aboutsummaryrefslogtreecommitdiffstats
path: root/security
AgeCommit message (Expand)AuthorFilesLines
2020-10-30Anyka GPL kernel dumplinux-2.6.32.9-akAnyka1-0/+10
2010-02-09SECURITY: selinux, fix update_rlimit_cpu parameterJiri Slaby1-1/+1
2010-01-06Keys: KEYCTL_SESSION_TO_PARENT needs TIF_NOTIFY_RESUME architecture supportGeert Uytterhoeven1-0/+10
2010-01-06NOMMU: Optimise away the {dac_,}mmap_min_addr testsDavid Howells1-1/+2
2009-11-19ima: replace GFP_KERNEL with GFP_NOFSMimi Zohar1-2/+2
2009-10-15KEYS: get_instantiation_keyring() should inc the keyring refcount in all casesDavid Howells1-1/+1
2009-10-01const: constify remaining file_operationsAlexey Dobriyan1-5/+5
2009-09-24Merge git://git.kernel.org/pub/scm/linux/kernel/git/viro/audit-currentLinus Torvalds1-1/+1
2009-09-24sysctl: remove "struct file *" argument of ->proc_handlerAlexey Dobriyan1-2/+2
2009-09-24do_wait() wakeup optimization: change __wake_up_parent() to use filtered wakeupOleg Nesterov1-1/+1
2009-09-24cgroups: let ss->can_attach and ss->attach do whole threadgroups at a timeBen Blum1-1/+2
2009-09-24lsm: Use a compressed IPv6 string format in audit eventsPaul Moore1-1/+1
2009-09-23Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds2-6/+17
2009-09-23SELinux: do not destroy the avc_cache_nodepEric Paris1-4/+15
2009-09-23KEYS: Have the garbage collector set its timer for live expired keysDavid Howells1-2/+2
2009-09-23seq_file: constify seq_operationsJames Morris2-5/+5
2009-09-23Move magic numbers into magic.hNick Black1-7/+1
2009-09-15Merge branch 'x86-txt-for-linus' of git://git.kernel.org/pub/scm/linux/kernel...Linus Torvalds1-0/+30
2009-09-15KEYS: Fix garbage collectorDavid Howells4-35/+73
2009-09-15KEYS: Unlock tasklist when exiting early from keyctl_session_to_parentMarc Dionne1-0/+1
2009-09-14SELinux: flush the avc before disabling SELinuxEric Paris1-0/+2
2009-09-14SELinux: seperate avc_cache flushingEric Paris1-7/+17
2009-09-14Creds: creds->security can be NULL is selinux is disabledEric Paris1-0/+6
2009-09-11Merge branch 'next' into for-linusJames Morris36-460/+1290
2009-09-10sysfs: Add labeling support for sysfsDavid P. Quigley2-0/+6
2009-09-10LSM/SELinux: inode_{get,set,notify}secctx hooks to access LSM security contex...David P. Quigley4-0/+88
2009-09-07IMA: update ima_counts_putMimi Zohar1-1/+5
2009-09-02KEYS: Add a keyctl to install a process's session keyring on its parent [try #6]David Howells10-0/+267
2009-09-02KEYS: Do some whitespace cleanups [try #6]David Howells1-9/+3
2009-09-02KEYS: Make /proc/keys use keyid not numread as file position [try #6]Serge E. Hallyn1-22/+55
2009-09-02KEYS: Add garbage collection for dead, revoked and expired keys. [try #6]David Howells7-4/+322
2009-09-02KEYS: Flag dead keys to induce EKEYREVOKED [try #6]David Howells1-1/+3
2009-09-02KEYS: Allow keyctl_revoke() on keys that have SETATTR but not WRITE perm [try...David Howells1-1/+7
2009-09-02KEYS: Deal with dead-type keys appropriately [try #6]David Howells4-31/+48
2009-09-02CRED: Add some configurable debugging [try #6]David Howells1-1/+5
