index
:
kernel/git/mraynal/linux.git
master
nand/next
Kernel tree
Miquel Raynal
about
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
security
Age
Commit message (
Expand
)
Author
Files
Lines
2019-03-18
selinux: fix NULL dereference in policydb_destroy()
Ondrej Mosnacek
1
-4
/
+9
2019-03-13
Merge tag 'selinux-pr-20190312' of git://git.kernel.org/pub/scm/linux/kernel/...
Linus Torvalds
1
-1
/
+7
2019-03-13
Merge tag 'apparmor-pr-2019-03-12' of git://git.kernel.org/pub/scm/linux/kern...
Linus Torvalds
2
-0
/
+2
2019-03-12
Merge branch 'work.mount' of git://git.kernel.org/pub/scm/linux/kernel/git/vi...
Linus Torvalds
5
-25
/
+194
2019-03-12
selinux: convert to kvmalloc
Kent Overstreet
6
-144
/
+62
2019-03-12
apparmor: fix double free when unpack of secmark rules fails
John Johansen
1
-0
/
+1
2019-03-12
apparmor: delete the dentry in aafs_remove() to avoid a leak
Chris Coulson
1
-0
/
+1
2019-03-11
security/selinux: fix SECURITY_LSM_NATIVE_LABELS on reused superblock
J. Bruce Fields
1
-1
/
+4
2019-03-11
selinux: add the missing walk_size + len check in selinux_sctp_bind_connect
Xin Long
1
-0
/
+3
2019-03-10
Merge branch 'next-tpm' of git://git.kernel.org/pub/scm/linux/kernel/git/jmor...
Linus Torvalds
5
-25
/
+90
2019-03-10
Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi...
Linus Torvalds
5
-11
/
+40
2019-03-09
Merge tag 'docs-5.1' of git://git.lwn.net/linux
Linus Torvalds
1
-1
/
+1
2019-03-07
Merge tag 'audit-pr-20190305' of git://git.kernel.org/pub/scm/linux/kernel/gi...
Linus Torvalds
9
-22
/
+12
2019-03-07
Merge tag 'selinux-pr-20190305' of git://git.kernel.org/pub/scm/linux/kernel/...
Linus Torvalds
5
-127
/
+176
2019-03-07
Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/...
Linus Torvalds
58
-965
/
+2018
2019-03-04
keys: fix missing __user in KEYCTL_PKEY_QUERY
Ben Dooks
1
-1
/
+1
2019-03-04
get rid of legacy 'get_ds()' function
Linus Torvalds
1
-1
/
+1
2019-03-01
LSM: Update list of SECURITYFS users in Kconfig
Petr Vorel
1
-2
/
+1
2019-02-28
introduce cloning of fs_context
Al Viro
3
-0
/
+93
2019-02-28
smack: Implement filesystem context security hooks
David Howells
2
-15
/
+47
2019-02-28
selinux: Implement the new mount API LSM hooks
David Howells
2
-10
/
+49
2019-02-28
vfs: Add LSM hooks for the new mount API
David Howells
1
-0
/
+5
2019-02-25
LSM: Ignore "security=" when "lsm=" is specified
Kees Cook
1
-2
/
+6
2019-02-25
LSM: Update function documentation for cap_capable
Micah Morton
1
-1
/
+1
2019-02-24
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
Linus Torvalds
1
-4
/
+6
2019-02-22
KEYS: always initialize keyring_index_key::desc_len
Eric Biggers
4
-6
/
+4
2019-02-22
security: mark expected switch fall-throughs and add a missing break
Gustavo A. R. Silva
5
-3
/
+8
2019-02-22
doc: sctp: Merge and clean up rst files
Kees Cook
1
-1
/
+1
2019-02-20
missing barriers in some of unix_sock ->addr and ->path accesses
Al Viro
1
-4
/
+6
2019-02-19
tomoyo: Bump version.
Tetsuo Handa
2
-8
/
+13
2019-02-15
keys: Timestamp new keys
David Howells
1
-0
/
+1
2019-02-15
keys: Fix dependency loop between construction record and auth key
David Howells
5
-62
/
+41
2019-02-15
KEYS: allow reaching the keys quotas exactly
Eric Biggers
1
-2
/
+2
2019-02-14
Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi...
James Morris
5
-11
/
+40
2019-02-13
Merge tag 'tpmdd-next-20190213' of git://git.infradead.org/users/jjs/linux-tp...
