aboutsummaryrefslogtreecommitdiffstats
path: root/security
AgeCommit message (Expand)AuthorFilesLines
2023-08-22Merge tag 'selinux-pr-20230821' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-1/+1
2023-08-18selinux: set next pointer before attaching to listChristian Göttsche1-1/+1
2023-08-07sysctl: set variable key_sysctls storage-class-specifier to staticTom Rix1-1/+1
2023-07-28security: keys: perform capable check only on privileged operationsChristian Göttsche1-3/+8
2023-07-17security: keys: Modify mismatched function nameJiapeng Chong1-1/+1
2023-07-17keys: Fix linking a duplicate key to a keyring's assoc_arrayPetr Pavlu1-11/+24
2023-07-07Merge tag 'apparmor-pr-2023-07-06' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds8-68/+110
2023-07-06apparmor: Fix kernel-doc header for verify_dfa_accept_indexJohn Johansen1-1/+1
2023-07-06apparmor: fix: kzalloc perms tables for shared dfasJohn Johansen2-4/+35
2023-07-06apparmor: fix profile verification and enable itJohn Johansen2-25/+27
2023-07-06apparmor: fix policy_compat permission remap with extended permissionsJohn Johansen1-12/+19
2023-07-06apparmor: aa_buffer: Convert 1-element array to flexible arrayKees Cook1-4/+4
2023-07-06apparmor: add missing failure check in compute_xmatch_permsJohn Johansen1-0/+2
2023-07-06apparmor: fix missing error check for rhashtable_insert_fastDanila Chernetsov1-2/+7
2023-07-06apparmor: Return directly after a failed kzalloc() in two functionsMarkus Elfring1-5/+5
2023-07-06AppArmor: Fix some kernel-doc commentsYang Li1-1/+1
2023-07-06apparmor: fix use of strcpy in policy_unpack_testRae Moar1-7/+6
2023-07-04Merge tag 'core_guards_for_6.5_rc1' of git://git.kernel.org/pub/scm/linux/ker...Linus Torvalds1-3/+3
2023-06-30Merge tag 'powerpc-6.5-1' of git://git.kernel.org/pub/scm/linux/kernel/git/po...Linus Torvalds1-14/+26
2023-06-29Merge tag 'slab-for-6.5' of git://git.kernel.org/pub/scm/linux/kernel/git/vba...Linus Torvalds1-8/+0
2023-06-28Merge tag 'v6.5-rc1-sysctl-next' of git://git.kernel.org/pub/scm/linux/kernel...Linus Torvalds1-0/+7
2023-06-28Merge tag 'mm-stable-2023-06-24-19-15' of git://git.kernel.org/pub/scm/linux/...Linus Torvalds1-1/+1
2023-06-27Merge tag 'Smack-for-6.5' of https://github.com/cschaufler/smack-nextLinus Torvalds2-16/+48
2023-06-27Merge tag 'integrity-v6.5' of git://git.kernel.org/pub/scm/linux/kernel/git/z...Linus Torvalds7-16/+32
2023-06-27Merge tag 'lsm-pr-20230626' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds5-16/+15
2023-06-27Merge tag 'selinux-pr-20230626' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds21-92/+144
2023-06-27Merge tag 'landlock-6.5-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git...Linus Torvalds1-1/+1
2023-06-26Merge tag 'fsverity-for-linus' of git://git.kernel.org/pub/scm/fs/fsverity/linuxLinus Torvalds1-19/+12
2023-06-26apparmor: Free up __cleanup() namePeter Zijlstra1-3/+3
2023-06-21device_cgroup: Fix kernel-doc warnings in device_cgroupGaosheng Cui1-1/+0
2023-06-21security/integrity: fix pointer to ESL data and its size on pseriesNayna Jain1-14/+26
2023-06-20SafeSetID: fix UID printed instead of GIDAlexander Mikhalitsyn1-1/+1
2023-06-14fsverity: rework fsverity_get_digest() againEric Biggers1-19/+12
2023-06-12hostfs: Fix ephemeral inodesMickaël Salaün1-1/+1
2023-06-09mm/gup: remove vmas parameter from get_user_pages_remote()Lorenzo Stoakes1-1/+1
2023-06-08sysctl: move security keys sysctl registration to its own fileLuis Chamberlain1-0/+7
2023-06-06ima: Fix build warningsRoberto Sassu2-1/+5
