Gitiles
Code Review
Sign In
gerrit-public.fairphone.software
/
kernel
/
msm
/
refs/heads/int/p/fp2
/
security
552e364
selinux: properly handle multiple messages in selinux_netlink_send()
by Paul Moore
· 4 years, 2 months ago
b3dcfce
selinux: rate-limit netlink message warnings in selinux_nlmsg_perm()
by Vladis Dronov
· 8 years ago
e5f3531
selinux: Print 'sclass' as string when unrecognized netlink message occurs
by Marek Milkovic
· 9 years ago
cf18815
selinux: convert WARN_ONCE() to printk() in selinux_nlmsg_perm()
by Richard Guy Briggs
· 10 years ago
75af1ca
selinux: cleanup error reporting in selinux_nlmsg_perm()
by Richard Guy Briggs
· 10 years ago
f0f7b8e
selinux: replace obsolete NLMSG_* with type safe nlmsg_*
by Hong zhi guo
· 11 years ago
2a67b27
selinux: KASAN: slab-out-of-bounds in xattr_getsecurity
by Sachin Grover
· 6 years ago
272e440
Fix: compat_rw_copy_check_uvector() misuse in aio, readv, writev, and security keys
by Mathieu Desnoyers
· 11 years ago
7cedb40
FROMLIST: security,perf: Allow further restriction of perf_event_open
by Jeff Vander Stoep
· 8 years ago
89af376
vfs: Add permission2 for filesystems with per mount permissions
by Daniel Rosenberg
· 8 years ago
ff235ca
sched: move no_new_privs into new atomic flags
by Kees Cook
· 10 years ago
a210d13
move d_rcu from overlapping d_child to overlapping d_alias
by Al Viro
· 10 years ago
032f7d3
FPII-2605 : Elevation of privilege vulnerability in kernel security subsystem (device specific) CVE-2015-7872 A-31253168
by Jeron Susan
· 8 years ago
9dbb3b1
KEYS: add missing permission check for request_key() destination
by Eric Biggers
· 7 years ago
29f5e91
KEYS: Don't permit request_key() to construct a new keyring
by David Howells
· 9 years ago
fd83bb5
KEYS: Fix stale key registration at error path
by Takashi Iwai
· 10 years ago
2af0b67
key: Fix resource leak
by Alan Cox
· 12 years ago
44c75b7
keys: fix race with concurrent install_user_keyrings()
by David Howells
· 11 years ago
8057476
UPSTREAM: KEYS: encrypted: fix buffer overread in valid_master_desc()
by Eric Biggers
· 6 years ago
dced89e
KEYS: prevent KEYCTL_READ on negative key
by Eric Biggers
· 7 years ago
f0aa712
KEYS: fix dereferencing NULL payload with nonzero length
by Eric Biggers
· 7 years ago
160f302
consitify do_mount() arguments
by Al Viro
· 12 years ago
849dc03
selinux: enable genfscon labeling for sysfs and pstore files
by Stephen Smalley
· 9 years ago
5bb4eba
selinux: enable per-file labeling for debugfs files.
