summaryrefslogtreecommitdiff
path: root/security
AgeCommit message (Expand)Author
2013-08-14apparmor: add an optional profile attachment string for profilesJohn Johansen
2013-08-14apparmor: add interface files for profiles and namespacesJohn Johansen
2013-08-14apparmor: allow setting any profile into the unconfined stateJohn Johansen
2013-08-14apparmor: make free_profile available outside of policy.cJohn Johansen
2013-08-14apparmor: rework namespace free pathJohn Johansen
2013-08-14apparmor: update how unconfined is handledJohn Johansen
2013-08-14apparmor: change how profile replacement update is doneJohn Johansen
2013-08-14apparmor: convert profile lists to RCU based lockingJohn Johansen
2013-08-14apparmor: provide base for multiple profiles to be replaced at onceJohn Johansen
2013-08-14apparmor: add a features/policy dir to interfaceJohn Johansen
2013-08-14apparmor: enable users to query whether apparmor is enabledJohn Johansen
2013-08-14apparmor: remove minimum size check for vmalloc()Tetsuo Handa
2013-08-12Smack: parse multiple rules per write to load2, up to PAGE_SIZE-1 bytesRafal Krypa
2013-08-08cgroup: make css_for_each_descendant() and friends include the origin css in ...Tejun Heo
2013-08-08cgroup: make hierarchy iterators deal with cgroup_subsys_state instead of cgroupTejun Heo
2013-08-08cgroup: pass around cgroup_subsys_state instead of cgroup in file methodsTejun Heo
2013-08-08cgroup: pass around cgroup_subsys_state instead of cgroup in subsystem methodsTejun Heo
2013-08-08cgroup: add css_parent()Tejun Heo
2013-08-08cgroup: add/update accessors which obtain subsys specific data from cssTejun Heo
2013-08-08cgroup: s/cgroup_subsys_state/cgroup_css/ s/task_subsys_state/task_css/Tejun Heo
2013-08-06Smack: IPv6 casting error fix for 3.11Casey Schaufler
2013-08-01Smack: network label match fixCasey Schaufler
2013-08-01security: smack: add a hash table to quicken smk_find_entry()Tomasz Stanislawski
2013-08-01security: smack: fix memleak in smk_write_rules_list()Tomasz Stanislawski
2013-07-31net: split rt_genid for ipv4 and ipv6fan.du
2013-07-25Add SELinux policy capability for always checking packet and peer classes.Chris PeBenito
2013-07-25selinux: fix problems in netnode when BUG() is compiled outPaul Moore
2013-07-25SELinux: use a helper function to determine seclabelEric Paris
2013-07-25SELinux: pass a superblock to security_fs_useEric Paris
2013-07-25SELinux: do not handle seclabel as a special flagEric Paris
2013-07-25SELinux: change sbsec->behavior to shortEric Paris
2013-07-25SELinux: renumber the superblock optionsEric Paris
2013-07-25SELinux: do all flags twiddling in one placeEric Paris
2013-07-25SELinux: rename SE_SBLABELSUPP to SBLABEL_MNTEric Paris
2013-07-25SELinux: use define for number of bits in the mnt flags maskEric Paris
2013-07-25SELinux: make it harder to get the number of mnt opts wrongEric Paris
2013-07-25SELinux: remove crazy contortions around procEric Paris
2013-07-25SELinux: fix selinuxfs policy file on big endian systemsEric Paris
2013-07-25SELinux: Enable setting security contexts on rootfs inodes.Stephen Smalley
2013-07-25SELinux: Increase ebitmap_node size for 64-bit configurationWaiman Long
2013-07-25SELinux: Reduce overhead of mls_level_isvalid() function callWaiman Long
2013-07-25selinux: remove the BUG_ON() from selinux_skb_xfrm_sid()Paul Moore
2013-07-25selinux: cleanup the XFRM headerPaul Moore
2013-07-25selinux: cleanup selinux_xfrm_decode_session()Paul Moore
2013-07-25selinux: cleanup some comment and whitespace issues in the XFRM codePaul Moore
2013-07-25selinux: cleanup selinux_xfrm_sock_rcv_skb() and selinux_xfrm_postroute_last()Paul Moore
2013-07-25selinux: cleanup selinux_xfrm_policy_lookup() and selinux_xfrm_state_pol_flow...Paul Moore
2013-07-25selinux: cleanup and consolidate the XFRM alloc/clone/delete/free codePaul Moore
2013-07-25lsm: split the xfrm_state_alloc_security() hook implementationPaul Moore
2013-07-25xattr: Constify ->name member of "struct xattr".Tetsuo Handa