index
:
kernel/git/dhowells/linux-modsign.git
crypto-keys
crypto-keys-post-KS
devel-pekey
devel-x509
efi
for-rusty
kexec-pefile
master
modsign
modsign-post-KS
modsign-rusty
modsign-uarg
pefile
pgp-parser
pkcs7
Linux kernel module signing
David Howells
about
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
security
Age
Commit message (
Expand
)
Author
Files
Lines
2014-06-13
Merge branch 'serge-next-2' of git://git.kernel.org/pub/scm/linux/kernel/git/...
Linus Torvalds
7
-28
/
+114
2014-06-12
ima: introduce ima_kernel_read()
Dmitry Kasatkin
1
-1
/
+31
2014-06-12
evm: prohibit userspace writing 'security.evm' HMAC value
Mimi Zohar
1
-2
/
+10
2014-06-12
ima: check inode integrity cache in violation check
Dmitry Kasatkin
1
-2
/
+7
2014-06-12
ima: prevent unnecessary policy checking
Dmitry Kasatkin
1
-9
/
+4
2014-06-12
evm: provide option to protect additional SMACK xattrs
Dmitry Kasatkin
2
-0
/
+22
2014-06-12
evm: replace HMAC version with attribute mask
Dmitry Kasatkin
4
-11
/
+33
2014-06-12
ima: prevent new digsig xattr from being replaced
Mimi Zohar
1
-3
/
+7
2014-06-12
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next
Linus Torvalds
1
-1
/
+1
2014-06-10
Merge branch 'serge-next-1' of git://git.kernel.org/pub/scm/linux/kernel/git/...
Linus Torvalds
23
-133
/
+382
2014-06-09
Merge branch 'for-3.16' of git://git.kernel.org/pub/scm/linux/kernel/git/tj/c...
Linus Torvalds
1
-20
/
+13
2014-06-03
ima: audit log files opened with O_DIRECT flag
Mimi Zohar
4
-3
/
+19
2014-06-03
selinux: conditionally reschedule in hashtab_insert while loading selinux policy
Dave Jones
1
-0
/
+3
2014-06-03
selinux: conditionally reschedule in mls_convert_context while loading selinu...
Dave Jones
1
-0
/
+2
2014-06-03
selinux: reject setexeccon() on MNT_NOSUID applications with -EACCES
Paul Moore
1
-2
/
+4
2014-06-03
selinux: Report permissive mode in avc: denied messages.
Stephen Smalley
3
-5
/
+11
2014-05-24
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
David S. Miller
3
-58
/
+159
2014-05-20
Merge branch 'smack-for-3.16' of git://git.gitorious.org/smack-next/kernel in...
James Morris
4
-73
/
+297
2014-05-16
device_cgroup: use css_has_online_children() instead of has_children()
Tejun Heo
1
-17
/
+2
2014-05-16
device_cgroup: remove direct access to cgroup->children
Tejun Heo
1
-2
/
+10
2014-05-16
cgroup: remove css_parent()
Tejun Heo
1
-4
/
+4
2014-05-13
cgroup: replace cftype->write_string() with cftype->write()
Tejun Heo
1
-7
/
+7
2014-05-13
Merge branch 'for-3.15-fixes' of git://git.kernel.org/pub/scm/linux/kernel/gi...
Linus Torvalds
1
-43
/
+159
2014-05-12
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
David S. Miller
1
-3
/
+3
2014-05-06
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...
Linus Torvalds
2
-15
/
+0
2014-05-06
Warning in scanf string typing
Toralf Förster
1
-1
/
+1
2014-05-06
nick kvfree() from apparmor
Al Viro
2
-15
/
+0
2014-05-05
device_cgroup: check if exception removal is allowed
Aristeu Rozanski
1
-3
/
+38
2014-05-04
device_cgroup: fix the comment format for recently added functions
Aristeu Rozanski
1
-17
/
+16
2014-04-30
Smack: Label cgroup files for systemd
Casey Schaufler
1
-12
/
+18
2014-04-23
Smack: Verify read access on file open - v3
Casey Schaufler
1
-3
/
+16
2014-04-22
audit: add netlink audit protocol bind to check capabilities on multicast join
Richard Guy Briggs
1
-1
/
+1
2014-04-22
locks: rename file-private locks to "open file description locks"
Jeff Layton
1
-3
/
+3
2014-04-21
device_cgroup: rework device access check and exception checking
Aristeu Rozanski
1
-40
/
+122
2014-04-15
security: Convert use of typedef ctl_table to struct ctl_table
Joe Perches
1
-1
/
+1
2014-04-14
Merge tag 'keys-20140314' of git://git.kernel.org/pub/scm/linux/kernel/git/dh...
