aboutsummaryrefslogtreecommitdiffstats
path: root/security
AgeCommit message (Expand)AuthorFilesLines
2013-10-04selinux: remove 'flags' parameter from avc_audit()Linus Torvalds3-4/+4
2013-10-04selinux: avc_has_perm_flags has no more usersLinus Torvalds2-17/+6
2013-10-04selinux: remove 'flags' parameter from inode_has_permLinus Torvalds1-7/+6
2013-09-30apparmor: fix suspicious RCU usage warning in policy.c/policy.hJohn Johansen2-2/+5
2013-09-30apparmor: Use shash crypto API interface for profile hashesTyler Hicks1-18/+16
2013-09-07Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebi...Linus Torvalds1-5/+5
2013-09-07Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/...Linus Torvalds28-547/+1666
2013-09-05Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-nextLinus Torvalds1-1/+6
2013-09-04Merge tag 'modules-next-for-linus' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds1-0/+2
2013-09-03Merge branch 'for-3.12' of git://git.kernel.org/pub/scm/linux/kernel/git/tj/c...Linus Torvalds1-39/+26
2013-08-30capabilities: allow nice if we are privilegedSerge Hallyn1-4/+4
2013-08-30userns: Allow PR_CAPBSET_DROP in a user namespace.Eric W. Biederman1-1/+1
2013-08-23Merge branch 'smack-for-3.12' of git://git.gitorious.org/smack-next/kernel in...James Morris4-114/+150
2013-08-20module/lsm: Have apparmor module parameters work with no argsSteven Rostedt1-0/+2
2013-08-16Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netDavid S. Miller1-13/+11
2013-08-14apparmor: add the ability to report a sha1 hash of loaded policyJohn Johansen8-6/+199
2013-08-14apparmor: export set of capabilities supported by the apparmor moduleJohn Johansen4-1/+15
2013-08-14apparmor: add the profile introspection file to interfaceJohn Johansen1-0/+236
2013-08-14apparmor: add an optional profile attachment string for profilesJohn Johansen4-0/+40
2013-08-14apparmor: add interface files for profiles and namespacesJohn Johansen7-29/+436
2013-08-14apparmor: allow setting any profile into the unconfined stateJohn Johansen5-9/+22
2013-08-14apparmor: make free_profile available outside of policy.cJohn Johansen3-7/+7
2013-08-14apparmor: rework namespace free pathJohn Johansen2-35/+10
2013-08-14apparmor: update how unconfined is handledJohn Johansen3-83/+67
2013-08-14apparmor: change how profile replacement update is doneJohn Johansen6-87/+125
2013-08-14apparmor: convert profile lists to RCU based lockingJohn Johansen4-111/+167
2013-08-14apparmor: provide base for multiple profiles to be replaced at onceJohn Johansen4-146/+283
2013-08-14apparmor: add a features/policy dir to interfaceJohn Johansen1-0/+5
2013-08-14apparmor: enable users to query whether apparmor is enabledJohn Johansen1-1/+1
2013-08-14apparmor: remove minimum size check for vmalloc()Tetsuo Handa1-5/+0
2013-08-12Smack: parse multiple rules per write to load2, up to PAGE_SIZE-1 bytesRafal Krypa1-85/+82
2013-08-08cgroup: make css_for_each_descendant() and friends include the origin css in ...Tejun Heo1-1/+1
2013-08-08cgroup: make hierarchy iterators deal with cgroup_subsys_state instead of cgroupTejun Heo1-8/+3
2013-08-08cgroup: pass around cgroup_subsys_state instead of cgroup in file methodsTejun Heo1-6/+6
2013-08-08cgroup: pass around cgroup_subsys_state instead of cgroup in subsystem methodsTejun Heo1-11/+11
2013-08-08cgroup: add css_parent()Tejun Heo1-13/+5
