David Howells 911b79cde9 KEYS: Don't permit request_key() to construct a new keyring ... If request_key() is used to find a keyring, only do the search part - don't do the construction part if the keyring was not found by the search. We don't really want keyrings in the negative instantiated state since the rejected/negative instantiation error value in the payload is unioned with keyring metadata. Now the kernel gives an error: request_key("keyring", "#selinux,bdekeyring", "keyring", KEY_SPEC_USER_SESSION_KEYRING) = -1 EPERM (Operation not permitted) Signed-off-by: David Howells <dhowells@redhat.com>		2015-10-19 11:24:51 +01:00
..
apparmor	Minor merge needed, due to function move.	2015-07-01 10:49:25 -07:00
integrity	Minor merge needed, due to function move.	2015-07-01 10:49:25 -07:00
keys	KEYS: Don't permit request_key() to construct a new keyring	2015-10-19 11:24:51 +01:00
selinux	mm: mark most vm_operations_struct const	2015-09-10 13:29:01 -07:00
smack	Smack - Fix build error with bringup unconfigured	2015-08-12 18:10:01 -07:00
tomoyo	LSM: Switch to lists of hooks	2015-05-12 15:00:41 +10:00
yama	Adding YAMA hooks also when YAMA is not stacked.	2015-08-04 01:36:18 +10:00
commoncap.c	capabilities: add a securebit to disable PR_CAP_AMBIENT_RAISE	2015-09-04 16:54:41 -07:00
device_cgroup.c	security/device_cgroup: Fix RCU_LOCKDEP_WARN() condition	2015-09-03 18:13:10 -07:00
inode.c	Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs	2015-07-04 19:36:06 -07:00
Kconfig	Yama: remove needless CONFIG_SECURITY_YAMA_STACKED	2015-07-28 13:18:19 +10:00
lsm_audit.c	Merge branch 'next' of git://git.infradead.org/users/pcmoore/selinux into next	2015-08-15 13:29:57 +10:00
Makefile	LSM: Switch to lists of hooks	2015-05-12 15:00:41 +10:00
min_addr.c	mmap_min_addr check CAP_SYS_RAWIO only for write	2010-04-23 08:56:31 +10:00
security.c	Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security	2015-09-08 12:41:25 -07:00