James Morris
11
-49
/
+45
2014-04-14
Merge commit 'v3.14' into next
James Morris
15
-53
/
+93
2014-04-12
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...
Linus Torvalds
3
-4
/
+4
2014-04-12
Merge git://git.infradead.org/users/eparis/audit
Linus Torvalds
2
-5
/
+8
2014-04-11
Smack: bidirectional UDS connect check
Casey Schaufler
2
-23
/
+27
2014-04-11
Smack: Correctly remove SMACK64TRANSMUTE attribute
Casey Schaufler
1
-6
/
+19
2014-04-11
SMACK: Fix handling value==NULL in post setxattr
José Bollo
1
-1
/
+3
2014-04-11
bugfix patch for SMACK
Pankaj Kumar
1
-2
/
+2
2014-04-11
Smack: adds smackfs/ptrace interface
Lukasz Pawelczyk
4
-2
/
+108
2014-04-11
Smack: unify all ptrace accesses in the smack
Lukasz Pawelczyk
1
-13
/
+71
2014-04-11
Smack: fix the subject/object order in smack_ptrace_traceme()
Lukasz Pawelczyk
3
-9
/
+29
2014-04-11
Minor improvement of 'smack_sb_kern_mount'
José Bollo
1
-3
/
+5
2014-04-04
Merge branch 'locks-3.15' of git://git.samba.org/jlayton/linux
Linus Torvalds
1
-0
/
+3
2014-04-04
Merge branch 'cross-rename' of git://git.kernel.org/pub/scm/linux/kernel/git/...
Linus Torvalds
1
-2
/
+20
2014-04-03
Merge branch 'for-3.15' of git://git.kernel.org/pub/scm/linux/kernel/git/tj/c...
Linus Torvalds
1
-8
/
+4
2014-04-03
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...
Linus Torvalds
26
-175
/
+208
2014-04-02
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next
Linus Torvalds
1
-2
/
+3
2014-04-01
get rid of pointless checks for NULL ->i_op
Al Viro
3
-4
/
+4
2014-04-01
vfs: add cross-rename
Miklos Szeredi
1
-0
/
+16
2014-04-01
security: add flags to rename hooks
Miklos Szeredi
1
-2
/
+4
2014-03-31
Merge branch 'compat' of git://git.kernel.org/pub/scm/linux/kernel/git/s390/l...
Linus Torvalds
1
-2
/
+2
2014-03-31
locks: add new fcntl cmd values for handling file private locks
Jeff Layton
1
-0
/
+3
2014-03-25
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
David S. Miller
8
-29
/
+46
2014-03-20
audit: anchor all pid references in the initial pid namespace
Richard Guy Briggs
2
-5
/
+8
2014-03-19
selinux: correctly label /proc inodes in use before the policy is loaded
Paul Moore
1
-9
/
+27
2014-03-19
selinux: put the mmap() DAC controls before the MAC controls
Paul Moore
1
-12
/
+8
2014-03-19
cgroup: drop const from @buffer of cftype->write_string()
Tejun Heo
1
-2
/
+2
2014-03-18
Merge branch 'master' of git://git.kernel.org/pub/scm/linux/kernel/git/klasse...
David S. Miller
8
-29
/
+46
2014-03-14
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
David S. Miller
1
-1
/
+5
2014-03-14
smack: fix key permission verification
Dmitry Kasatkin
1
-1
/
+6
2014-03-14
KEYS: Move the flags representing required permission to linux/key.h
David Howells
11
-48
/
+39
2014-03-12
Merge branch 'next-fixes' of git://git.kernel.org/pub/scm/linux/kernel/git/zo...
