Age | Commit message (Expand) | Author | Files | Lines |
2010-01-04 | SECURITY: selinux, fix update_rlimit_cpu parameter | Jiri Slaby | 1 | -1/+1 |
2009-12-22 | Sanitize f_flags helpers | Al Viro | 1 | -1/+0 |
2009-12-17 | Keys: KEYCTL_SESSION_TO_PARENT needs TIF_NOTIFY_RESUME architecture support | Geert Uytterhoeven | 1 | -0/+10 |
2009-12-17 | NOMMU: Optimise away the {dac_,}mmap_min_addr tests | David Howells | 1 | -1/+2 |
2009-12-17 | security/min_addr.c: make init_mmap_min_addr() static | H Hartley Sweeten | 1 | -1/+1 |
2009-12-17 | keys: PTR_ERR return of wrong pointer in keyctl_get_security() | Roel Kluin | 1 | -1/+1 |
2009-12-16 | ima: limit imbalance msg | Mimi Zohar | 1 | -9/+53 |
2009-12-16 | Untangling ima mess, part 3: kill dead code in ima | Al Viro | 1 | -48/+4 |
2009-12-16 | ima: call ima_inode_free ima_inode_free | Eric Paris | 2 | -5/+2 |
2009-12-16 | IMA: clean up the IMA counts updating code | Eric Paris | 2 | -49/+70 |
2009-12-16 | ima: only insert at inode creation time | Eric Paris | 3 | -66/+14 |
2009-12-16 | ima: valid return code from ima_inode_alloc | Eric Paris | 1 | -3/+1 |
2009-12-09 | Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jik... | Linus Torvalds | 2 | -2/+2 |
2009-12-08 | Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next-2.6 | Linus Torvalds | 3 | -11/+11 |
2009-12-08 | Merge git://git.kernel.org/pub/scm/linux/kernel/git/ebiederm/sysctl-2.6 | Linus Torvalds | 5 | -114/+15 |
2009-12-07 | Merge branch 'for-next' into for-linus | Jiri Kosina | 2 | -2/+2 |
2009-12-05 | Merge branch 'master' of /home/davem/src/GIT/linux-2.6/ | David S. Miller | 31 | -1974/+791 |
2009-12-04 | tree-wide: fix assorted typos all over the place | André Goddard Rosa | 2 | -2/+2 |
2009-12-03 | Merge branch 'master' into next | James Morris | 3 | -8/+8 |
2009-11-25 | TOMOYO: Add recursive directory matching operator support. | Tetsuo Handa | 2 | -83/+121 |
2009-11-24 | remove CONFIG_SECURITY_FILE_CAPABILITIES compile option | Serge E. Hallyn | 2 | -79/+2 |
2009-11-24 | SELinux: print denials for buggy kernel with unknown perms | Eric Paris | 2 | -1/+8 |
2009-11-20 | net: rename skb->iif to skb->skb_iif | Eric Dumazet | 2 | -5/+5 |
2009-11-20 | security/tomoyo: Remove now unnecessary handling of security_sysctl. | Eric W. Biederman | 3 | -95/+0 |
2009-11-20 | security/tomoyo: Add a special case to handle accesses through the internal p... | Eric W. Biederman | 1 | -0/+9 |
2009-11-18 | Merge branch 'master' of master.kernel.org:/pub/scm/linux/kernel/git/davem/ne... | David S. Miller | 2 | -3/+3 |
2009-11-19 | ima: replace GFP_KERNEL with GFP_NOFS | Mimi Zohar | 1 | -2/+2 |
2009-11-18 | sysctl: Drop & in front of every proc_handler. | Eric W. Biederman | 1 | -5/+5 |
2009-11-12 | sysctl security/tomoyo: Don't look at ctl_name | Tetsuo Handa | 1 | -9/+1 |
2009-11-12 | sysctl security/keys: Remove dead binary sysctl support | Eric W. Biederman | 1 | -6/+1 |
2009-11-10 | security: report the module name to security_module_request | Eric Paris | 4 | -5/+18 |
2009-11-09 | Config option to set a default LSM | John Johansen | 2 | -3/+38 |
