index
:
kernel/git/torvalds/linux.git
master
Linux kernel source tree
Linus Torvalds
about
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
security
Age
Commit message (
Expand
)
Author
Files
Lines
2023-10-26
landlock: Allow FS topology changes for domains without such rule type
Mickaël Salaün
3
-40
/
+60
2023-10-26
landlock: Make ruleset's access masks more generic
Konstantin Meskhidze
5
-20
/
+50
2023-10-24
keys: Remove unused extern declarations
YueHaibing
1
-7
/
+0
2023-10-24
integrity: powerpc: Do not select CA_MACHINE_KEYRING
Michal Suchanek
1
-2
/
+0
2023-10-24
KEYS: trusted: tee: Refactor register SHM usage
Sumit Garg
1
-44
/
+20
2023-10-24
KEYS: trusted: Rollback init_trusted() consistently
Jarkko Sakkinen
1
-10
/
+10
2023-10-23
apparmor: Fix some kernel-doc comments
Yang Li
1
-2
/
+2
2023-10-23
apparmor: Fix one kernel-doc comment
Yang Li
1
-1
/
+1
2023-10-23
apparmor: Fix some kernel-doc comments
Yang Li
1
-2
/
+2
2023-10-22
apparmor: mark new functions static
Arnd Bergmann
1
-2
/
+2
2023-10-20
ima: Add __counted_by for struct modsig and use struct_size()
Gustavo A. R. Silva
1
-3
/
+3
2023-10-18
apparmor: Fix regression in mount mediation
John Johansen
3
-22
/
+51
2023-10-18
apparmor: cache buffers on percpu list if there is lock contention
John Johansen
1
-5
/
+62
2023-10-18
apparmor: add io_uring mediation
Georgia Garcia
6
-2
/
+131
2023-10-18
apparmor: add user namespace creation mediation
John Johansen
7
-2
/
+75
2023-10-18
apparmor: allow restricting unprivileged change_profile
John Johansen
5
-0
/
+39
2023-10-18
apparmor: advertise disconnected.path is available
John Johansen
1
-0
/
+1
2023-10-18
apparmor: refcount the pdb
John Johansen
15
-210
/
+260
2023-10-18
apparmor: provide separate audit messages for file and policy checks
John Johansen
1
-5
/
+11
2023-10-18
apparmor: pass cred through to audit info.
John Johansen
20
-211
/
+388
2023-10-18
apparmor: rename audit_data->label to audit_data->subj_label
John Johansen
10
-18
/
+17
2023-10-18
apparmor: combine common_audit_data and apparmor_audit_data
John Johansen
15
-245
/
+257
2023-10-18
apparmor: rename SK_CTX() to aa_sock and make it an inline fn
John Johansen
2
-11
/
+16
2023-10-18
treewide: mark stuff as __ro_after_init
Alexey Dobriyan
1
-1
/
+1
2023-10-18
security: convert to new timestamp accessors
Jeff Layton
1
-1
/
+1
2023-10-18
selinux: convert to new timestamp accessors
Jeff Layton
1
-1
/
+1
2023-10-18
apparmor: convert to new timestamp accessors
Jeff Layton
2
-5
/
+6
2023-10-15
apparmor: Optimize retrieving current task secid
Vinicius Costa Gomes
1
-2
/
+2
2023-10-15
apparmor: remove unused functions in policy_ns.c/.h
Xiu Jianfeng
2
-51
/
+0
2023-10-15
apparmor: remove unneeded #ifdef in decompress_zstd()
Xiu Jianfeng
1
-2
/
+0
2023-10-11
security/keys: export key_lookup()
Hannes Reinecke
1
-0
/
+1
2023-10-10
KEYS: trusted: Remove redundant static calls usage
Sumit Garg
1
-8
/
+5
2023-10-04
lsm: fix a spelling mistake
Paul Moore
1
-1
/
+1
2023-10-03
