aboutsummaryrefslogtreecommitdiffstats
path: root/security
AgeCommit message (Expand)AuthorFilesLines
2020-06-02Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-1/+1
2020-06-02Merge tag 'selinux-pr-20200601' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds19-326/+499
2020-06-02Merge tag 'tomoyo-pr-20200601' of git://git.osdn.net/gitroot/tomoyo/tomoyo-test1Linus Torvalds1-1/+1
2020-06-01Merge branch 'uaccess.access_ok' of git://git.kernel.org/pub/scm/linux/kernel...Linus Torvalds1-2/+0
2020-06-01Merge tag 'perf-core-2020-06-01' of git://git.kernel.org/pub/scm/linux/kernel...Linus Torvalds1-2/+2
2020-06-01Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert...Linus Torvalds1-15/+3
2020-05-29tomoyo_write_control(): get rid of pointless access_ok()Al Viro1-2/+0
2020-05-28Merge tag 'v5.7-rc7' into perf/core, to pick up fixesIngo Molnar11-66/+105
2020-05-27Merge branch 'for-5.7-fixes' of git://git.kernel.org/pub/scm/linux/kernel/git...Linus Torvalds2-4/+17
2020-05-27Merge branch 'exec-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/eb...Linus Torvalds1-0/+1
2020-05-26exec: Always set cap_ambient in cap_bprm_set_credsEric W. Biederman1-0/+1
2020-05-23Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/netLinus Torvalds1-2/+14
2020-05-21apparmor: Fix use-after-free in aa_audit_rule_initNavid Emamdoost1-1/+2
2020-05-21apparmor: Fix aa_label refcnt leak in policy_updateXiyu Yang1-1/+2
2020-05-21apparmor: fix potential label refcnt leak in aa_change_profileXiyu Yang1-2/+1
2020-05-20security: Fix hook iteration for secid_to_secctxKP Singh1-2/+14
2020-05-18Merge branch 'fixes' of git://git.kernel.org/pub/scm/linux/kernel/git/zohar/l...Linus Torvalds5-34/+40
2020-05-14evm: Fix a small race in init_desc()Dan Carpenter1-22/+22
2020-05-14lockdown: Allow unprivileged users to see lockdown statusJeremy Cline1-1/+1
2020-05-12selinux: netlabel: Remove unused inline functionYueHaibing1-6/+0
2020-05-12tomoyo: use true for bool variableZou Wei1-1/+1
2020-05-08KEYS: encrypted: use crypto_shash_tfm_digest()Eric Biggers1-15/+3
2020-05-07evm: Fix RCU list related warningsMadhuparna Bhowmik3-4/+11
2020-05-07ima: Fix return value of ima_write_policy()Roberto Sassu1-2/+1
2020-05-07evm: Check also if *tfm is an error pointer in init_desc()Roberto Sassu1-1/+1
2020-05-07ima: Set file->f_mode instead of file->f_flags in ima_calc_file_hash()Roberto Sassu1-6/+6
2020-05-01selinux: do not allocate hashtabs dynamicallyOndrej Mosnacek8-146/+116
2020-05-01selinux: fix return value on error in policydb_read()Ondrej Mosnacek1-0/+1
2020-05-01selinux: simplify range_write()Ondrej Mosnacek1-16/+2
2020-05-01selinux: fix error return code in policydb_read()Wei Yongjun1-0/+1
2020-04-30Merge tag 'selinux-pr-20200430' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds2-26/+46
2020-04-30selinux: properly handle multiple messages in selinux_netlink_send()Paul Moore1-25/+45
2020-04-27selinux: fix error return code in cond_read_list()Wei Yongjun1-1/+1
2020-04-22selinux: don't produce incorrect filename_trans_countOndrej Mosnacek2-9/+5
2020-04-22Merge tag 'perf-core-for-mingo-5.8-20200420' of git://git.kernel.org/pub/scm/...Ingo Molnar1-2/+2
2020-04-17selinux: implement new format of filename transitionsOndrej Mosnacek2-26/+189
2020-04-17selinux: move context hashing under sidtabOndrej Mosnacek5-58/+47
2020-04-17selinux: hash context structure directlyOndrej Mosnacek9-42/+69
2020-04-17selinux: store role transitions in a hash tableOndrej Mosnacek3-60/+107
