path: root/security
AgeCommit message (Expand)AuthorLines
2016-02-09selinux: nlmsgtab: add SOCK_DESTROY to the netlink mapping tablesLorenzo Colitti-0/+1
2016-01-28KEYS: Only apply KEY_FLAG_KEEP to a key if a parent keyring has it setDavid Howells-1/+2
2016-01-22wrappers for ->i_mutex accessAl Viro-11/+11
2016-01-20ptrace: use fsuid, fsgid, effective creds for fs access checksJann Horn-1/+6
2016-01-20security: let security modules use PTRACE_MODE_* with bitmasksJann Horn-7/+5
2016-01-20KEYS: Fix keyring ref leak in join_session_keyring()Yevgeny Pats-0/+1
2016-01-17Merge branch 'for-linus' of git:// Torvalds-160/+967
2016-01-14Merge branch 'upstream' of git:// into...James Morris-8/+2
2016-01-12Merge branch 'work.misc' of git:// Torvalds-168/+82
2016-01-11Merge branch 'work.xattr' of git:// Torvalds-2/+0
2016-01-10Merge branch 'next' of git:// Morris-21/+17
2016-01-08Merge branch 'for-linus' into work.miscAl Viro-9/+9
2016-01-08selinux: Inode label revalidation performance fixAndreas Gruenbacher-8/+2
2016-01-07KEYS: refcount bug fixMimi Zohar-12/+8
2016-01-04fix the leak in integrity_read_file()Al Viro-5/+6
2016-01-04selinuxfs: switch to memdup_user_nul()Al Viro-73/+41
2016-01-04convert a bunch of open-coded instances of memdup_user_nul()Al Viro-90/+35
2016-01-03ima: ima_write_policy() limit lockingPetko Manolov-9/+9
2015-12-26Merge branch 'smack-for-4.5' of into...James Morris-1/+23
2015-12-26Merge branch 'upstream' of git:// into...James Morris-73/+274
2015-12-26Merge branch 'next' of git:// Morris-84/+623
2015-12-24IMA: policy can be updated zero timesSasha Levin-0/+14
2015-12-24selinux: rate-limit netlink message warnings in selinux_nlmsg_perm()Vladis Dronov-4/+5
2015-12-24selinux: export validatetrans decisionsAndrew Perepechko-8/+111
2015-12-24selinux: Revalidate invalid inode security labelsAndreas Gruenbacher-8/+68
2015-12-24security: Add hook to invalidate inode security labelsAndreas Gruenbacher-10/+34
2015-12-24selinux: Add accessor functions for inode->i_securityAndreas Gruenbacher-41/+56
2015-12-24security: Make inode argument of inode_getsecid non-constAndreas Gruenbacher-3/+3
2015-12-24security: Make inode argument of inode_getsecurity non-constAndreas Gruenbacher-3/+3
2015-12-24selinux: Remove unused variable in selinux_inode_init_securityAndreas Gruenbacher-2/+0
2015-12-20keys, trusted: seal with a TPM2 authorization policyJarkko Sakkinen-0/+26
2015-12-20keys, trusted: select hash algorithm for TPM2 chipsJarkko Sakkinen-1/+27
2015-12-20keys, trusted: fix: *do not* allow duplicate key optionsJarkko Sakkinen-0/+3
2015-12-19KEYS: Fix race between read and revokeDavid Howells-9/+9
2015-12-17Smack: type confusion in smak sendmsg() handlerRoman Kubiak-1/+1
2015-12-15security/integrity: make ima/ima_mok.c explicitly non-modularPaul Gortmaker-3/+2
2015-12-15ima: update appraise flags after policy update completesMimi Zohar-2/+5
2015-12-15IMA: prevent keys on the .ima_blacklist from being removedMimi Zohar-0/+2
2015-12-15KEYS: prevent keys from being removed from specified keyringsMimi Zohar-11/+51
2015-12-15IMA: allow reading back the current IMA policyPetko Manolov-8/+253
2015-12-15IMA: create machine owner and blacklist keyringsPetko Manolov-0/+87
2015-12-15IMA: policy can now be updated multiple timesPetko Manolov-28/+75
2015-12-15evm: EVM_LOAD_X509 depends on EVMArnd Bergmann-1/+1
2015-12-15evm: reset EVM status when file attributes changeDmitry Kasatkin-0/+13
2015-12-15evm: provide a function to set the EVM key from the kernelDmitry Kasatkin-14/+46
2015-12-15evm: enable EVM when X509 certificate is loadedDmitry Kasatkin-3/+14
2015-12-15evm: load an x509 certificate from the kernelDmitry Kasatkin-0/+33
2015-12-13nfs: Move call to security_inode_listsecurity into nfs_listxattrAndreas Gruenbacher-2/+0
2015-12-09Smack: File receive for socketsCasey Schaufler-0/+22
2015-11-26Merge branch 'upstream' of git:// into...James Morris-2/+2