summaryrefslogtreecommitdiffstats
path: root/security
Commit message (Expand)AuthorAgeFilesLines
...
| | * | | | selinux: Allocate and free infiniband security hooksDaniel Jurgens2017-05-232-1/+29
| | * | | | selinux: Create policydb version for Infiniband supportDaniel Jurgens2017-05-233-24/+118
| | * | | | IB/core: Enforce security on management datagramsDaniel Jurgens2017-05-231-0/+6
| | * | | | selinux lsm IB/core: Implement LSM notification systemDaniel Jurgens2017-05-233-0/+33
| | * | | | IB/core: Enforce PKey security on QPsDaniel Jurgens2017-05-232-0/+31
| | * | | | selinux: Remove redundant check for unknown labeling behaviorMatthias Kaehlcke2017-05-231-16/+0
| | * | | | selinux: log policy capability state when a policy is loadedStephen Smalley2017-05-233-11/+27
| | * | | | selinux: do not check open permission on socketsStephen Smalley2017-05-231-3/+7
| | * | | | selinux: add a map permission check for mmapStephen Smalley2017-05-232-1/+13
| | * | | | selinux: only invoke capabilities and selinux for CAP_MAC_ADMIN checksStephen Smalley2017-05-231-8/+15
| | * | | | selinux: Return an error code only as a constant in sidtab_insert()Markus Elfring2017-05-231-17/+10
| | * | | | selinux: Return directly after a failed memory allocation in policydb_index()Markus Elfring2017-05-231-10/+5
| | * | | | selinux: Use task_alloc hook rather than task_create hookTetsuo Handa2017-05-231-2/+3
| * | | | | ima: Log the same audit cause whenever a file has no signatureThiago Jung Bauermann2017-06-211-1/+2
| * | | | | ima: Simplify policy_func_show.Thiago Jung Bauermann2017-06-212-62/+21
| * | | | | integrity: Small code improvementsThiago Jung Bauermann2017-06-216-9/+11
| * | | | | ima: fix get_binary_runtime_size()Roberto Sassu2017-06-211-1/+1
| * | | | | ima: use ima_parse_buf() to parse template dataRoberto Sassu2017-06-211-31/+13
| * | | | | ima: use ima_parse_buf() to parse measurements headersRoberto Sassu2017-06-211-52/+28
| * | | | | ima: introduce ima_parse_buf()Roberto Sassu2017-06-212-0/+67
| * | | | | ima: Add cgroups2 to the defaults listLaura Abbott2017-06-211-0/+3
| * | | | | ima: use memdup_user_nulGeliang Tang2017-06-211-9/+4
| * | | | | ima: fix up #endif commentsTycho Andersen2017-06-211-2/+2
| * | | | | IMA: Correct Kconfig dependencies for hash selectionBen Hutchings2017-06-211-4/+4
| * | | | | ima: define is_ima_appraise_enabled()Mimi Zohar2017-06-211-0/+10
| * | | | | ima: define Kconfig IMA_APPRAISE_BOOTPARAM optionMimi Zohar2017-06-212-0/+10
| * | | | | ima: define a set of appraisal rules requiring file signaturesMimi Zohar2017-06-211-1/+25
| * | | | | ima: extend the "ima_policy" boot command line to support multiple policiesMimi Zohar2017-06-211-5/+10
| * | | | | Merge branch 'smack-for-4.13' of git://github.com/cschaufler/smack-next into ...James Morris2017-06-214-18/+31
| |\ \ \ \ \
| | * | | | | Smack: Use cap_capable in privilege checkCasey Schaufler2017-06-012-9/+12
| | * | | | | Smack: Safer check for a socket in file_receiveCasey Schaufler2017-06-011-1/+1
| | * | | | | smack: use pernet operations for hook registrationFlorian Westphal2017-06-011-8/+18
| | |/ / / /
| * | | | | apparmor: export that basic profile namespaces are supportedJohn Johansen2017-06-101-0/+7
| * | | | | apparmor: add stacked domain labels interfaceJohn Johansen2017-06-102-0/+8
| * | | | | apparmor: add domain label stacking info to apparmorfsJohn Johansen2017-06-103-0/+39
| * | | | | apparmor: move change_profile mediation to using labelsJohn Johansen2017-06-101-68/+123
| * | | | | apparmor: move change_hat mediation to using labelsJohn Johansen2017-06-101-102/+201
| * | | | | apparmor: move exec domain mediation to using labelsJohn Johansen2017-06-102-259/+678
| * | | | | apparmor: support v7 transition format compatible with label_parseJohn Johansen2017-06-102-7/+15
| * | | | | apparmor: mediate files when they are receivedJohn Johansen2017-06-102-0/+7
| * | | | | apparmor: rework file permission to cache file access in file->ctxJohn Johansen2017-06-101-6/+76
| * | | | | apparmor: move path_link mediation to using labelsJohn Johansen2017-06-103-47/+59
| * | | | | apparmor: refactor path name lookup and permission checks around labelsJohn Johansen2017-06-103-45/+85
| * | | | | apparmor: update aa_audit_file() to use labelsJohn Johansen2017-06-103-9/+18
| * | | | | apparmor: move aa_file_perm() to use labelsJohn Johansen2017-06-103-37/+64
| * | | | | apparmor: allow ptrace checks to be finer grained than just capabilityJohn Johansen2017-06-103-0/+68
| * | | | | apparmor: move ptrace checks to using labelsJohn Johansen2017-06-105-80/+58
| * | | | | apparmor: add cross check permission helper macrosJohn Johansen2017-06-101-1/+41
| * | | | | apparmor: move resource checks to using labelsJohn Johansen2017-06-103-42/+80
| * | | | | apparmor: move capability checks to using labelsJohn Johansen2017-06-105-29/+58
OpenPOWER on IntegriCloud