by Stephen Smalley
· 9 years ago
b3aaf5f
selinux: correctly label /proc inodes in use before the policy is loaded
by Paul Moore
· 10 years ago
4e268a5
UPSTREAM: selinux: fix bug in conditional rules handling
by Stephen Smalley
· 9 years ago
31f088d
BACKPORT: commoncap: don't alloc the credential unless needed in cap_task_prctl
by Tetsuo Handa
· 10 years ago
df22adb
SELinux: include definition of new capabilities
by Eric Paris
· 12 years ago
a58928c
Fix execve behavior apparmor for PR_{GET,SET}_NO_NEW_PRIVS
by John Johansen
· 12 years ago
de0a1bf
Add PR_{GET,SET}_NO_NEW_PRIVS to prevent execve from granting privs
by Andy Lutomirski
· 12 years ago
826d1a0
selinux: nlmsgtab: add SOCK_DESTROY to the netlink mapping tables
by Lorenzo Colitti
· 8 years ago
d19805f
selinux: add SOCK_DIAG_BY_FAMILY to the list of netlink message types
by Paul Moore
· 10 years ago
50e36aa
KEYS: Fix handling of stored error in a negatively instantiated user key
by David Howells
· 9 years ago
7e4c999
KEYS: Fix race between read and revoke
by David Howells
· 9 years ago
84bb30a
selinux: fix off-by-one in setprocattr
by Stephen Smalley
· 7 years ago
96ef82b
KEYS: fix keyctl_set_reqkey_keyring() to not leak thread keyrings
by Eric Biggers
· 7 years ago
c5b6c0e
KEYS: Change the name of the dead type to ".dead" to prevent user access
by David Howells
· 7 years ago
2c68c5e
KEYS: Disallow keyrings beginning with '.' to be joined as session keyrings
by David Howells
· 7 years ago
6738894
selinux: Android kernel compatibility with M userspace
by Jeff Vander Stoep
· 9 years ago
ad9ed44
selinux: extended permissions for ioctls
by Jeff Vander Stoep
· 9 years ago
88b0d47
security: add ioctl specific auditing to lsm_audit
by Jeff Vander Stoep
· 9 years ago
312f22d
selinux: remove unnecessary pointer reassignment
by Jeff Vander Stoep
· 9 years ago
14050f4
Revert "security: lsm_audit: add ioctl specific auditing"
by Jeff Vander Stoep
· 9 years ago
3495948
Revert "SELinux: per-command whitelisting of ioctls"
by Jeff Vander Stoep
· 9 years ago
88bd353
Revert "SELinux: use deletion-safe iterator to free list"
by Jeff Vander Stoep
· 9 years ago
d7fa690
Revert "SELinux: ss: Fix policy write for ioctl operations"
by Jeff Vander Stoep
· 9 years ago
a738722
FPII-2740:KEYS: Fix short sprintf buffer in /proc/keys show function
by David Howells
· 8 years ago
4165279
Merge commit '4e3542c936a204b5403c733ba5dbda1be46f3350' into FPII_KERNEL_MERGE
by Pekka Pesu
· 8 years ago
9819791
FPII-2317: Elevation of privilege vulnerability in kernel security subsystem CVE-2016-4470 A-29823941
by Jeron Susan
· 8 years ago
f9a4bd2
FPII-2316: Elevation of privilege vulnerability in kernel security subsystem CVE-2014-9529 A-29510361
by Jeron Susan
· 8 years ago
f356ec9
SELinux: ss: Fix policy write for ioctl operations
by Ravi Kumar Siddojigari
· 9 years ago
fc73488
SELinux: add default_type statements
by Eric Paris
· 12 years ago
25c1d54
SELinux: allow default source/target selectors for user/role/range
by Eric Paris
· 12 years ago
6506870
SELinux: use deletion-safe iterator to free list
by Jeff Vander Stoep
· 9 years ago
27975d3
selinux: Report permissive mode in avc: denied messages.
by Stephen Smalley
· 10 years ago
fd290c6
SELinux: per-command whitelisting of ioctls
by Jeff Vander Stoep
· 9 years ago
290627a
security: lsm_audit: add ioctl specific auditing
by Jeff Vander Stoep
· 9 years ago
2c08805
pstore: selinux: add security in-core xattr support for pstore and debugfs
by Mark Salyzyn
· 9 years ago
24fc717
SELinux: Update policy version to support constraints info
by Richard Haines
· 11 years ago
9ac1509
Merge "security: selinux: Add Per-File-Encryption hooks"
by Linux Build Service Account
· 10 years ago
0249420
Merge "platform: msm: add Per-File-Tagger (PFT) driver"
by Linux Build Service Account
· 10 years ago
9d24c49
platform: msm: add Per-File-Tagger (PFT) driver
by Amir Samuelov
· 10 years ago
6a22e46
security: selinux: Add Per-File-Encryption hooks
by Amir Samuelov
· 10 years ago
041bfc2
SELinux: Fix kernel BUG on empty security contexts.
by Stephen Smalley
· 10 years ago
9028065
selinux: Fix Kernel panic due to NULL pointer dereference
by Satya Durga Srinivasu Prabhala
· 11 years ago
48a2370
Add security hooks to binder and implement the hooks for SELinux.