2009-11-09 | sysctl: require CAP_SYS_RAWIO to set mmap_min_addr | Kees Cook | 1 | -0/+3 |
2009-10-29 | tomoyo: improve hash bucket dispersion | Stephen Hemminger | 1 | -4/+9 |
2009-10-25 | LSM: imbed ima calls in the security hooks | Mimi Zohar | 2 | -3/+26 |
2009-10-24 | SELinux: add .gitignore files for dynamic classes | Eric Paris | 1 | -0/+2 |
2009-10-20 | security: remove root_plug | James Morris | 4 | -105/+1 |
2009-10-20 | SELinux: fix locking issue introduced with c6d3aaa4e35c71a3 | Stephen Smalley | 1 | -3/+7 |
2009-10-18 | inet: rename some inet_sock fields | Eric Dumazet | 1 | -6/+6 |
2009-10-15 | KEYS: get_instantiation_keyring() should inc the keyring refcount in all cases | David Howells | 1 | -1/+1 |
2009-10-12 | LSM: Add security_path_chroot(). | Tetsuo Handa | 2 | -0/+11 |
2009-10-12 | LSM: Add security_path_chmod() and security_path_chown(). | Tetsuo Handa | 2 | -0/+28 |
2009-10-07 | selinux: drop remapping of netlink classes | Stephen Smalley | 2 | -30/+1 |
2009-10-07 | selinux: generate flask headers during kernel build | Stephen Smalley | 4 | -963/+10 |
2009-10-07 | selinux: dynamic class/perm discovery | Stephen Smalley | 15 | -744/+555 |
2009-10-01 | const: constify remaining file_operations | Alexey Dobriyan | 1 | -5/+5 |
2009-09-30 | SELinux: reset the security_ops before flushing the avc cache | Eric Paris | 1 | -3/+3 |
2009-09-24 | Merge git://git.kernel.org/pub/scm/linux/kernel/git/viro/audit-current | Linus Torvalds | 1 | -1/+1 |
2009-09-24 | sysctl: remove "struct file *" argument of ->proc_handler | Alexey Dobriyan | 1 | -2/+2 |
2009-09-24 | do_wait() wakeup optimization: change __wake_up_parent() to use filtered wakeup | Oleg Nesterov | 1 | -1/+1 |
2009-09-24 | cgroups: let ss->can_attach and ss->attach do whole threadgroups at a time | Ben Blum | 1 | -1/+2 |
2009-09-24 | lsm: Use a compressed IPv6 string format in audit events | Paul Moore | 1 | -1/+1 |
2009-09-23 | Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo... | Linus Torvalds | 2 | -6/+17 |
2009-09-23 | SELinux: do not destroy the avc_cache_nodep | Eric Paris | 1 | -4/+15 |
2009-09-23 | KEYS: Have the garbage collector set its timer for live expired keys | David Howells | 1 | -2/+2 |
2009-09-23 | seq_file: constify seq_operations | James Morris | 2 | -5/+5 |
2009-09-23 | Move magic numbers into magic.h | Nick Black | 1 | -7/+1 |
2009-09-15 | Merge branch 'x86-txt-for-linus' of git://git.kernel.org/pub/scm/linux/kernel... | Linus Torvalds | 1 | -0/+30 |
2009-09-15 | KEYS: Fix garbage collector | David Howells | 4 | -35/+73 |
2009-09-15 | KEYS: Unlock tasklist when exiting early from keyctl_session_to_parent | Marc Dionne | 1 | -0/+1 |
2009-09-14 | SELinux: flush the avc before disabling SELinux | Eric Paris | 1 | -0/+2 |
2009-09-14 | SELinux: seperate avc_cache flushing | Eric Paris | 1 | -7/+17 |
2009-09-14 | Creds: creds->security can be NULL is selinux is disabled | Eric Paris | 1 | -0/+6 |
2009-09-11 | Merge branch 'next' into for-linus | James Morris | 36 | -460/+1290 |
