summaryrefslogtreecommitdiffstats
path: root/security (follow)
Commit message (Expand)AuthorAgeFilesLines
...
| * | | | ima: define new function ima_alloc_init_template() to APIRoberto Sassu2013-10-253-39/+76
| * | | | ima: pass the filename argument up to ima_add_template_entry()Roberto Sassu2013-10-254-10/+13
| * | | | ima: pass the file descriptor to ima_add_violation()Roberto Sassu2013-10-253-5/+5
| * | | | ima: ima_calc_boot_agregate must use SHA1Dmitry Kasatkin2013-10-253-5/+31
| * | | | ima: support arbitrary hash algorithms in ima_calc_buffer_hashDmitry Kasatkin2013-10-252-6/+25
| * | | | ima: provide dedicated hash algo allocation functionDmitry Kasatkin2013-10-251-14/+29
| * | | | ima: differentiate between template hash and file data hash sizesMimi Zohar2013-10-256-12/+12
| * | | | ima: use dynamically allocated hash storageDmitry Kasatkin2013-10-254-30/+49
| * | | | ima: pass full xattr with the signatureDmitry Kasatkin2013-10-254-5/+7
| * | | | ima: read and use signature hash algorithmDmitry Kasatkin2013-10-256-25/+94
| * | | | ima: provide support for arbitrary hash algorithmsDmitry Kasatkin2013-10-257-32/+98
| * | | | Revert "ima: policy for RAMFS"Mimi Zohar2013-10-251-1/+0
| * | | | ima: fix script messagesDmitry Kasatkin2013-10-256-13/+13
| * | | | Merge branch 'master' of git://git.infradead.org/users/pcmoore/selinux into r...James Morris2013-10-2216-392/+432
| |\ \ \ \ | | | |/ / | | |/| |
| | * | | selinux: correct locking in selinux_netlbl_socket_connect)Paul Moore2013-09-261-4/+2
| | * | | selinux: Use kmemdup instead of kmalloc + memcpyDuan Jiong2013-09-261-2/+2
| | * | | Merge git://git.infradead.org/users/eparis/selinuxPaul Moore2013-09-1815-388/+430
| | |\ \ \
| | | * | | Revert "SELinux: do not handle seclabel as a special flag"Eric Paris2013-08-282-1/+4
| | | * | | selinux: consider filesystem subtype in policiesAnand Avati2013-08-282-22/+60
| | | * | | Add SELinux policy capability for always checking packet and peer classes.Chris PeBenito2013-07-254-6/+30
| | | * | | selinux: fix problems in netnode when BUG() is compiled outPaul Moore2013-07-251-0/+2
| | | * | | SELinux: use a helper function to determine seclabelEric Paris2013-07-251-14/+24
| | | * | | SELinux: pass a superblock to security_fs_useEric Paris2013-07-253-15/+11
| | | * | | SELinux: do not handle seclabel as a special flagEric Paris2013-07-252-4/+1
| | | * | | SELinux: change sbsec->behavior to shortEric Paris2013-07-253-3/+3
| | | * | | SELinux: renumber the superblock optionsEric Paris2013-07-252-4/+5
| | | * | | SELinux: do all flags twiddling in one placeEric Paris2013-07-251-7/+5
| | | * | | SELinux: rename SE_SBLABELSUPP to SBLABEL_MNTEric Paris2013-07-252-15/+15
| | | * | | SELinux: use define for number of bits in the mnt flags maskEric Paris2013-07-251-1/+4
| | | * | | SELinux: make it harder to get the number of mnt opts wrongEric Paris2013-07-251-2/+3
| | | * | | SELinux: remove crazy contortions around procEric Paris2013-07-251-1/+1
| | | * | | SELinux: fix selinuxfs policy file on big endian systemsEric Paris2013-07-251-2/+1
| | | * | | SELinux: Enable setting security contexts on rootfs inodes.Stephen Smalley2013-07-251-0/+7
| | | * | | SELinux: Increase ebitmap_node size for 64-bit configurationWaiman Long2013-07-251-1/+7
| | | * | | SELinux: Reduce overhead of mls_level_isvalid() function callWaiman Long2013-07-254-19/+27
| | | * | | selinux: remove the BUG_ON() from selinux_skb_xfrm_sid()Paul Moore2013-07-252-5/+8
| | | * | | selinux: cleanup the XFRM headerPaul Moore2013-07-251-14/+5
| | | * | | selinux: cleanup selinux_xfrm_decode_session()Paul Moore2013-07-251-11/+12
| | | * | | selinux: cleanup some comment and whitespace issues in the XFRM codePaul Moore2013-07-251-13/+10
| | | * | | selinux: cleanup selinux_xfrm_sock_rcv_skb() and selinux_xfrm_postroute_last()Paul Moore2013-07-252-60/+42
| | | * | | selinux: cleanup selinux_xfrm_policy_lookup() and selinux_xfrm_state_pol_flow...Paul Moore2013-07-251-36/+18
| | | * | | selinux: cleanup and consolidate the XFRM alloc/clone/delete/free codePaul Moore2013-07-251-31/+40
| | | * | | lsm: split the xfrm_state_alloc_security() hook implementationPaul Moore2013-07-255-124/+110
| * | | | | KEYS: initialize root uid and session keyrings earlyMimi Zohar2013-09-251-0/+10
| * | | | | KEYS: Add a 'trusted' flag and a 'trusted only' flagDavid Howells2013-09-252-0/+12
| * | | | | KEYS: Add per-user_namespace registers for persistent per-UID kerberos cachesDavid Howells2013-09-247-0/+213
| * | | | | KEYS: Implement a big key type that can save to tmpfsDavid Howells2013-09-243-0/+216
| * | | | | KEYS: Expand the capacity of a keyringDavid Howells2013-09-246-742/+792
| * | | | | KEYS: Drop the permissions argument from __keyring_search_one()David Howells2013-09-243-9/+5
| * | | | | KEYS: Define a __key_get() wrapper to use rather than atomic_inc()David Howells2013-09-243-12/+12