2023-06-06evm: Fix build warningsRoberto Sassu2-2/+2
2023-06-05selinux: avoid bool as identifier nameChristian Göttsche2-5/+5
2023-06-05evm: Complete description of evm_inode_setattr()Roberto Sassu1-0/+2
2023-06-02selinux: fix Makefile for versions of make < v4.3Paul Moore1-3/+14
2023-06-01selinux: don't use make's grouped targets feature yetPaul Moore1-1/+5
2023-06-01integrity: Fix possible multiple allocation in integrity_inode_get()Tianjia Zhang1-6/+9
2023-05-30selinux: make labeled NFS work when mounted before policy loadOndrej Mosnacek2-17/+42
2023-05-30selinux: cleanup exit_sel_fs() declarationXiu Jianfeng1-1/+0
2023-05-25lsm: fix a number of misspellingsPaul Moore4-14/+14
2023-05-24mm/slab: remove HAVE_HARDENED_USERCOPY_ALLOCATORVlastimil Babka1-8/+0
2023-05-23IMA: use vfs_getattr_nosec to get the i_versionJeff Layton2-7/+14
2023-05-23selinux: deprecated fs oconChristian Göttsche2-1/+5
2023-05-18selinux: make header files self-includingChristian Göttsche2-0/+4
2023-05-18selinux: keep context struct members in syncChristian Göttsche1-0/+1
2023-05-18selinux: Implement mptcp_add_subflow hookPaolo Abeni2-2/+22
2023-05-18security, lsm: Introduce security_mptcp_add_subflow()Paolo Abeni1-0/+17
2023-05-11smack: Record transmuting in smk_transmutedRoberto Sassu2-12/+30
2023-05-11smack: Retrieve transmuting information in smack_inode_getsecurity()Roberto Sassu1-4/+18
2023-05-08selinux: small cleanups in selinux_audit_rule_init()Paul Moore1-20/+18
2023-05-08selinux: declare read-only data arrays constChristian Göttsche3-3/+3
2023-05-08selinux: retain const qualifier on string literal in avtab_hash_eval()Christian Göttsche2-2/+2
2023-05-08selinux: drop return at end of void function avc_insert()Christian Göttsche1-1/+0
2023-05-08selinux: avc: drop unused function avc_disable()Christian Göttsche2-22/+0
2023-05-08selinux: adjust typos in commentsChristian Göttsche6-6/+6
2023-05-08selinux: do not leave dangling pointer behindChristian Göttsche1-0/+1
2023-05-08selinux: more Makefile tweaksPaul Moore1-10/+9
2023-04-29Merge tag 'integrity-v6.4' of git://git.kernel.org/pub/scm/linux/kernel/git/z...Linus Torvalds1-1/+1
2023-04-27Merge tag 'mm-stable-2023-04-27-15-30' of git://git.kernel.org/pub/scm/linux/...Linus Torvalds1-1/+1
2023-04-27Merge tag 'sysctl-6.4-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/m...Linus Torvalds3-21/+3
2023-04-26Merge tag 'net-next-6.4' of git://git.kernel.org/pub/scm/linux/kernel/git/net...Linus Torvalds1-3/+3
2023-04-24Merge tag 'docs-6.4' of git://git.lwn.net/linuxLinus Torvalds1-1/+1
2023-04-24Merge tag 'tpmdd-v6.4-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/j...Linus Torvalds2-3/+28
2023-04-24Merge tag 'Smack-for-6.4' of https://github.com/cschaufler/smack-nextLinus Torvalds1-40/+24
2023-04-24Merge tag 'tomoyo-pr-20230424' of git://git.osdn.net/gitroot/tomoyo/tomoyo-test1Linus Torvalds3-48/+4
2023-04-24Merge tag 'lsm-pr-20230420' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds4-118/+2639
2023-04-24Merge tag 'selinux-pr-20230420' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds34-1223/+727
2023-04-24integrity: machine keyring CA configurationEric Snowberg2-3/+28
2023-04-13yama: simplfy sysctls with register_sysctl()Luis Chamberlain1-7/+1
2023-04-13loadpin: simplify sysctls use with register_sysctl()Luis Chamberlain1-7/+1
2023-04-13apparmor: simplify sysctls with register_sysctl_init()Luis Chamberlain1-7/+1
2023-04-12selinux: ensure av_permissions.h is built when neededPaul Moore1-1/+1