2009-09-10 | sysfs: Add labeling support for sysfs | David P. Quigley | 2 | -0/+6 |
2009-09-10 | LSM/SELinux: inode_{get,set,notify}secctx hooks to access LSM security contex... | David P. Quigley | 4 | -0/+88 |
2009-09-07 | IMA: update ima_counts_put | Mimi Zohar | 1 | -1/+5 |
2009-09-02 | KEYS: Add a keyctl to install a process's session keyring on its parent [try #6] | David Howells | 10 | -0/+267 |
2009-09-02 | KEYS: Do some whitespace cleanups [try #6] | David Howells | 1 | -9/+3 |
2009-09-02 | KEYS: Make /proc/keys use keyid not numread as file position [try #6] | Serge E. Hallyn | 1 | -22/+55 |
2009-09-02 | KEYS: Add garbage collection for dead, revoked and expired keys. [try #6] | David Howells | 7 | -4/+322 |
2009-09-02 | KEYS: Flag dead keys to induce EKEYREVOKED [try #6] | David Howells | 1 | -1/+3 |
2009-09-02 | KEYS: Allow keyctl_revoke() on keys that have SETATTR but not WRITE perm [try... | David Howells | 1 | -1/+7 |
2009-09-02 | KEYS: Deal with dead-type keys appropriately [try #6] | David Howells | 4 | -31/+48 |
2009-09-02 | CRED: Add some configurable debugging [try #6] | David Howells | 1 | -1/+5 |
2009-09-02 | Merge commit 'v2.6.31-rc8' into x86/txt | Ingo Molnar | 8 | -14/+119 |
2009-09-01 | x86, intel_txt: clean up the impact on generic code, unbreak non-x86 | Shane Wang | 1 | -1/+1 |
2009-09-01 | selinux: Support for the new TUN LSM hooks | Paul Moore | 5 | -2/+83 |
2009-09-01 | lsm: Add hooks to the TUN driver | Paul Moore | 2 | -0/+37 |
2009-08-26 | Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo... | Linus Torvalds | 1 | -0/+4 |
2009-08-27 | IMA: iint put in ima_counts_get and put | Eric Paris | 1 | -0/+4 |
2009-08-24 | ima: hashing large files bug fix | Mimi Zohar | 1 | -2/+4 |
2009-08-21 | selinux: adjust rules for ATTR_FORCE | Amerigo Wang | 1 | -5/+11 |
2009-08-20 | Merge branch 'master' into next | James Morris | 2 | -3/+4 |
2009-08-19 | security: Fix prompt for LSM_MMAP_MIN_ADDR | Andreas Schwab | 1 | -1/+1 |
2009-08-19 | security: Make LSM_MMAP_MIN_ADDR default match its help text. | Dave Jones | 1 | -1/+1 |
2009-08-17 | Security/SELinux: seperate lsm specific mmap_min_addr | Eric Paris | 5 | -3/+68 |
2009-08-17 | SELinux: call cap_file_mmap in selinux_file_mmap | Eric Paris | 1 | -1/+13 |
2009-08-17 | Capabilities: move cap_file_mmap to commoncap.c | Eric Paris | 2 | -9/+30 |
2009-08-17 | SELinux: Convert avc_audit to use lsm_audit.h | Thomas Liu | 9 | -283/+129 |
2009-08-14 | x86, intel_txt: Fix typos in Kconfig help | Arnaldo Carvalho de Melo | 1 | -2/+2 |
2009-08-14 | SELinux: add selinux_kernel_module_request | Eric Paris | 3 | -0/+8 |
2009-08-14 | security: introducing security_request_module | Eric Paris | 2 | -0/+11 |
2009-08-11 | SELinux: fix memory leakage in /security/selinux/hooks.c | James Morris | 1 | -1/+2 |
2009-08-06 | Security/SELinux: seperate lsm specific mmap_min_addr | Eric Paris | 5 | -3/+68 |
2009-08-06 | SELinux: call cap_file_mmap in selinux_file_mmap | Eric Paris | 1 | -1/+13 |
2009-08-06 | Capabilities: move cap_file_mmap to commoncap.c | Eric Paris | 2 | -9/+30 |
