aboutsummaryrefslogtreecommitdiffstats
path: root/security
AgeCommit message (Expand)AuthorFilesLines
2010-01-04SECURITY: selinux, fix update_rlimit_cpu parameterJiri Slaby1-1/+1
2009-12-22Sanitize f_flags helpersAl Viro1-1/+0
2009-12-17Keys: KEYCTL_SESSION_TO_PARENT needs TIF_NOTIFY_RESUME architecture supportGeert Uytterhoeven1-0/+10
2009-12-17NOMMU: Optimise away the {dac_,}mmap_min_addr testsDavid Howells1-1/+2
2009-12-17security/min_addr.c: make init_mmap_min_addr() staticH Hartley Sweeten1-1/+1
2009-12-17keys: PTR_ERR return of wrong pointer in keyctl_get_security()Roel Kluin1-1/+1
2009-12-16ima: limit imbalance msgMimi Zohar1-9/+53
2009-12-16Untangling ima mess, part 3: kill dead code in imaAl Viro1-48/+4
2009-12-16ima: call ima_inode_free ima_inode_freeEric Paris2-5/+2
2009-12-16IMA: clean up the IMA counts updating codeEric Paris2-49/+70
2009-12-16ima: only insert at inode creation timeEric Paris3-66/+14
2009-12-16ima: valid return code from ima_inode_allocEric Paris1-3/+1
2009-12-09Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jik...Linus Torvalds2-2/+2
2009-12-08Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next-2.6Linus Torvalds3-11/+11
2009-12-08Merge git://git.kernel.org/pub/scm/linux/kernel/git/ebiederm/sysctl-2.6Linus Torvalds5-114/+15
2009-12-07Merge branch 'for-next' into for-linusJiri Kosina2-2/+2
2009-12-05Merge branch 'master' of /home/davem/src/GIT/linux-2.6/David S. Miller31-1974/+791
2009-12-04tree-wide: fix assorted typos all over the placeAndré Goddard Rosa2-2/+2
2009-12-03Merge branch 'master' into nextJames Morris3-8/+8
2009-11-25TOMOYO: Add recursive directory matching operator support.Tetsuo Handa2-83/+121
2009-11-24remove CONFIG_SECURITY_FILE_CAPABILITIES compile optionSerge E. Hallyn2-79/+2
2009-11-24SELinux: print denials for buggy kernel with unknown permsEric Paris2-1/+8
2009-11-20net: rename skb->iif to skb->skb_iifEric Dumazet2-5/+5
2009-11-20security/tomoyo: Remove now unnecessary handling of security_sysctl.Eric W. Biederman3-95/+0
2009-11-20security/tomoyo: Add a special case to handle accesses through the internal p...Eric W. Biederman1-0/+9
2009-11-18Merge branch 'master' of master.kernel.org:/pub/scm/linux/kernel/git/davem/ne...David S. Miller2-3/+3
2009-11-19ima: replace GFP_KERNEL with GFP_NOFSMimi Zohar1-2/+2
2009-11-18sysctl: Drop & in front of every proc_handler.Eric W. Biederman1-5/+5
2009-11-12sysctl security/tomoyo: Don't look at ctl_nameTetsuo Handa1-9/+1
2009-11-12sysctl security/keys: Remove dead binary sysctl supportEric W. Biederman1-6/+1
2009-11-10security: report the module name to security_module_requestEric Paris4-5/+18
2009-11-09Config option to set a default LSMJohn Johansen2-3/+38
2009-11-09sysctl: require CAP_SYS_RAWIO to set mmap_min_addrKees Cook1-0/+3
2009-10-29tomoyo: improve hash bucket dispersionStephen Hemminger1-4/+9
2009-10-25LSM: imbed ima calls in the security hooksMimi Zohar2-3/+26
2009-10-24SELinux: add .gitignore files for dynamic classesEric Paris1-0/+2
2009-10-20security: remove root_plugJames Morris4-105/+1
2009-10-20SELinux: fix locking issue introduced with c6d3aaa4e35c71a3Stephen Smalley1-3/+7
