summaryrefslogtreecommitdiff
path: root/security
AgeCommit message (Expand)AuthorFilesLines
2008-07-26[PATCH] pass MAY_OPEN to vfs_permission() explicitlyAl Viro4-9/+6
2008-07-26tracehook: tracehook_tracer_taskRoland McGrath1-19/+3
2008-07-25devcgroup: code cleanupLi Zefan1-14/+8
2008-07-25devcgroup: relax white-list protection down to RCUPavel Emelyanov1-13/+22
2008-07-25cgroup files: convert devcgroup_access_write() into a cgroup write_string() h...Paul Menage1-63/+38
2008-07-24security: filesystem capabilities no longer experimentalAndrew G. Morgan1-2/+1
2008-07-24security: protect legacy applications from executing with insufficient privilegeAndrew G. Morgan1-49/+59
2008-07-15Revert "SELinux: allow fstype unknown to policy to use xattrs if present"James Morris3-37/+14
2008-07-14security: remove register_security hookJames Morris5-95/+5
2008-07-14security: remove dummy module fixMiklos Szeredi1-1/+1
2008-07-14security: remove dummy moduleMiklos Szeredi5-1340/+996
2008-07-14security: remove unused sb_get_mnt_opts hookMiklos Szeredi3-15/+0
2008-07-14LSM/SELinux: show LSM mount options in /proc/mountsEric Paris3-1/+65
2008-07-14SELinux: allow fstype unknown to policy to use xattrs if presentEric Paris3-14/+37
2008-07-14security: fix return of void-valued expressionsJames Morris1-3/+3
2008-07-14SELinux: use do_each_thread as a proper do/while blockJames Morris1-2/+2
2008-07-14SELinux: remove unused and shadowed addrlen variableJames Morris1-3/+1
2008-07-14SELinux: more user friendly unknown handling printkEric Paris2-5/+7
2008-07-14selinux: change handling of invalid classes (Was: Re: 2.6.26-rc5-mm1 selinux ...Stephen Smalley1-3/+13
2008-07-14SELinux: drop load_mutex in security_load_policyEric Paris1-13/+1
2008-07-14SELinux: fix off by 1 reference of class_to_string in context_struct_compute_avEric Paris1-1/+1
2008-07-14SELinux: open code sidtab lockJames Morris1-11/+7
2008-07-14SELinux: open code load_mutexJames Morris1-12/+9
2008-07-14SELinux: open code policy_rwlockJames Morris1-56/+52
2008-07-14selinux: fix endianness bug in network node address handlingStephen Smalley1-7/+8
2008-07-14selinux: simplify ioctl checkingStephen Smalley1-40/+8
2008-07-14SELinux: enable processes with mac_admin to get the raw inode contextsStephen Smalley1-4/+23
2008-07-14Security: split proc ptrace checking into read vs. attachStephen Smalley5-8/+21
2008-07-14SELinux: remove inherit field from inode_security_structJames Morris1-1/+0
2008-07-14SELinux: reorder inode_security_struct to increase objs/slab on 64bitRichard Kennedy1-1/+1
2008-07-14SELinux: keep the code clean formating and syntaxEric Paris9-30/+35
2008-07-14SELinux: fix sleeping allocation in security_context_to_sidStephen Smalley1-30/+40
2008-07-14selinux: support deferred mapping of contextsStephen Smalley8-128/+248
2008-07-13devcgroup: fix permission check when adding entry to child cgroupLi Zefan1-1/+1
2008-07-13devcgroup: always show positive major/minor numLi Zefan1-2/+2
2008-07-04devcgroup: fix odd behaviour when writing 'a' to devices.allowLi Zefan1-0/+2
2008-07-04security: filesystem capabilities: fix CAP_SETPCAP handlingAndrew G. Morgan1-3/+10
2008-06-12capabilities: add (back) dummy support for KEEPCAPSAndrew G. Morgan1-1/+23
2008-06-06keys: remove unused key_alloc_semDaniel Walker1-1/+0
2008-06-06devscgroup: make white list more compact in some casesPavel Emelyanov1-2/+16
2008-06-06devscgroup: relax task to dev_cgroup conversionPavel Emelyanov1-6/+4
2008-06-06devcgroup: make a helper to convert cgroup_subsys_state to devs_cgroupPavel Emelyanov1-2/+6
2008-06-04Smack: fuse mount hang fixCasey Schaufler1-0/+12
2008-05-01[PATCH] split linux/file.hAl Viro1-0/+1
2008-04-30signals: cleanup security_task_kill() usage/implementationOleg Nesterov2-12/+0
2008-04-30Smack: Integrate Smack with AuditAhmed S. Darwish1-0/+155
2008-04-30Security: Make secctx_to_secid() take const secdataDavid Howells6-7/+7
2008-04-29Merge branch 'audit.b50' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds2-1/+3
2008-04-29keys: explicitly include required slab.h header file.Robert P. J. Day2-0/+2
2008-04-29keys: make the keyring quotas controllable through /proc/sysDavid Howells6-15/+94