summaryrefslogtreecommitdiffstats
path: root/security
Commit message (Expand)AuthorAgeFilesLines
* ima: fix updating the ima_appraise flagMimi Zohar2018-05-221-9/+19
* ima: based on policy verify firmware signatures (pre-allocated buffer)Mimi Zohar2018-05-221-0/+1
* ima: define a new policy condition based on the filesystem nameMimi Zohar2018-05-221-1/+24
* EVM: Allow runtime modification of the set of verified xattrsMatthew Garrett2018-05-184-4/+188
* EVM: turn evm_config_xattrnames into a listMatthew Garrett2018-05-183-39/+57
* integrity: Add an integrity directory in securityfsMatthew Garrett2018-05-174-4/+52
* ima: Remove unused variable ima_initializedPetr Vorel2018-05-172-6/+2
* ima: Unify loggingPetr Vorel2018-05-173-2/+9
* ima: Reflect correct permissions for policyPetr Vorel2018-05-171-0/+2
* dh key: get rid of stack allocated array for zeroesTycho Andersen2018-05-111-3/+3
* dh key: get rid of stack allocated arrayTycho Andersen2018-05-111-19/+10
* big key: get rid of stack array allocationTycho Andersen2018-05-111-1/+10
* smack: provide socketpair callbackTom Gundersen2018-05-041-0/+22
* selinux: provide socketpair callbackDavid Herrmann2018-05-041-0/+13
* security: add hook for socketpair()David Herrmann2018-05-041-0/+6
* Merge branch 'userns-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds2018-04-241-0/+2
|\
| * commoncap: Handle memory allocation failure.Tetsuo Handa2018-04-101-0/+2
* | Merge tag 'apparmor-pr-2018-04-10' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds2018-04-1332-523/+2117
|\ \
| * | apparmor: fix memory leak on buffer on error exit pathColin Ian King2018-03-301-1/+3
| * | apparmor: fix dangling symlinks to policy rawdata after replacementJohn Johansen2018-03-231-31/+95
| * | apparmor: Fix an error code in verify_table_headers()Dan Carpenter2018-03-231-1/+1
| * | apparmor: fix error returns checks by making size a ssize_tColin Ian King2018-03-231-1/+1
| * | apparmor: remove POLICY_MEDIATES_SAFEJohn Johansen2018-03-132-12/+2
| * | apparmor: add base infastructure for socket mediationJohn Johansen2018-03-1313-8/+786
| * | apparmor: improve overlapping domain attachment resolutionJohn Johansen2018-02-094-14/+158
| * | apparmor: convert attaching profiles via xattrs to use dfa matchingJohn Johansen2018-02-095-57/+43
| * | apparmor: Add support for attaching profiles via xattr, presence and valueMatthew Garrett2018-02-094-34/+217
| * | apparmor: cleanup: simplify code to get ns symlink nameJohn Johansen2018-02-091-19/+6
| * | apparmor: cleanup create_aafs() error pathJohn Johansen2018-02-091-20/+12
| * | apparmor: dfa split verification of table headersJohn Johansen2018-02-091-48/+68
| * | apparmor: dfa add support for state differential encodingJohn Johansen2018-02-092-1/+29
| * | apparmor: dfa move character match into a macroJohn Johansen2018-02-091-47/+27
| * | apparmor: update domain transitions that are subsets of confinement at nnpJohn Johansen2018-02-094-65/+110
| * | apparmor: move context.h to cred.hJohn Johansen2018-02-0915-14/+14
| * | apparmor: move task related defines and fns to task.X filesJohn Johansen2018-02-096-98/+105
| * | apparmor: cleanup, drop unused fn __aa_task_is_confined()John Johansen2018-02-091-11/+0
| * | apparmor: cleanup fixup description of aa_replace_profilesJohn Johansen2018-02-091-2/+3
| * | apparmor: rename tctx to ctxJohn Johansen2018-02-093-30/+29
| * | apparmor: drop cred_ctx and reference the label directlyJohn Johansen2018-02-094-129/+47
| * | apparmor: move task domain change info to task securityJohn Johansen2018-02-094-52/+132
| * | apparmor: rename task_ctx to the more accurate cred_ctxJohn Johansen2018-02-095-46/+45
| * | apparmor: audit unknown signal numbersJohn Johansen2018-02-093-4/+12
| * | apparmor: make signal label match work when matching stacked labelsJohn Johansen2018-02-091-28/+12
| * | security: apparmor: remove duplicate includesPravin Shedge2018-02-091-1/+0
| * | apparmor: root view labels should not be under user controlJohn Johansen2018-02-091-3/+2
| * | apparmor: cleanup add proper line wrapping to nulldfa.inJohn Johansen2018-02-091-1/+107
| * | apparmor: provide a bounded version of label_parseJohn Johansen2018-02-092-11/+27
| * | apparmor: use the dfa to do label parse string splittingJohn Johansen2018-02-095-11/+170
| * | apparmor: add first substr match to dfaJohn Johansen2018-02-092-0/+124
| * | apparmor: split load data into management struct and data blobJohn Johansen2018-02-092-4/+11
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-14 14:15:30 +0000