James Morris
5
-25
/
+90
2019-02-13
tpm: pass an array of tpm_extend_digest structures to tpm_pcr_extend()
Roberto Sassu
4
-9
/
+64
2019-02-13
KEYS: trusted: explicitly use tpm_chip structure from tpm_default_chip()
Roberto Sassu
1
-14
/
+24
2019-02-13
tpm: retrieve digest size of unknown algorithms with PCR read
Roberto Sassu
1
-5
/
+5
2019-02-12
LSM: fix return value check in safesetid_init_securityfs()
Wei Yongjun
1
-1
/
+1
2019-02-05
selinux: fix avc audit messages
Stephen Smalley
1
-3
/
+3
2019-02-04
evm: Use defined constant for UUID representation
Andy Shevchenko
1
-2
/
+1
2019-02-04
ima: define ima_post_create_tmpfile() hook and add missing call
Mimi Zohar
1
-2
/
+33
2019-02-04
evm: remove set but not used variable 'xattr'
YueHaibing
1
-5
/
+1
2019-02-04
encrypted-keys: fix Opt_err/Opt_error = -1
Mimi Zohar
1
-2
/
+2
2019-02-04
integrity, KEYS: add a reference to platform keyring
Kairui Song
1
-0
/
+3
2019-02-01
apparmor: Fix aa_label_build() error handling for failed merges
John Johansen
1
-1
/
+4
2019-02-01
apparmor: Fix warning about unused function apparmor_ipv6_postroute
Petr Vorel
1
-0
/
+2
2019-01-31
audit: remove unused actx param from audit_rule_match
Richard Guy Briggs
8
-22
/
+10
2019-01-30
LSM: SafeSetID: remove unused include
Micah Morton
1
-1
/
+0
2019-01-29
LSM: SafeSetID: 'depend' on CONFIG_SECURITY
Micah Morton
1
-0
/
+2
2019-01-28
selinux: replace BUG_ONs with WARN_ONs in avc.c
Ondrej Mosnacek
1
-2
/
+4
2019-01-28
LSM: Add 'name' field for SafeSetID in DEFINE_LSM
Micah Morton
1
-0
/
+1
2019-01-25
selinux: log invalid contexts in AVCs
Ondrej Mosnacek
3
-5
/
+50
2019-01-25
selinux: replace some BUG_ON()s with a WARN_ON()
Ondrej Mosnacek
1
-2
/
+3
2019-01-25
selinux: inline some AVC functions used only once
Ondrej Mosnacek
1
-82
/
+58
2019-01-25
LSM: add SafeSetID module that gates setid calls
Micah Morton
7
-1
/
+526
2019-01-25
audit: add support for fcaps v3
Richard Guy Briggs
1
-0
/
+2
2019-01-24
tomoyo: Allow multiple use_group lines.
Tetsuo Handa
3
-22
/
+42
2019-01-24
tomoyo: Coding style fix.
Tetsuo Handa
15
-105
/
+309
2019-01-23
tomoyo: Swicth from cred->security to task_struct->security.
Tetsuo Handa
5
-122
/
+108
2019-01-22
security: keys: annotate implicit fall throughs
Mathieu Malaterre
1
-0
/
+4
2019-01-22
security: keys: annotate implicit fall throughs
Mathieu Malaterre
1
-0
/
+3
2019-01-22
security: keys: annotate implicit fall through
Mathieu Malaterre
1
-0
/
+1
2019-01-22
apparmor: Adjust offset when accessing task blob.
Tetsuo Handa
1
-1
/
+1
2019-01-22
Merge tag 'v5.0-rc3' into next-general
James Morris
3
-2
/
+12
2019-01-18
LSM: Make some functions static
Wei Yongjun
1
-3
/
+3
2019-01-18
LSM: Make lsm_early_cred() and lsm_early_task() local functions.
Tetsuo Handa
5
-22
/
+11
2019-01-17
Merge branch 'fixes-v5.0-rc2' of git://git.kernel.org/pub/scm/linux/kernel/gi...
Linus Torvalds
2
-1
/
+10
2019-01-16
LSM: Check for NULL cred-security on free
James Morris
1
-0
/
+7
2019-01-16
Yama: Check for pid death before checking ancestry
Kees Cook
1
-1
/
+3
2019-01-16
Merge tag 'selinux-pr-20190115' of git://git.kernel.org/pub/scm/linux/kernel/...