2013-08-08cgroup: add/update accessors which obtain subsys specific data from cssTejun Heo1-1/+1
2013-08-08cgroup: s/cgroup_subsys_state/cgroup_css/ s/task_subsys_state/task_css/Tejun Heo1-2/+2
2013-08-06Smack: IPv6 casting error fix for 3.11Casey Schaufler1-13/+11
2013-08-01Smack: network label match fixCasey Schaufler3-9/+31
2013-08-01security: smack: add a hash table to quicken smk_find_entry()Tomasz Stanislawski3-9/+37
2013-08-01security: smack: fix memleak in smk_write_rules_list()Tomasz Stanislawski1-22/+11
2013-07-31net: split rt_genid for ipv4 and ipv6fan.du1-1/+6
2013-07-25xattr: Constify ->name member of "struct xattr".Tetsuo Handa5-24/+14
2013-07-11Merge branch 'for-3.11' of git://linux-nfs.org/~bfields/linuxLinus Torvalds1-1/+1
2013-07-09Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-nextLinus Torvalds1-1/+1
2013-07-09Merge tag 'nfs-for-3.11-1' of git://git.linux-nfs.org/projects/trondmy/linux-nfsLinus Torvalds6-15/+138
2013-07-03Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds31-583/+949
2013-07-03Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds2-7/+19
2013-07-02Merge branch 'for-3.11' of git://git.kernel.org/pub/scm/linux/kernel/git/tj/c...Linus Torvalds1-38/+18
2013-06-29SELinux: Institute file_path_has_perm()David Howells1-6/+18
2013-06-29Replace a bunch of file->dentry->d_inode refs with file_inode()David Howells1-1/+1
2013-06-20evm: audit integrity metadata failuresMimi Zohar1-1/+14
2013-06-20integrity: move integrity_audit_msg()Mimi Zohar7-33/+36
2013-06-08NFS: Extend NFS xattr handlers to accept the security namespaceDavid Quigley1-0/+1
2013-06-08NFS: Client implementation of Labeled-NFSDavid Quigley1-0/+4
2013-06-08SELinux: Add new labeling type native labelsDavid Quigley3-10/+32
2013-06-08LSM: Add flags field to security_sb_set_mnt_opts for in kernel mount data.David Quigley3-5/+19
2013-06-08Security: Add Hook to test if the particular xattr is part of a MAC model.David Quigley4-0/+29
2013-06-08Security: Add hook to calculate context based on a negative dentry.David Quigley3-0/+53
2013-06-05Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netDavid S. Miller1-20/+14
2013-06-03Smack: Fix the bug smackcipso can't set CIPSO correctlyPassion,Zhao1-1/+1
2013-05-31selinux: fix the labeled xfrm/IPsec reference count handlingPaul Moore1-20/+14
2013-05-28net: pass info struct via netdevice notifierJiri Pirko1-1/+1
2013-05-28Smack: Fix possible NULL pointer dereference at smk_netlbl_mls()Tetsuo Handa1-0/+2
2013-05-28Smack: Add smkfstransmute mount optionCasey Schaufler2-5/+21
2013-05-28Smack: Improve access check performanceCasey Schaufler4-249/+282
2013-05-28Smack: Local IPv6 port based controlsCasey Schaufler2-40/+319
2013-05-24device_cgroup: simplify cgroup tree walk in propagate_exception()Tejun Heo1-38/+18
2013-05-13security: cap_inode_getsecctx returning garbageJ. Bruce Fields1-1/+1
2013-05-12apparmor: no need to delay vfree()Al Viro1-21/+3
2013-05-12Merge tag 'aa-3.10' of git://git.kernel.org/pub/scm/linux/kernel/git/jj/linux...James Morris19-248/+286
2013-05-07aio: don't include aio.h in sched.hKent Overstreet2-0/+3
2013-05-01Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds3-8/+4
2013-05-01Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-nextLinus Torvalds2-4/+3
2013-04-30Merge branch 'akpm' (incoming from Andrew)Linus Torvalds1-3/+10
