summaryrefslogtreecommitdiff
path: root/security
AgeCommit message (Expand)Author
2016-01-22KEYS: Fix keyring ref leak in join_session_keyring()Yevgeny Pats
2016-01-22KEYS: Fix race between read and revokeDavid Howells
2016-01-22KEYS: Fix crash when attempt to garbage collect an uninstantiated keyringDavid Howells
2016-01-22KEYS: Fix race between key destruction and finding a keyring by nameDavid Howells
2015-08-16ima: extend "mask" policy matching supportMimi Zohar
2015-08-16ima: add support for new "euid" policy conditionMimi Zohar
2015-08-03evm: labeling pseudo filesystems exceptionMimi Zohar
2015-08-03ima: fix ima_show_template_data_ascii()Mimi Zohar
2015-08-03KEYS: ensure we free the assoc array edit if edit is validColin Ian King
2015-04-29move d_rcu from overlapping d_child to overlapping d_aliasAl Viro
2015-04-19selinux: fix sel_write_enforce broken return valueJoe Perches
2015-01-29KEYS: close race between key lookup and freeingSasha Levin
2015-01-08KEYS: Fix stale key registration at error pathTakashi Iwai
2014-11-14selinux: fix inode security list corruptionStephen Smalley
2014-11-14evm: check xattr value length and type in evm_inode_setxattr()Dmitry Kasatkin
2014-11-14evm: properly handle INTEGRITY_NOXATTRS EVM statusDmitry Kasatkin
2014-10-30ima: provide flag to identify new empty filesDmitry Kasatkin
2014-09-17CAPABILITIES: remove undefined caps from all processesEric Paris
2014-06-26evm: prohibit userspace writing 'security.evm' HMAC valueMimi Zohar
2014-06-26ima: introduce ima_kernel_read()Dmitry Kasatkin
2014-06-26ima: audit log files opened with O_DIRECT flagMimi Zohar
2014-06-07device_cgroup: check if exception removal is allowedAristeu Rozanski
2014-06-07device_cgroup: rework device access check and exception checkingAristeu Rozanski
2014-04-26ima: restore the original behavior for sending data with ima templateRoberto Sassu
2014-04-14selinux: correctly label /proc inodes in use before the policy is loadedPaul Moore
2014-03-18Merge branch 'master' of git://git.kernel.org/pub/scm/linux/kernel/git/klasse...David S. Miller
2014-03-10selinux: add gfp argument to security_xfrm_policy_alloc and fix callersNikolay Aleksandrov
2014-03-09KEYS: Make the keyring cycle detector ignore other keyrings of the same nameDavid Howells
2014-02-24Merge branch 'stable-3.14' of git://git.infradead.org/users/pcmoore/selinux i...James Morris
2014-02-20SELinux: bigendian problems with filename trans rulesEric Paris
2014-02-10Merge branch 'stable-3.14' of git://git.infradead.org/users/pcmoore/selinux i...James Morris
2014-02-05SELinux: Fix kernel BUG on empty security contexts.Stephen Smalley
2014-02-05selinux: add SOCK_DIAG_BY_FAMILY to the list of netlink message typesPaul Moore
2014-02-05Merge tag 'v3.13' into stable-3.14Paul Moore
2014-02-05security: select correct default LSM_MMAP_MIN_ADDR on arm on arm64Colin Cross
2014-01-23Merge git://git.infradead.org/users/eparis/auditLinus Torvalds
2014-01-21Merge branch 'for-3.14' of git://git.kernel.org/pub/scm/linux/kernel/git/tj/c...Linus Torvalds
2014-01-21Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmo...Linus Torvalds
2014-01-13smack: call WARN_ONCE() instead of calling audit_log_start()Richard Guy Briggs
2014-01-13selinux: call WARN_ONCE() instead of calling audit_log_start()Richard Guy Briggs
2014-01-12SELinux: Fix possible NULL pointer dereference in selinux_inode_permission()Steven Rostedt
2014-01-08Merge branch 'master' of git://git.infradead.org/users/pcmoore/selinux into nextJames Morris
2014-01-07SELinux: Fix memory leak upon loading policyTetsuo Handa
2014-01-07Merge branch 'master' of git://git.infradead.org/users/pcmoore/selinux into nextJames Morris
2014-01-06Merge to v3.13-rc7 for prerequisite changes in the Xen code for TPMJames Morris
2014-01-03ima: remove unneeded size_limit argument from ima_eventdigest_init_common()Roberto Sassu
2014-01-03ima: pass HASH_ALGO__LAST as hash algo in ima_eventdigest_init()Roberto Sassu
2014-01-03ima: change the default hash algorithm to SHA1 in ima_eventdigest_ng_init()Roberto Sassu
2013-12-31Smack: File receive audit correctionCasey Schaufler
2013-12-31Smack: Rationalize mount restrictionsCasey Schaufler