2009-09-02Merge commit 'v2.6.31-rc8' into x86/txtIngo Molnar8-14/+119
2009-09-01x86, intel_txt: clean up the impact on generic code, unbreak non-x86Shane Wang1-1/+1
2009-09-01selinux: Support for the new TUN LSM hooksPaul Moore5-2/+83
2009-09-01lsm: Add hooks to the TUN driverPaul Moore2-0/+37
2009-08-26Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds1-0/+4
2009-08-27IMA: iint put in ima_counts_get and putEric Paris1-0/+4
2009-08-24ima: hashing large files bug fixMimi Zohar1-2/+4
2009-08-21selinux: adjust rules for ATTR_FORCEAmerigo Wang1-5/+11
2009-08-20Merge branch 'master' into nextJames Morris2-3/+4
2009-08-19security: Fix prompt for LSM_MMAP_MIN_ADDRAndreas Schwab1-1/+1
2009-08-19security: Make LSM_MMAP_MIN_ADDR default match its help text.Dave Jones1-1/+1
2009-08-17Security/SELinux: seperate lsm specific mmap_min_addrEric Paris5-3/+68
2009-08-17SELinux: call cap_file_mmap in selinux_file_mmapEric Paris1-1/+13
2009-08-17Capabilities: move cap_file_mmap to commoncap.cEric Paris2-9/+30
2009-08-17SELinux: Convert avc_audit to use lsm_audit.hThomas Liu9-283/+129
2009-08-14x86, intel_txt: Fix typos in Kconfig helpArnaldo Carvalho de Melo1-2/+2
2009-08-14SELinux: add selinux_kernel_module_requestEric Paris3-0/+8
2009-08-14security: introducing security_request_moduleEric Paris2-0/+11
2009-08-11SELinux: fix memory leakage in /security/selinux/hooks.cJames Morris1-1/+2
2009-08-06Security/SELinux: seperate lsm specific mmap_min_addrEric Paris5-3/+68
2009-08-06SELinux: call cap_file_mmap in selinux_file_mmapEric Paris1-1/+13
2009-08-06Capabilities: move cap_file_mmap to commoncap.cEric Paris2-9/+30
2009-08-06security/smack: Use AF_INET for sin_family fieldJulia Lawall1-1/+1
2009-07-21x86, intel_txt: Intel TXT boot supportJoseph Cihula1-0/+30
2009-07-17kernel: rename is_single_threaded(task) to current_is_single_threaded(void)Oleg Nesterov2-2/+2
2009-07-13Revert "SELinux: Convert avc_audit to use lsm_audit.h"James Morris8-134/+297
2009-07-13SELinux: Convert avc_audit to use lsm_audit.hThomas Liu8-297/+134
2009-07-10security: Make lsm_priv union in lsm_audit.h anonymousThomas Liu2-6/+6
2009-07-10Move variable function in lsm_audit.h into SMACK private spaceThomas Liu2-4/+5
2009-06-30Merge branch 'master' into nextJames Morris2-2/+30
2009-06-29integrity: add ima_counts_put (updated)Mimi Zohar1-1/+28
2009-06-29integrity: ima audit hash_exists fixMimi Zohar1-1/+2
2009-06-25selinux: clean up avc node cache when disabling selinuxThomas Liu3-0/+12
2009-06-25security: rename ptrace_may_access => ptrace_access_checkIngo Molnar5-12/+12
2009-06-25keys: annotate seqfile ops with __releases and __acquiresJames Morris1-0/+4
2009-06-23selinux: restore optimization to selinux_file_permissionStephen Smalley1-5/+10
2009-06-19TOMOYO: Remove next_domain from tomoyo_find_next_domain().Tetsuo Handa3-15/+8
2009-06-19TOMOYO: Move tomoyo_delete_domain().Tetsuo Handa3-34/+30
2009-06-19Merge branch 'master' into nextJames Morris33-446/+1698
2009-06-18devcgroup: skip superfluous checks when found the DEV_ALL elemLi Zefan1-4/+6