selinux: simplify avtab_insert_node() prototype
Jacob Satterfield
1
-13
/
+7
2023-09-27
ima: rework CONFIG_IMA dependency block
Arnd Bergmann
1
-12
/
+6
2023-09-26
ima: Finish deprecation of IMA_TRUSTED_KEYRING Kconfig
Oleksandr Tymoshenko
1
-2
/
+2
2023-09-15
KEYS: encrypted: Do not include crypto/algapi.h
Herbert Xu
1
-1
/
+1
2023-09-15
evm: Do not include crypto/algapi.h
Herbert Xu
1
-2
/
+1
2023-09-14
lsm: constify 'sb' parameter in security_sb_kern_mount()
Khadija Kamran
2
-2
/
+2
2023-09-14
lsm: constify 'bprm' parameter in security_bprm_committed_creds()
Khadija Kamran
4
-4
/
+4
2023-09-13
lsm: constify 'bprm' parameter in security_bprm_committing_creds()
Khadija Kamran
3
-3
/
+3
2023-09-13
lsm: constify 'file' parameter in security_bprm_creds_from_file()
Khadija Kamran
2
-3
/
+3
2023-09-13
lsm: constify 'sb' parameter in security_quotactl()
Khadija Kamran
2
-3
/
+3
2023-09-13
selinux: hweight optimization in avtab_read_item
Jacob Satterfield
1
-5
/
+2
2023-09-13
selinux: improve role transition hashing
Christian Göttsche
1
-1
/
+1
2023-09-13
selinux: simplify avtab slot calculation
Christian Göttsche
1
-7
/
+1
2023-09-13
selinux: improve debug configuration
Christian Göttsche
2
-0
/
+12
2023-09-13
selinux: print sum of chain lengths^2 for hash tables
Christian Göttsche
4
-3
/
+9
2023-09-12
selinux: fix handling of empty opts in selinux_fs_context_submount()
Ondrej Mosnacek
1
-2
/
+8
2023-09-12
selinux: Annotate struct sidtab_str_cache with __counted_by
Kees Cook
1
-1
/
+1
2023-09-08
Merge tag 'landlock-6.6-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git...
Linus Torvalds
1
-1
/
+1
2023-09-04
Merge tag 'tomoyo-pr-20230903' of git://git.osdn.net/gitroot/tomoyo/tomoyo-test1
Linus Torvalds
3
-7
/
+5
2023-08-30
Merge tag 'Smack-for-6.6' of https://github.com/cschaufler/smack-next
Linus Torvalds
1
-2
/
+2
2023-08-30
Merge tag 'integrity-v6.6' of git://git.kernel.org/pub/scm/linux/kernel/git/z...
Linus Torvalds
5
-30
/
+16
2023-08-30
Merge tag 'lsm-pr-20230829' of git://git.kernel.org/pub/scm/linux/kernel/git/...
Linus Torvalds
9
-83
/
+162
2023-08-30
Merge tag 'selinux-pr-20230829' of git://git.kernel.org/pub/scm/linux/kernel/...
Linus Torvalds
34
-286
/
+276
2023-08-29
Merge tag 'mm-stable-2023-08-28-18-26' of git://git.kernel.org/pub/scm/linux/...
Linus Torvalds
1
-5
/
+2
2023-08-29
Merge tag 'net-next-6.6' of git://git.kernel.org/pub/scm/linux/kernel/git/net...
Linus Torvalds
2
-3
/
+3
2023-08-29
Merge tag 'tpmdd-v6.6' of git://git.kernel.org/pub/scm/linux/kernel/git/jarkk...
Linus Torvalds
10
-14
/
+94
2023-08-28
Merge tag 's390-6.6-1' of git://git.kernel.org/pub/scm/linux/kernel/git/s390/...
Linus Torvalds
1
-2
/
+2
2023-08-28
Merge tag 'hardening-v6.6-rc1' of git://git.kernel.org/pub/scm/linux/kernel/g...
Linus Torvalds
3
-4
/
+26
2023-08-28
Merge tag 'v6.6-vfs.misc' of git://git.kernel.org/pub/scm/linux/kernel/git/vf...
Linus Torvalds
3
-0
/
+87
2023-08-28
Merge tag 'v6.6-vfs.ctime' of git://git.kernel.org/pub/scm/linux/kernel/git/v...
