index
:
linux
WIP-syscall
master
mmu_gather-race-fix
n900-dt
n900-dt-with-ssi
n900-dts-twl5030
n900-modem-rework
n900-omapdrm
next
proc-cmdline
sc18is600
ssi
ssi-cleaned
ssi-cleaned-dt
ssi-cleaned-dt2
ssi-cleaned-dt3
tty-splice
twl4030-madc-cleanup
Linux Kernel (branches are rebased on master from time to time)
Linus Torvalds
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
security
Age
Commit message (
Expand
)
Author
Files
Lines
2017-02-07
selinux: fix off-by-one in setprocattr
Stephen Smalley
1
-1
/
+1
2017-01-27
ima: allow to check MAY_APPEND
Lans Zhang
2
-4
/
+5
2017-01-27
ima: fix ima_d_path() possible race with rename
Mimi Zohar
3
-6
/
+24
2017-01-27
Merge branch 'smack-for-4.11' of git://github.com/cschaufler/smack-next into ...
James Morris
3
-27
/
+95
2017-01-24
Introduce a sysctl that modifies the value of PROT_SOCK.
Krister Johansen
1
-1
/
+2
2017-01-24
exec: Remove LSM_UNSAFE_PTRACE_CAP
Eric W. Biederman
4
-5
/
+4
2017-01-24
exec: Test the ptracer's saved cred to see if the tracee can gain caps
Eric W. Biederman
1
-1
/
+2
2017-01-24
exec: Don't reset euid and egid when the tracee has CAP_SETUID
Eric W. Biederman
1
-1
/
+1
2017-01-19
Introduce STATIC_USERMODEHELPER to mediate call_usermodehelper()
Greg Kroah-Hartman
1
-0
/
+35
2017-01-19
Make static usermode helper binaries constant
Greg Kroah-Hartman
1
-3
/
+4
2017-01-19
LSM: Add /sys/kernel/security/lsm
Casey Schaufler
9
-9
/
+71
2017-01-16
apparmor: fix undefined reference to `aa_g_hash_policy'
John Johansen
1
-1
/
+1
2017-01-16
apparmor: replace remaining BUG_ON() asserts with AA_BUG()
John Johansen
4
-5
/
+5
2017-01-16
apparmor: fix restricted endian type warnings for policy unpack
John Johansen
1
-6
/
+6
2017-01-16
apparmor: fix restricted endian type warnings for dfa unpack
John Johansen
2
-12
/
+12
2017-01-16
apparmor: add check for apparmor enabled in module parameters missing it
John Johansen
1
-0
/
+10
2017-01-16
apparmor: add per cpu work buffers to avoid allocating buffers at every hook
John Johansen
2
-1
/
+103
2017-01-16
apparmor: sysctl to enable unprivileged user ns AppArmor policy loading
Tyler Hicks
2
-1
/
+47
2017-01-16
apparmor: support querying extended trusted helper extra data
William Hua
5
-0
/
+245
2017-01-16
apparmor: update cap audit to check SECURITY_CAP_NOAUDIT
John Johansen
1
-6
/
+10
2017-01-16
apparmor: make computing policy hashes conditional on kernel parameter
John Johansen
2
-29
/
+32
2017-01-16
apparmor: convert change_profile to use fqname later to give better control
John Johansen
5
-66
/
+28
2017-01-16
apparmor: fix change_hat debug output
John Johansen
1
-4
/
+5
2017-01-16
apparmor: remove unused op parameter from simple_write_to_buffer()
John Johansen
1
-6
/
+3
2017-01-16
apparmor: change aad apparmor_audit_data macro to a fn macro
John Johansen
12
-161
/
+155
2017-01-16
apparmor: change op from int to const char *
John Johansen
10
-134
/
+84
2017-01-16
apparmor: rename context abreviation cxt to the more standard ctx
John Johansen
5
-144
/
+150
2017-01-16
apparmor: fail task profile update if current_cred isn't real_cred
John Johansen
1
-0
/
+3
2017-01-16
apparmor: add per policy ns .load, .replace, .remove interface files
John Johansen
2
-22
/
+130
2017-01-16
apparmor: pass the subject profile into profile replace/remove
John Johansen
3
-16
/
+21
2017-01-16
apparmor: audit policy ns specified in policy load
John Johansen
3
-24
/
+77
2017-01-16
apparmor: allow introspecting the loaded policy pre internal transform
John Johansen
8
-58
/
+278
2017-01-16
apparmor: add ns name to the audit data for policy loads
John Johansen
2
-10
/
+25
2017-01-16
apparmor: add profile and ns params to aa_may_manage_policy()
John Johansen
3
-14
/
+12
2017-01-16
apparmor: add ns being viewed as a param to policy_admin_capable()
John Johansen
3
-10
/
+16
2017-01-16
apparmor: add ns being viewed as a param to policy_view_capable()
John Johansen
4
-8
/
+35
2017-01-16
apparmor: allow specifying the profile doing the management
John Johansen
1
-11
/
+21
2017-01-16
apparmor: allow introspecting the policy namespace name
John Johansen
1
-0
/
+24
2017-01-16
apparmor: Make aa_remove_profile() callable from a different view
John Johansen
3
-5
/
+7
2017-01-16
apparmor: track ns level so it can be used to help in view checks
John Johansen
1
-0
/
+1
2017-01-16
apparmor: add special .null file used to "close" fds at exec
John Johansen
3
-1
/
+81
2017-01-16
apparmor: provide userspace flag indicating binfmt_elf_mmap change
John Johansen
1
-0
/
+1
2017-01-16
apparmor: add a default null dfa
John Johansen
6
-2
/
+46
2017-01-16
apparmor: allow policydb to be used as the file dfa
John Johansen
1
-4
/
+8
2017-01-16
apparmor: add get_dfa() fn
John Johansen
1
-0
/
+15
2017-01-16
apparmor: prepare to support newer versions of policy
John Johansen
2
-10
/
+25
2017-01-16
apparmor: add support for force complain flag to support learning mode
John Johansen
1
-1
/
+3
2017-01-16
apparmor: remove paranoid load switch
John Johansen
2
-16
/
+10
2017-01-16
apparmor: name null-XXX profiles after the executable
John Johansen
3
-17
/
+47
2017-01-16
apparmor: pass gfp_t parameter into profile allocation
John Johansen
4
-8
/
+9
[prev]
[next]