aboutsummaryrefslogtreecommitdiff
path: root/security
Commit message (Expand)AuthorAgeFilesLines
* BACKPORT: audit: consistently record PIDs with task_tgid_nr()Paul Moore2017-12-281-2/+2
* KEYS: Fix an error code in request_master_key()Dan Carpenter2017-11-061-1/+1
* KEYS: encrypted: fix dereference of NULL user_key_payloadEric Biggers2017-11-061-0/+7
* KEYS: prevent creating a different user's keyringsEric Biggers2017-11-064-12/+23
* KEYS: don't let add_key() update an uninstantiated keyDavid Howells2017-11-061-0/+10
* KEYS: fix dereferencing NULL payload with nonzero lengthEric Biggers2017-11-061-2/+2
* apparmor: do not expose kernel stackHeinrich Schuchardt2017-07-041-1/+3
* apparmor: fix module parameters can be changed after policy is lockedJohn Johansen2017-07-043-13/+29
* apparmor: fix oops in profile_unpack() when policy_db is not presentJohn Johansen2017-07-041-0/+3
* apparmor: don't check for vmalloc_addr if kvzalloc() failedJohn Johansen2017-07-041-5/+5
* apparmor: add missing id bounds check on dfa verificationJohn Johansen2017-07-042-0/+3
* apparmor: check that xindex is in trans_table boundsJohn Johansen2017-07-041-1/+1
* apparmor: internal paths should be treated as disconnectedJohn Johansen2017-07-041-28/+36
* apparmor: fix disconnected bind mnts reconnectionJohn Johansen2017-07-041-1/+4
* apparmor: exec should not be returning ENOENT when it deniesJohn Johansen2017-07-041-1/+1
* apparmor: fix uninitialized lsm_audit memberJohn Johansen2017-07-042-2/+4
* KEYS: Disallow keyrings beginning with '.' to be joined as session keyringsDavid Howells2017-06-171-2/+7
* EVM: Use crypto_memneq() for digest comparisonsRyan Ware2017-06-171-1/+2
* selinux: conditionally reschedule in hashtab_insert while loading selinux policyDave Jones2017-05-241-0/+3
* selinux: conditionally reschedule in mls_convert_context while loading selinu...Dave Jones2017-05-241-0/+2
* selinux: no recursive read_lock of policy_rwlock in security_genfs_sid()Waiman Long2017-05-241-9/+31
* selinux: fix a possible memory leak in cond_read_node()Namhyung Kim2017-05-241-1/+1
* selinux: simple cleanup for cond_read_node()Namhyung Kim2017-05-241-7/+2
* selinux: normalize audit log formattingRichard Guy Briggs2017-05-241-6/+8
* selinux: cleanup error reporting in selinux_nlmsg_perm()Richard Guy Briggs2017-05-241-4/+3
* selinux: Remove unused function avc_sidcmp()Rickard Strandqvist2017-05-241-5/+0
* selinux: quiet the filesystem labeling behavior messagePaul Moore2017-05-241-4/+0
* SELinux: do all flags twiddling in one placeEric Paris2017-05-241-7/+5
* selinux: add force_audit sysfs node to enable logging of dontauditimoseyon2017-05-242-0/+7
* selinux: remove unused variabled in the netport, netnode, and netif cachesPaul Moore2017-05-243-6/+4
* IKSWL-3373: selinux: Improve avc loggingJoel Voss2017-05-241-0/+4
* KEYS: fix keyctl_set_reqkey_keyring() to not leak thread keyringsEric Biggers2017-05-202-24/+31
* KEYS: Change the name of the dead type to ".dead" to prevent user accessDavid Howells2017-05-071-1/+1
* BACKPORT: selinux: restrict kernel module loadingJeff Vander Stoep2017-04-252-1/+34
* BACKPORT: UPSTREAM: selinux: fix off-by-one in setprocattrStephen Smalley2017-04-161-1/+1
* ANDROID: export security_path_chownDaniel Rosenberg2017-04-131-0/+1
* vfs: Add permission2 for filesystems with per mount permissionsDaniel Rosenberg2017-04-131-1/+1
* BACKPORT: commoncap: don't alloc the credential unless needed in cap_task_prctlTetsuo Handa2017-04-131-43/+31
* security: keys: fix maybe-uninitialized warningsNathan Chancellor2017-04-131-4/+4
* kernel: Fix few typosMasanari Iida2017-04-111-1/+1
* UPSTREAM: capabilities: ambient capabilitiesAndy Lutomirski2016-11-182-10/+93
* KEYS: Fix handling of stored error in a negatively instantiated user keyDavid Howells2016-11-173-2/+10
* KEYS: Fix short sprintf buffer in /proc/keys show functionDavid Howells2016-11-171-1/+1
* Revert "security/selinux: force permissive"fire8552016-11-171-2/+0
* security: let security modules use PTRACE_MODE_* with bitmasksJann Horn2016-11-071-2/+2
* security/selinux: force permissiveDespairFactor2016-11-071-0/+2
* selinux: enable genfscon labeling for sysfs and pstore filesStephen Smalley2016-09-101-1/+3
* selinux: enable per-file labeling for debugfs files.Stephen Smalley2016-09-102-22/+22
* security: lsm_audit: add ioctl specific auditingJeff Vander Stoep2016-09-101-0/+15
* selinux: nlmsgtab: add SOCK_DESTROY to the netlink mapping tablesLorenzo Colitti2016-09-101-3/+4
generated by cgit v1.2.3 (git 2.39.1) at 2026-03-14 08:18:37 +0000