2020-04-16Merge tag 'selinux-pr-20200416' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-4/+4
2020-04-16keys: Fix proc_keys_next to increase position indexVasily Averin1-0/+2
2020-04-16capabilities: Introduce CAP_PERFMON to kernel and user spaceAlexey Budankov1-2/+2
2020-04-15selinux: drop unnecessary smp_load_acquire() callOndrej Mosnacek1-2/+1
2020-04-15selinux: free str on error in str_read()Ondrej Mosnacek1-4/+4
2020-04-14selinux: fix warning Comparison to boolZou Wei2-3/+3
2020-04-13device_cgroup: Cleanup cgroup eBPF device filter codeOdin Ugedal2-4/+17
2020-04-04Merge tag 'keys-fixes-20200329' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds8-52/+113
2020-04-03Merge tag 'spdx-5.7-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/gre...Linus Torvalds3-3/+3
2020-04-02Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds19-34/+19
2020-03-31Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net-nextLinus Torvalds5-16/+68
2020-03-31Merge tag 'selinux-pr-20200330' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds18-448/+448
2020-03-30selinux: clean up indentation issue with assignment statementColin Ian King1-4/+3
2020-03-30Merge branch 'efi-core-for-linus' of git://git.kernel.org/pub/scm/linux/kerne...Linus Torvalds1-1/+1
2020-03-30bpf: lsm: Initialize the BPF LSM hooksKP Singh4-5/+38
2020-03-30security: Refactor declaration of LSM hooksKP Singh1-11/+30
2020-03-29KEYS: Avoid false positive ENOMEM error on key readWaiman Long2-15/+55
2020-03-29KEYS: Don't write out to userspace while holding key semaphoreWaiman Long7-51/+72
2020-03-25.gitignore: add SPDX License IdentifierMasahiro Yamada3-0/+3
2020-03-25.gitignore: remove too obvious commentsMasahiro Yamada1-3/+0
2020-03-15KEYS: reaching the keys quotas correctlyYang Xu2-3/+3
2020-03-12ima: add a new CONFIG for loading arch-specific policiesNayna Jain1-0/+7
2020-03-05selinux: avtab_init() and cond_policydb_init() return voidPaul Moore5-21/+7
2020-03-05selinux: clean up error path in policydb_init()Ondrej Mosnacek1-13/+5
2020-02-28integrity: Remove duplicate pr_fmt definitionsTushar Sugandhi17-31/+6
2020-02-28IMA: Add log statements for failure conditionsTushar Sugandhi1-0/+3
2020-02-28IMA: Update KBUILD_MODNAME for IMA files to imaTushar Sugandhi1-3/+3
2020-02-27selinux: remove unused initial SIDs and improve handlingStephen Smalley4-56/+58
2020-02-27selinux: reduce the use of hard-coded hash sizesOndrej Mosnacek4-40/+45
2020-02-26Merge tag 'efi-next' of git://git.kernel.org/pub/scm/linux/kernel/git/efi/efi...Ingo Molnar1-1/+1
2020-02-23integrity: Check properly whether EFI GetVariable() is availableArd Biesheuvel1-1/+1
2020-02-22selinux: Add xfs quota command typesRichard Haines1-0/+7
2020-02-22selinux: optimize storage of filename transitionsOndrej Mosnacek3-80/+110
2020-02-20Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds2-14/+31
2020-02-18ima: add sm3 algorithm to hash algorithm configuration listTianjia Zhang1-0/+5
2020-02-18efi: Only print errors about failing to get certs if EFI vars are foundJavier Martinez Canillas1-14/+26
2020-02-13selinux: factor out loop body from filename_trans_read()Ondrej Mosnacek1-59/+63
2020-02-11security: selinux: allow per-file labeling for bpffsConnor O'Brien1-0/+1
2020-02-11selinux: generalize evaluate_cond_node()Ondrej Mosnacek3-6/+12
2020-02-11selinux: convert cond_expr to arrayOndrej Mosnacek2-43/+33
2020-02-11selinux: convert cond_av_list to arrayOndrej Mosnacek2-79/+53
2020-02-11selinux: convert cond_list to arrayOndrej Mosnacek7-59/+43