Linus Torvalds
1
-1
/
+2
2019-01-10
selinux: do not override context on context mounts
Ondrej Mosnacek
1
-1
/
+8
2019-01-10
selinux: never allow relabeling on context mounts
Ondrej Mosnacek
1
-9
/
+31
2019-01-10
selinux: stop passing MAY_NOT_BLOCK to the AVC upon follow_link
Stephen Smalley
3
-30
/
+4
2019-01-10
selinux: avoid silent denials in permissive mode under RCU walk
Stephen Smalley
3
-3
/
+25
2019-01-10
selinux: fix GPF on invalid policy
Stephen Smalley
1
-1
/
+2
2019-01-10
LSM: generalize flag passing to security_capable
Micah Morton
9
-39
/
+37
2019-01-08
TOMOYO: Update LSM flags to no longer be exclusive
Kees Cook
1
-1
/
+1
2019-01-08
LSM: Infrastructure management of the ipc security blob
Casey Schaufler
5
-121
/
+108
2019-01-08
Smack: Abstract use of ipc security blobs
Casey Schaufler
2
-5
/
+20
2019-01-08
SELinux: Abstract use of ipc security blobs
Casey Schaufler
2
-9
/
+22
2019-01-08
LSM: Infrastructure management of the task security
Casey Schaufler
3
-27
/
+60
2019-01-08
LSM: Infrastructure management of the inode security
Casey Schaufler
5
-98
/
+90
2019-01-08
Smack: Abstract use of inode security blob
Casey Schaufler
2
-18
/
+23
2019-01-08
SELinux: Abstract use of inode security blob
Casey Schaufler
3
-15
/
+21
2019-01-08
LSM: Infrastructure management of the file security
Casey Schaufler
7
-51
/
+71
2019-01-08
Smack: Abstract use of file security blob
Casey Schaufler
2
-4
/
+13
2019-01-08
SELinux: Abstract use of file security blob
Casey Schaufler
2
-9
/
+14
2019-01-08
Infrastructure management of the cred security blob
Casey Schaufler
10
-102
/
+150
2019-01-08
TOMOYO: Abstract use of cred security blob
Casey Schaufler
4
-16
/
+64
2019-01-08
AppArmor: Abstract use of cred security blob
Casey Schaufler
4
-10
/
+24
2019-01-08
SELinux: Remove unused selinux_is_enabled
Casey Schaufler
5
-29
/
+1
2019-01-08
SELinux: Remove cred security blob poisoning
Casey Schaufler
1
-6
/
+0
2019-01-08
SELinux: Abstract use of cred security blob
Casey Schaufler
3
-29
/
+34
2019-01-08
Smack: Abstract use of cred security blob
Casey Schaufler
4
-43
/
+53
2019-01-08
procfs: add smack subdir to attrs
Casey Schaufler
1
-4
/
+20
2019-01-08
capability: Initialize as LSM_ORDER_FIRST
Kees Cook
2
-6
/
+8
2019-01-08
LSM: Introduce enum lsm_order
Kees Cook
1
-1
/
+8
2019-01-08
Yama: Initialize as ordered LSM
Kees Cook
3
-3
/
+8
2019-01-08
LoadPin: Initialize as ordered LSM
Kees Cook
3
-40
/
+8
2019-01-08
LSM: Split LSM preparation from initialization
Kees Cook
1
-6
/
+15
2019-01-08
LSM: Add all exclusive LSMs to ordered initialization
Casey Schaufler
1
-25
/
+20
2019-01-08
selinux: Remove SECURITY_SELINUX_BOOTPARAM_VALUE
Kees Cook
2
-19
/
+1
2019-01-08
apparmor: Remove SECURITY_APPARMOR_BOOTPARAM_VALUE
Kees Cook
2
-17
/
+1
2019-01-08
LSM: Separate idea of "major" LSM from "exclusive" LSM
Kees Cook
5
-4
/
+16
2019-01-08
LSM: Refactor "security=" in terms of enable/disable
Kees Cook
1
-8
/
+20
2019-01-08
LSM: Prepare for reorganizing "security=" logic
Kees Cook
1
-9
/
+8
2019-01-08
LSM: Tie enabling logic to presence in ordered list
Kees Cook
1
-3
/
+11
2019-01-08
LSM: Introduce "lsm=" for boottime LSM selection
Kees Cook
2
-2
/
+15
2019-01-08
LSM: Introduce CONFIG_LSM
Kees Cook
2
-5
/
+31
2019-01-08
LSM: Build ordered list of LSMs to initialize
Kees Cook
1
-5
/
+53
2019-01-08
LSM: Lift LSM selection out of individual LSMs
Kees Cook
5
-52
/
+71
2019-01-08
LSM: Plumb visibility into optional "enabled" state
Kees Cook
2
-2
/
+4
2019-01-08
LSM: Provide separate ordered initialization
Kees Cook
1
-0
/
+21
2019-01-08
LSM: Introduce LSM_FLAG_LEGACY_MAJOR
Kees Cook
4
-0
/
+4
2019-01-05
Merge branch 'mount.part1' of git://git.kernel.org/pub/scm/linux/kernel/git/v...