James Morris
18
-134
/
+153
2014-03-10
selinux: add gfp argument to security_xfrm_policy_alloc and fix callers
Nikolay Aleksandrov
8
-29
/
+46
2014-03-09
KEYS: Make the keyring cycle detector ignore other keyrings of the same name
David Howells
1
-1
/
+5
2014-03-07
evm: enable key retention service automatically
Dmitry Kasatkin
1
-2
/
+3
2014-03-07
ima: skip memory allocation for empty files
Dmitry Kasatkin
1
-8
/
+12
2014-03-07
evm: EVM does not use MD5
Dmitry Kasatkin
1
-1
/
+0
2014-03-07
ima: return d_name.name if d_path fails
Dmitry Kasatkin
2
-7
/
+2
2014-03-07
integrity: fix checkpatch errors
Dmitry Kasatkin
11
-70
/
+69
2014-03-07
ima: fix erroneous removal of security.ima xattr
Dmitry Kasatkin
1
-2
/
+4
2014-03-07
security: integrity: Use a more current logging style
Joe Perches
7
-11
/
+27
2014-03-07
Merge tag 'v3.13' into for-3.15
Eric Paris
67
-1633
/
+3320
2014-03-07
ima: reduce memory usage when a template containing the n field is used
Roberto Sassu
2
-17
/
+13
2014-03-07
ima: restore the original behavior for sending data with ima template
Roberto Sassu
3
-4
/
+10
2014-03-07
Integrity: Pass commname via get_task_comm()
Tetsuo Handa
1
-1
/
+2
2014-03-07
ima: use static const char array definitions
Mimi Zohar
4
-10
/
+10
2014-03-07
security: have cap_dentry_init_security return error
Jeff Layton
1
-1
/
+1
2014-03-06
security/compat: convert to COMPAT_SYSCALL_DEFINE
Heiko Carstens
1
-2
/
+2
2014-03-05
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
David S. Miller
1
-4
/
+4
2014-03-04
ima: new helper: file_inode(file)
Libo Chen
1
-1
/
+1
2014-02-24
Merge branch 'stable-3.14' of git://git.infradead.org/users/pcmoore/selinux i...
James Morris
1
-4
/
+4
2014-02-20
SELinux: bigendian problems with filename trans rules
Eric Paris
1
-4
/
+4
2014-02-17
security: cleanup Makefiles to use standard syntax for specifying sub-directo...
Sam Ravnborg
2
-8
/
+8
2014-02-12
flowcache: Make flow cache name space aware
Fan Du
1
-2
/
+3
2014-02-10
Merge branch 'stable-3.14' of git://git.infradead.org/users/pcmoore/selinux i...
James Morris
2
-0
/
+6
2014-02-08
cgroup: clean up cgroup_subsys names and initialization
Tejun Heo
1
-6
/
+2
2014-02-06
security: replace strict_strto*() with kstrto*()
Jingoo Han
7
-12
/
+12
2014-02-05
SELinux: Fix kernel BUG on empty security contexts.
Stephen Smalley
1
-0
/
+4
2014-02-05
selinux: add SOCK_DIAG_BY_FAMILY to the list of netlink message types
Paul Moore
1
-0
/
+2
2014-02-05
Merge tag 'v3.13' into stable-3.14
Paul Moore
54
-1239
/
+2802
2014-02-05
security: select correct default LSM_MMAP_MIN_ADDR on arm on arm64
Colin Cross
1
-1
/
+1
2014-01-23
Merge git://git.infradead.org/users/eparis/audit
Linus Torvalds
2
-11
/
+6
2014-01-21
Merge branch 'for-3.14' of git://git.kernel.org/pub/scm/linux/kernel/git/tj/c...
Linus Torvalds
1
-4
/
+3
2014-01-21
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...
