summaryrefslogtreecommitdiffstats
path: root/security (follow)
Commit message (Expand)AuthorAgeFilesLines
* mm, fs: reduce fault, page_mkwrite, and pfn_mkwrite to take only vmfDave Jiang2017-02-251-3/+2
* Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebi...Linus Torvalds2017-02-244-6/+6
|\
| * exec: Remove LSM_UNSAFE_PTRACE_CAPEric W. Biederman2017-01-244-5/+4
| * exec: Test the ptracer's saved cred to see if the tracee can gain capsEric W. Biederman2017-01-241-1/+2
| * exec: Don't reset euid and egid when the tracee has CAP_SETUIDEric W. Biederman2017-01-241-1/+1
* | Merge tag 'driver-core-4.11-rc1' of git://git.kernel.org/pub/scm/linux/kernel...Linus Torvalds2017-02-222-3/+39
|\ \
| * | Introduce STATIC_USERMODEHELPER to mediate call_usermodehelper()Greg Kroah-Hartman2017-01-191-0/+35
| * | Make static usermode helper binaries constantGreg Kroah-Hartman2017-01-191-3/+4
| |/
* | Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-nextLinus Torvalds2017-02-222-3/+8
|\ \
| * \ Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netDavid S. Miller2017-02-111-1/+1
| |\ \
| * | | Introduce a sysctl that modifies the value of PROT_SOCK.Krister Johansen2017-01-241-1/+2
| | |/ | |/|
* | | Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/...Linus Torvalds2017-02-2154-1839/+3314
|\ \ \
| * | | KEYS: Use memzero_explicit() for secret dataDan Carpenter2017-02-101-1/+1
| * | | KEYS: Fix an error code in request_master_key()Dan Carpenter2017-02-101-1/+1
| * | | Merge branch 'stable-4.11' of git://git.infradead.org/users/pcmoore/selinux i...James Morris2017-02-109-276/+327
| |\ \ \
| | * | | selinux: allow changing labels for cgroupfsAntonio Murdaca2017-02-081-0/+2
| | * | | security,selinux,smack: kill security_task_wait hookStephen Smalley2017-01-123-33/+0
| | * | | selinux: drop unused socket security classesStephen Smalley2017-01-122-12/+0
| | * | | selinux: default to security isid in sel_make_bools() if no sid is foundGary Tierney2017-01-091-3/+3
| | * | | selinux: log errors when loading new policyGary Tierney2017-01-091-5/+16
| | * | | proc,security: move restriction on writing /proc/pid/attr nodes to procStephen Smalley2017-01-094-29/+6
| | * | | selinux: clean up cred usage and simplifyStephen Smalley2017-01-093-211/+166
| | * | | selinux: allow context mounts on tmpfs, ramfs, devpts within user namespacesStephen Smalley2017-01-091-3/+7
| | * | | selinux: handle ICMPv6 consistently with ICMPStephen Smalley2017-01-091-1/+2
| | * | | selinux: add security in-core xattr support for tracefsYongqin Liu2017-01-091-0/+1
| | * | | selinux: support distinctions among all network address familiesStephen Smalley2017-01-095-2/+147
| | |/ /
| * | | Merge branch 'stable-4.10' of git://git.infradead.org/users/pcmoore/selinux i...James Morris2017-02-081-1/+1
| |\ \ \
| | * | | selinux: fix off-by-one in setprocattrStephen Smalley2017-02-071-1/+1
| * | | | ima: allow to check MAY_APPENDLans Zhang2017-01-272-4/+5
| * | | | ima: fix ima_d_path() possible race with renameMimi Zohar2017-01-273-6/+24
| * | | | Merge branch 'smack-for-4.11' of git://github.com/cschaufler/smack-next into ...James Morris2017-01-263-27/+95
| |\ \ \ \
| | * | | | Smack: ignore private inode for file functionsSeung-Woo Kim2017-01-101-0/+12
| | * | | | Smack: fix d_instantiate logic for sockfs and pipefsRafal Krypa2017-01-101-7/+7
| | * | | | SMACK: Use smk_tskacc() instead of smk_access() for proper loggingHimanshu Shukla2017-01-101-4/+1
| | * | | | Smack: Traverse the smack_known_list using list_for_each_entry_rcu macroVishal Goel2017-01-101-1/+1
| | * | | | SMACK: Free the i_security blob in inode using RCUHimanshu Shukla2017-01-102-4/+29
| | * | | | SMACK: Delete list_head repeated initializationHimanshu Shukla2017-01-101-4/+0
| | * | | | SMACK: Add new lock for adding entry in smack master listVishal Goel2017-01-101-0/+5
| | * | | | Smack: Fix the issue of wrong SMACK label update in socket bind fail caseVishal Goel2017-01-102-0/+21
| | * | | | Smack: Fix the issue of permission denied error in ipv6 hookVishal Goel2017-01-102-2/+4
| | * | | | SMACK: Add the rcu synchronization mechanism in ipv6 hooksVishal Goel2017-01-101-5/+15
| | | |/ / | | |/| |
| * | | | LSM: Add /sys/kernel/security/lsmCasey Schaufler2017-01-199-9/+71
| * | | | apparmor: fix undefined reference to `aa_g_hash_policy'John Johansen2017-01-161-1/+1
| * | | | apparmor: replace remaining BUG_ON() asserts with AA_BUG()John Johansen2017-01-164-5/+5
| * | | | apparmor: fix restricted endian type warnings for policy unpackJohn Johansen2017-01-161-6/+6
| * | | | apparmor: fix restricted endian type warnings for dfa unpackJohn Johansen2017-01-162-12/+12
| * | | | apparmor: add check for apparmor enabled in module parameters missing itJohn Johansen2017-01-161-0/+10
| * | | | apparmor: add per cpu work buffers to avoid allocating buffers at every hookJohn Johansen2017-01-162-1/+103
| * | | | apparmor: sysctl to enable unprivileged user ns AppArmor policy loadingTyler Hicks2017-01-162-1/+47
| * | | | apparmor: support querying extended trusted helper extra dataWilliam Hua2017-01-165-0/+245