2013-04-30KEYS: split call to call_usermodehelper_fns()Lucas De Marchi1-3/+10
2013-04-30Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds9-108/+222
2013-04-29Merge branch 'for-3.10' of git://git.kernel.org/pub/scm/linux/kernel/git/tj/c...Linus Torvalds1-56/+211
2013-04-29tomoyo_close_control: don't bother with return valueAl Viro3-8/+4
2013-04-28apparmor: fix fully qualified name parsingJohn Johansen1-2/+4
2013-04-28apparmor: fix setprocattr arg processing for onexecJohn Johansen1-16/+21
2013-04-28apparmor: localize getting the security context to a few macrosJohn Johansen4-21/+24
2013-04-28apparmor: fix sparse warningsJohn Johansen2-11/+11
2013-04-28apparmor: Fix smatch warning in aa_remove_profilesJohn Johansen1-8/+6
2013-04-28apparmor: fix the audit type tableJohn Johansen1-1/+1
2013-04-28apparmor: reserve and mask off the top 8 bits of the base fieldJohn Johansen1-7/+9
2013-04-28apparmor: move the free_profile fn ahead of aa_alloc_profileJohn Johansen1-75/+75
2013-04-28apparmor: remove sid from profilesJohn Johansen4-21/+11
2013-04-28apparmor: move perm defines into policy_unpackJohn Johansen2-2/+3
2013-04-28apparmor: misc cleanup of matchJohn Johansen2-8/+14
2013-04-28apparmor: relax the restrictions on setting rlimitsJohn Johansen1-3/+12
2013-04-28apparmor: remove "permipc" commandJohn Johansen3-9/+0
2013-04-28apparmor: use common fn to clear task_context for domain transitionsJohn Johansen3-16/+20
2013-04-28apparmor: add kvzalloc to handle zeroing for kvmallocJohn Johansen3-8/+22
2013-04-28apparmor: add utility function to get an arbitrary tasks profile.John Johansen4-32/+49
2013-04-28apparmor: fix error code to failure message mapping for name lookupJohn Johansen1-1/+1
2013-04-28apparmor: refactor profile mode macrosJohn Johansen1-6/+6
2013-04-28apparmor: Remove -W1 warningsJohn Johansen2-6/+0
2013-04-28apparmor: fix auditing of domain transition failures due to incomplete policyJohn Johansen1-0/+2
2013-04-22Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netDavid S. Miller3-0/+18
2013-04-18devcg: remove parent_cgroup.Rami Rosen1-2/+0
2013-04-17ima: eliminate passing d_name.name to process_measurement()Mimi Zohar1-9/+5
2013-04-09selinux: add a skb_owned_by() hookEric Dumazet3-0/+18
2013-04-08devcg: remove broken_hierarchy tagTejun Heo1-9/+0
2013-04-03Smack: include magic.h in smackfs.cCasey Schaufler1-0/+1
2013-04-02selinux: make security_sb_clone_mnt_opts return an error on context mismatchJeff Layton3-7/+39
2013-04-01Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netDavid S. Miller1-3/+1
2013-03-28Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebi...Linus Torvalds1-3/+1
2013-03-28selinux: replace obsolete NLMSG_* with type safe nlmsg_*Hong zhi guo2-4/+3
2013-03-26yama: Better permission check for ptracemeEric W. Biederman1-3/+1
2013-03-20devcg: propagate local changes down the hierarchyAristeu Rozanski1-7/+132
2013-03-20devcg: use css_online and css_offlineAristeu Rozanski1-17/+42
2013-03-20devcg: prepare may_access() for hierarchy supportAristeu Rozanski1-18/+31
2013-03-20devcg: expand may_access() logicAristeu Rozanski1-9/+12
2013-03-19Fix NULL pointer dereference in smack_inode_unlink() and smack_inode_rmdir()Igor Zhbanov1-2/+2
2013-03-19Smack: add support for modification of existing rulesRafal Krypa1-79/+170
2013-03-19smack: SMACK_MAGIC to include/uapi/linux/magic.hJarkko Sakkinen1-5/+0