Linus Torvalds
11
-148
/
+366
2014-01-13
smack: call WARN_ONCE() instead of calling audit_log_start()
Richard Guy Briggs
1
-3
/
+2
2014-01-13
selinux: call WARN_ONCE() instead of calling audit_log_start()
Richard Guy Briggs
1
-8
/
+4
2014-01-12
SELinux: Fix possible NULL pointer dereference in selinux_inode_permission()
Steven Rostedt
2
-3
/
+22
2014-01-08
Merge branch 'master' of git://git.infradead.org/users/pcmoore/selinux into next
James Morris
1
-1
/
+13
2014-01-07
SELinux: Fix memory leak upon loading policy
Tetsuo Handa
1
-1
/
+13
2014-01-07
Merge branch 'master' of git://git.infradead.org/users/pcmoore/selinux into next
James Morris
7
-39
/
+164
2014-01-06
Merge to v3.13-rc7 for prerequisite changes in the Xen code for TPM
James Morris
29
-326
/
+361
2014-01-03
ima: remove unneeded size_limit argument from ima_eventdigest_init_common()
Roberto Sassu
1
-8
/
+6
2014-01-03
ima: pass HASH_ALGO__LAST as hash algo in ima_eventdigest_init()
Roberto Sassu
1
-2
/
+2
2014-01-03
ima: change the default hash algorithm to SHA1 in ima_eventdigest_ng_init()
Roberto Sassu
1
-1
/
+1
2013-12-31
Smack: File receive audit correction
Casey Schaufler
1
-1
/
+1
2013-12-31
Smack: Rationalize mount restrictions
Casey Schaufler
1
-54
/
+29
2013-12-23
Smack: change rule cap check
Casey Schaufler
1
-1
/
+1
2013-12-23
Smack: Make the syslog control configurable
Casey Schaufler
3
-13
/
+99
2013-12-23
selinux: selinux_setprocattr()->ptrace_parent() needs rcu_read_lock()
Oleg Nesterov
1
-2
/
+2
2013-12-23
selinux: fix broken peer recv check
Chad Hanson
1
-1
/
+3
2013-12-19
Smack: Prevent the * and @ labels from being used in SMACK64EXEC
Casey Schaufler
1
-16
/
+37
2013-12-16
selinux: selinux_setprocattr()->ptrace_parent() needs rcu_read_lock()
Oleg Nesterov
1
-2
/
+2
2013-12-16
SELinux: remove duplicated include from hooks.c
Wei Yongjun
1
-1
/
+0
2013-12-15
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...
Linus Torvalds
3
-42
/
+165
2013-12-15
Revert "selinux: consider filesystem subtype in policies"
Linus Torvalds
2
-60
/
+22
2013-12-13
selinux: revert 102aefdda4d8275ce7d7100bc16c88c74272b260
Paul Moore
2
-60
/
+22
2013-12-13
Merge branch 'master' of git://git.infradead.org/users/pcmoore/selinux_fixes ...
James Morris
3
-42
/
+165
2013-12-12
selinux: process labeled IPsec TCP SYN-ACK packets properly in selinux_ip_pos...
Paul Moore
1
-7
/
+35
2013-12-12
selinux: look for IPsec labels on both inbound and outbound packets
Paul Moore
3
-14
/
+47
2013-12-12
selinux: handle TCP SYN-ACK packets correctly in selinux_ip_postroute()
Paul Moore
1
-15
/
+53
2013-12-12
selinux: handle TCP SYN-ACK packets correctly in selinux_ip_output()
Paul Moore
1
-2
/
+23
2013-12-12
Merge tag 'keys-devel-20131210' of git://git.kernel.org/pub/scm/linux/kernel/...
Linus Torvalds
3
-17
/
+10
2013-12-11
selinux: fix broken peer recv check
Chad Hanson
1
-1
/
+3
2013-12-11
smack: fix: allow either entry be missing on access/access2 check (v2)
Jarkko Sakkinen
1
-14
/
+15
2013-12-10
selinux: process labeled IPsec TCP SYN-ACK packets properly in selinux_ip_pos...