2009-10-18inet: rename some inet_sock fieldsEric Dumazet1-6/+6
2009-10-15KEYS: get_instantiation_keyring() should inc the keyring refcount in all casesDavid Howells1-1/+1
2009-10-12LSM: Add security_path_chroot().Tetsuo Handa2-0/+11
2009-10-12LSM: Add security_path_chmod() and security_path_chown().Tetsuo Handa2-0/+28
2009-10-07selinux: drop remapping of netlink classesStephen Smalley2-30/+1
2009-10-07selinux: generate flask headers during kernel buildStephen Smalley4-963/+10
2009-10-07selinux: dynamic class/perm discoveryStephen Smalley15-744/+555
2009-10-01const: constify remaining file_operationsAlexey Dobriyan1-5/+5
2009-09-30SELinux: reset the security_ops before flushing the avc cacheEric Paris1-3/+3
2009-09-24Merge git://git.kernel.org/pub/scm/linux/kernel/git/viro/audit-currentLinus Torvalds1-1/+1
2009-09-24sysctl: remove "struct file *" argument of ->proc_handlerAlexey Dobriyan1-2/+2
2009-09-24do_wait() wakeup optimization: change __wake_up_parent() to use filtered wakeupOleg Nesterov1-1/+1
2009-09-24cgroups: let ss->can_attach and ss->attach do whole threadgroups at a timeBen Blum1-1/+2
2009-09-24lsm: Use a compressed IPv6 string format in audit eventsPaul Moore1-1/+1
2009-09-23Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds2-6/+17
2009-09-23SELinux: do not destroy the avc_cache_nodepEric Paris1-4/+15
2009-09-23KEYS: Have the garbage collector set its timer for live expired keysDavid Howells1-2/+2
2009-09-23seq_file: constify seq_operationsJames Morris2-5/+5
2009-09-23Move magic numbers into magic.hNick Black1-7/+1
2009-09-15Merge branch 'x86-txt-for-linus' of git://git.kernel.org/pub/scm/linux/kernel...Linus Torvalds1-0/+30
2009-09-15KEYS: Fix garbage collectorDavid Howells4-35/+73
2009-09-15KEYS: Unlock tasklist when exiting early from keyctl_session_to_parentMarc Dionne1-0/+1
2009-09-14SELinux: flush the avc before disabling SELinuxEric Paris1-0/+2
2009-09-14SELinux: seperate avc_cache flushingEric Paris1-7/+17
2009-09-14Creds: creds->security can be NULL is selinux is disabledEric Paris1-0/+6
2009-09-11Merge branch 'next' into for-linusJames Morris36-460/+1290
2009-09-10sysfs: Add labeling support for sysfsDavid P. Quigley2-0/+6
2009-09-10LSM/SELinux: inode_{get,set,notify}secctx hooks to access LSM security contex...David P. Quigley4-0/+88
2009-09-07IMA: update ima_counts_putMimi Zohar1-1/+5
2009-09-02KEYS: Add a keyctl to install a process's session keyring on its parent [try #6]David Howells10-0/+267
2009-09-02KEYS: Do some whitespace cleanups [try #6]David Howells1-9/+3
2009-09-02KEYS: Make /proc/keys use keyid not numread as file position [try #6]Serge E. Hallyn1-22/+55
2009-09-02KEYS: Add garbage collection for dead, revoked and expired keys. [try #6]David Howells7-4/+322
2009-09-02KEYS: Flag dead keys to induce EKEYREVOKED [try #6]David Howells1-1/+3
2009-09-02KEYS: Allow keyctl_revoke() on keys that have SETATTR but not WRITE perm [try...David Howells1-1/+7
2009-09-02KEYS: Deal with dead-type keys appropriately [try #6]David Howells4-31/+48
2009-09-02CRED: Add some configurable debugging [try #6]David Howells1-1/+5
