Gitiles
Code Review
Sign In
gerrit-public.fairphone.software
/
kernel
/
msm-4.19
/
fbe9c54b1da7c1f5795bc516676544b2ced58535
/
security
« Previous
ea59399
ima: support arbitrary hash algorithms in ima_calc_buffer_hash
by Dmitry Kasatkin
· 11 years ago
723326b
ima: provide dedicated hash algo allocation function
by Dmitry Kasatkin
· 11 years ago
140d802
ima: differentiate between template hash and file data hash sizes
by Mimi Zohar
· 12 years ago
a35c3fb
ima: use dynamically allocated hash storage
by Dmitry Kasatkin
· 12 years ago
b1aaab2
ima: pass full xattr with the signature
by Dmitry Kasatkin
· 11 years ago
d3634d0
ima: read and use signature hash algorithm
by Dmitry Kasatkin
· 12 years ago
c7c8bb2
ima: provide support for arbitrary hash algorithms
by Dmitry Kasatkin
· 12 years ago
08de59e
Revert "ima: policy for RAMFS"
by Mimi Zohar
· 11 years ago
089bc8e
ima: fix script messages
by Dmitry Kasatkin
· 11 years ago
73ba353
device_cgroup: remove can_attach
by Serge Hallyn
· 11 years ago
c3fa32b
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
by David S. Miller
· 11 years ago
6f799c9
Merge branch 'master' of git://git.infradead.org/users/pcmoore/selinux into ra-next
by James Morris
· 11 years ago
c0ab6e5
Smack: Implement lock security mode
by Casey Schaufler
· 11 years ago
ed2c7da
apparmor: fix bad lock balance when introspecting policy
by John Johansen
· 11 years ago
5cb3e91
apparmor: fix memleak of the profile hash
by John Johansen
· 11 years ago
795aa6e
netfilter: pass hook ops to hookfn
by Patrick McHardy
· 11 years ago
c2bb06d
net: fix build errors if ipv6 is disabled
by Eric Dumazet
· 11 years ago
efe4208
ipv6: make lookups simpler and faster
by Eric Dumazet
· 11 years ago
ab35406
selinux: remove 'flags' parameter from avc_audit()
by Linus Torvalds
· 11 years ago
cb4fbe5
selinux: avc_has_perm_flags has no more users
by Linus Torvalds
· 11 years ago
19e4983
selinux: remove 'flags' parameter from inode_has_perm
by Linus Torvalds
· 11 years ago
4fbef95
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
by David S. Miller
· 11 years ago
0bbf87d
net ipv4: Convert ipv4.ip_local_port_range to be per netns v3
by Eric W. Biederman
· 11 years ago
4cd4fc7
apparmor: fix suspicious RCU usage warning in policy.c/policy.h
by John Johansen
· 11 years ago
71ac7f6
apparmor: Use shash crypto API interface for profile hashes
by Tyler Hicks
· 11 years ago
42d64e1
selinux: correct locking in selinux_netlbl_socket_connect)
by Paul Moore
· 11 years ago
7d1db4b
selinux: Use kmemdup instead of kmalloc + memcpy
by Duan Jiong
· 11 years ago
c124bde
KEYS: initialize root uid and session keyrings early
by Mimi Zohar
· 11 years ago
008643b
KEYS: Add a 'trusted' flag and a 'trusted only' flag
by David Howells
· 11 years ago
f36f8c7
KEYS: Add per-user_namespace registers for persistent per-UID kerberos caches
by David Howells
· 11 years ago
ab3c358
KEYS: Implement a big key type that can save to tmpfs
by David Howells
· 11 years ago
b2a4df2
KEYS: Expand the capacity of a keyring
by David Howells
· 11 years ago
e57e866
KEYS: Drop the permissions argument from __keyring_search_one()
by David Howells
· 11 years ago
ccc3e6d
KEYS: Define a __key_get() wrapper to use rather than atomic_inc()
by David Howells
· 11 years ago
d0a059c
KEYS: Search for auth-key by name rather than target key ID
by David Howells
· 11 years ago
4bdf0bc
KEYS: Introduce a search context structure
by David Howells
· 11 years ago
16feef4
KEYS: Consolidate the concept of an 'index key' for key access
by David Howells
· 11 years ago
7e55ca6
KEYS: key_is_dead() should take a const key pointer argument
by David Howells
· 11 years ago
a5b4bd2
KEYS: Use bool in make_key_ref() and is_key_possessed()
by David Howells
· 11 years ago
61ea0c0
KEYS: Skip key state checks when checking for possession
by David Howells
· 11 years ago
a3c9e45
security: remove erroneous comment about capabilities.o link ordering
by Eric Paris
· 11 years ago
98f700f
Merge git://git.infradead.org/users/eparis/selinux
by Paul Moore
· 11 years ago
c7c4591
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebiederm/user-namespace
by Linus Torvalds
· 11 years ago
11c7b03
Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security
by Linus Torvalds
· 11 years ago
cc998ff
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next
by Linus Torvalds
· 11 years ago
3398d25
Merge tag 'modules-next-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/rusty/linux
by Linus Torvalds
· 11 years ago
32dad03
Merge branch 'for-3.12' of git://git.kernel.org/pub/scm/linux/kernel/git/tj/cgroup
by Linus Torvalds
· 11 years ago
f54fb86
capabilities: allow nice if we are privileged
by Serge Hallyn
· 11 years ago
160da84
userns: Allow PR_CAPBSET_DROP in a user namespace.