Linus Torvalds
6
-741
/
+459
2019-01-03
Remove 'type' argument from access_ok() function
Linus Torvalds
1
-1
/
+1
2019-01-02
Merge branch 'next-tpm' of git://git.kernel.org/pub/scm/linux/kernel/git/jmor...
Linus Torvalds
1
-2
/
+3
2019-01-02
Merge branch 'next-smack' of git://git.kernel.org/pub/scm/linux/kernel/git/jm...
Linus Torvalds
1
-3
/
+9
2019-01-02
Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi...
Linus Torvalds
11
-92
/
+633
2019-01-01
KEYS: fix parsing invalid pkey info string
Eric Biggers
1
-0
/
+2
2018-12-29
Merge tag 'kconfig-v4.21' of git://git.kernel.org/pub/scm/linux/kernel/git/ma...
Linus Torvalds
2
-10
/
+10
2018-12-28
Merge branch 'akpm' (patches from Andrew)
Linus Torvalds
1
-1
/
+1
2018-12-28
Merge tag 'libnvdimm-for-4.21' of git://git.kernel.org/pub/scm/linux/kernel/g...
Linus Torvalds
3
-11
/
+21
2018-12-28
mm: convert totalram_pages and totalhigh_pages variables to atomic
Arun KS
1
-1
/
+1
2018-12-27
Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert...
Linus Torvalds
4
-7
/
+6
2018-12-27
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next
Linus Torvalds
1
-2
/
+2
2018-12-27
Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/...
Linus Torvalds
29
-39
/
+22
2018-12-27
Merge tag 'selinux-pr-20181224' of git://git.kernel.org/pub/scm/linux/kernel/...
Linus Torvalds
9
-396
/
+625
2018-12-27
Merge tag 'audit-pr-20181224' of git://git.kernel.org/pub/scm/linux/kernel/gi...
Linus Torvalds
1
-1
/
+1
2018-12-21
smack: rewrite smack_sb_eat_lsm_opts()
Al Viro
1
-85
/
+23
2018-12-21
smack: get rid of match_token()
Al Viro
1
-18
/
+38
2018-12-21
smack: take the guts of smack_parse_opts_str() into a new helper
Al Viro
1
-57
/
+57
2018-12-21
LSM: new method: ->sb_add_mnt_opt()
Al Viro
3
-30
/
+24
2018-12-21
selinux: rewrite selinux_sb_eat_lsm_opts()
Al Viro
1
-92
/
+54
2018-12-21
selinux: regularize Opt_... names a bit
Al Viro
1
-8
/
+8
2018-12-21
selinux: switch away from match_token()
Al Viro
1
-27
/
+55
2018-12-21
selinux: new helper - selinux_add_opt()
Al Viro
1
-73
/
+53
2018-12-21
smack: switch to private smack_mnt_opts
Al Viro
1
-102
/
+55
2018-12-21
selinux: switch to private struct selinux_mnt_opts
Al Viro
1
-161
/
+101
2018-12-21
LSM: hide struct security_mnt_opts from any generic code
Al Viro
3
-32
/
+85
2018-12-21
selinux: kill selinux_sb_get_mnt_opts()
Al Viro
1
-147
/
+51
2018-12-21
LSM: turn sb_eat_lsm_opts() into a method
Al Viro
3
-12
/
+31
2018-12-21
btrfs: sanitize security_mnt_opts use
Al Viro
1
-0
/
+1
2018-12-21
selinux; don't open-code a loop in sb_finish_set_opts()
Al Viro
1
-4
/
+2
2018-12-21
LSM: split ->sb_set_mnt_opts() out of ->sb_kern_mount()
Al Viro
3
-27
/
+3
2018-12-21
new helper: security_sb_eat_lsm_opts()
Al Viro
1
-3
/
+12
2018-12-21
LSM: lift extracting and parsing LSM options into the caller of ->sb_remount()
Al Viro
2
-37
/
+15
2018-12-21
LSM: lift parsing LSM options into the caller of ->sb_kern_mount()
Al Viro
3
-43
/
+9
2018-12-21
smack: make smack_parse_opts_str() clean up on failure
Al Viro
1
-0
/
+1
2018-12-22
treewide: surround Kconfig file paths with double quotes
Masahiro Yamada
2
-10
/
+10
2018-12-20
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
David S. Miller
3
-7
/
+7
2018-12-20
security: integrity: partial revert of make ima_main explicitly non-modular
Paul Gortmaker
1
-1
/
+1
2018-12-20
selinux: expand superblock_doinit() calls
Al Viro
1
-30
/
+24
2018-12-20
vfs: Suppress MS_* flag defs within the kernel unless explicitly enabled
David Howells
4
-0
/
+4
2018-12-19
net: use skb_sec_path helper in more places
Florian Westphal
1
-2
/
+2
2018-12-17
ima: cleanup the match_token policy code
Mimi Zohar
1
-5
/
+5
2018-12-17
security: don't use a negative Opt_err token index
Linus Torvalds
2
-2
/
+2
2018-12-17
integrity: Remove references to module keyring
Thiago Jung Bauermann
2
-4
/
+2
2018-12-17
Merge tag 'tpmdd-next-20181217' of git://git.infradead.org/users/jjs/linux-tp...