2009-09-02Merge commit 'v2.6.31-rc8' into x86/txtIngo Molnar8-14/+119
2009-09-01x86, intel_txt: clean up the impact on generic code, unbreak non-x86Shane Wang1-1/+1
2009-09-01selinux: Support for the new TUN LSM hooksPaul Moore5-2/+83
2009-09-01lsm: Add hooks to the TUN driverPaul Moore2-0/+37
2009-08-26Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds1-0/+4
2009-08-27IMA: iint put in ima_counts_get and putEric Paris1-0/+4
2009-08-24ima: hashing large files bug fixMimi Zohar1-2/+4
2009-08-21selinux: adjust rules for ATTR_FORCEAmerigo Wang1-5/+11
2009-08-20Merge branch 'master' into nextJames Morris2-3/+4
2009-08-19security: Fix prompt for LSM_MMAP_MIN_ADDRAndreas Schwab1-1/+1
2009-08-19security: Make LSM_MMAP_MIN_ADDR default match its help text.Dave Jones1-1/+1
2009-08-17Security/SELinux: seperate lsm specific mmap_min_addrEric Paris5-3/+68
2009-08-17SELinux: call cap_file_mmap in selinux_file_mmapEric Paris1-1/+13
2009-08-17Capabilities: move cap_file_mmap to commoncap.cEric Paris2-9/+30
2009-08-17SELinux: Convert avc_audit to use lsm_audit.hThomas Liu9-283/+129
2009-08-14x86, intel_txt: Fix typos in Kconfig helpArnaldo Carvalho de Melo1-2/+2
2009-08-14SELinux: add selinux_kernel_module_requestEric Paris3-0/+8
2009-08-14security: introducing security_request_moduleEric Paris2-0/+11
2009-08-11SELinux: fix memory leakage in /security/selinux/hooks.cJames Morris1-1/+2
2009-08-06Security/SELinux: seperate lsm specific mmap_min_addrEric Paris5-3/+68
2009-08-06SELinux: call cap_file_mmap in selinux_file_mmapEric Paris1-1/+13
2009-08-06Capabilities: move cap_file_mmap to commoncap.cEric Paris2-9/+30
2009-08-06security/smack: Use AF_INET for sin_family fieldJulia Lawall1-1/+1
2009-07-21x86, intel_txt: Intel TXT boot supportJoseph Cihula1-0/+30
2009-07-17kernel: rename is_single_threaded(task) to current_is_single_threaded(void)Oleg Nesterov2-2/+2
2009-07-13Revert "SELinux: Convert avc_audit to use lsm_audit.h"James Morris8-134/+297
2009-07-13SELinux: Convert avc_audit to use lsm_audit.hThomas Liu8-297/+134
2009-07-10security: Make lsm_priv union in lsm_audit.h anonymousThomas Liu2-6/+6
2009-07-10Move variable function in lsm_audit.h into SMACK private spaceThomas Liu2-4/+5
2009-06-30Merge branch 'master' into nextJames Morris2-2/+30
2009-06-29integrity: add ima_counts_put (updated)Mimi Zohar1-1/+28
2009-06-29integrity: ima audit hash_exists fixMimi Zohar1-1/+2
2009-06-25selinux: clean up avc node cache when disabling selinuxThomas Liu3-0/+12
2009-06-25security: rename ptrace_may_access => ptrace_access_checkIngo Molnar5-12/+12
2009-06-25keys: annotate seqfile ops with __releases and __acquiresJames Morris1-0/+4
2009-06-23selinux: restore optimization to selinux_file_permissionStephen Smalley1-5/+10
2009-06-19TOMOYO: Remove next_domain from tomoyo_find_next_domain().Tetsuo Handa3-15/+8
2009-06-19TOMOYO: Move tomoyo_delete_domain().Tetsuo Handa3-34/+30
2009-06-19Merge branch 'master' into nextJames Morris33-446/+1698
2009-06-18devcgroup: skip superfluous checks when found the DEV_ALL elemLi Zefan1-4/+6
2009-06-19Add audit messages on type boundary violationsKaiGai Kohei3-23/+118
2009-06-18cleanup in ss/services.cKaiGai Kohei1-3/+3