2020-02-10Merge tag 'selinux-pr-20200210' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds2-10/+4
2020-02-10selinux: sel_avc_get_stat_idx should increase position indexVasily Averin1-0/+1
2020-02-10selinux: allow kernfs symlinks to inherit parent directory contextChristian Göttsche3-2/+13
2020-02-10selinux: simplify evaluate_cond_node()Ondrej Mosnacek3-13/+6
2020-02-10Documentation,selinux: deprecate setting checkreqprot to 1Stephen Smalley3-1/+15
2020-02-10selinux: move status variables out of selinux_ssOndrej Mosnacek6-22/+23
2020-02-08Merge branch 'merge.nfs-fs_parse.1' of git://git.kernel.org/pub/scm/linux/ker...Linus Torvalds2-15/+5
2020-02-07fs_parse: fold fs_parameter_desc/fs_parameter_specAl Viro2-13/+5
2020-02-07fs_parser: remove fs_parameter_description name fieldEric Sandeen2-3/+1
2020-02-06Merge tag 'Smack-for-5.6' of git://github.com/cschaufler/smack-nextLinus Torvalds1-22/+19
2020-02-05selinux: fix sidtab string cache lockingOndrej Mosnacek1-9/+3
2020-02-05selinux: fix typo in filesystem nameHridya Valsaraju1-1/+1
2020-02-05broken ping to ipv6 linklocal addresses on debian busterCasey Schaufler1-22/+19
2020-01-29Merge tag 'linux-kselftest-5.6-rc1-kunit' of git://git.kernel.org/pub/scm/lin...Linus Torvalds3-0/+627
2020-01-29Merge branch 'work.openat2' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-2/+4
2020-01-28Merge branch 'for-v5.6' of git://git.kernel.org:/pub/scm/linux/kernel/git/jmo...Linus Torvalds1-1/+0
2020-01-28Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds12-38/+506
2020-01-28Merge tag 'tomoyo-pr-20200128' of git://git.osdn.net/gitroot/tomoyo/tomoyo-test1Linus Torvalds1-7/+4
2020-01-28Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net-nextLinus Torvalds1-1/+4
2020-01-27Merge tag 'selinux-pr-20200127' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds25-554/+1010
2020-01-27security: remove EARLY_LSM_COUNT which never usedAlex Shi1-1/+0
2020-01-23IMA: Defined delayed workqueue to free the queued keysLakshmi Ramasubramanian3-6/+48
2020-01-23IMA: Call workqueue functions to measure queued keysLakshmi Ramasubramanian2-0/+11
2020-01-23IMA: Define workqueue for early boot key measurementsLakshmi Ramasubramanian4-0/+166
2020-01-22IMA: pre-allocate buffer to hold keyrings stringLakshmi Ramasubramanian1-8/+30
2020-01-22ima: ima/lsm policy rule loading logic bug fixesJanne Karhunen1-18/+26
2020-01-22ima: add the ability to query the cached hash of a given fileFlorent Revest1-0/+49
2020-01-22ima: Add a space after printing LSM rules for readabilityClay Chang1-0/+1
2020-01-20selinux: fix regression introduced by move_mount(2) syscallStephen Smalley1-0/+10
2020-01-16selinux: do not allocate ancillary buffer on first loadOndrej Mosnacek1-15/+13
2020-01-16selinux: remove redundant allocation and helper functionsPaul Moore1-58/+36
2020-01-16selinux: remove redundant selinux_nlmsg_permHuaisheng Ye1-39/+34
2020-01-16selinux: fix wrong buffer types in policydb.cOndrej Mosnacek1-2/+2
2020-01-15net: bridge: vlan: add rtm definitions and dump supportNikolay Aleksandrov1-1/+4
2020-01-10kunit: building kunit as a module breaks allmodconfigAlan Maguire1-1/+1
2020-01-10selinux: reorder hooks to make runtime disable less brokenOndrej Mosnacek1-31/+70
2020-01-10selinux: treat atomic flags more carefullyOndrej Mosnacek3-31/+61
2020-01-10selinux: make default_noexec read-only after initStephen Smalley1-1/+1
2020-01-10selinux: move ibpkeys code under CONFIG_SECURITY_INFINIBAND.Ravi Kumar Siddojigari2-2/+15
2020-01-10selinux: remove redundant msg_msg_alloc_securityHuaisheng Ye1-11/+6