2009-08-06 | security/smack: Use AF_INET for sin_family field | Julia Lawall | 1 | -1/+1 |
2009-07-21 | x86, intel_txt: Intel TXT boot support | Joseph Cihula | 1 | -0/+30 |
2009-07-17 | kernel: rename is_single_threaded(task) to current_is_single_threaded(void) | Oleg Nesterov | 2 | -2/+2 |
2009-07-13 | Revert "SELinux: Convert avc_audit to use lsm_audit.h" | James Morris | 8 | -134/+297 |
2009-07-13 | SELinux: Convert avc_audit to use lsm_audit.h | Thomas Liu | 8 | -297/+134 |
2009-07-10 | security: Make lsm_priv union in lsm_audit.h anonymous | Thomas Liu | 2 | -6/+6 |
2009-07-10 | Move variable function in lsm_audit.h into SMACK private space | Thomas Liu | 2 | -4/+5 |
2009-06-30 | Merge branch 'master' into next | James Morris | 2 | -2/+30 |
2009-06-29 | integrity: add ima_counts_put (updated) | Mimi Zohar | 1 | -1/+28 |
2009-06-29 | integrity: ima audit hash_exists fix | Mimi Zohar | 1 | -1/+2 |
2009-06-25 | selinux: clean up avc node cache when disabling selinux | Thomas Liu | 3 | -0/+12 |
2009-06-25 | security: rename ptrace_may_access => ptrace_access_check | Ingo Molnar | 5 | -12/+12 |
2009-06-25 | keys: annotate seqfile ops with __releases and __acquires | James Morris | 1 | -0/+4 |
2009-06-23 | selinux: restore optimization to selinux_file_permission | Stephen Smalley | 1 | -5/+10 |
2009-06-19 | TOMOYO: Remove next_domain from tomoyo_find_next_domain(). | Tetsuo Handa | 3 | -15/+8 |
2009-06-19 | TOMOYO: Move tomoyo_delete_domain(). | Tetsuo Handa | 3 | -34/+30 |
2009-06-19 | Merge branch 'master' into next | James Morris | 33 | -446/+1698 |
2009-06-18 | devcgroup: skip superfluous checks when found the DEV_ALL elem | Li Zefan | 1 | -4/+6 |
2009-06-19 | Add audit messages on type boundary violations | KaiGai Kohei | 3 | -23/+118 |
2009-06-18 | cleanup in ss/services.c | KaiGai Kohei | 1 | -3/+3 |
2009-06-15 | Merge branch 'master' of master.kernel.org:/pub/scm/linux/kernel/git/torvalds... | David S. Miller | 31 | -446/+1702 |
2009-06-11 | Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo... | Linus Torvalds | 31 | -440/+1690 |
2009-06-10 | Merge branch 'rcu-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git... | Linus Torvalds | 2 | -6/+6 |
2009-06-09 | TOMOYO: Add description of lists and structures. | Tetsuo Handa | 6 | -34/+504 |
2009-06-09 | TOMOYO: Remove unused field. | Tetsuo Handa | 2 | -2/+0 |
2009-06-09 | Merge branch 'master' into next | James Morris | 1 | -0/+6 |
2009-06-05 | integrity: ima audit dentry_open failure | Mimi Zohar | 1 | -4/+9 |
2009-06-04 | TOMOYO: Remove unused parameter. | Tetsuo Handa | 3 | -7/+3 |
2009-06-04 | security: use mmap_min_addr indepedently of security models | Christoph Lameter | 2 | -24/+1 |
2009-06-03 | net: skb->dst accessors | Eric Dumazet | 2 | -2/+2 |
2009-06-03 | TOMOYO: Simplify policy reader. | Tetsuo Handa | 3 | -52/+41 |
2009-06-03 | TOMOYO: Remove redundant markers. | Tetsuo Handa | 4 | -36/+0 |
2009-06-03 | SELinux: define audit permissions for audit tree netlink messages | Eric Paris | 1 | -0/+2 |
2009-06-02 | TOMOYO: Remove unused mutex. | Tetsuo Handa | 1 | -1/+0 |