2009-06-15Merge branch 'master' of master.kernel.org:/pub/scm/linux/kernel/git/torvalds...David S. Miller31-446/+1702
2009-06-11Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds31-440/+1690
2009-06-10Merge branch 'rcu-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git...Linus Torvalds2-6/+6
2009-06-09TOMOYO: Add description of lists and structures.Tetsuo Handa6-34/+504
2009-06-09TOMOYO: Remove unused field.Tetsuo Handa2-2/+0
2009-06-09Merge branch 'master' into nextJames Morris1-0/+6
2009-06-05integrity: ima audit dentry_open failureMimi Zohar1-4/+9
2009-06-04TOMOYO: Remove unused parameter.Tetsuo Handa3-7/+3
2009-06-04security: use mmap_min_addr indepedently of security modelsChristoph Lameter2-24/+1
2009-06-03net: skb->dst accessorsEric Dumazet2-2/+2
2009-06-03TOMOYO: Simplify policy reader.Tetsuo Handa3-52/+41
2009-06-03TOMOYO: Remove redundant markers.Tetsuo Handa4-36/+0
2009-06-03SELinux: define audit permissions for audit tree netlink messagesEric Paris1-0/+2
2009-06-02TOMOYO: Remove unused mutex.Tetsuo Handa1-1/+0
2009-06-02tomoyo: avoid get+put of task_structSerge E. Hallyn1-8/+1
2009-05-28smack: Remove redundant initialization.Tetsuo Handa1-15/+0
2009-05-27rootplug: Remove redundant initialization.Tetsuo Handa1-12/+0
2009-05-27tomoyo: add missing call to cap_bprm_set_credsHerton Ronaldo Krzesinski1-0/+6
2009-05-22Merge branch 'master' into nextJames Morris2-11/+11
2009-05-22smack: do not beyond ARRAY_SIZE of dataRoel Kluin1-1/+1
2009-05-22integrity: path_check updateMimi Zohar1-19/+29
2009-05-22IMA: Add __init notation to ima functionsEric Paris5-7/+7
2009-05-22IMA: Minimal IMA policy and boot param for TCB IMA policyEric Paris1-3/+27
2009-05-19selinux: remove obsolete read buffer limit from sel_read_boolStephen Smalley1-4/+0
2009-05-19SELinux: move SELINUX_MAGIC into magic.hEric Paris2-7/+4
2009-05-15IMA: do not measure everything opened by root by defaultEric Paris1-2/+0
2009-05-15IMA: remove read permissions on the ima policy fileEric Paris1-1/+5
2009-05-12securityfs: securityfs_remove should handle IS_ERR pointersEric Paris1-1/+1
2009-05-12IMA: open all files O_LARGEFILEEric Paris1-1/+2
2009-05-12IMA: Handle dentry_open failuresEric Paris1-4/+6
2009-05-12IMA: use current_cred() instead of current->credEric Paris2-2/+2
2009-05-09Reduce path_lookup() abusesAl Viro2-11/+11
2009-05-08Merge branch 'master' into nextJames Morris14-28/+39
2009-05-06integrity: remove __setup auditing msgsMimi Zohar2-25/+4
2009-05-06integrity: use audit_log_stringMimi Zohar1-13/+4
2009-05-06integrity: lsm audit rule matching fixMimi Zohar1-4/+4
2009-05-05selinux: Fix send_sigiotask hookStephen Smalley1-1/+1
2009-04-30selinux: selinux_bprm_committed_creds() should wake up ->real_parent, not ->p...Oleg Nesterov1-8/+3
2009-04-30SELinux: Don't flush inherited SIGKILL during execve()David Howells1-4/+5
2009-04-30SELinux: drop secondary_ops->sysctlEric Paris1-4/+0
2009-04-18Smack: check for SMACK xattr validity in smack_inode_setxattrEtienne Basset1-5/+6
2009-04-15rculist: use list_entry_rcu in places where it's appropriateJiri Pirko2-6/+6