2023-04-12selinux: fix Makefile dependencies of flask.hOndrej Mosnacek1-2/+2
2023-04-05mm, treewide: redefine MAX_ORDER sanelyKirill A. Shutemov1-1/+1
2023-04-05Smack: Improve mount process memory useCasey Schaufler1-39/+23
2023-04-04selinux: stop returning node from avc_insert()Stephen Smalley1-13/+11
2023-03-30docs: move x86 documentation into Documentation/arch/Jonathan Corbet1-1/+1
2023-03-24Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/netJakub Kicinski1-3/+6
2023-03-23security: Remove security_old_inode_init_security()Roberto Sassu1-11/+0
2023-03-21keys: Do not cache key in task struct if key is requested from kernel threadDavid Howells1-3/+6
2023-03-20selinux: remove the runtime disable functionalityPaul Moore18-163/+29
2023-03-20selinux: remove the 'checkreqprot' functionalityPaul Moore4-56/+11
2023-03-18af_unix: preserve const qualifier in unix_sk()Eric Dumazet1-1/+1
2023-03-17inet: preserve const qualifier in inet_sk()Eric Dumazet1-2/+2
2023-03-15IMA: allow/fix UML buildsRandy Dunlap1-1/+1
2023-03-14selinux: stop passing selinux_state pointers and their offspringStephen Smalley18-995/+651
2023-03-10security: Remove integrity from the LSM list in KconfigRoberto Sassu1-7/+9
2023-03-10Revert "integrity: double check iint_cache was initialized"Roberto Sassu1-8/+0
2023-03-10security: Introduce LSM_ORDER_LAST and set it for the integrity LSMRoberto Sassu2-3/+10
2023-03-08device_cgroup: Fix typo in devcgroup_css_alloc descriptionKamalesh Babulal1-1/+1
2023-03-08lsm: fix a badly named parameter in security_get_getsecurity()Paul Moore1-5/+5
2023-03-08lsm: fix doc warnings in the LSM hook commentsPaul Moore1-16/+17
2023-03-08smack_lsm: remove unnecessary type castingXU pengfei1-1/+1
2023-03-08selinux: uninline unlikely parts of avc_has_perm_noaudit()Paul Moore1-28/+57
2023-03-06lsm: styling fixes to security/security.cPaul Moore1-84/+98
2023-03-06lsm: move the remaining LSM hook comments to security/security.cPaul Moore1-0/+231
2023-03-06lsm: move the io_uring hook comments to security/security.cPaul Moore1-0/+26
2023-03-06lsm: move the perf hook comments to security/security.cPaul Moore1-0/+39
2023-03-06lsm: move the bpf hook comments to security/security.cPaul Moore1-0/+65
2023-03-06lsm: move the audit hook comments to security/security.cPaul Moore1-0/+41
2023-03-06lsm: move the binder hook comments to security/security.cPaul Moore1-0/+36
2023-03-06lsm: move the sysv hook comments to security/security.cPaul Moore1-0/+191
2023-03-06lsm: move the key hook comments to security/security.cPaul Moore1-0/+40
2023-03-06lsm: move the xfrm hook comments to security/security.cPaul Moore1-0/+103
2023-03-06lsm: move the Infiniband hook comments to security/security.cPaul Moore1-0/+34
2023-03-06lsm: move the SCTP hook comments to security/security.cPaul Moore1-0/+43
2023-03-06lsm: move the socket hook comments to security/security.cPaul Moore1-0/+322
2023-03-06lsm: move the AF_UNIX hook comments to security/security.cPaul Moore1-1/+41
2023-03-06lsm: move the netlink hook comments to security/security.cPaul Moore1-0/+13
2023-03-06lsm: move the task hook comments to security/security.cPaul Moore1-0/+334
2023-03-06lsm: move the file hook comments to security/security.cPaul Moore1-0/+151
2023-03-06lsm: move the kernfs hook comments to security/security.cPaul Moore1-0/+10
2023-03-06lsm: move the inode hook comments to security/security.cPaul Moore1-0/+524
2023-03-06lsm: move the filesystem hook comments to security/security.cPaul Moore1-0/+181