2009-06-02 | tomoyo: avoid get+put of task_struct | Serge E. Hallyn | 1 | -8/+1 |
2009-05-28 | smack: Remove redundant initialization. | Tetsuo Handa | 1 | -15/+0 |
2009-05-27 | rootplug: Remove redundant initialization. | Tetsuo Handa | 1 | -12/+0 |
2009-05-27 | tomoyo: add missing call to cap_bprm_set_creds | Herton Ronaldo Krzesinski | 1 | -0/+6 |
2009-05-22 | Merge branch 'master' into next | James Morris | 2 | -11/+11 |
2009-05-22 | smack: do not beyond ARRAY_SIZE of data | Roel Kluin | 1 | -1/+1 |
2009-05-22 | integrity: path_check update | Mimi Zohar | 1 | -19/+29 |
2009-05-22 | IMA: Add __init notation to ima functions | Eric Paris | 5 | -7/+7 |
2009-05-22 | IMA: Minimal IMA policy and boot param for TCB IMA policy | Eric Paris | 1 | -3/+27 |
2009-05-19 | selinux: remove obsolete read buffer limit from sel_read_bool | Stephen Smalley | 1 | -4/+0 |
2009-05-19 | SELinux: move SELINUX_MAGIC into magic.h | Eric Paris | 2 | -7/+4 |
2009-05-15 | IMA: do not measure everything opened by root by default | Eric Paris | 1 | -2/+0 |
2009-05-15 | IMA: remove read permissions on the ima policy file | Eric Paris | 1 | -1/+5 |
2009-05-12 | securityfs: securityfs_remove should handle IS_ERR pointers | Eric Paris | 1 | -1/+1 |
2009-05-12 | IMA: open all files O_LARGEFILE | Eric Paris | 1 | -1/+2 |
2009-05-12 | IMA: Handle dentry_open failures | Eric Paris | 1 | -4/+6 |
2009-05-12 | IMA: use current_cred() instead of current->cred | Eric Paris | 2 | -2/+2 |
2009-05-09 | Reduce path_lookup() abuses | Al Viro | 2 | -11/+11 |
2009-05-08 | Merge branch 'master' into next | James Morris | 14 | -28/+39 |
2009-05-06 | integrity: remove __setup auditing msgs | Mimi Zohar | 2 | -25/+4 |
2009-05-06 | integrity: use audit_log_string | Mimi Zohar | 1 | -13/+4 |
2009-05-06 | integrity: lsm audit rule matching fix | Mimi Zohar | 1 | -4/+4 |
2009-05-05 | selinux: Fix send_sigiotask hook | Stephen Smalley | 1 | -1/+1 |
2009-04-30 | selinux: selinux_bprm_committed_creds() should wake up ->real_parent, not ->p... | Oleg Nesterov | 1 | -8/+3 |
2009-04-30 | SELinux: Don't flush inherited SIGKILL during execve() | David Howells | 1 | -4/+5 |
2009-04-30 | SELinux: drop secondary_ops->sysctl | Eric Paris | 1 | -4/+0 |
2009-04-18 | Smack: check for SMACK xattr validity in smack_inode_setxattr | Etienne Basset | 1 | -5/+6 |
2009-04-15 | rculist: use list_entry_rcu in places where it's appropriate | Jiri Pirko | 2 | -6/+6 |
2009-04-14 | tomoyo: version bump to 2.2.0. | Tetsuo Handa | 8 | -10/+10 |
2009-04-14 | smack: implement logging V3 | Etienne Basset | 5 | -110/+600 |
2009-04-14 | smack: implement logging V3 | Etienne Basset | 1 | -0/+386 |
2009-04-09 | keys: Handle there being no fallback destination keyring for request_key() | David Howells | 1 | -3/+6 |
2009-04-09 | cap_prctl: don't set error to 0 at 'no_change' | Serge E. Hallyn | 1 | -1/+0 |
2009-04-07 | tomoyo: remove "undelete domain" command. | Tetsuo Handa | 3 | -100/+5 |
2009-04-07 | tomoyo: remove "undelete domain" command. | Tetsuo Handa | 3 | -100/+5 |