by Eric W. Biederman
· 11 years ago
0b4bdb3
Revert "SELinux: do not handle seclabel as a special flag"
by Eric Paris
· 11 years ago
102aefd
selinux: consider filesystem subtype in policies
by Anand Avati
· 12 years ago
7320336
Merge branch 'smack-for-3.12' of git://git.gitorious.org/smack-next/kernel into ra-next
by James Morris
· 11 years ago
5265fc6
module/lsm: Have apparmor module parameters work with no args
by Steven Rostedt
· 11 years ago
2ff1cf1
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
by David S. Miller
· 11 years ago
f8eb8a1
apparmor: add the ability to report a sha1 hash of loaded policy
by John Johansen
· 11 years ago
84f1f78
apparmor: export set of capabilities supported by the apparmor module
by John Johansen
· 11 years ago
29b3822
apparmor: add the profile introspection file to interface
by John Johansen
· 11 years ago
556d0be
apparmor: add an optional profile attachment string for profiles
by John Johansen
· 11 years ago
0d259f0
apparmor: add interface files for profiles and namespaces
by John Johansen
· 11 years ago
0381650
apparmor: allow setting any profile into the unconfined state
by John Johansen
· 11 years ago
8651e1d6
apparmor: make free_profile available outside of policy.c
by John Johansen
· 11 years ago
742058b
apparmor: rework namespace free path
by John Johansen
· 11 years ago
fa2ac46
apparmor: update how unconfined is handled
by John Johansen
· 11 years ago
77b071b
apparmor: change how profile replacement update is done
by John Johansen
· 11 years ago
01e2b67
apparmor: convert profile lists to RCU based locking
by John Johansen
· 11 years ago
dd51c848
apparmor: provide base for multiple profiles to be replaced at once
by John Johansen
· 11 years ago
9d910a3
apparmor: add a features/policy dir to interface
by John Johansen
· 11 years ago
c611616
apparmor: enable users to query whether apparmor is enabled
by John Johansen
· 11 years ago
dfe4ac2
apparmor: remove minimum size check for vmalloc()
by Tetsuo Handa
· 11 years ago
10289b0
Smack: parse multiple rules per write to load2, up to PAGE_SIZE-1 bytes
by Rafal Krypa
· 11 years ago
bd8815a
cgroup: make css_for_each_descendant() and friends include the origin css in the iteration
by Tejun Heo
· 11 years ago
492eb21
cgroup: make hierarchy iterators deal with cgroup_subsys_state instead of cgroup
by Tejun Heo
· 11 years ago
182446d
cgroup: pass around cgroup_subsys_state instead of cgroup in file methods
by Tejun Heo
· 11 years ago
eb95419
cgroup: pass around cgroup_subsys_state instead of cgroup in subsystem methods
by Tejun Heo
· 11 years ago
6387698
cgroup: add css_parent()
by Tejun Heo
· 11 years ago
a7c6d55
cgroup: add/update accessors which obtain subsys specific data from css
by Tejun Heo
· 11 years ago
8af01f5
cgroup: s/cgroup_subsys_state/cgroup_css/ s/task_subsys_state/task_css/
by Tejun Heo
· 11 years ago
6ea0624
Smack: IPv6 casting error fix for 3.11
by Casey Schaufler
· 11 years ago
677264e
Smack: network label match fix
by Casey Schaufler
· 11 years ago
4d7cf4a
security: smack: add a hash table to quicken smk_find_entry()
by Tomasz Stanislawski
· 11 years ago
470043b
security: smack: fix memleak in smk_write_rules_list()
by Tomasz Stanislawski
· 11 years ago
ca4c3fc
net: split rt_genid for ipv4 and ipv6
by fan.du
· 11 years ago
2be4d74
Add SELinux policy capability for always checking packet and peer classes.
by Chris PeBenito
· 12 years ago
b04eea8
selinux: fix problems in netnode when BUG() is compiled out
by Paul Moore
· 11 years ago
b43e725
SELinux: use a helper function to determine seclabel
by Eric Paris
· 12 years ago
a64c54c
SELinux: pass a superblock to security_fs_use
by Eric Paris
· 12 years ago
308ab70c
SELinux: do not handle seclabel as a special flag
by Eric Paris
· 12 years ago
f936c6e
SELinux: change sbsec->behavior to short
by Eric Paris
· 12 years ago
cfca030
SELinux: renumber the superblock options
by Eric Paris
· 12 years ago
eadcabc
SELinux: do all flags twiddling in one place
by Eric Paris
· 12 years ago
12f348b
SELinux: rename SE_SBLABELSUPP to SBLABEL_MNT
by Eric Paris
· 12 years ago
af8e50c
SELinux: use define for number of bits in the mnt flags mask
by Eric Paris
· 12 years ago
d355987f
SELinux: make it harder to get the number of mnt opts wrong
by Eric Paris
· 12 years ago
40d3d0b
SELinux: remove crazy contortions around proc
by Eric Paris
· 12 years ago
b138004
SELinux: fix selinuxfs policy file on big endian systems
by Eric Paris
· 11 years ago
5c73fce
SELinux: Enable setting security contexts on rootfs inodes.
by Stephen Smalley
· 11 years ago
a767f68
SELinux: Increase ebitmap_node size for 64-bit configuration
by Waiman Long
· 11 years ago
fee7114
SELinux: Reduce overhead of mls_level_isvalid() function call
by Waiman Long
· 11 years ago
bed4d7e
selinux: remove the BUG_ON() from selinux_skb_xfrm_sid()
by Paul Moore
· 11 years ago
d1b17b0
selinux: cleanup the XFRM header
by Paul Moore
· 11 years ago
Next »