2009-06-19Add audit messages on type boundary violationsKaiGai Kohei3-23/+118
2009-06-18cleanup in ss/services.cKaiGai Kohei1-3/+3
2009-06-15Merge branch 'master' of master.kernel.org:/pub/scm/linux/kernel/git/torvalds...David S. Miller31-446/+1702
2009-06-11Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds31-440/+1690
2009-06-10Merge branch 'rcu-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git...Linus Torvalds2-6/+6
2009-06-09TOMOYO: Add description of lists and structures.Tetsuo Handa6-34/+504
2009-06-09TOMOYO: Remove unused field.Tetsuo Handa2-2/+0
2009-06-09Merge branch 'master' into nextJames Morris1-0/+6
2009-06-05integrity: ima audit dentry_open failureMimi Zohar1-4/+9
2009-06-04TOMOYO: Remove unused parameter.Tetsuo Handa3-7/+3
2009-06-04security: use mmap_min_addr indepedently of security modelsChristoph Lameter2-24/+1
2009-06-03net: skb->dst accessorsEric Dumazet2-2/+2
2009-06-03TOMOYO: Simplify policy reader.Tetsuo Handa3-52/+41
2009-06-03TOMOYO: Remove redundant markers.Tetsuo Handa4-36/+0
2009-06-03SELinux: define audit permissions for audit tree netlink messagesEric Paris1-0/+2
2009-06-02TOMOYO: Remove unused mutex.Tetsuo Handa1-1/+0
2009-06-02tomoyo: avoid get+put of task_structSerge E. Hallyn1-8/+1
2009-05-28smack: Remove redundant initialization.Tetsuo Handa1-15/+0
2009-05-27rootplug: Remove redundant initialization.Tetsuo Handa1-12/+0
2009-05-27tomoyo: add missing call to cap_bprm_set_credsHerton Ronaldo Krzesinski1-0/+6
2009-05-22Merge branch 'master' into nextJames Morris2-11/+11
2009-05-22smack: do not beyond ARRAY_SIZE of dataRoel Kluin1-1/+1
2009-05-22integrity: path_check updateMimi Zohar1-19/+29
2009-05-22IMA: Add __init notation to ima functionsEric Paris5-7/+7
2009-05-22IMA: Minimal IMA policy and boot param for TCB IMA policyEric Paris1-3/+27
2009-05-19selinux: remove obsolete read buffer limit from sel_read_boolStephen Smalley1-4/+0
2009-05-19SELinux: move SELINUX_MAGIC into magic.hEric Paris2-7/+4
2009-05-15IMA: do not measure everything opened by root by defaultEric Paris1-2/+0
2009-05-15IMA: remove read permissions on the ima policy fileEric Paris1-1/+5
2009-05-12securityfs: securityfs_remove should handle IS_ERR pointersEric Paris1-1/+1
2009-05-12IMA: open all files O_LARGEFILEEric Paris1-1/+2
2009-05-12IMA: Handle dentry_open failuresEric Paris1-4/+6
2009-05-12IMA: use current_cred() instead of current->credEric Paris2-2/+2
2009-05-09Reduce path_lookup() abusesAl Viro2-11/+11
2009-05-08Merge branch 'master' into nextJames Morris14-28/+39
2009-05-06integrity: remove __setup auditing msgsMimi Zohar2-25/+4
2009-05-06integrity: use audit_log_stringMimi Zohar1-13/+4
2009-05-06integrity: lsm audit rule matching fixMimi Zohar1-4/+4
2009-05-05selinux: Fix send_sigiotask hookStephen Smalley1-1/+1
2009-04-30selinux: selinux_bprm_committed_creds() should wake up ->real_parent, not ->p...Oleg Nesterov1-8/+3
2009-04-30SELinux: Don't flush inherited SIGKILL during execve()David Howells1-4/+5
2009-04-30SELinux: drop secondary_ops->sysctlEric Paris1-4/+0
