summaryrefslogtreecommitdiffstats
path: root/security/apparmor/include (follow)
Commit message (Expand)AuthorAgeFilesLines
* security: add const qualifier to struct sock in various placesFlorian Westphal2020-12-031-1/+1
* mm, treewide: rename kzfree() to kfree_sensitive()Waiman Long2020-08-071-1/+1
* Merge tag 'apparmor-pr-2020-06-07' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds2020-06-082-0/+13
|\
| * apparmor: Fix memory leak of profile proxyJohn Johansen2020-06-071-0/+1
| * apparmor: add outofband transition and use it in xattr matchJohn Johansen2020-01-211-1/+8
| * apparmor: fix nnp subset test for unconfinedJohn Johansen2020-01-211-0/+1
| * apparmor: add a valid state flags checkJohn Johansen2020-01-191-0/+4
* | exec: Factor security_bprm_creds_for_exec out of security_bprm_set_credsEric W. Biederman2020-05-201-1/+1
|/
* Merge tag 'apparmor-pr-2019-12-03' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds2019-12-035-51/+13
|\
| * apparmor: make it so work buffers can be allocated from atomic contextJohn Johansen2019-11-232-2/+3
| * apparmor: increase left match history buffer sizeJohn Johansen2019-06-201-2/+1
| * apparmor: Use a memory pool instead per-CPU cachesSebastian Andrzej Siewior2019-06-201-47/+2
| * apparmor: Initial implementation of raw policy blob compressionChris Coulson2019-04-112-1/+8
* | apparmor: fix PROFILE_MEDIATES for untrusted inputJohn Johansen2019-06-191-1/+10
* | treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 441Thomas Gleixner2019-06-0523-115/+23
|/
* Merge tag 'audit-pr-20190305' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds2019-03-071-2/+1
|\
| * audit: remove unused actx param from audit_rule_matchRichard Guy Briggs2019-02-011-2/+1
* | apparmor: Adjust offset when accessing task blob.Tetsuo Handa2019-01-221-1/+1
* | LSM: generalize flag passing to security_capableMicah Morton2019-01-101-1/+1
* | LSM: Infrastructure management of the task securityCasey Schaufler2019-01-081-14/+4
* | LSM: Infrastructure management of the file securityCasey Schaufler2019-01-081-1/+4
* | Infrastructure management of the cred security blobCasey Schaufler2019-01-082-2/+6
* | AppArmor: Abstract use of cred security blobCasey Schaufler2019-01-081-1/+15
|/
* apparmor: Parse secmark policyMatthew Garrett2018-10-032-0/+13
* apparmor: Add a wildcard secidMatthew Garrett2018-10-031-0/+3
* apparmor: don't try to replace stale label in ptrace access checkJann Horn2018-09-131-0/+2
* apparmor: Check buffer bounds when mapping permissions maskTyler Hicks2018-07-201-1/+2
* apparmor: fixup secid map conversion to using IDRJohn Johansen2018-06-071-1/+3
* apparmor: Add support for audit rule filteringMatthew Garrett2018-06-071-0/+6
* apparmor: improve get_buffers macro by using get_cpu_ptrJohn Johansen2018-06-071-17/+16
* apparmor: add support for mapping secids and using secctxesJohn Johansen2018-05-022-4/+13
* Merge tag 'apparmor-pr-2018-04-10' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds2018-04-1411-77/+299
|\
| * apparmor: remove POLICY_MEDIATES_SAFEJohn Johansen2018-03-141-11/+1
| * apparmor: add base infastructure for socket mediationJohn Johansen2018-03-145-3/+128
| * apparmor: improve overlapping domain attachment resolutionJohn Johansen2018-02-091-0/+19
| * apparmor: convert attaching profiles via xattrs to use dfa matchingJohn Johansen2018-02-091-2/+0
| * apparmor: Add support for attaching profiles via xattr, presence and valueMatthew Garrett2018-02-091-0/+6
| * apparmor: dfa add support for state differential encodingJohn Johansen2018-02-091-0/+4
| * apparmor: update domain transitions that are subsets of confinement at nnpJohn Johansen2018-02-091-0/+4
| * apparmor: move context.h to cred.hJohn Johansen2018-02-091-0/+0
| * apparmor: move task related defines and fns to task.X filesJohn Johansen2018-02-092-39/+91
| * apparmor: cleanup, drop unused fn __aa_task_is_confined()John Johansen2018-02-091-11/+0
| * apparmor: drop cred_ctx and reference the label directlyJohn Johansen2018-02-091-19/+5
| * apparmor: move task domain change info to task securityJohn Johansen2018-02-091-10/+21
| * apparmor: rename task_ctx to the more accurate cred_ctxJohn Johansen2018-02-091-10/+9
| * apparmor: audit unknown signal numbersJohn Johansen2018-02-092-1/+5
| * apparmor: provide a bounded version of label_parseJohn Johansen2018-02-091-0/+3
| * apparmor: use the dfa to do label parse string splittingJohn Johansen2018-02-092-0/+26
| * apparmor: add first substr match to dfaJohn Johansen2018-02-091-0/+4
| * apparmor: split load data into management struct and data blobJohn Johansen2018-02-091-1/+1