2009-04-14tomoyo: version bump to 2.2.0.Tetsuo Handa8-10/+10
2009-04-14smack: implement logging V3Etienne Basset5-110/+600
2009-04-14smack: implement logging V3Etienne Basset1-0/+386
2009-04-09keys: Handle there being no fallback destination keyring for request_key()David Howells1-3/+6
2009-04-09cap_prctl: don't set error to 0 at 'no_change'Serge E. Hallyn1-1/+0
2009-04-07tomoyo: remove "undelete domain" command.Tetsuo Handa3-100/+5
2009-04-07tomoyo: remove "undelete domain" command.Tetsuo Handa3-100/+5
2009-04-03CacheFiles: Export things for CacheFilesDavid Howells1-0/+2
2009-04-02Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds1-0/+1
2009-04-02devcgroup: avoid using cgroup_lockLi Zefan1-8/+13
2009-04-03don't raise all privs on setuid-root file with fE set (v2)Serge E. Hallyn1-0/+32
2009-04-02Permissive domain in userspace object managerKaiGai Kohei4-29/+11
2009-03-31Get rid of indirect include of fs_struct.hAl Viro1-0/+1
2009-03-28smack: Add a new '-CIPSO' option to the network address label configurationEtienne Basset4-10/+45
2009-03-28netlabel: Cleanup the Smack/NetLabel code to fix incoming TCP connectionsPaul Moore2-118/+143
2009-03-28lsm: Remove the socket_post_accept() hookPaul Moore2-10/+0
2009-03-28selinux: Remove the "compat_net" compatibility codePaul Moore2-214/+7
2009-03-28netlabel: Label incoming TCP connections correctly in SELinuxPaul Moore4-187/+82
2009-03-27TOMOYO: Fix a typo.Tetsuo Handa1-1/+1
2009-03-26smack: convert smack to standard linux listsEtienne Basset4-122/+168
2009-03-24Merge branch 'master' into nextJames Morris2-38/+14
2009-03-10SELinux: inode_doinit_with_dentry drop no dentry printkEric Paris1-3/+9
2009-03-06SELinux: new permission between tty audit and audit socketEric Paris3-1/+3
2009-03-06SELinux: open perm for sock filesEric Paris3-0/+4
2009-03-05smack: fixes for unlabeled host supportetienne2-50/+57
2009-03-05smack: fixes for unlabeled host supportetienne1-15/+49
2009-03-02selinux: Fix a panic in selinux_netlbl_inode_permission()Paul Moore1-2/+3
2009-02-27keys: make procfiles per-user-namespaceSerge E. Hallyn1-6/+49
2009-02-27keys: skip keys from another user namespaceSerge E. Hallyn1-0/+3
2009-02-27keys: consider user namespace in key_permissionSerge E. Hallyn1-0/+5
2009-02-27keys: distinguish per-uid keys in different namespacesSerge E. Hallyn5-5/+16
2009-02-23selinux: Fix the NetLabel glue code for setsockopt()Paul Moore1-1/+3
2009-02-23integrity: ima iint radix_tree_lookup locking fixMimi Zohar1-0/+2
2009-02-23TOMOYO: Do not call tomoyo_realpath_init unless registered.Tetsuo Handa3-6/+5
2009-02-21integrity: ima scatterlist bug fixMimi Zohar1-2/+2
2009-02-19smack: fix lots of kernel-doc notationRandy Dunlap3-37/+34
2009-02-16TOMOYO: Don't create securityfs entries unless registered.Tetsuo Handa1-0/+4
2009-02-14TOMOYO: Fix exception policy read failure.Tetsuo Handa1-1/+1
2009-02-14SELinux: convert the avc cache hash list to an hlistEric Paris1-20/+27
2009-02-14SELinux: code readability with avc_cacheEric Paris1-19/+44
2009-02-14SELinux: remove unused av.decided fieldEric Paris4-14/+6
generated by cgit 1.2.3-korg (git 2.39.0) at 2024-05-22 10:18:09 +0000