2012-04-09SELinux: unify the selinux_audit_data and selinux_late_audit_dataEric Paris3-91/+16
2012-04-09SELinux: remove auditdeny from selinux_audit_dataEric Paris1-8/+1
2012-04-09LSM: do not initialize common_audit_data to 0Eric Paris11-44/+44
2012-04-09LSM: BUILD_BUG_ON if the common_audit_data union ever growsEric Paris1-0/+7
2012-04-09LSM: remove the task field from common_audit_dataEric Paris2-7/+2
2012-04-09apparmor: move task from common_audit_data to apparmor_audit_dataEric Paris3-3/+11
2012-04-09LSM: remove the COMMON_AUDIT_DATA_INIT type expansionEric Paris10-43/+43
2012-04-09SELinux: move common_audit_data to a noinline slow path functionEric Paris1-11/+21
2012-04-09SELinux: remove inode_has_perm_noadpEric Paris1-24/+4
2012-04-09SELinux: delay initialization of audit data in selinux_inode_permissionEric Paris3-70/+105
2012-04-09SELinux: if sel_make_bools errors don't leave inconsistent stateEric Paris1-0/+1
2012-04-09SELinux: remove needless sel_div functionEric Paris1-6/+1
2012-04-09SELinux: possible NULL deref in context_struct_to_stringEric Paris1-3/+5
2012-04-09SELinux: audit failed attempts to set invalid labelsEric Paris1-2/+34
2012-04-09SELinux: rename dentry_open to file_openEric Paris6-15/+15
2012-04-09SELinux: check OPEN on truncate callsEric Paris1-1/+5
2012-04-09SELinux: add default_type statementsEric Paris4-6/+33
2012-04-09SELinux: allow default source/target selectors for user/role/rangeEric Paris6-8/+109
2012-04-09SELinux: loosen DAC perms on reading policyEric Paris1-1/+1
2012-04-09SELinux: allow seek operations on the file exposing policyEric Paris1-0/+1
2012-04-07userns: Add an explicit reference to the parent user namespaceEric W. Biederman1-1/+1
2012-04-07cred: Refcount the user_ns pointed to by the cred.Eric W. Biederman1-1/+1
2012-04-07userns: Use cred->user_ns instead of cred->user->user_nsEric W. Biederman4-10/+10
2012-04-03lsm_audit: don't specify the audit pre/post callbacks in 'struct common_audit...Linus Torvalds4-13/+12
2012-04-03SELinux: do not allocate stack space for AVC data unless neededEric Paris2-14/+27
2012-04-03SELinux: remove avd from slow_avc_audit()Eric Paris1-2/+2
2012-04-03SELinux: remove avd from selinux_audit_dataEric Paris1-1/+0
2012-04-03LSM: shrink the common_audit_data data unionEric Paris4-88/+122
2012-04-03LSM: shrink sizeof LSM specific portion of common_audit_dataEric Paris15-97/+238
2012-04-01cgroup: convert all non-memcg controllers to the new cftype interfaceTejun Heo1-8/+2
2012-03-31Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds2-71/+48
2012-03-31get rid of pointless includes of ext2_fs.hAl Viro1-5/+4
2012-03-31selinuxfs: merge dentry allocation into sel_make_dir()Al Viro1-66/+44
2012-03-31selinux: inline avc_audit() and avc_has_perm_noaudit() into callerLinus Torvalds1-2/+2
2012-03-31selinux: don't inline slow-path code into avc_has_perm_noaudit()Linus Torvalds1-14/+38
2012-03-29Merge branch 'x86-x32-for-linus' of git://git.kernel.org/pub/scm/linux/kernel...Linus Torvalds1-1/+1
2012-03-28Merge tag 'split-asm_system_h-for-linus-20120328' of git://git.kernel.org/pub...Linus Torvalds2-1/+2
2012-03-28Remove all #inclusions of asm/system.hDavid Howells1-1/+0
2012-03-28apparmor: Fix change_onexec when called from a confined taskJohn Johansen2-1/+4
2012-03-26SELinux: selinux/xfrm.h needs net/flow.hDavid Howells1-0/+2
2012-03-23usermodehelper: kill umh_wait, renumber UMH_* constantsOleg Nesterov1-1/+1
2012-03-23usermodehelper: use UMH_WAIT_PROC consistentlyOleg Nesterov1-1/+1
2012-03-23Merge tag 'nfs-for-3.4-1' of git://git.linux-nfs.org/projects/trondmy/linux-nfsLinus Torvalds2-16/+22
2012-03-22security: optimize avc_audit() common pathLinus Torvalds1-29/+41
2012-03-21Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds1-6/+2
2012-03-21Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/...Linus Torvalds38-191/+856
2012-03-21Merge branch 'kmap_atomic' of git://github.com/congwang/linuxLinus Torvalds1-2/+2
2012-03-20switch unix_sock to struct pathAl Viro1-6/+2
2012-03-20Merge branch 'for-3.4' of git://git.kernel.org/pub/scm/linux/kernel/git/tj/cg...Linus Torvalds1-6/+4
2012-03-20tomoyo: remove the second argument of k[un]map_atomic()Cong Wang1-2/+2
2012-03-20Merge branch 'for-security' of git://git.kernel.org/pub/scm/linux/kernel/git/...James Morris1-2/+2
generated by cgit 1.2.3-korg (git 2.39.0) at 2024-05-16 17:04:50 +0000