summaryrefslogtreecommitdiffstats
path: root/security
Commit message (Expand)AuthorAgeFilesLines
* ima: provide support for arbitrary hash algorithmsDmitry Kasatkin2013-10-257-32/+98
* Revert "ima: policy for RAMFS"Mimi Zohar2013-10-251-1/+0
* ima: fix script messagesDmitry Kasatkin2013-10-256-13/+13
* Merge branch 'master' of git://git.infradead.org/users/pcmoore/selinux into r...James Morris2013-10-2216-392/+432
|\
| * selinux: correct locking in selinux_netlbl_socket_connect)Paul Moore2013-09-261-4/+2
| * selinux: Use kmemdup instead of kmalloc + memcpyDuan Jiong2013-09-261-2/+2
| * Merge git://git.infradead.org/users/eparis/selinuxPaul Moore2013-09-1815-388/+430
| |\
| | * Revert "SELinux: do not handle seclabel as a special flag"Eric Paris2013-08-282-1/+4
| | * selinux: consider filesystem subtype in policiesAnand Avati2013-08-282-22/+60
| | * Add SELinux policy capability for always checking packet and peer classes.Chris PeBenito2013-07-254-6/+30
| | * selinux: fix problems in netnode when BUG() is compiled outPaul Moore2013-07-251-0/+2
| | * SELinux: use a helper function to determine seclabelEric Paris2013-07-251-14/+24
| | * SELinux: pass a superblock to security_fs_useEric Paris2013-07-253-15/+11
| | * SELinux: do not handle seclabel as a special flagEric Paris2013-07-252-4/+1
| | * SELinux: change sbsec->behavior to shortEric Paris2013-07-253-3/+3
| | * SELinux: renumber the superblock optionsEric Paris2013-07-252-4/+5
| | * SELinux: do all flags twiddling in one placeEric Paris2013-07-251-7/+5
| | * SELinux: rename SE_SBLABELSUPP to SBLABEL_MNTEric Paris2013-07-252-15/+15
| | * SELinux: use define for number of bits in the mnt flags maskEric Paris2013-07-251-1/+4
| | * SELinux: make it harder to get the number of mnt opts wrongEric Paris2013-07-251-2/+3
| | * SELinux: remove crazy contortions around procEric Paris2013-07-251-1/+1
| | * SELinux: fix selinuxfs policy file on big endian systemsEric Paris2013-07-251-2/+1
| | * SELinux: Enable setting security contexts on rootfs inodes.Stephen Smalley2013-07-251-0/+7
| | * SELinux: Increase ebitmap_node size for 64-bit configurationWaiman Long2013-07-251-1/+7
| | * SELinux: Reduce overhead of mls_level_isvalid() function callWaiman Long2013-07-254-19/+27
| | * selinux: remove the BUG_ON() from selinux_skb_xfrm_sid()Paul Moore2013-07-252-5/+8
| | * selinux: cleanup the XFRM headerPaul Moore2013-07-251-14/+5
| | * selinux: cleanup selinux_xfrm_decode_session()Paul Moore2013-07-251-11/+12
| | * selinux: cleanup some comment and whitespace issues in the XFRM codePaul Moore2013-07-251-13/+10
| | * selinux: cleanup selinux_xfrm_sock_rcv_skb() and selinux_xfrm_postroute_last()Paul Moore2013-07-252-60/+42
| | * selinux: cleanup selinux_xfrm_policy_lookup() and selinux_xfrm_state_pol_flow...Paul Moore2013-07-251-36/+18
| | * selinux: cleanup and consolidate the XFRM alloc/clone/delete/free codePaul Moore2013-07-251-31/+40
| | * lsm: split the xfrm_state_alloc_security() hook implementationPaul Moore2013-07-255-124/+110
* | | KEYS: initialize root uid and session keyrings earlyMimi Zohar2013-09-251-0/+10
* | | KEYS: Add a 'trusted' flag and a 'trusted only' flagDavid Howells2013-09-252-0/+12
* | | KEYS: Add per-user_namespace registers for persistent per-UID kerberos cachesDavid Howells2013-09-247-0/+213
* | | KEYS: Implement a big key type that can save to tmpfsDavid Howells2013-09-243-0/+216
* | | KEYS: Expand the capacity of a keyringDavid Howells2013-09-246-742/+792
* | | KEYS: Drop the permissions argument from __keyring_search_one()David Howells2013-09-243-9/+5
* | | KEYS: Define a __key_get() wrapper to use rather than atomic_inc()David Howells2013-09-243-12/+12
* | | KEYS: Search for auth-key by name rather than target key IDDavid Howells2013-09-241-14/+7
* | | KEYS: Introduce a search context structureDavid Howells2013-09-247-158/+174
* | | KEYS: Consolidate the concept of an 'index key' for key accessDavid Howells2013-09-244-62/+67
* | | KEYS: key_is_dead() should take a const key pointer argumentDavid Howells2013-09-241-1/+1
* | | KEYS: Use bool in make_key_ref() and is_key_possessed()David Howells2013-09-241-2/+3
* | | KEYS: Skip key state checks when checking for possessionDavid Howells2013-09-244-6/+11
* | | security: remove erroneous comment about capabilities.o link orderingEric Paris2013-09-241-1/+0
* | | Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebi...Linus Torvalds2013-09-071-5/+5
|\ \ \
| * | | capabilities: allow nice if we are privilegedSerge Hallyn2013-08-301-4/+4
| * | | userns: Allow PR_CAPBSET_DROP in a user namespace.Eric W. Biederman2013-08-301-1/+1
OpenPOWER on IntegriCloud