summaryrefslogtreecommitdiffstats
path: root/security (follow)
Commit message (Expand)AuthorAgeFilesLines
* selinux: Create a common helper to determine an inode label [ver #3]David Howells2015-07-131-46/+41
* selinux: Augment BUG_ON assertion for secclass_map.Stephen Smalley2015-07-131-1/+2
* selinux: initialize sock security class to default valueStephen Smalley2015-07-131-0/+1
* selinux: reduce locking overhead in inode_free_security()Waiman Long2015-07-131-3/+14
* selinux: extended permissions for ioctlsJeff Vander Stoep2015-07-1311-60/+834
* security: add ioctl specific auditing to lsm_auditJeff Vander Stoep2015-07-131-0/+15
* selinux: fix mprotect PROT_EXEC regression caused by mm changeStephen Smalley2015-07-101-1/+2
* selinux: don't waste ebitmap space when importing NetLabel categoriesPaul Moore2015-07-091-0/+6
* selinux: fix setting of security labels on NFSJ. Bruce Fields2015-06-051-0/+1
* selinux: Remove unused permission definitionsStephen Smalley2015-06-041-14/+8
* selinux: enable genfscon labeling for sysfs and pstore filesStephen Smalley2015-06-041-1/+3
* selinux: enable per-file labeling for debugfs files.Stephen Smalley2015-06-042-22/+22
* selinux: update netlink socket classesStephen Smalley2015-06-042-10/+32
* signals: don't abuse __flush_signals() in selinux_bprm_committed_creds()Oleg Nesterov2015-06-041-2/+4
* selinux: Print 'sclass' as string when unrecognized netlink message occursMarek Milkovic2015-06-041-2/+3
* Merge branch 'smack-for-4.2-stacked' of https://github.com/cschaufler/smack-n...James Morris2015-06-034-186/+314
|\
| * Smack: allow multiple labels in onlycapRafal Krypa2015-06-023-69/+160
| * Smack: fix seq operations in smackfsRafal Krypa2015-06-021-30/+22
| * smack: pass error code through pointersLukasz Pawelczyk2015-05-153-97/+139
| * Smack: ignore private inode for smack_file_receiveSeung-Woo Kim2015-05-151-0/+3
* | ima: pass iint to ima_add_violation()Roberto Sassu2015-05-215-9/+13
* | ima: wrap event related data to the new ima_event_data structureRoberto Sassu2015-05-215-79/+61
* | integrity: add validity checks for 'path' parameterDmitry Kasatkin2015-05-213-2/+5
* | evm: fix potential race when removing xattrsDmitry Kasatkin2015-05-211-4/+3
* | evm: labeling pseudo filesystems exceptionMimi Zohar2015-05-211-0/+11
* | ima: remove definition of IMA_X509_PATHDmitry Kasatkin2015-05-211-7/+1
* | ima: limit file hash setting by user to fix and log modesDmitry Kasatkin2015-05-211-2/+6
* | ima: do not measure or appraise the NSFS filesystemMimi Zohar2015-05-211-0/+2
* | ima: skip measurement of cgroupfs files and update documentationRoberto Sassu2015-05-211-0/+2
* | ima: cleanup ima_init_policy() a littleDan Carpenter2015-05-131-10/+6
|/
* LSM: Remove unused capability.cCasey Schaufler2015-05-121-1158/+0
* LSM: Switch to lists of hooksCasey Schaufler2015-05-1211-321/+570
* LSM: Add security module hook list headsCasey Schaufler2015-05-125-402/+406
* LSM: Introduce security hook calling MacrosCasey Schaufler2015-05-121-207/+226
* LSM: Split security.hCasey Schaufler2015-05-127-7/+7
* Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds2015-04-2716-117/+117
|\
| * VFS: security/: d_inode() annotationsDavid Howells2015-04-154-12/+12
| * VFS: security/: d_backing_inode() annotationsDavid Howells2015-04-1512-105/+105
| * Merge branch 'for-davem' into for-nextAl Viro2015-04-125-44/+12
| |\
* | | tomoyo: reduce mmap_sem hold for mm->exe_fileDavidlohr Bueso2015-04-171-5/+8
* | | Merge branch 'akpm' (patches from Andrew)Linus Torvalds2015-04-161-0/+1
|\ \ \
| * | | kernel: conditionally support non-root users, groups and capabilitiesIulia Manda2015-04-161-0/+1
* | | | Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/...Linus Torvalds2015-04-1516-115/+324
|\ \ \ \ | |/ / / |/| | |
| * | | lsm: copy comm before calling audit_log to avoid race in string printingRichard Guy Briggs2015-04-151-6/+9
| * | | Merge branch 'tomoyo-cleanup' of git://git.kernel.org/pub/scm/linux/kernel/gi...James Morris2015-04-134-45/+15
| |\ \ \
| | * | | tomoyo: Do not generate empty policy filesMichal Marek2015-04-073-29/+5
| | * | | tomoyo: Use if_changed when generating builtin-policy.hMichal Marek2015-04-071-18/+11
| | * | | tomoyo: Use bin2c to generate builtin-policy.hMichal Marek2015-04-072-10/+11
| * | | | selinux: increase avtab max bucketsStephen Smalley2015-04-071-1/+1
| * | | | selinux: Use a better hash function for avtabJohn Brooks2015-04-072-5/+38