2023-03-06lsm: move the fs_context hook comments to security/security.cPaul Moore1-0/+23
2023-03-06lsm: move the program execution hook comments to security/security.cPaul Moore1-0/+69
2023-03-01capability: just use a 'u64' instead of a 'u32[2]' arrayLinus Torvalds2-37/+52
2023-03-01tomoyo: replace tomoyo_round2() with kmalloc_size_roundup()Vlastimil Babka3-48/+4
2023-02-25Merge tag 'powerpc-6.3-1' of git://git.kernel.org/pub/scm/linux/kernel/git/po...Linus Torvalds1-15/+32
2023-02-23Merge tag 'mm-stable-2023-02-20-13-37' of git://git.kernel.org/pub/scm/linux/...Linus Torvalds2-13/+4
2023-02-22Merge tag 'Smack-for-6.3' of https://github.com/cschaufler/smack-nextLinus Torvalds1-3/+14
2023-02-22Merge tag 'integrity-v6.3' of git://git.kernel.org/pub/scm/linux/kernel/git/z...Linus Torvalds7-32/+62
2023-02-21Merge tag 'v6.3-p1' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/...Linus Torvalds1-25/+5
2023-02-21smackfs: Added check catlenDenis Arefev1-3/+14
2023-02-21Merge tag 'hardening-v6.3-rc1' of git://git.kernel.org/pub/scm/linux/kernel/g...Linus Torvalds2-37/+55
2023-02-20Merge tag 'fs.idmapped.v6.3' of git://git.kernel.org/pub/scm/linux/kernel/git...Linus Torvalds19-165/+163
2023-02-20Merge tag 'tpm-v6.3-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/jar...Linus Torvalds1-37/+100
2023-02-15apparmor: Fix regression in compat permissions for getattrJohn Johansen1-2/+1
2023-02-13integrity/powerpc: Support loading keys from PLPKSRussell Currey1-7/+10
2023-02-13integrity/powerpc: Improve error handling & reporting when loading certsRussell Currey1-6/+20
2023-02-13KEYS: DH: Use crypto_wait_reqHerbert Xu1-25/+5
2023-02-13KEYS: Add new function key_create()Thomas Weißschuh1-37/+100
2023-02-12powerpc/secvar: Use u64 in secvar_operationsMichael Ellerman1-2/+2
2023-02-09mm: replace vma->vm_flags direct modifications with modifier callsSuren Baghdasaryan1-3/+3
2023-02-08randstruct: disable Clang 15 supportEric Biggers1-0/+3
2023-01-31ima: Introduce MMAP_CHECK_REQPROT hookRoberto Sassu5-6/+32
2023-01-31ima: Align ima_file_mmap() parameters with mmap_file LSM hookRoberto Sassu2-5/+9
2023-01-31evm: call dump_security_xattr() in all cases to remove code duplicationXiu Jianfeng1-17/+16
2023-01-19LoadPin: Allow filesystem switch when not enforcingKees Cook1-5/+11
2023-01-19LoadPin: Move pin reporting cleanly out of lockingKees Cook1-9/+6
2023-01-19LoadPin: Refactor sysctl initializationKees Cook1-16/+19
2023-01-19LoadPin: Refactor read-only check into a helperKees Cook1-12/+21
2023-01-19fs: port vfs{g,u}id helpers to mnt_idmapChristian Brauner1-6/+3
2023-01-19fs: port i_{g,u}id_into_vfs{g,u}id() to mnt_idmapChristian Brauner4-14/+11
2023-01-19fs: port i_{g,u}id_{needs_}update() to mnt_idmapChristian Brauner1-3/+2
2023-01-19fs: port privilege checking helpers to mnt_idmapChristian Brauner1-3/+2
2023-01-19fs: port inode_owner_or_capable() to mnt_idmapChristian Brauner1-3/+2
2023-01-19fs: port acl to mnt_idmapChristian Brauner5-26/+26
2023-01-19fs: port xattr to mnt_idmapChristian Brauner13-94/+99
2023-01-19fs: port ->permission() to pass mnt_idmapChristian Brauner9-16/+17
2023-01-19fs: port ->mkdir() to pass mnt_idmapChristian Brauner1-1/+1
2023-01-19fs: port ->setattr() to pass mnt_idmapChristian Brauner3-6/+7
2023-01-18mm: new primitive kvmemdup()Hao Sun1-10/+1
2023-01-18ima: fix ima_delete_rules() kernel-doc warningRandy Dunlap1-1/+2
2023-01-18ima: return IMA digest value only when IMA_COLLECTED flag is setMatt Bobrowski1-1/+1
2023-01-18ima: fix error handling logic when file measurement failedMatt Bobrowski2-2/+2