2009-04-18Smack: check for SMACK xattr validity in smack_inode_setxattrEtienne Basset1-5/+6
2009-04-15rculist: use list_entry_rcu in places where it's appropriateJiri Pirko2-6/+6
2009-04-14tomoyo: version bump to 2.2.0.Tetsuo Handa8-10/+10
2009-04-14smack: implement logging V3Etienne Basset5-110/+600
2009-04-14smack: implement logging V3Etienne Basset1-0/+386
2009-04-09keys: Handle there being no fallback destination keyring for request_key()David Howells1-3/+6
2009-04-09cap_prctl: don't set error to 0 at 'no_change'Serge E. Hallyn1-1/+0
2009-04-07tomoyo: remove "undelete domain" command.Tetsuo Handa3-100/+5
2009-04-07tomoyo: remove "undelete domain" command.Tetsuo Handa3-100/+5
2009-04-03CacheFiles: Export things for CacheFilesDavid Howells1-0/+2
2009-04-02Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds1-0/+1
2009-04-02devcgroup: avoid using cgroup_lockLi Zefan1-8/+13
2009-04-03don't raise all privs on setuid-root file with fE set (v2)Serge E. Hallyn1-0/+32
2009-04-02Permissive domain in userspace object managerKaiGai Kohei4-29/+11
2009-03-31Get rid of indirect include of fs_struct.hAl Viro1-0/+1
2009-03-28smack: Add a new '-CIPSO' option to the network address label configurationEtienne Basset4-10/+45
2009-03-28netlabel: Cleanup the Smack/NetLabel code to fix incoming TCP connectionsPaul Moore2-118/+143
2009-03-28lsm: Remove the socket_post_accept() hookPaul Moore2-10/+0
2009-03-28selinux: Remove the "compat_net" compatibility codePaul Moore2-214/+7
2009-03-28netlabel: Label incoming TCP connections correctly in SELinuxPaul Moore4-187/+82
2009-03-27TOMOYO: Fix a typo.Tetsuo Handa1-1/+1
2009-03-26smack: convert smack to standard linux listsEtienne Basset4-122/+168
2009-03-24Merge branch 'master' into nextJames Morris2-38/+14
2009-03-10SELinux: inode_doinit_with_dentry drop no dentry printkEric Paris1-3/+9
2009-03-06SELinux: new permission between tty audit and audit socketEric Paris3-1/+3
2009-03-06SELinux: open perm for sock filesEric Paris3-0/+4
2009-03-05smack: fixes for unlabeled host supportetienne2-50/+57
2009-03-05smack: fixes for unlabeled host supportetienne1-15/+49
2009-03-02selinux: Fix a panic in selinux_netlbl_inode_permission()Paul Moore1-2/+3
2009-02-27keys: make procfiles per-user-namespaceSerge E. Hallyn1-6/+49
2009-02-27keys: skip keys from another user namespaceSerge E. Hallyn1-0/+3
2009-02-27keys: consider user namespace in key_permissionSerge E. Hallyn1-0/+5
2009-02-27keys: distinguish per-uid keys in different namespacesSerge E. Hallyn5-5/+16
2009-02-23selinux: Fix the NetLabel glue code for setsockopt()Paul Moore1-1/+3
2009-02-23integrity: ima iint radix_tree_lookup locking fixMimi Zohar1-0/+2
2009-02-23TOMOYO: Do not call tomoyo_realpath_init unless registered.Tetsuo Handa3-6/+5
2009-02-21integrity: ima scatterlist bug fixMimi Zohar1-2/+2
2009-02-19smack: fix lots of kernel-doc notationRandy Dunlap3-37/+34
2009-02-16TOMOYO: Don't create securityfs entries unless registered.Tetsuo Handa1-0/+4
2009-02-14TOMOYO: Fix exception policy read failure.Tetsuo Handa1-1/+1
2009-02-14SELinux: convert the avc cache hash list to an hlistEric Paris1-20/+27
