 Paul Moore
|
6c5b3fc014
selinux: Cache NetLabel secattrs in the socket's security struct
|
16 years ago |
|
Paul Moore
|
014ab19a69
selinux: Set socket NetLabel based on connection endpoint
|
16 years ago |
|
Paul Moore
|
948bf85c1b
netlabel: Add functionality to set the security attributes of a packet
|
16 years ago |
|
Paul Moore
|
dfaebe9825
selinux: Fix missing calls to netlbl_skbuff_err()
|
16 years ago |
|
Paul Moore
|
d8395c876b
selinux: Better local/forward check in selinux_ip_postroute()
|
16 years ago |
|
Paul Moore
|
aa86290089
selinux: Correctly handle IPv4 packets on IPv6 sockets in all cases
|
16 years ago |
 David Howells
|
5cd9c58fbe
security: Fix setting of PF_SUPERPRIV by __capable()
|
16 years ago |
 Eric Paris
|
383795c206
SELinux: /proc/mounts should show what it can
|
17 years ago |
 Linus Torvalds
|
4836e30078
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs-2.6
|
17 years ago |
|
Linus Torvalds
|
2284284281
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-2.6
|
17 years ago |
 Al Viro
|
b77b0646ef
[PATCH] pass MAY_OPEN to vfs_permission() explicitly
|
17 years ago |
 Alexey Dobriyan
|
6c5a9d2e15
selinux: use nf_register_hooks()
|
17 years ago |
 Roland McGrath
|
0d094efeb1
tracehook: tracehook_tracer_task
|
17 years ago |
 James Morris
|
089be43e40
Revert "SELinux: allow fstype unknown to policy to use xattrs if present"
|
17 years ago |
|
James Morris
|
6f0f0fd496
security: remove register_security hook
|
17 years ago |
 Miklos Szeredi
|
b478a9f988
security: remove unused sb_get_mnt_opts hook
|
17 years ago |
|
Eric Paris
|
2069f45784
LSM/SELinux: show LSM mount options in /proc/mounts
|
17 years ago |
|
Eric Paris
|
811f379927
SELinux: allow fstype unknown to policy to use xattrs if present
|
17 years ago |
|
James Morris
|
2baf06df85
SELinux: use do_each_thread as a proper do/while block
|
17 years ago |
|
James Morris
|
e399f98224
SELinux: remove unused and shadowed addrlen variable
|
17 years ago |
 Stephen Smalley
|
242631c49d
selinux: simplify ioctl checking
|
17 years ago |
|
Stephen Smalley
|
abc69bb633
SELinux: enable processes with mac_admin to get the raw inode contexts
|
17 years ago |
|
Stephen Smalley
|
006ebb40d3
Security: split proc ptrace checking into read vs. attach
|
17 years ago |
|
Eric Paris
|
f526971078
SELinux: keep the code clean formating and syntax
|
17 years ago |
|
Stephen Smalley
|
12b29f3455
selinux: support deferred mapping of contexts
|
17 years ago |
|
Al Viro
|
9f3acc3140
[PATCH] split linux/file.h
|
17 years ago |
 Oleg Nesterov
|
3b5e9e53c6
signals: cleanup security_task_kill() usage/implementation
|
17 years ago |
|
David Howells
|
7bf570dc8d
Security: Make secctx_to_secid() take const secdata
|
17 years ago |
|
David Howells
|
69664cf16a
keys: don't generate user and user session keyrings unless they're accessed
|
17 years ago |
|
David Howells
|
70a5bb72b5
keys: add keyctl function to get a security label
|
17 years ago |
