summaryrefslogtreecommitdiff
path: root/security
AgeCommit message (Expand)Author
2016-02-10KEYS: CONFIG_KEYS_DEBUG_PROC_KEYS is no longer an optionDavid Howells
2016-02-09KEYS: Add an alloc flag to convey the builtinness of a keyDavid Howells
2016-01-28KEYS: Only apply KEY_FLAG_KEEP to a key if a parent keyring has it setDavid Howells
2016-01-22wrappers for ->i_mutex accessAl Viro
2016-01-20ptrace: use fsuid, fsgid, effective creds for fs access checksJann Horn
2016-01-20security: let security modules use PTRACE_MODE_* with bitmasksJann Horn
2016-01-20KEYS: Fix keyring ref leak in join_session_keyring()Yevgeny Pats
2016-01-17Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds
2016-01-14Merge branch 'upstream' of git://git.infradead.org/users/pcmoore/selinux into...James Morris
2016-01-12Merge branch 'work.misc' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds
2016-01-11Merge branch 'work.xattr' of git://git.kernel.org/pub/scm/linux/kernel/git/vi...Linus Torvalds
2016-01-10Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/zohar/li...James Morris
2016-01-08Merge branch 'for-linus' into work.miscAl Viro
2016-01-08selinux: Inode label revalidation performance fixAndreas Gruenbacher
2016-01-07KEYS: refcount bug fixMimi Zohar
2016-01-04fix the leak in integrity_read_file()Al Viro
2016-01-04selinuxfs: switch to memdup_user_nul()Al Viro
2016-01-04convert a bunch of open-coded instances of memdup_user_nul()Al Viro
2016-01-03ima: ima_write_policy() limit lockingPetko Manolov
2015-12-26Merge branch 'smack-for-4.5' of https://github.com/cschaufler/smack-next into...James Morris
2015-12-26Merge branch 'upstream' of git://git.infradead.org/users/pcmoore/selinux into...James Morris
2015-12-26Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/zohar/li...James Morris
2015-12-24IMA: policy can be updated zero timesSasha Levin
2015-12-24selinux: rate-limit netlink message warnings in selinux_nlmsg_perm()Vladis Dronov
2015-12-24selinux: export validatetrans decisionsAndrew Perepechko
2015-12-24selinux: Revalidate invalid inode security labelsAndreas Gruenbacher
2015-12-24security: Add hook to invalidate inode security labelsAndreas Gruenbacher
2015-12-24selinux: Add accessor functions for inode->i_securityAndreas Gruenbacher
2015-12-24security: Make inode argument of inode_getsecid non-constAndreas Gruenbacher
2015-12-24security: Make inode argument of inode_getsecurity non-constAndreas Gruenbacher
2015-12-24selinux: Remove unused variable in selinux_inode_init_securityAndreas Gruenbacher
2015-12-20keys, trusted: seal with a TPM2 authorization policyJarkko Sakkinen
2015-12-20keys, trusted: select hash algorithm for TPM2 chipsJarkko Sakkinen
2015-12-20keys, trusted: fix: *do not* allow duplicate key optionsJarkko Sakkinen
2015-12-19KEYS: Fix race between read and revokeDavid Howells
2015-12-17Smack: type confusion in smak sendmsg() handlerRoman Kubiak
2015-12-15security/integrity: make ima/ima_mok.c explicitly non-modularPaul Gortmaker
2015-12-15ima: update appraise flags after policy update completesMimi Zohar
2015-12-15IMA: prevent keys on the .ima_blacklist from being removedMimi Zohar
2015-12-15KEYS: prevent keys from being removed from specified keyringsMimi Zohar
2015-12-15IMA: allow reading back the current IMA policyPetko Manolov
2015-12-15IMA: create machine owner and blacklist keyringsPetko Manolov
2015-12-15IMA: policy can now be updated multiple timesPetko Manolov
2015-12-15evm: EVM_LOAD_X509 depends on EVMArnd Bergmann
2015-12-15evm: reset EVM status when file attributes changeDmitry Kasatkin
2015-12-15evm: provide a function to set the EVM key from the kernelDmitry Kasatkin
2015-12-15evm: enable EVM when X509 certificate is loadedDmitry Kasatkin
2015-12-15evm: load an x509 certificate from the kernelDmitry Kasatkin
2015-12-13nfs: Move call to security_inode_listsecurity into nfs_listxattrAndreas Gruenbacher
2015-12-09Smack: File receive for socketsCasey Schaufler