Linus Torvalds
4
-10
/
+16
2023-08-25
LoadPin: Annotate struct dm_verity_loadpin_trusted_root_digest with __counted_by
Kees Cook
1
-2
/
+1
2023-08-24
Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net
Jakub Kicinski
1
-1
/
+1
2023-08-22
apparmor: fix invalid reference on profile->disconnected
Georgia Garcia
2
-2
/
+4
2023-08-22
Merge tag 'selinux-pr-20230821' of git://git.kernel.org/pub/scm/linux/kernel/...
Linus Torvalds
1
-1
/
+1
2023-08-21
selinux: use vma_is_initial_stack() and vma_is_initial_heap()
Kefeng Wang
1
-5
/
+2
2023-08-18
selinux: set next pointer before attaching to list
Christian Göttsche
1
-1
/
+1
2023-08-18
integrity: Annotate struct ima_rule_opt_list with __counted_by
Kees Cook
1
-2
/
+2
2023-08-18
s390/ipl: fix virtual vs physical address confusion
Alexander Gordeev
1
-2
/
+2
2023-08-18
landlock: Annotate struct landlock_rule with __counted_by
Kees Cook
1
-1
/
+1
2023-08-17
KEYS: Replace all non-returning strlcpy with strscpy
Azeem Shaikh
1
-1
/
+1
2023-08-17
integrity: PowerVM support for loading third party code signing keys
Nayna Jain
3
-0
/
+30
2023-08-17
integrity: PowerVM machine keyring enablement
Nayna Jain
1
-1
/
+3
2023-08-17
integrity: check whether imputed trust is enabled
Nayna Jain
4
-6
/
+22
2023-08-17
integrity: remove global variable from machine_keyring.c
Nayna Jain
1
-2
/
+2
2023-08-17
integrity: ignore keys failing CA restrictions on non-UEFI platform
Nayna Jain
1
-1
/
+1
2023-08-17
integrity: PowerVM support for loading CA keys on machine keyring
Nayna Jain
3
-0
/
+30
2023-08-17
integrity: Enforce digitalSignature usage in the ima and evm keyrings
Eric Snowberg
3
-4
/
+6
2023-08-15
selinux: prevent KMSAN warning in selinux_inet_conn_request()
Andrew Kanner
1
-0
/
+1
2023-08-15
hardening: Move BUG_ON_DATA_CORRUPTION to hardening options
Marco Elver
1
-0
/
+10
2023-08-15
list: Introduce CONFIG_LIST_HARDENED
Marco Elver
1
-0
/
+13
2023-08-15
lsm: constify the 'file' parameter in security_binder_transfer_file()
Khadija Kamran
2
-5
/
+5
2023-08-15
vfs, security: Fix automount superblock LSM init problem, preventing NFS sb s...
David Howells
3
-0
/
+87
2023-08-13
tomoyo: remove unused function declaration
GONG, Ruiqi
1
-2
/
+0
2023-08-10
Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net
Jakub Kicinski
1
-1
/
+1
2023-08-09
selinux: use unsigned iterator in nlmsgtab code
Christian Göttsche
1
-1
/
+2
2023-08-09
selinux: avoid implicit conversions in policydb code
Christian Göttsche
1
-32
/
+37
2023-08-09
selinux: avoid implicit conversions in selinuxfs code
Christian Göttsche
1
-7
/
+7
2023-08-09
selinux: make left shifts well defined
Christian Göttsche
1
-6
/
+6
2023-08-09
selinux: update type for number of class permissions in services code
Christian Göttsche
2
-2
/
+2
2023-08-09
selinux: avoid implicit conversions in avtab code
Christian Göttsche
1
-12
/
+12
2023-08-09
selinux: revert SECINITSID_INIT support
Paul Moore
6
-64
/
+1
2023-08-08
lsm: constify the 'target' parameter in security_capget()
Khadija Kamran
4
-4
/
+4
2023-08-08
apparmor: remove unused PROF_* macros
GONG, Ruiqi
1
-3
/
+0
2023-08-08
apparmor: cleanup unused functions in file.h
Xiu Jianfeng
1
-37
/
+0
2023-08-08
apparmor: cleanup unused declarations in policy.h
Xiu Jianfeng
1
-6
/
+0
2023-08-08
apparmor: fixup return comments for kernel doc cleanups by Gaosheng Cui
John Johansen
2
-4
/
+4
2023-08-08
selinux: use GFP_KERNEL while reading binary policy
Christian Göttsche
1
-5
/
+5
2023-08-08
selinux: update comment on selinux_hooks[]
Xiu Jianfeng
1
-4
/
+0
2023-08-07
smackfs: Prevent underflow in smk_set_cipso()