2009-02-14SELinux: code readability with avc_cacheEric Paris1-19/+44
2009-02-14SELinux: remove unused av.decided fieldEric Paris4-14/+6
2009-02-14SELinux: more careful use of avd in avc_has_perm_noauditEric Paris1-19/+24
2009-02-14SELinux: remove the unused ae.usedEric Paris1-21/+7
2009-02-14SELinux: check seqno when updating an avc_nodeEric Paris1-3/+6
2009-02-14SELinux: NULL terminate al contexts from diskEric Paris1-2/+4
2009-02-14SELinux: better printk when file with invalid label foundEric Paris1-4/+13
2009-02-14SELinux: call capabilities code directoryEric Paris1-17/+13
2009-02-13ima: fix build errorRandy Dunlap1-2/+2
2009-02-12tomoyo: fix sparse warningTetsuo Handa1-4/+4
2009-02-12security: change link order of LSMs so security=tomoyo worksJames Morris1-1/+1
2009-02-12Kconfig and MakefileKentaro Takeda4-0/+15
2009-02-12LSM adapter functions.Kentaro Takeda2-0/+399
2009-02-12Domain transition handler.Kentaro Takeda1-0/+878
2009-02-12File operation restriction part.Kentaro Takeda1-0/+1241
2009-02-12Common functions for TOMOYO Linux.Kentaro Takeda2-0/+2561
2009-02-12Memory and pathname management functions.Kentaro Takeda2-0/+550
2009-02-12integrity: audit updateMimi Zohar6-21/+25
2009-02-06Merge branch 'master' into nextJames Morris11-39/+170
2009-02-06IMA: fix ima_delete_rules() definitionJames Morris1-1/+1
2009-02-06Integrity: IMA file free imbalanceMimi Zohar3-0/+61
2009-02-06integrity: IMA policy openMimi Zohar1-1/+16
2009-02-06integrity: IMA policyMimi Zohar4-4/+386
2009-02-06integrity: IMA displayMimi Zohar5-2/+314
2009-02-06integrity: IMA as an integrity service providerMimi Zohar13-1/+1430
2009-02-03securityfs: fix long-broken securityfs_create_file commentSerge E. Hallyn1-4/+3
2009-02-02selinux: remove hooks which simply defer to capabilitiesJames Morris1-58/+10
2009-01-30selinux: remove secondary ops call to shm_shmatJames Morris1-5/+0
2009-01-30selinux: remove secondary ops call to unix_stream_connectJames Morris1-4/+0
2009-01-30selinux: remove secondary ops call to task_killJames Morris1-4/+0
2009-01-30selinux: remove secondary ops call to task_setrlimitJames Morris1-5/+0
2009-01-30selinux: remove unused cred_commit hookJames Morris1-9/+0
2009-01-30selinux: remove secondary ops call to task_createJames Morris1-6/+0
2009-01-30selinux: remove secondary ops call to file_mprotectJames Morris1-6/+1
2009-01-30selinux: remove secondary ops call to inode_setattrJames Morris1-5/+0
2009-01-30selinux: remove secondary ops call to inode_permissionJames Morris1-5/+0
2009-01-30selinux: remove secondary ops call to inode_follow_linkJames Morris1-4/+0
2009-01-30selinux: remove secondary ops call to inode_mknodJames Morris1-6/+0
2009-01-30selinux: remove secondary ops call to inode_unlinkJames Morris1-5/+0
2009-01-30selinux: remove secondary ops call to inode_linkJames Morris1-5/+0
2009-01-30selinux: remove secondary ops call to sb_umountJames Morris1-5/+0
2009-01-30selinux: remove secondary ops call to sb_mountJames Morris1-5/+0
generated by cgit 1.2.3-korg (git 2.39.0) at 2024-05-16 08:10:31 +0000