2020-01-09apparmor: add AppArmor KUnit tests for policy unpackMike Salvatore3-0/+627
2020-01-09IMA: fix measuring asymmetric keys KconfigLakshmi Ramasubramanian2-1/+7
2020-01-07Documentation,selinux: fix references to old selinuxfs mount pointStephen Smalley1-3/+4
2020-01-07selinux: deprecate disabling SELinux and runtimePaul Moore2-0/+10
2020-01-06selinux: allow per-file labelling for binderfsHridya Valsaraju1-0/+1
2020-01-06selinuxfs: use scnprintf to get real length for inodeliuyang341-2/+2
2020-01-04Merge tag 'apparmor-pr-2020-01-04' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds5-47/+55
2020-01-04apparmor: fix aa_xattrs_match() may sleep while holding a RCU lockJohn Johansen3-42/+46
2020-01-02apparmor: only get a label reference if the fast path check failsJohn Johansen1-4/+8
2020-01-02apparmor: fix bind mounts aborting with -ENOMEMPatrick Steinhardt1-1/+1
2020-01-02tomoyo: Use atomic_t for statistics counterTetsuo Handa1-7/+4
2019-12-31Merge tag 'tomoyo-fixes-for-5.5' of git://git.osdn.net/gitroot/tomoyo/tomoyo-...Linus Torvalds5-44/+27
2019-12-24selinux: remove set but not used variable 'sidtab'YueHaibing1-8/+0
2019-12-23selinux: ensure the policy has been loaded before reading the sidtab statsPaul Moore1-0/+6
2019-12-21selinux: ensure we cleanup the internal AVC counters on error in avc_update()Jaihind Yadav1-1/+1
2019-12-18selinux: randomize layout of key structuresStephen Smalley4-4/+4
2019-12-18selinux: clean up selinux_enabled/disabled/enforcing_bootStephen Smalley7-18/+17
2019-12-18Merge tag 'tpmdd-next-20191219' of git://git.infradead.org/users/jjs/linux-tpmddLinus Torvalds5-12/+4
2019-12-17security: keys: trusted: fix lost handle flushJames Bottomley1-0/+1
2019-12-16tomoyo: Suppress RCU warning at list_for_each_entry_rcu().Tetsuo Handa4-13/+26
2019-12-12KEYS: remove CONFIG_KEYS_COMPATEric Biggers4-12/+3
2019-12-12IMA: Read keyrings= option from the IMA policyLakshmi Ramasubramanian1-1/+28
2019-12-12IMA: Add support to limit measuring keysLakshmi Ramasubramanian6-17/+82
2019-12-12KEYS: Call the IMA hook to measure keysLakshmi Ramasubramanian1-0/+10
2019-12-12IMA: Define an IMA hook to measure keysLakshmi Ramasubramanian2-0/+53
2019-12-12IMA: Add KEY_CHECK func to measure keysLakshmi Ramasubramanian2-1/+4
2019-12-12IMA: Check IMA policy flagLakshmi Ramasubramanian1-0/+3
2019-12-12ima: avoid appraise error for hash calc interruptPatrick Callaghan1-1/+3
2019-12-12selinux: remove unnecessary selinux cred requestYang Guo1-4/+3
2019-12-11tomoyo: Don't use nifty names on sockets.Tetsuo Handa1-31/+1
2019-12-10selinux: ensure we cleanup the internal AVC counters on error in avc_insert()Paul Moore1-27/+24
2019-12-10security: only build lsm_audit if CONFIG_SECURITY=yStephen Smalley1-1/+1
2019-12-09selinux: clean up selinux_inode_permission MAY_NOT_BLOCK testsStephen Smalley1-4/+4
2019-12-09selinux: fall back to ref-walk if audit is requiredStephen Smalley3-26/+17
2019-12-09selinux: revert "stop passing MAY_NOT_BLOCK to the AVC upon follow_link"Stephen Smalley3-4/+30
2019-12-09security,lockdown,selinux: implement SELinux lockdownStephen Smalley5-27/+70
2019-12-09selinux: cache the SID -> context string translationOndrej Mosnacek4-94/+288
2019-12-09selinux: sidtab reverse lookup hash tableJeff Vander Stoep9-167/+306
2019-12-09treewide: Use sizeof_field() macroPankaj Bharadiya1-2/+2
2019-12-08namei: allow nd_jump_link() to produce errorsAleksa Sarai1-2/+4
2019-12-03Merge tag 'apparmor-pr-2019-12-03' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds15-165/+526