2023-01-13tomoyo: Update website linkTetsuo Handa1-1/+1
2023-01-13tomoyo: Remove "select SRCU"Paul E. McKenney1-1/+0
2023-01-10apparmor: fix kernel-doc complaintsRandy Dunlap3-8/+4
2023-01-09tomoyo: Omit use of bin2cMasahiro Yamada2-8/+8
2023-01-07tomoyo: avoid unneeded creation of builtin-policy.hMasahiro Yamada1-0/+2
2023-01-07tomoyo: fix broken dependency on *.conf.defaultMasahiro Yamada1-1/+1
2022-12-23Merge tag 'hardening-v6.2-rc1-fixes' of git://git.kernel.org/pub/scm/linux/ke...Linus Torvalds2-12/+21
2022-12-21Merge tag 'fs.vfsuid.ima.v6.2-rc1' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds1-0/+24
2022-12-14security: Restrict CONFIG_ZERO_CALL_USED_REGS to gcc or clang > 15.0.6Nathan Chancellor1-0/+3
2022-12-14LoadPin: Ignore the "contents" argument of the LSM hooksKees Cook1-12/+18
2022-12-14Merge tag 'apparmor-pr-2022-12-14' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds35-914/+1632
2022-12-13Merge tag 'integrity-v6.2' of git://git.kernel.org/pub/scm/linux/kernel/git/z...Linus Torvalds7-25/+57
2022-12-13Merge tag 'lsm-pr-20221212' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds14-80/+131
2022-12-13Merge tag 'selinux-pr-20221212' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds5-47/+52
2022-12-13Merge tag 'landlock-6.2-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git...Linus Torvalds8-57/+213
2022-12-13mnt_idmapping: move ima-only helpers to imaChristian Brauner1-0/+24
2022-12-12Merge tag 'fs.vfsuid.conversion.v6.2' of git://git.kernel.org/pub/scm/linux/k...Linus Torvalds5-54/+68
2022-12-12Merge tag 'fs.acl.rework.v6.2' of git://git.kernel.org/pub/scm/linux/kernel/g...Linus Torvalds5-65/+225
2022-12-12Merge tag 'pull-iov_iter' of git://git.kernel.org/pub/scm/linux/kernel/git/vi...Linus Torvalds1-2/+2
2022-12-12Merge tag 'linux-kselftest-kunit-next-6.2-rc1' of git://git.kernel.org/pub/sc...Linus Torvalds5-168/+196
2022-12-12apparmor: test: make static symbols visible during kunit testingRae Moar5-168/+196
2022-12-08KEYS: trusted: tee: Make registered shm dependency explicitSumit Garg1-1/+2
2022-11-28ima: Fix hash dependency to correct algorithmTianjia Zhang1-1/+1
2022-11-25use less confusing names for iov_iter direction initializersAl Viro1-2/+2
2022-11-18lsm,fs: fix vfs_getxattr_alloc() return type and caller error pathsPaul Moore8-31/+34
2022-11-16device_cgroup: Roll back to original exceptions after copy failureWang Weiyang1-4/+29
2022-11-16LSM: Better reporting of actual LSMs at bootKees Cook1-9/+36
2022-11-16ima: Fix misuse of dereference of pointer in template_desc_init_fields()Xiu Jianfeng1-2/+2
2022-11-16integrity: Fix memory leakage in keyring allocation error pathGUO Zihua1-1/+5
2022-11-09selinux: remove the sidtab context conversion indirect callsPaul Moore4-44/+45
2022-11-04lsm: make security_socket_getpeersec_stream() sockptr_t safePaul Moore4-35/+32
2022-11-03ima: Fix memory leak in __ima_inode_hash()Roberto Sassu1-1/+6
2022-11-02ima: Handle -ESTALE returned by ima_filter_rule_match()GUO Zihua1-9/+32
2022-11-02ima: Simplify ima_lsm_copy_ruleGUO Zihua1-7/+3
2022-11-02ima: Fix a potential NULL pointer access in ima_restore_measurement_listHuaxin Lu1-1/+4
2022-11-01apparmor: Fix uninitialized symbol 'array_size' in policy_unpack_test.cJohn Johansen1-2/+2
2022-11-01apparmor: Add __init annotation to aa_{setup/teardown}_dfa_engine()Xiu Jianfeng1-2/+2
2022-11-01efi: Add iMac Pro 2017 to uefi skip cert quirkAditya Garg1-0/+1
generated by cgit 1.2.3-korg (git 2.39.0) at 2024-05-16 11:04:37 +0000