summaryrefslogtreecommitdiff
AgeCommit message (Expand)Author
2016-06-06netlabel: add address family checks to netlbl_{sock,req}_delattr()Paul Moore
2016-05-31selinux: Only apply bounds checking to source typesStephen Smalley
2016-05-17LSM: LoadPin: provide enablement CONFIGKees Cook
2016-05-05Merge branch 'stable-4.7' of git://git.infradead.org/users/pcmoore/selinux in...James Morris
2016-05-05Merge tag 'keys-next-20160505' of git://git.kernel.org/pub/scm/linux/kernel/g...James Morris
2016-05-04Yama: use atomic allocations when reportingSasha Levin
2016-05-04seccomp: Fix comment typoMickaël Salaün
2016-05-04Merge branch 'keys-trust' into keys-nextDavid Howells
2016-05-01ima: add support for creating files using the mknodat syscallMimi Zohar
2016-05-01ima: fix ima_inode_post_setattrMimi Zohar
2016-05-01vfs: forbid write access when reading a file into memoryDmitry Kasatkin
2016-04-27fs: fix over-zealous use of "const"Kees Cook
2016-04-26selinux: apply execstack check on thread stacksStephen Smalley
2016-04-26selinux: distinguish non-init user namespace capability checksStephen Smalley
2016-04-21LSM: LoadPin for kernel file loading restrictionsKees Cook
2016-04-21fs: define a string representation of the kernel_read_file_id enumerationMimi Zohar
2016-04-21Yama: consolidate error reportingKees Cook
2016-04-21string_helpers: add kstrdup_quotable_fileKees Cook
2016-04-21string_helpers: add kstrdup_quotable_cmdlineKees Cook
2016-04-21string_helpers: add kstrdup_quotableKees Cook
2016-04-19selinux: check ss_initialized before revalidating an inode labelPaul Moore
2016-04-19selinux: delay inode label lookup as long as possiblePaul Moore
2016-04-19selinux: don't revalidate an inode's label when explicitly setting itPaul Moore
2016-04-14selinux: Change bool variable name to index.Prarit Bhargava
2016-04-12Merge branch 'keys-sig' into keys-nextDavid Howells
2016-04-12Merge branch 'keys-misc' into keys-nextDavid Howells
2016-04-12KEYS: Add KEYCTL_DH_COMPUTE commandMat Martineau
2016-04-12Security: Keys: Big keys stored encryptedKirill Marinushkin
2016-04-12KEYS: user_update should use copy of payload made during preparsingDavid Howells
2016-04-12security: integrity: Remove select to deleted option PUBLIC_KEY_ALGO_RSAAndreas Ziegler
2016-04-11IMA: Use the the system trusted keyrings instead of .ima_mokDavid Howells
2016-04-11certs: Add a secondary system keyring that can be added to dynamicallyDavid Howells
2016-04-11KEYS: Remove KEY_FLAG_TRUSTED and KEY_ALLOC_TRUSTEDDavid Howells
2016-04-11KEYS: Move the point of trust determination to __key_link()David Howells
2016-04-11KEYS: Make the system trusted keyring depend on the asymmetric key typeDavid Howells
2016-04-11X.509: Move the trust validation code out to its own fileDavid Howells
2016-04-11X.509: Use verify_signature() if we have a struct key * to useDavid Howells
2016-04-11KEYS: Generalise x509_request_asymmetric_key()David Howells
2016-04-11KEYS: Move x509_request_asymmetric_key() to asymmetric_type.cDavid Howells
2016-04-11KEYS: Add a facility to restrict new links into a keyringDavid Howells
2016-04-11security: drop the unused hook skb_owned_byPaolo Abeni
2016-04-06PKCS#7: Make trust determination dependent on contents of trust keyringDavid Howells
2016-04-06KEYS: Generalise system_verify_data() to provide access to internal contentDavid Howells
2016-04-06X.509: Fix self-signed determinationDavid Howells
2016-04-06X.509: Extract signature digest and make self-signed cert checks earlierDavid Howells
2016-04-06PKCS#7: Make the signature a pointer rather than embedding itDavid Howells
2016-04-06X.509: Retain the key verification dataDavid Howells
2016-04-06KEYS: Add identifier pointers to public_key_signature structDavid Howells
2016-04-06KEYS: Allow authentication data to be stored in an asymmetric keyDavid Howells
2016-04-06X.509: Whitespace cleanupDavid Howells
generated by cgit v0.10.2 at 2024-11-07 07:10:14 (GMT)