| Age | Commit message (Expand) | Author | Files | Lines |
|---|
| 2016-06-07 | iucv: properly clone LSM attributes to newly created child sockets | Paul Moore | 1 | -1/+4 |
| 2016-06-06 | netlabel: add address family checks to netlbl_{sock,req}_delattr() | Paul Moore | 1 | -2/+10 |
| 2016-05-31 | selinux: Only apply bounds checking to source types | Stephen Smalley | 1 | -48/+22 |
| 2016-05-17 | LSM: LoadPin: provide enablement CONFIG | Kees Cook | 2 | -6/+15 |
| 2016-05-06 | Merge branch 'stable-4.7' of git://git.infradead.org/users/pcmoore/selinux in... | James Morris | 6 | -61/+128 |
| 2016-05-06 | Merge tag 'keys-next-20160505' of git://git.kernel.org/pub/scm/linux/kernel/g... | James Morris | 56 | -717/+1341 |
| 2016-05-04 | Yama: use atomic allocations when reporting | Sasha Levin | 1 | -2/+2 |
| 2016-05-04 | seccomp: Fix comment typo | Mickaël Salaün | 1 | -1/+1 |
| 2016-05-04 | Merge branch 'keys-trust' into keys-next | David Howells | 41 | -517/+673 |
| 2016-05-01 | ima: add support for creating files using the mknodat syscall | Mimi Zohar | 4 | -1/+37 |
| 2016-05-01 | ima: fix ima_inode_post_setattr | Mimi Zohar | 2 | -1/+2 |
| 2016-05-01 | vfs: forbid write access when reading a file into memory | Dmitry Kasatkin | 1 | -8/+21 |
| 2016-04-27 | fs: fix over-zealous use of "const" | Kees Cook | 1 | -1/+1 |
| 2016-04-26 | selinux: apply execstack check on thread stacks | Stephen Smalley | 1 | -2/+3 |
| 2016-04-26 | selinux: distinguish non-init user namespace capability checks | Stephen Smalley | 2 | -17/+25 |
| 2016-04-21 | LSM: LoadPin for kernel file loading restrictions | Kees Cook | 9 | -0/+233 |
| 2016-04-21 | fs: define a string representation of the kernel_read_file_id enumeration | Mimi Zohar | 1 | -6/+25 |
| 2016-04-21 | Yama: consolidate error reporting | Kees Cook | 1 | -10/+21 |
| 2016-04-21 | string_helpers: add kstrdup_quotable_file | Kees Cook | 2 | -0/+33 |
| 2016-04-21 | string_helpers: add kstrdup_quotable_cmdline | Kees Cook | 2 | -0/+35 |
| 2016-04-21 | string_helpers: add kstrdup_quotable | Kees Cook | 2 | -0/+30 |
| 2016-04-19 | selinux: check ss_initialized before revalidating an inode label | Paul Moore | 1 | -1/+1 |
| 2016-04-19 | selinux: delay inode label lookup as long as possible | Paul Moore | 1 | -8/+13 |
| 2016-04-19 | selinux: don't revalidate an inode's label when explicitly setting it | Paul Moore | 1 | -2/+11 |
| 2016-04-14 | selinux: Change bool variable name to index. | Prarit Bhargava | 2 | -4/+4 |
| 2016-04-12 | Merge branch 'keys-sig' into keys-next | David Howells | 13 | -191/+281 |
| 2016-04-12 | Merge branch 'keys-misc' into keys-next | David Howells | 11 | -50/+428 |
| 2016-04-12 | KEYS: Add KEYCTL_DH_COMPUTE command | Mat Martineau | 8 | -0/+233 |
| 2016-04-12 | Security: Keys: Big keys stored encrypted | Kirill Marinushkin | 2 | -18/+184 |
| 2016-04-12 | KEYS: user_update should use copy of payload made during preparsing | David Howells | 1 | -31/+11 |
| 2016-04-12 | security: integrity: Remove select to deleted option PUBLIC_KEY_ALGO_RSA | Andreas Ziegler | 1 | -1/+0 |
| 2016-04-12 | IMA: Use the the system trusted keyrings instead of .ima_mok | David Howells | 5 | -64/+34 |
| 2016-04-12 | certs: Add a secondary system keyring that can be added to dynamically | David Howells | 3 | -16/+88 |
| 2016-04-12 | KEYS: Remove KEY_FLAG_TRUSTED and KEY_ALLOC_TRUSTED | David Howells | 7 | -59/+9 |
| 2016-04-12 | KEYS: Move the point of trust determination to __key_link() | David Howells | 9 | -76/+100 |
| 2016-04-12 | KEYS: Make the system trusted keyring depend on the asymmetric key type | David Howells | 2 | -1/+2 |
| 2016-04-12 | X.509: Move the trust validation code out to its own file | David Howells | 4 | -80/+116 |
| 2016-04-12 | X.509: Use verify_signature() if we have a struct key * to use | David Howells | 1 | -2/+1 |
| 2016-04-12 | KEYS: Generalise x509_request_asymmetric_key() | David Howells | 5 | -39/+37 |
| 2016-04-12 | KEYS: Move x509_request_asymmetric_key() to asymmetric_type.c | David Howells | 4 | -95/+94 |
| 2016-04-12 | KEYS: Add a facility to restrict new links into a keyring | David Howells | 15 | -52/+198 |
| 2016-04-11 | security: drop the unused hook skb_owned_by | Paolo Abeni | 2 | -2/+0 |
| 2016-04-06 | PKCS#7: Make trust determination dependent on contents of trust keyring | David Howells | 9 | -32/+11 |
| 2016-04-06 | KEYS: Generalise system_verify_data() to provide access to internal content | David Howells | 15 | -173/+155 |
| 2016-04-06 | X.509: Fix self-signed determination | David Howells | 1 | -0/+9 |
| 2016-04-06 | X.509: Extract signature digest and make self-signed cert checks earlier | David Howells | 4 | -71/+110 |
| 2016-04-06 | PKCS#7: Make the signature a pointer rather than embedding it | David Howells | 4 | -48/+55 |
| 2016-04-06 | X.509: Retain the key verification data | David Howells | 5 | -66/+67 |
| 2016-04-06 | KEYS: Add identifier pointers to public_key_signature struct | David Howells | 2 | -0/+5 |
| 2016-04-06 | KEYS: Allow authentication data to be stored in an asymmetric key | David Howells | 7 | -14/+43 |
