summaryrefslogtreecommitdiffstats
path: root/security
AgeCommit message (Expand)AuthorFilesLines
2019-01-30LSM: SafeSetID: remove unused includeMicah Morton1-1/+0
2019-01-29LSM: SafeSetID: 'depend' on CONFIG_SECURITYMicah Morton1-0/+2
2019-01-28selinux: replace BUG_ONs with WARN_ONs in avc.cOndrej Mosnacek1-2/+4
2019-01-28LSM: Add 'name' field for SafeSetID in DEFINE_LSMMicah Morton1-0/+1
2019-01-25selinux: log invalid contexts in AVCsOndrej Mosnacek3-5/+50
2019-01-25selinux: replace some BUG_ON()s with a WARN_ON()Ondrej Mosnacek1-2/+3
2019-01-25selinux: inline some AVC functions used only onceOndrej Mosnacek1-82/+58
2019-01-25LSM: add SafeSetID module that gates setid callsMicah Morton7-1/+526
2019-01-25audit: add support for fcaps v3Richard Guy Briggs1-0/+2
2019-01-24tomoyo: Allow multiple use_group lines.Tetsuo Handa3-22/+42
2019-01-24tomoyo: Coding style fix.Tetsuo Handa15-105/+309
2019-01-23tomoyo: Swicth from cred->security to task_struct->security.Tetsuo Handa5-122/+108
2019-01-22security: keys: annotate implicit fall throughsMathieu Malaterre1-0/+4
2019-01-22security: keys: annotate implicit fall throughsMathieu Malaterre1-0/+3
2019-01-22security: keys: annotate implicit fall throughMathieu Malaterre1-0/+1
2019-01-22apparmor: Adjust offset when accessing task blob.Tetsuo Handa1-1/+1
2019-01-22Merge tag 'v5.0-rc3' into next-generalJames Morris3-2/+12
2019-01-18LSM: Make some functions staticWei Yongjun1-3/+3
2019-01-18LSM: Make lsm_early_cred() and lsm_early_task() local functions.Tetsuo Handa5-22/+11
2019-01-17Merge branch 'fixes-v5.0-rc2' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds2-1/+10
2019-01-16LSM: Check for NULL cred-security on freeJames Morris1-0/+7
2019-01-16Yama: Check for pid death before checking ancestryKees Cook1-1/+3
2019-01-16Merge tag 'selinux-pr-20190115' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-1/+2
2019-01-10selinux: do not override context on context mountsOndrej Mosnacek1-1/+8
2019-01-10selinux: never allow relabeling on context mountsOndrej Mosnacek1-9/+31
2019-01-10selinux: stop passing MAY_NOT_BLOCK to the AVC upon follow_linkStephen Smalley3-30/+4
2019-01-10selinux: avoid silent denials in permissive mode under RCU walkStephen Smalley3-3/+25
2019-01-10selinux: fix GPF on invalid policyStephen Smalley1-1/+2
2019-01-10LSM: generalize flag passing to security_capableMicah Morton9-39/+37
2019-01-08TOMOYO: Update LSM flags to no longer be exclusiveKees Cook1-1/+1
2019-01-08LSM: Infrastructure management of the ipc security blobCasey Schaufler5-121/+108
2019-01-08Smack: Abstract use of ipc security blobsCasey Schaufler2-5/+20
2019-01-08SELinux: Abstract use of ipc security blobsCasey Schaufler2-9/+22
2019-01-08LSM: Infrastructure management of the task securityCasey Schaufler3-27/+60
2019-01-08LSM: Infrastructure management of the inode securityCasey Schaufler5-98/+90
2019-01-08Smack: Abstract use of inode security blobCasey Schaufler2-18/+23
2019-01-08SELinux: Abstract use of inode security blobCasey Schaufler3-15/+21
2019-01-08LSM: Infrastructure management of the file securityCasey Schaufler7-51/+71
2019-01-08Smack: Abstract use of file security blobCasey Schaufler2-4/+13
2019-01-08SELinux: Abstract use of file security blobCasey Schaufler2-9/+14
2019-01-08Infrastructure management of the cred security blobCasey Schaufler10-102/+150
2019-01-08TOMOYO: Abstract use of cred security blobCasey Schaufler4-16/+64
2019-01-08AppArmor: Abstract use of cred security blobCasey Schaufler4-10/+24
2019-01-08SELinux: Remove unused selinux_is_enabledCasey Schaufler5-29/+1
2019-01-08SELinux: Remove cred security blob poisoningCasey Schaufler1-6/+0
2019-01-08SELinux: Abstract use of cred security blobCasey Schaufler3-29/+34
2019-01-08Smack: Abstract use of cred security blobCasey Schaufler4-43/+53
2019-01-08procfs: add smack subdir to attrsCasey Schaufler1-4/+20
2019-01-08capability: Initialize as LSM_ORDER_FIRSTKees Cook2-6/+8
2019-01-08LSM: Introduce enum lsm_orderKees Cook1-1/+8