2009-04-03 | CacheFiles: Export things for CacheFiles | David Howells | 1 | -0/+2 |
2009-04-02 | Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir... | Linus Torvalds | 1 | -0/+1 |
2009-04-02 | devcgroup: avoid using cgroup_lock | Li Zefan | 1 | -8/+13 |
2009-04-03 | don't raise all privs on setuid-root file with fE set (v2) | Serge E. Hallyn | 1 | -0/+32 |
2009-04-02 | Permissive domain in userspace object manager | KaiGai Kohei | 4 | -29/+11 |
2009-03-31 | Get rid of indirect include of fs_struct.h | Al Viro | 1 | -0/+1 |
2009-03-28 | smack: Add a new '-CIPSO' option to the network address label configuration | Etienne Basset | 4 | -10/+45 |
2009-03-28 | netlabel: Cleanup the Smack/NetLabel code to fix incoming TCP connections | Paul Moore | 2 | -118/+143 |
2009-03-28 | lsm: Remove the socket_post_accept() hook | Paul Moore | 2 | -10/+0 |
2009-03-28 | selinux: Remove the "compat_net" compatibility code | Paul Moore | 2 | -214/+7 |
2009-03-28 | netlabel: Label incoming TCP connections correctly in SELinux | Paul Moore | 4 | -187/+82 |
2009-03-27 | TOMOYO: Fix a typo. | Tetsuo Handa | 1 | -1/+1 |
2009-03-26 | smack: convert smack to standard linux lists | Etienne Basset | 4 | -122/+168 |
2009-03-24 | Merge branch 'master' into next | James Morris | 2 | -38/+14 |
2009-03-10 | SELinux: inode_doinit_with_dentry drop no dentry printk | Eric Paris | 1 | -3/+9 |
2009-03-06 | SELinux: new permission between tty audit and audit socket | Eric Paris | 3 | -1/+3 |
2009-03-06 | SELinux: open perm for sock files | Eric Paris | 3 | -0/+4 |
2009-03-05 | smack: fixes for unlabeled host support | etienne | 2 | -50/+57 |
2009-03-05 | smack: fixes for unlabeled host support | etienne | 1 | -15/+49 |
2009-03-02 | selinux: Fix a panic in selinux_netlbl_inode_permission() | Paul Moore | 1 | -2/+3 |
2009-02-27 | keys: make procfiles per-user-namespace | Serge E. Hallyn | 1 | -6/+49 |
2009-02-27 | keys: skip keys from another user namespace | Serge E. Hallyn | 1 | -0/+3 |
2009-02-27 | keys: consider user namespace in key_permission | Serge E. Hallyn | 1 | -0/+5 |
2009-02-27 | keys: distinguish per-uid keys in different namespaces | Serge E. Hallyn | 5 | -5/+16 |
2009-02-23 | selinux: Fix the NetLabel glue code for setsockopt() | Paul Moore | 1 | -1/+3 |
2009-02-23 | integrity: ima iint radix_tree_lookup locking fix | Mimi Zohar | 1 | -0/+2 |
2009-02-23 | TOMOYO: Do not call tomoyo_realpath_init unless registered. | Tetsuo Handa | 3 | -6/+5 |
2009-02-21 | integrity: ima scatterlist bug fix | Mimi Zohar | 1 | -2/+2 |
2009-02-19 | smack: fix lots of kernel-doc notation | Randy Dunlap | 3 | -37/+34 |
2009-02-16 | TOMOYO: Don't create securityfs entries unless registered. | Tetsuo Handa | 1 | -0/+4 |
2009-02-14 | TOMOYO: Fix exception policy read failure. | Tetsuo Handa | 1 | -1/+1 |
2009-02-14 | SELinux: convert the avc cache hash list to an hlist | Eric Paris | 1 | -20/+27 |
2009-02-14 | SELinux: code readability with avc_cache | Eric Paris | 1 | -19/+44 |
2009-02-14 | SELinux: remove unused av.decided field | Eric Paris | 4 | -14/+6 |