by Stephen Smalley
· 12 years ago
e9a85c7
security: Add proper checks for Android specific capability checks
by Tushar Behera
· 12 years ago
957265b
Merge commit 'v3.4-rc4' into android-3.4
by Colin Cross
· 12 years ago
ab2965e
Merge commit 'v3.4-rc3' into android-3.4
by Colin Cross
· 12 years ago
51b79be
security: fix compile error in commoncap.c
by Jonghwan Choi
· 12 years ago
d52fc5d
fcaps: clear the same personality flags as suid when fcaps are used
by Eric Paris
· 12 years ago
86812bb
Smack: move label list initialization
by Casey Schaufler
· 12 years ago
923e9a1
Smack: build when CONFIG_AUDIT not defined
by Kees Cook
· 12 years ago
0432013
security: Add AID_NET_RAW and AID_NET_ADMIN capability check in cap_capable().
by Chia-chi Yeh
· 15 years ago
b61c37f
lsm_audit: don't specify the audit pre/post callbacks in 'struct common_audit_data'
by Linus Torvalds
· 12 years ago
3f0882c
SELinux: do not allocate stack space for AVC data unless needed
by Eric Paris
· 12 years ago
f8294f1
SELinux: remove avd from slow_avc_audit()
by Eric Paris
· 12 years ago
7f6a47c
SELinux: remove avd from selinux_audit_data
by Eric Paris
· 12 years ago
48c62af
LSM: shrink the common_audit_data data union
by Eric Paris
· 12 years ago
3b3b0e4
LSM: shrink sizeof LSM specific portion of common_audit_data
by Eric Paris
· 12 years ago
8bb1f22
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
by Linus Torvalds
· 12 years ago
2f99c36
get rid of pointless includes of ext2_fs.h
by Al Viro
· 12 years ago
a1c2aa1
selinuxfs: merge dentry allocation into sel_make_dir()
by Al Viro
· 12 years ago
cdb0f9a
selinux: inline avc_audit() and avc_has_perm_noaudit() into caller
by Linus Torvalds
· 12 years ago
a554bea
selinux: don't inline slow-path code into avc_has_perm_noaudit()
by Linus Torvalds
· 12 years ago
a591afc
Merge branch 'x86-x32-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip
by Linus Torvalds
· 12 years ago
0195c00
Merge tag 'split-asm_system_h-for-linus-20120328' of git://git.kernel.org/pub/scm/linux/kernel/git/dhowells/linux-asm_system
by Linus Torvalds
· 12 years ago
9ffc93f
Remove all #inclusions of asm/system.h
by David Howells
· 12 years ago
0421ea9
apparmor: Fix change_onexec when called from a confined task
by John Johansen
· 12 years ago
778aae8
SELinux: selinux/xfrm.h needs net/flow.h
by David Howells
· 12 years ago
9d944ef
usermodehelper: kill umh_wait, renumber UMH_* constants
by Oleg Nesterov
· 12 years ago
70834d3
usermodehelper: use UMH_WAIT_PROC consistently
by Oleg Nesterov
· 12 years ago
f63d395
Merge tag 'nfs-for-3.4-1' of git://git.linux-nfs.org/projects/trondmy/linux-nfs
by Linus Torvalds
· 12 years ago
48aab2f
security: optimize avc_audit() common path
by Linus Torvalds
· 12 years ago
e2a0883
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
by Linus Torvalds
· 12 years ago
3556485
Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security
by Linus Torvalds
· 12 years ago
9f39383
Merge branch 'kmap_atomic' of git://github.com/congwang/linux
by Linus Torvalds
· 12 years ago
40ffe67
switch unix_sock to struct path
by Al Viro
· 12 years ago
0d9cabd
Merge branch 'for-3.4' of git://git.kernel.org/pub/scm/linux/kernel/git/tj/cgroup
by Linus Torvalds
· 12 years ago
c58e037
tomoyo: remove the second argument of k[un]map_atomic()
by Cong Wang
· 13 years ago
Next »