summaryrefslogtreecommitdiff
path: root/security
AgeCommit message (Expand)AuthorFilesLines
2019-02-01audit: remove unused actx param from audit_rule_matchRichard Guy Briggs8-22/+10
2019-01-30LSM: SafeSetID: remove unused includeMicah Morton1-1/+0
2019-01-29LSM: SafeSetID: 'depend' on CONFIG_SECURITYMicah Morton1-0/+2
2019-01-29selinux: replace BUG_ONs with WARN_ONs in avc.cOndrej Mosnacek1-2/+4
2019-01-29LSM: Add 'name' field for SafeSetID in DEFINE_LSMMicah Morton1-0/+1
2019-01-26selinux: log invalid contexts in AVCsOndrej Mosnacek3-5/+50
2019-01-26selinux: replace some BUG_ON()s with a WARN_ON()Ondrej Mosnacek1-2/+3
2019-01-26selinux: inline some AVC functions used only onceOndrej Mosnacek1-82/+58
2019-01-25LSM: add SafeSetID module that gates setid callsMicah Morton7-1/+526
2019-01-25audit: add support for fcaps v3Richard Guy Briggs1-0/+2
2019-01-25tomoyo: Allow multiple use_group lines.Tetsuo Handa3-22/+42
2019-01-25tomoyo: Coding style fix.Tetsuo Handa15-105/+309
2019-01-23tomoyo: Swicth from cred->security to task_struct->security.Tetsuo Handa5-122/+108
2019-01-23security: keys: annotate implicit fall throughsMathieu Malaterre1-0/+4
2019-01-23security: keys: annotate implicit fall throughsMathieu Malaterre1-0/+3
2019-01-23security: keys: annotate implicit fall throughMathieu Malaterre1-0/+1
2019-01-23apparmor: Adjust offset when accessing task blob.Tetsuo Handa1-1/+1
2019-01-23Merge tag 'v5.0-rc3' into next-generalJames Morris3-2/+12
2019-01-18LSM: Make some functions staticWei Yongjun1-3/+3
2019-01-18LSM: Make lsm_early_cred() and lsm_early_task() local functions.Tetsuo Handa5-22/+11
2019-01-17Merge branch 'fixes-v5.0-rc2' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds2-1/+10
2019-01-17LSM: Check for NULL cred-security on freeJames Morris1-0/+7
2019-01-16Yama: Check for pid death before checking ancestryKees Cook1-1/+3
2019-01-16Merge tag 'selinux-pr-20190115' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-1/+2
2019-01-11selinux: do not override context on context mountsOndrej Mosnacek1-1/+8
2019-01-11selinux: never allow relabeling on context mountsOndrej Mosnacek1-9/+31
2019-01-11selinux: stop passing MAY_NOT_BLOCK to the AVC upon follow_linkStephen Smalley3-30/+4
2019-01-11selinux: avoid silent denials in permissive mode under RCU walkStephen Smalley3-3/+25
2019-01-11selinux: fix GPF on invalid policyStephen Smalley1-1/+2
2019-01-11LSM: generalize flag passing to security_capableMicah Morton9-39/+37
2019-01-09TOMOYO: Update LSM flags to no longer be exclusiveKees Cook1-1/+1
2019-01-09LSM: Infrastructure management of the ipc security blobCasey Schaufler5-121/+108
2019-01-09Smack: Abstract use of ipc security blobsCasey Schaufler2-5/+20
2019-01-09SELinux: Abstract use of ipc security blobsCasey Schaufler2-9/+22
2019-01-09LSM: Infrastructure management of the task securityCasey Schaufler3-27/+60
2019-01-09LSM: Infrastructure management of the inode securityCasey Schaufler5-98/+90
2019-01-09Smack: Abstract use of inode security blobCasey Schaufler2-18/+23
2019-01-09SELinux: Abstract use of inode security blobCasey Schaufler3-15/+21
2019-01-09LSM: Infrastructure management of the file securityCasey Schaufler7-51/+71
2019-01-09Smack: Abstract use of file security blobCasey Schaufler2-4/+13
2019-01-09SELinux: Abstract use of file security blobCasey Schaufler2-9/+14
2019-01-09Infrastructure management of the cred security blobCasey Schaufler10-102/+150
2019-01-09TOMOYO: Abstract use of cred security blobCasey Schaufler4-16/+64
2019-01-09AppArmor: Abstract use of cred security blobCasey Schaufler4-10/+24
2019-01-09SELinux: Remove unused selinux_is_enabledCasey Schaufler5-29/+1
2019-01-09SELinux: Remove cred security blob poisoningCasey Schaufler1-6/+0
2019-01-09SELinux: Abstract use of cred security blobCasey Schaufler3-29/+34
2019-01-09Smack: Abstract use of cred security blobCasey Schaufler4-43/+53
2019-01-09procfs: add smack subdir to attrsCasey Schaufler1-4/+20
2019-01-09capability: Initialize as LSM_ORDER_FIRSTKees Cook2-6/+8