summaryrefslogtreecommitdiffstats
path: root/security
Commit message (Expand)AuthorAgeFilesLines
* Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/...Linus Torvalds2017-02-2154-1839/+3314
|\
| * KEYS: Use memzero_explicit() for secret dataDan Carpenter2017-02-101-1/+1
| * KEYS: Fix an error code in request_master_key()Dan Carpenter2017-02-101-1/+1
| * Merge branch 'stable-4.11' of git://git.infradead.org/users/pcmoore/selinux i...James Morris2017-02-109-276/+327
| |\
| | * selinux: allow changing labels for cgroupfsAntonio Murdaca2017-02-071-0/+2
| | * security,selinux,smack: kill security_task_wait hookStephen Smalley2017-01-123-33/+0
| | * selinux: drop unused socket security classesStephen Smalley2017-01-122-12/+0
| | * selinux: default to security isid in sel_make_bools() if no sid is foundGary Tierney2017-01-091-3/+3
| | * selinux: log errors when loading new policyGary Tierney2017-01-091-5/+16
| | * proc,security: move restriction on writing /proc/pid/attr nodes to procStephen Smalley2017-01-094-29/+6
| | * selinux: clean up cred usage and simplifyStephen Smalley2017-01-093-211/+166
| | * selinux: allow context mounts on tmpfs, ramfs, devpts within user namespacesStephen Smalley2017-01-091-3/+7
| | * selinux: handle ICMPv6 consistently with ICMPStephen Smalley2017-01-091-1/+2
| | * selinux: add security in-core xattr support for tracefsYongqin Liu2017-01-091-0/+1
| | * selinux: support distinctions among all network address familiesStephen Smalley2017-01-095-2/+147
| * | Merge branch 'stable-4.10' of git://git.infradead.org/users/pcmoore/selinux i...James Morris2017-02-081-1/+1
| |\ \
| | * | selinux: fix off-by-one in setprocattrStephen Smalley2017-02-071-1/+1
| * | | ima: allow to check MAY_APPENDLans Zhang2017-01-272-4/+5
| * | | ima: fix ima_d_path() possible race with renameMimi Zohar2017-01-273-6/+24
| * | | Merge branch 'smack-for-4.11' of git://github.com/cschaufler/smack-next into ...James Morris2017-01-273-27/+95
| |\ \ \
| | * | | Smack: ignore private inode for file functionsSeung-Woo Kim2017-01-101-0/+12
| | * | | Smack: fix d_instantiate logic for sockfs and pipefsRafal Krypa2017-01-101-7/+7
| | * | | SMACK: Use smk_tskacc() instead of smk_access() for proper loggingHimanshu Shukla2017-01-101-4/+1
| | * | | Smack: Traverse the smack_known_list using list_for_each_entry_rcu macroVishal Goel2017-01-101-1/+1
| | * | | SMACK: Free the i_security blob in inode using RCUHimanshu Shukla2017-01-102-4/+29
| | * | | SMACK: Delete list_head repeated initializationHimanshu Shukla2017-01-101-4/+0
| | * | | SMACK: Add new lock for adding entry in smack master listVishal Goel2017-01-101-0/+5
| | * | | Smack: Fix the issue of wrong SMACK label update in socket bind fail caseVishal Goel2017-01-102-0/+21
| | * | | Smack: Fix the issue of permission denied error in ipv6 hookVishal Goel2017-01-102-2/+4
| | * | | SMACK: Add the rcu synchronization mechanism in ipv6 hooksVishal Goel2017-01-101-5/+15
| | | |/ | | |/|
| * | | LSM: Add /sys/kernel/security/lsmCasey Schaufler2017-01-199-9/+71
| * | | apparmor: fix undefined reference to `aa_g_hash_policy'John Johansen2017-01-161-1/+1
| * | | apparmor: replace remaining BUG_ON() asserts with AA_BUG()John Johansen2017-01-164-5/+5
| * | | apparmor: fix restricted endian type warnings for policy unpackJohn Johansen2017-01-161-6/+6
| * | | apparmor: fix restricted endian type warnings for dfa unpackJohn Johansen2017-01-162-12/+12
| * | | apparmor: add check for apparmor enabled in module parameters missing itJohn Johansen2017-01-161-0/+10
| * | | apparmor: add per cpu work buffers to avoid allocating buffers at every hookJohn Johansen2017-01-162-1/+103
| * | | apparmor: sysctl to enable unprivileged user ns AppArmor policy loadingTyler Hicks2017-01-162-1/+47
| * | | apparmor: support querying extended trusted helper extra dataWilliam Hua2017-01-165-0/+245
| * | | apparmor: update cap audit to check SECURITY_CAP_NOAUDITJohn Johansen2017-01-161-6/+10
| * | | apparmor: make computing policy hashes conditional on kernel parameterJohn Johansen2017-01-162-29/+32
| * | | apparmor: convert change_profile to use fqname later to give better controlJohn Johansen2017-01-165-66/+28
| * | | apparmor: fix change_hat debug outputJohn Johansen2017-01-161-4/+5
| * | | apparmor: remove unused op parameter from simple_write_to_buffer()John Johansen2017-01-161-6/+3
| * | | apparmor: change aad apparmor_audit_data macro to a fn macroJohn Johansen2017-01-1612-161/+155
| * | | apparmor: change op from int to const char *John Johansen2017-01-1610-134/+84
| * | | apparmor: rename context abreviation cxt to the more standard ctxJohn Johansen2017-01-165-144/+150
| * | | apparmor: fail task profile update if current_cred isn't real_credJohn Johansen2017-01-161-0/+3
| * | | apparmor: add per policy ns .load, .replace, .remove interface filesJohn Johansen2017-01-162-22/+130
| * | | apparmor: pass the subject profile into profile replace/removeJohn Johansen2017-01-163-16/+21
OpenPOWER on IntegriCloud