Dan Carpenter
1
-1
/
+1
2023-08-07
security: smack: smackfs: fix typo (lables->labels)
Tóth János
1
-1
/
+1
2023-08-07
sysctl: set variable key_sysctls storage-class-specifier to static
Tom Rix
1
-1
/
+1
2023-08-07
kexec_lock: Replace kexec_mutex() by kexec_lock() in two comments
Wenyu Liu
1
-1
/
+1
2023-08-05
tomoyo: refactor deprecated strncpy
Justin Stitt
1
-3
/
+2
2023-08-03
selinux: avoid implicit conversions in services code
Christian Göttsche
3
-16
/
+18
2023-08-03
selinux: avoid implicit conversions in mls code
Christian Göttsche
1
-4
/
+6
2023-08-03
selinux: use identical iterator type in hashtab_duplicate()
Christian Göttsche
1
-1
/
+2
2023-08-03
Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net
Jakub Kicinski
1
-3
/
+8
2023-08-01
ima: require signed IMA policy when UEFI secure boot is enabled
Coiby Xu
1
-0
/
+3
2023-08-01
integrity: Always reference the blacklist keyring with appraisal
Eric Snowberg
2
-17
/
+12
2023-08-01
ima: Remove deprecated IMA_TRUSTED_KEYRING Kconfig
Nayna Jain
1
-12
/
+0
2023-07-31
lsm: add comment block for security_sk_classify_flow LSM hook
Khadija Kamran
1
-0
/
+7
2023-07-28
selinux: move debug functions into debug configuration
Christian Göttsche
5
-3
/
+20
2023-07-28
security: keys: perform capable check only on privileged operations
Christian Göttsche
1
-3
/
+8
2023-07-28
selinux: log about VM being executable by default
Christian Göttsche
1
-0
/
+2
2023-07-26
security: Fix ret values doc for security_inode_init_security()
Roberto Sassu
1
-2
/
+2
2023-07-24
selinux: convert to ctime accessor functions
Jeff Layton
1
-1
/
+1
2023-07-24
security: convert to ctime accessor functions
Jeff Layton
1
-1
/
+1
2023-07-24
apparmor: convert to ctime accessor functions
Jeff Layton
2
-5
/
+5
2023-07-23
tomoyo: add format attributes to functions
Christian Göttsche
2
-2
/
+3
2023-07-20
Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net
Jakub Kicinski
2
-12
/
+25
2023-07-20
selinux: fix a 0/NULL mistmatch in ad_net_init_from_iif()
Paul Moore
1
-1
/
+1
2023-07-20
selinux: introduce SECURITY_SELINUX_DEBUG configuration
Christian Göttsche
2
-4
/
+13
2023-07-19
selinux: introduce and use lsm_ad_net_init*() helpers
Paolo Abeni
1
-41
/
+43
2023-07-19
selinux: update my email address
Stephen Smalley
25
-25
/
+25
2023-07-19
selinux: add missing newlines in pr_err() statements
Christian Göttsche
2
-4
/
+4
2023-07-19
selinux: drop avtab_search()
Christian Göttsche
4
-42
/
+8
2023-07-18
selinux: de-brand SELinux
Stephen Smalley
4
-11
/
+11
2023-07-18
selinux: avoid implicit conversions regarding enforcing status
Christian Göttsche
3
-6
/
+7
2023-07-18
selinux: fix implicit conversions in the symtab
Christian Göttsche
2
-2
/
+2
2023-07-18
selinux: use consistent type for AV rule specifier
Christian Göttsche
3
-3
/
+3
2023-07-18
selinux: avoid implicit conversions in the LSM hooks
Christian Göttsche
1
-16
/
+10
2023-07-18
selinux: avoid implicit conversions in the AVC code
Christian Göttsche
1
-7
/
+8
2023-07-18
selinux: avoid implicit conversions in the netif code
Christian Göttsche
1
-2
/
+2
2023-07-18
selinux: consistently use u32 as sequence number type in the status code
Christian Göttsche
2
-2
/
+2
2023-07-18
selinux: avoid avtab overflows
Christian Göttsche
1
-2
/
+2
2023-07-18
selinux: check for multiplication overflow in put_entry()
Christian Göttsche
1
-2
/
+5
2023-07-17
security: keys: Modify mismatched function name
Jiapeng Chong
1
-1
/
+1
2023-07-17
keys: Fix linking a duplicate key to a keyring's assoc_array
Petr Pavlu
1
-11
/
+24
2023-07-14
security: Constify sk in the sk_getsecid hook.
