summaryrefslogtreecommitdiff
path: root/security (unfollow)
Commit message (Expand)Author
2014-06-12ima: introduce ima_kernel_read()Dmitry Kasatkin
2014-06-12evm: prohibit userspace writing 'security.evm' HMAC valueMimi Zohar
2014-06-12ima: check inode integrity cache in violation checkDmitry Kasatkin
2014-06-12ima: prevent unnecessary policy checkingDmitry Kasatkin
2014-06-12evm: provide option to protect additional SMACK xattrsDmitry Kasatkin
2014-06-12evm: replace HMAC version with attribute maskDmitry Kasatkin
2014-06-12ima: prevent new digsig xattr from being replacedMimi Zohar
2014-06-03ima: audit log files opened with O_DIRECT flagMimi Zohar
2014-06-03selinux: conditionally reschedule in hashtab_insert while loading selinux policyDave Jones
2014-06-03selinux: conditionally reschedule in mls_convert_context while loading selinu...Dave Jones
2014-06-03selinux: reject setexeccon() on MNT_NOSUID applications with -EACCESPaul Moore
2014-06-03selinux: Report permissive mode in avc: denied messages.Stephen Smalley
2014-05-16device_cgroup: use css_has_online_children() instead of has_children()Tejun Heo
2014-05-16device_cgroup: remove direct access to cgroup->childrenTejun Heo
2014-05-16cgroup: remove css_parent()Tejun Heo
2014-05-13cgroup: replace cftype->write_string() with cftype->write()Tejun Heo
2014-05-06Warning in scanf string typingToralf Förster
2014-05-06nick kvfree() from apparmorAl Viro
2014-05-05device_cgroup: check if exception removal is allowedAristeu Rozanski
2014-05-04device_cgroup: fix the comment format for recently added functionsAristeu Rozanski
2014-04-30Smack: Label cgroup files for systemdCasey Schaufler
2014-04-23Smack: Verify read access on file open - v3Casey Schaufler
2014-04-22audit: add netlink audit protocol bind to check capabilities on multicast joinRichard Guy Briggs
2014-04-22locks: rename file-private locks to "open file description locks"Jeff Layton
2014-04-21device_cgroup: rework device access check and exception checkingAristeu Rozanski
2014-04-15security: Convert use of typedef ctl_table to struct ctl_tableJoe Perches
2014-04-11Smack: bidirectional UDS connect checkCasey Schaufler
2014-04-11Smack: Correctly remove SMACK64TRANSMUTE attributeCasey Schaufler
2014-04-11SMACK: Fix handling value==NULL in post setxattrJosé Bollo
2014-04-11bugfix patch for SMACKPankaj Kumar
2014-04-11Smack: adds smackfs/ptrace interfaceLukasz Pawelczyk
2014-04-11Smack: unify all ptrace accesses in the smackLukasz Pawelczyk
2014-04-11Smack: fix the subject/object order in smack_ptrace_traceme()Lukasz Pawelczyk
2014-04-11Minor improvement of 'smack_sb_kern_mount'José Bollo
2014-04-01get rid of pointless checks for NULL ->i_opAl Viro
2014-04-01vfs: add cross-renameMiklos Szeredi
2014-04-01security: add flags to rename hooksMiklos Szeredi
2014-03-31locks: add new fcntl cmd values for handling file private locksJeff Layton
2014-03-20audit: anchor all pid references in the initial pid namespaceRichard Guy Briggs
2014-03-19selinux: correctly label /proc inodes in use before the policy is loadedPaul Moore
2014-03-19selinux: put the mmap() DAC controls before the MAC controlsPaul Moore
2014-03-19cgroup: drop const from @buffer of cftype->write_string()Tejun Heo
2014-03-14smack: fix key permission verificationDmitry Kasatkin
2014-03-14KEYS: Move the flags representing required permission to linux/key.hDavid Howells
2014-03-10selinux: add gfp argument to security_xfrm_policy_alloc and fix callersNikolay Aleksandrov
2014-03-09KEYS: Make the keyring cycle detector ignore other keyrings of the same nameDavid Howells
2014-03-07evm: enable key retention service automaticallyDmitry Kasatkin
2014-03-07ima: skip memory allocation for empty filesDmitry Kasatkin
2014-03-07evm: EVM does not use MD5Dmitry Kasatkin
2014-03-07ima: return d_name.name if d_path failsDmitry Kasatkin
generated by cgit v1.2.3 (git 2.25.1) at 2026-05-06 14:52:48 +0000