Paul Moore
1
-7
/
+35
2013-12-09
selinux: look for IPsec labels on both inbound and outbound packets
Paul Moore
3
-14
/
+47
2013-12-05
cgroup: replace cftype->read_seq_string() with cftype->seq_show()
Tejun Heo
1
-4
/
+3
2013-12-04
selinux: fix possible memory leak
Geyslan G. Bem
1
-4
/
+7
2013-12-04
selinux: pull address family directly from the request_sock struct
Paul Moore
1
-5
/
+1
2013-12-04
selinux: ensure that the cached NetLabel secattr matches the desired SID
Paul Moore
1
-1
/
+30
2013-12-04
selinux: handle TCP SYN-ACK packets correctly in selinux_ip_postroute()
Paul Moore
1
-15
/
+53
2013-12-04
selinux: handle TCP SYN-ACK packets correctly in selinux_ip_output()
Paul Moore
1
-2
/
+23
2013-12-02
ima: properly free ima_template_entry structures
Roberto Sassu
3
-5
/
+19
2013-12-02
ima: Do not free 'entry' before it is initialized
Christoph Paasch
1
-1
/
+0
2013-12-02
security: shmem: implement kernel private shmem inodes
Eric Paris
1
-1
/
+1
2013-12-02
KEYS: Fix searching of nested keyrings
David Howells
1
-1
/
+1
2013-12-02
KEYS: Fix multiple key add into associative array
David Howells
1
-4
/
+3
2013-12-02
KEYS: Fix the keyring hash function
David Howells
1
-4
/
+4
2013-12-02
KEYS: Pre-clear struct key on allocation
David Howells
1
-7
/
+1
2013-11-30
ima: store address of template_fmt_copy in a pointer before calling strsep
Roberto Sassu
1
-2
/
+4
2013-11-26
Merge tag 'v3.12'
Paul Moore
33
-619
/
+1720
2013-11-25
selinux: fix possible memory leak
Geyslan G. Bem
1
-4
/
+7
2013-11-25
ima: make a copy of template_fmt in template_desc_init_fields()
Roberto Sassu
1
-7
/
+14
2013-11-25
ima: do not send field length to userspace for digest of ima template
Roberto Sassu
3
-5
/
+18
2013-11-25
ima: do not include field length in template digest calc for ima template
Roberto Sassu
3
-6
/
+15
2013-11-23
Revert "ima: define '_ima' as a builtin 'trusted' keyring"
Linus Torvalds
4
-55
/
+1
2013-11-22
Merge tag 'v3.12'
Eric Paris
33
-619
/
+1720
2013-11-21
Merge branch 'for-linus2' of git://git.kernel.org/pub/scm/linux/kernel/git/jm...
Linus Torvalds
65
-1596
/
+3204
2013-11-21
Merge git://git.infradead.org/users/eparis/audit
Linus Torvalds
2
-1
/
+4
2013-11-19
SELinux: security_load_policy: Silence frame-larger-than warning
Tim Gardner
1
-22
/
+32
2013-11-19
SELinux: Update policy version to support constraints info
Richard Haines
4
-10
/
+101
2013-11-14
KEYS: Fix keyring content gc scanner
David Howells
2
-51
/
+36
2013-11-13
KEYS: Fix error handling in big_key instantiation
David Howells
1
-0
/
+1
2013-11-13
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next
Linus Torvalds
2
-9
/
+10
2013-11-13
Merge branch 'for-3.13' of git://git.kernel.org/pub/scm/linux/kernel/git/tj/c...
Linus Torvalds
1
-11
/
+0
2013-11-08
Merge tag 'v3.12'
Paul Moore
33
-619
/
+1720
2013-11-06
KEYS: Fix UID check in keyctl_get_persistent()
David Howells
1
-4
/
+2
2013-11-05
audit: suppress stock memalloc failure warnings since already managed
Richard Guy Briggs
1
-1
/
+2
2013-11-05
selinux: apply selinux checks on new audit message types
Eric Paris
1
-0
/
+2
2013-10-31
ima: define '_ima' as a builtin 'trusted' keyring
Mimi Zohar
4
-1
/
+55
2013-10-31
ima: extend the measurement list to include the file signature
Mimi Zohar
8
-12
/
+73
2013-10-31
Merge branch 'keys-devel' of git://git.kernel.org/pub/scm/linux/kernel/git/dh...