2019-12-01Merge tag 'y2038-cleanups-5.5' of git://git.kernel.org:/pub/scm/linux/kernel/...Linus Torvalds1-7/+3
2019-11-30Merge tag 'selinux-pr-20191126' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds9-5/+74
2019-11-30Merge tag 'powerpc-5.5-1' of git://git.kernel.org/pub/scm/linux/kernel/git/po...Linus Torvalds12-97/+328
2019-11-30Merge tag 'notifications-pipe-prep-20191115' of git://git.kernel.org/pub/scm/...Linus Torvalds1-1/+0
2019-11-29x86/efi: remove unused variablesYueHaibing1-5/+0
2019-11-27Merge tag 'drm-next-2019-11-27' of git://anongit.freedesktop.org/drm/drmLinus Torvalds1-2/+13
2019-11-27Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/netLinus Torvalds1-2/+2
2019-11-26Merge branch 'core-rcu-for-linus' of git://git.kernel.org/pub/scm/linux/kerne...Linus Torvalds1-2/+2
2019-11-26Merge branch 'perf-core-for-linus' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds4-1/+103
2019-11-26net: port < inet_prot_sock(net) --> inet_port_requires_bind_service(net, port)Maciej Żenczykowski1-2/+2
2019-11-25Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net-nextLinus Torvalds1-1/+3
2019-11-22apparmor: make it so work buffers can be allocated from atomic contextJohn Johansen6-38/+62
2019-11-22apparmor: reduce rcu_read_lock scope for aa_file_perm mediationJohn Johansen1-3/+3
2019-11-22apparmor: fix wrong buffer allocation in aa_new_mountJohn Johansen1-4/+4
2019-11-22apparmor: fix unsigned len comparison with less than zeroColin Ian King1-5/+7
2019-11-15y2038: move itimer reset into itimer.cArnd Bergmann1-7/+3
2019-11-14Merge v5.4-rc7 into drm-nextDave Airlie1-0/+1
2019-11-13Merge branch 'topic/secureboot' into nextMichael Ellerman11-92/+326
2019-11-12KEYS: trusted: Remove set but not used variable 'keyhndl'zhengbin1-2/+0
2019-11-12KEYS: trusted: Move TPM2 trusted keys codeSumit Garg3-2/+317
2019-11-12KEYS: trusted: Create trusted keys subsystemSumit Garg3-2/+9
2019-11-12KEYS: Use common tpm_buf for trusted and asymmetric keysSumit Garg1-55/+43
2019-11-12tpm: Move tpm_buf code to include/linux/Sumit Garg1-6/+6
2019-11-13powerpc: Load firmware trusted keys/hashes into kernel keyringNayna Jain3-1/+108
2019-11-13x86/efi: move common keyring handler functions to new fileNayna Jain4-67/+115
2019-11-12ima: Check against blacklisted hashes for files with modsigNayna Jain5-6/+60
2019-11-12ima: Make process_buffer_measurement() genericNayna Jain2-18/+43
2019-11-11Merge tag 'v5.4-rc7' into perf/core, to pick up fixesIngo Molnar1-0/+1
2019-11-02Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/netDavid S. Miller1-0/+1
2019-10-31efi/efi_test: Lock down /dev/efi_test and require CAP_SYS_ADMINJavier Martinez Canillas1-0/+1
2019-10-31Merge branch 'for-mingo' of git://git.kernel.org/pub/scm/linux/kernel/git/pau...Ingo Molnar1-2/+2
2019-10-30security/safesetid: Replace rcu_swap_protected() with rcu_replace_pointer()Paul E. McKenney1-2/+2
2019-10-28powerpc/xmon: Restrict when kernel is locked downChristopher M. Riedl1-0/+2
2019-10-26Merge tag 'drm-next-5.5-2019-10-09' of git://people.freedesktop.org/~agd5f/li...Dave Airlie1-2/+13
2019-10-23pipe: Reduce #inclusion of pipe_fs_i.hDavid Howells1-1/+0
2019-10-20Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/netDavid S. Miller1-1/+8
2019-10-17perf_event: Add support for LSM and SELinux checksJoel Fernandes (Google)4-1/+103
2019-10-08Merge tag 'selinux-pr-20191007' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-1/+8
generated by cgit 1.2.3-korg (git 2.39.0) at 2024-05-15 13:35:47 +0000