2013-03-19Smack: add missing support for transmute bit in smack_str_from_perm()Rafal Krypa1-0/+2
2013-03-19Smack: prevent revoke-subject from failing when unseen label is written to itRafal Krypa1-3/+1
2013-03-19selinux: use GFP_ATOMIC under spin_lockDan Carpenter1-1/+1
2013-03-18tomoyo: use DEFINE_SRCU() to define tomoyo_ssLai Jiangshan1-3/+2
2013-03-12Fix: compat_rw_copy_check_uvector() misuse in aio, readv, writev, and securit...Mathieu Desnoyers1-2/+2
2013-03-12keys: fix race with concurrent install_user_keyrings()David Howells1-1/+1
2013-03-03userns: Stop oopsing in key_change_session_keyringEric W. Biederman1-1/+1
2013-03-03Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds1-9/+0
2013-02-27hlist: drop the node parameter from iteratorsSasha Levin2-15/+7
2013-02-27selinux: opened file can't have NULL or negative ->f_path.dentryAl Viro1-9/+0
2013-02-26Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds11-42/+32
2013-02-26kill f_vfsmntAl Viro1-1/+1
2013-02-26block: fix part_pack_uuid() build errorMimi Zohar1-5/+6
2013-02-26ima: "remove enforce checking duplication" merge fixMimi Zohar1-1/+2
2013-02-22new helper: file_inode(file)Al Viro10-41/+31
2013-02-21device_cgroup: don't grab mutex in rcu callbackJerry Snitselaar1-9/+12
2013-02-21Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/...Linus Torvalds18-193/+552
2013-02-21KEYS: Revert one application of "Fix unreachable code" patchDavid Howells1-0/+2
2013-02-06ima: digital signature verification using asymmetric keysDmitry Kasatkin5-1/+150
2013-02-06ima: rename hash calculation functionsDmitry Kasatkin3-9/+9
2013-02-06ima: use new crypto_shash API instead of old crypto_hashDmitry Kasatkin3-38/+41
2013-02-06ima: add policy support for file system uuidDmitry Kasatkin1-1/+21
2013-02-06evm: add file system uuid to EVM hmacDmitry Kasatkin4-0/+18
2013-01-28Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netLinus Torvalds5-20/+88
2013-01-22ima: differentiate appraise status only for hook specific rulesMimi Zohar2-6/+12
2013-01-22ima: per hook cache integrity appraisal statusMimi Zohar6-25/+136
2013-01-22ima: increase iint flag sizeMimi Zohar1-12/+12
2013-01-22ima: added policy support for 'security.ima' typeDmitry Kasatkin4-1/+25
2013-01-22security/device_cgroup: lock assert fails in dev_exception_clean()Jerry Snitselaar1-0/+2
2013-01-22evm: checking if removexattr is not a NULLDmitry Kasatkin1-2/+2
2013-01-16ima: forbid write access to files with digital signaturesDmitry Kasatkin1-2/+5
2013-01-16ima: move full pathname resolution to separate functionDmitry Kasatkin3-31/+38
2013-01-16integrity: reduce storage size for ima_status and evm_statusDmitry Kasatkin1-2/+2
2013-01-16ima: rename FILE_MMAP to MMAP_CHECKMimi Zohar4-7/+8
2013-01-16ima: remove security.ima hexdumpDmitry Kasatkin1-5/+0
2013-01-16ima: remove enforce checking duplicationDmitry Kasatkin1-32/+20
2013-01-16ima: set appraise status in fix mode only when xattr is fixedDmitry Kasatkin1-5/+6
2013-01-16evm: remove unused cleanup functionsDmitry Kasatkin3-16/+0
2013-01-16ima: re-initialize IMA policy LSM infoMimi Zohar1-10/+58
2013-01-14tun: fix LSM/SELinux labeling of tun/tap devicesPaul Moore4-19/+87
2013-01-14selinux: add the "attach_queue" permission to the "tun_socket" classPaul Moore1-1/+1