James Morris
5
-16
/
+25
2013-10-30
KEYS: fix error return code in big_key_instantiate()
Wei Yongjun
1
-1
/
+3
2013-10-30
KEYS: Fix keyring quota misaccounting on key replacement and unlink
David Howells
1
-12
/
+15
2013-10-30
KEYS: Fix a race between negating a key and reading the error set
David Howells
3
-2
/
+6
2013-10-30
KEYS: Make BIG_KEYS boolean
Josh Boyer
1
-1
/
+1
2013-10-29
apparmor: remove the "task" arg from may_change_ptraced_domain()
Oleg Nesterov
1
-8
/
+6
2013-10-29
apparmor: remove parent task info from audit logging
John Johansen
2
-7
/
+0
2013-10-29
apparmor: remove tsk field from the apparmor_audit_struct
John Johansen
1
-8
/
+2
2013-10-29
apparmor: fix capability to not use the current task, during reporting
John Johansen
6
-22
/
+15
2013-10-30
Merge branch 'smack-for-3.13' of git://git.gitorious.org/smack-next/kernel in...
James Morris
4
-9
/
+34
2013-10-28
Smack: Ptrace access check mode
Casey Schaufler
1
-1
/
+1
2013-10-26
ima: provide hash algo info in the xattr
Dmitry Kasatkin
2
-15
/
+59
2013-10-26
ima: enable support for larger default filedata hash algorithms
Mimi Zohar
2
-2
/
+59
2013-10-26
ima: define kernel parameter 'ima_template=' to change configured default
Roberto Sassu
1
-0
/
+31
2013-10-26
ima: add Kconfig default measurement list template
Mimi Zohar
2
-2
/
+27
2013-10-26
ima: defer determining the appraisal hash algorithm for 'ima' template
Roberto Sassu
1
-1
/
+5
2013-10-26
ima: add audit log support for larger hashes
Mimi Zohar
1
-1
/
+4
2013-10-25
ima: switch to new template management mechanism
Roberto Sassu
5
-97
/
+107
2013-10-25
ima: define new template ima-ng and template fields d-ng and n-ng
Roberto Sassu
3
-17
/
+150
2013-10-25
ima: define template fields library and new helpers
Roberto Sassu
6
-8
/
+242
2013-10-25
ima: new templates management mechanism
Roberto Sassu
4
-1
/
+146
2013-10-25
ima: define new function ima_alloc_init_template() to API
Roberto Sassu
3
-39
/
+76
2013-10-25
ima: pass the filename argument up to ima_add_template_entry()
Roberto Sassu
4
-10
/
+13
2013-10-25
ima: pass the file descriptor to ima_add_violation()
Roberto Sassu
3
-5
/
+5
2013-10-25
ima: ima_calc_boot_agregate must use SHA1
Dmitry Kasatkin
3
-5
/
+31
2013-10-25
ima: support arbitrary hash algorithms in ima_calc_buffer_hash
Dmitry Kasatkin
2
-6
/
+25
2013-10-25
ima: provide dedicated hash algo allocation function
Dmitry Kasatkin
1
-14
/
+29
2013-10-25
ima: differentiate between template hash and file data hash sizes
Mimi Zohar
6
-12
/
+12
2013-10-25
ima: use dynamically allocated hash storage
Dmitry Kasatkin
4
-30
/
+49
2013-10-25
ima: pass full xattr with the signature
Dmitry Kasatkin
4
-5
/
+7
2013-10-25
ima: read and use signature hash algorithm
Dmitry Kasatkin
6
-25
/
+94
2013-10-25
ima: provide support for arbitrary hash algorithms
Dmitry Kasatkin
7
-32
/
+98
2013-10-25
Revert "ima: policy for RAMFS"
Mimi Zohar
1
-1
/
+0
2013-10-25
ima: fix script messages
Dmitry Kasatkin
6
-13
/
+13
[next]