Guillaume Nault
2
-3
/
+3
2023-07-10
selinux: introduce an initial SID for early boot processes
Ondrej Mosnacek
6
-2
/
+65
2023-07-10
selinux: cleanup the policycap accessor functions
Paul Moore
1
-24
/
+11
2023-07-10
evm: Support multiple LSMs providing an xattr
Roberto Sassu
3
-7
/
+37
2023-07-10
evm: Align evm_inode_init_security() definition with LSM infrastructure
Roberto Sassu
2
-8
/
+12
2023-07-10
smack: Set the SMACK64TRANSMUTE xattr in smack_inode_init_security()
Roberto Sassu
2
-18
/
+29
2023-07-10
security: Allow all LSMs to provide xattrs for inode_init_security hook
Roberto Sassu
3
-44
/
+71
2023-07-10
lsm: fix typo in security_file_lock() comment header
Pairman Guo
1
-1
/
+1
2023-07-10
apparmor: Fix kernel-doc warnings in apparmor/policy.c
Gaosheng Cui
1
-7
/
+10
2023-07-10
apparmor: Fix kernel-doc warnings in apparmor/policy_compat.c
Gaosheng Cui
1
-0
/
+1
2023-07-10
apparmor: Fix kernel-doc warnings in apparmor/policy_unpack.c
Gaosheng Cui
1
-1
/
+1
2023-07-10
apparmor: Fix kernel-doc warnings in apparmor/resource.c
Gaosheng Cui
1
-4
/
+4
2023-07-10
apparmor: Fix kernel-doc warnings in apparmor/match.c
Gaosheng Cui
1
-2
/
+2
2023-07-10
apparmor: Fix kernel-doc warnings in apparmor/lib.c
Gaosheng Cui
1
-2
/
+2
2023-07-10
apparmor: Fix kernel-doc warnings in apparmor/label.c
Gaosheng Cui
1
-9
/
+11
2023-07-10
apparmor: Fix kernel-doc warnings in apparmor/file.c
Gaosheng Cui
1
-3
/
+3
2023-07-10
apparmor: Fix kernel-doc warnings in apparmor/domain.c
Gaosheng Cui
1
-4
/
+6
2023-07-10
apparmor: Fix kernel-doc warnings in apparmor/capability.c
Gaosheng Cui
1
-2
/
+2
2023-07-10
apparmor: Fix kernel-doc warnings in apparmor/audit.c
Gaosheng Cui
1
-0
/
+1
2023-07-10
apparmor: update ctime whenever the mtime changes on an inode
Jeff Layton
2
-6
/
+12
2023-07-09
apparmor: use passed in gfp flags in aa_alloc_null()
Dan Carpenter
1
-2
/
+2
2023-07-09
apparmor: advertise availability of exended perms
John Johansen
1
-0
/
+3
2023-07-09
apparmor: remove unused macro
GONG, Ruiqi
1
-1
/
+0
2023-07-09
apparmor: make aa_set_current_onexec return void
Quanfa Fu
3
-6
/
+3
2023-07-07
Merge tag 'apparmor-pr-2023-07-06' of git://git.kernel.org/pub/scm/linux/kern...