2012-12-24ima: fallback to MODULE_SIG_ENFORCE for existing kernel module syscallMimi Zohar3-5/+11
2012-12-20keys: fix unreachable codeAlan Cox1-2/+0
2012-12-19Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netLinus Torvalds1-0/+2
2012-12-19Merge tag 'modules-next-for-linus' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds6-3/+43
2012-12-18Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebi...Linus Torvalds1-8/+17
2012-12-17Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebi...Linus Torvalds1-3/+9
2012-12-16Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds8-102/+153
2012-12-15bridge: update selinux perm table for RTM_NEWMDB and RTM_DELMDBAmerigo Wang1-0/+2
2012-12-14Fix cap_capable to only allow owners in the parent user namespace to have caps.Eric W. Biederman1-8/+17
2012-12-14Smack: create a sysfs mount point for smackfsCasey Schaufler1-0/+17
2012-12-14Smack: use select not depends in KconfigCasey Schaufler1-1/+5
2012-12-14ima: support new kernel module syscallMimi Zohar5-4/+33
2012-12-14security: introduce kernel_module_from_file hookKees Cook2-0/+11
2012-12-13Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jik...Linus Torvalds1-2/+0
2012-12-12Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-nextLinus Torvalds1-0/+3
2012-12-12Merge branch 'for-3.8' of git://git.kernel.org/pub/scm/linux/kernel/git/tj/cg...Linus Torvalds1-4/+16
2012-12-10rtnetlink: add missing message types to selinux perm tableCong Wang1-0/+2
2012-12-07bridge: export multicast database via netlinkCong Wang1-0/+1
2012-11-21selinux: fix sel_netnode_insert() suspicious rcu dereferenceDave Jones1-1/+2
2012-11-20Yama: remove locking from delete pathKees Cook1-7/+42
2012-11-20Yama: add RCU to drop read lockingKees Cook1-23/+24
2012-11-20userns: Kill task_user_nsEric W. Biederman1-3/+9
2012-11-19cgroup: rename ->create/post_create/pre_destroy/destroy() to ->css_alloc/onli...Tejun Heo1-4/+4
2012-11-06device_cgroup: add lockdep assertsTejun Heo1-0/+12
2012-11-06device_cgroup: fix RCU usageTejun Heo1-3/+3
2012-11-06device_cgroup: fix unchecked cgroup parent usageAristeu Rozanski1-2/+10
2012-10-28Merge branch 'master' into for-nextJiri Kosina51-676/+1396
2012-10-25device_cgroup: add proper checking when changing default behaviorAristeu Rozanski1-1/+18
2012-10-25device_cgroup: stop using simple_strtoul()Aristeu Rozanski1-6/+22
2012-10-25device_cgroup: rename deny_all to behaviorAristeu Rozanski1-11/+14
2012-10-25cgroup: fix invalid rcu dereferenceJiri Slaby1-8/+7
2012-10-25keys: Fix unreachable codeAlan Cox1-2/+0
2012-10-25apparmor: fix IRQ stack overflow during free_profileJohn Johansen1-1/+23
2012-10-17apparmor: fix apparmor OOPS in audit_log_untrustedstring+0x1c/0x40John Johansen1-1/+1
2012-10-16fix a leak in replace_fd() usersAl Viro1-11/+7
2012-10-14Merge branch 'modules-next' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds7-63/+129
2012-10-11consitify do_mount() argumentsAl Viro7-13/+14
2012-10-09Merge branch 'akpm' (Andrew's patch-bomb)Linus Torvalds2-8/+3
2012-10-09mm: kill vma flag VM_RESERVED and mm->reserved_vm counterKonstantin Khlebnikov1-1/+1
2012-10-09mm: use mm->exe_file instead of first VM_EXECUTABLE vma->vm_fileKonstantin Khlebnikov1-7/+2
2012-10-09Merge tag 'asm-generic' of git://git.kernel.org/pub/scm/linux/kernel/git/arnd...Linus Torvalds1-1/+1
generated by cgit 1.2.3-korg (git 2.39.0) at 2024-05-16 17:24:19 +0000