summaryrefslogtreecommitdiffstats
path: root/security (follow)
Commit message (Expand)AuthorAgeFilesLines
* evm: clean verification statusDmitry Kasatkin2011-09-141-0/+1
* evm: permit mode bits to be updatedMimi Zohar2011-09-141-17/+13
* evm: posix acls modify i_modeMimi Zohar2011-09-143-5/+46
* evm: limit verifying current security.evm integrityMimi Zohar2011-09-141-34/+24
* evm: fix security/security_old_init_security return codeMimi Zohar2011-09-141-2/+2
* evm: remove TCG_TPM dependencyMimi Zohar2011-09-141-2/+1
* encrypted-keys: remove trusted-keys dependencyMimi Zohar2011-09-145-28/+67
* encrypted-keys: create encrypted-keys directoryMimi Zohar2011-09-146-1/+6
* TOMOYO: Avoid race when retrying "file execute" permission check.Tetsuo Handa2011-09-141-34/+22
* TOMOYO: Allow domain transition without execve().Tetsuo Handa2011-09-144-28/+210
* TOMOYO: Allow controlling generation of access granted logs for per an entry ...Tetsuo Handa2011-09-145-1/+38
* TOMOYO: Add socket operation restriction support.Tetsuo Handa2011-09-1410-17/+1215
* TOMOYO: Add environment variable name restriction support.Tetsuo Handa2011-09-147-10/+266
* security: sparse fix: Move security_fixup_op to security.hJames Morris2011-09-101-3/+0
* selinux: sparse fix: fix several warnings in the security server codeJames Morris2011-09-105-7/+9
* selinux: sparse fix: include selinux.h in exports.cJames Morris2011-09-101-0/+1
* selinux: sparse fix: fix warnings in netlink codeJames Morris2011-09-106-5/+6
* selinux: sparse fix: eliminate warnings for selinuxfsJames Morris2011-09-103-6/+4
* ima: sparse fix: include linux/ima.h in ima_main.cJames Morris2011-09-101-0/+1
* ima: sparse fix: make ima_open_policy staticJames Morris2011-09-101-1/+1
* apparmor: sparse fix: include procattr.h in procattr.cJames Morris2011-09-101-0/+1
* apparmor: sparse fix: rename shadowed variables in policy_unpack.cJames Morris2011-09-101-6/+6
* apparmor: sparse fix: add apparmor.h to lib.cJames Morris2011-09-101-0/+1
* apparmor: sparse fix: include ipc.hJames Morris2011-09-101-0/+1
* selinux: sparse fix: declare selinux_disable() in security.hJames Morris2011-09-102-1/+1
* selinux: sparse fix: move selinux_complete_initJames Morris2011-09-102-1/+1
* selinux: sparse fix: make selinux_secmark_refcount staticJames Morris2011-09-101-1/+1
* apparmor: sparse fix: make aa_create_aafs staticJames Morris2011-09-101-1/+1
* integrity: sparse fix: move iint_initialized to integrity.hJames Morris2011-09-102-1/+3
* TOMOYO: Fix incorrect enforce mode.Tetsuo Handa2011-09-101-1/+2
* KEYS: Correctly destroy key payloads when their keytype is removedDavid Howells2011-08-233-208/+258
* KEYS: The dead key link reaper should be non-reentrantDavid Howells2011-08-231-3/+3
* KEYS: Make the key reaper non-reentrantDavid Howells2011-08-231-1/+1
* KEYS: Move the unreferenced key reaper to the keys garbage collector fileDavid Howells2011-08-233-76/+85
* KEYS: __key_link() should use the RCU deref wrapper for keyring payloadsDavid Howells2011-08-231-2/+1
* KEYS: keyctl_get_keyring_ID() should create a session keyring if create flag setDavid Howells2011-08-231-2/+12
* KEYS: If install_session_keyring() is given a keyring, it should install itDavid Howells2011-08-231-1/+1
* evm: add Kconfig TCG_TPM dependencyMimi Zohar2011-08-181-1/+1
* tomoyo: remove tomoyo_gc_thread()->daemonize()Oleg Nesterov2011-08-171-1/+1
* capabilities: initialize has_capSerge Hallyn2011-08-161-1/+1
* capabilities: do not grant full privs for setuid w/ file caps + no effective ...Zhi Li2011-08-121-6/+10
* evm: fix evm_inode_init_security return codeMimi Zohar2011-08-111-1/+1
* EVM: ensure trusted and encypted key symbols are available to EVMJames Morris2011-08-091-1/+3
* Merge branch 'next-evm' of git://git.kernel.org/pub/scm/linux/kernel/git/zoha...James Morris2011-08-0919-209/+1089
|\
| * evm: add evm_inode_setattr to prevent updating an invalid security.evmMimi Zohar2011-07-182-1/+21
| * evm: permit only valid security.evm xattrs to be updatedMimi Zohar2011-07-181-14/+63
| * evm: replace hmac_status with evm_statusDmitry Kasatkin2011-07-183-9/+9
| * evm: evm_verify_hmac must not return INTEGRITY_UNKNOWNDmitry Kasatkin2011-07-181-6/+5
| * evm: additional parameter to pass integrity cache entry 'iint'Dmitry Kasatkin2011-07-181-10/+8
| * evm: crypto hash replaced by shashDmitry Kasatkin2011-07-183-45/+57