Linus Torvalds
8
-68
/
+110
2023-07-06
apparmor: Fix kernel-doc header for verify_dfa_accept_index
John Johansen
1
-1
/
+1
2023-07-06
apparmor: fix: kzalloc perms tables for shared dfas
John Johansen
2
-4
/
+35
2023-07-06
apparmor: fix profile verification and enable it
John Johansen
2
-25
/
+27
2023-07-06
apparmor: fix policy_compat permission remap with extended permissions
John Johansen
1
-12
/
+19
2023-07-06
apparmor: aa_buffer: Convert 1-element array to flexible array
Kees Cook
1
-4
/
+4
2023-07-06
apparmor: add missing failure check in compute_xmatch_perms
John Johansen
1
-0
/
+2
2023-07-06
apparmor: fix missing error check for rhashtable_insert_fast
Danila Chernetsov
1
-2
/
+7
2023-07-06
apparmor: Return directly after a failed kzalloc() in two functions
Markus Elfring
1
-5
/
+5
2023-07-06
AppArmor: Fix some kernel-doc comments
Yang Li
1
-1
/
+1
2023-07-06
apparmor: fix use of strcpy in policy_unpack_test
Rae Moar
1
-7
/
+6
2023-07-04
Merge tag 'core_guards_for_6.5_rc1' of git://git.kernel.org/pub/scm/linux/ker...
Linus Torvalds
1
-3
/
+3
2023-06-30
Merge tag 'powerpc-6.5-1' of git://git.kernel.org/pub/scm/linux/kernel/git/po...
Linus Torvalds
1
-14
/
+26
2023-06-29
Merge tag 'slab-for-6.5' of git://git.kernel.org/pub/scm/linux/kernel/git/vba...
Linus Torvalds
1
-8
/
+0
2023-06-28
Merge tag 'v6.5-rc1-sysctl-next' of git://git.kernel.org/pub/scm/linux/kernel...
Linus Torvalds
1
-0
/
+7
2023-06-28
Merge tag 'mm-stable-2023-06-24-19-15' of git://git.kernel.org/pub/scm/linux/...
Linus Torvalds
1
-1
/
+1
2023-06-27
Merge tag 'Smack-for-6.5' of https://github.com/cschaufler/smack-next
Linus Torvalds
2
-16
/
+48
2023-06-27
Merge tag 'integrity-v6.5' of git://git.kernel.org/pub/scm/linux/kernel/git/z...
Linus Torvalds
7
-16
/
+32
2023-06-27
Merge tag 'lsm-pr-20230626' of git://git.kernel.org/pub/scm/linux/kernel/git/...
Linus Torvalds
5
-16
/
+15
2023-06-27
Merge tag 'selinux-pr-20230626' of git://git.kernel.org/pub/scm/linux/kernel/...
Linus Torvalds
21
-92
/
+144
2023-06-27
Merge tag 'landlock-6.5-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git...
Linus Torvalds
1
-1
/
+1
2023-06-26
Merge tag 'fsverity-for-linus' of git://git.kernel.org/pub/scm/fs/fsverity/linux
Linus Torvalds
1
-19
/
+12
2023-06-26
apparmor: Free up __cleanup() name
Peter Zijlstra
1
-3
/
+3
2023-06-21
device_cgroup: Fix kernel-doc warnings in device_cgroup
Gaosheng Cui
1
-1
/
+0
2023-06-21
security/integrity: fix pointer to ESL data and its size on pseries
Nayna Jain
1
-14
/
+26
2023-06-20
SafeSetID: fix UID printed instead of GID
Alexander Mikhalitsyn
1
-1
/
+1
2023-06-14
fsverity: rework fsverity_get_digest() again
Eric Biggers
1
-19
/
+12
2023-06-12
hostfs: Fix ephemeral inodes
Mickaël Salaün
1
-1
/
+1
2023-06-09
mm/gup: remove vmas parameter from get_user_pages_remote()
Lorenzo Stoakes
1
-1
/
+1
2023-06-08
sysctl: move security keys sysctl registration to its own file
Luis Chamberlain
1
-0
/
+7
2023-06-06
ima: Fix build warnings
Roberto Sassu
2
-1
/
+5
2023-06-06
evm: Fix build warnings
Roberto Sassu
2
-2
/
+2
2023-06-05
selinux: avoid bool as identifier name
Christian Göttsche
2
-5
/
+5
2023-06-05
evm: Complete description of evm_inode_setattr()
Roberto Sassu
1
-0
/
+2
2023-06-02
selinux: fix Makefile for versions of make < v4.3
Paul Moore
1
-3
/
+14
[prev]
[next]