James Morris
1
-2
/
+3
2018-12-17
Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi...
James Morris
11
-91
/
+634
2018-12-17
Merge tag 'v4.20-rc7' into next-general
James Morris
4
-4
/
+23
2018-12-13
Merge branch 'smack-for-4.21-a' of https://github.com/cschaufler/next-smack i...
James Morris
1
-3
/
+9
2018-12-13
keys-encrypted: add nvdimm key format type to encrypted keys
Dave Jiang
1
-9
/
+20
2018-12-13
keys: Export lookup_user_key to external users
Dave Jiang
2
-2
/
+1
2018-12-12
ima: Use inode_is_open_for_write
Nikolay Borisov
1
-1
/
+1
2018-12-12
ima: Support platform keyring for kernel appraisal
Nayna Jain
1
-2
/
+12
2018-12-12
efi: Allow the "db" UEFI variable to be suppressed
Josh Boyer
1
-10
/
+35
2018-12-12
efi: Import certificates from UEFI Secure Boot
Josh Boyer
2
-1
/
+173
2018-12-12
efi: Add an EFI signature blob parser
Dave Howells
2
-1
/
+110
2018-12-12
integrity: Load certs to the platform keyring
Nayna Jain
3
-24
/
+86
2018-12-12
integrity: Define a trusted platform keyring
Nayna Jain
5
-16
/
+81
2018-12-12
security: fs: make inode explicitly non-modular
Paul Gortmaker
1
-4
/
+2
2018-12-12
security: audit and remove any unnecessary uses of module.h
Paul Gortmaker
24
-24
/
+14
2018-12-12
security: integrity: make evm_main explicitly non-modular
Paul Gortmaker
1
-4
/
+1
2018-12-12
keys: remove needless modular infrastructure from ecryptfs_format
Paul Gortmaker
1
-3
/
+2
2018-12-12
security: integrity: make ima_main explicitly non-modular
Paul Gortmaker
1
-4
/
+3
2018-12-11
ima: don't measure/appraise files on efivarfs
Mimi Zohar
1
-1
/
+3
2018-12-11
x86/ima: define arch_get_ima_policy() for x86
Eric Richter
1
-1
/
+9
2018-12-11
ima: add support for arch specific policies
Nayna Jain
1
-2
/
+70
2018-12-11
ima: refactor ima_init_policy()
Nayna Jain
1
-41
/
+56
2018-12-11
ima: prevent kexec_load syscall based on runtime secureboot flag
Nayna Jain
1
-6
/
+13
2018-12-05
selinux: overhaul sidtab to fix bug and improve performance
Ondrej Mosnacek
5
-324
/
+468
2018-12-05
selinux: use separate table for initial SID lookup
Ondrej Mosnacek
5
-110
/
+173
2018-12-03
smack: fix access permissions for keyring
Zoran Markovic
1
-3
/
+9
2018-11-29
Merge tag 'selinux-pr-20181129' of git://git.kernel.org/pub/scm/linux/kernel/...
Linus Torvalds
1
-1
/
+12
2018-11-29
selinux: add support for RTM_NEWCHAIN, RTM_DELCHAIN, and RTM_GETCHAIN
Paul Moore
1
-1
/
+12
2018-11-26
audit: use current whenever possible
Paul Moore
1
-1
/
+1
2018-11-26
selinux: make "selinux_policycap_names[]" const char *
Alexey Dobriyan
2
-2
/
+2
2018-11-26
selinux: always allow mounting submounts
Ondrej Mosnacek
1
-1
/
+1
2018-11-20
selinux: refactor sidtab conversion
Ondrej Mosnacek
3
-41
/
+42
2018-11-20
crypto: drop mask=CRYPTO_ALG_ASYNC from 'shash' tfm allocations
Eric Biggers
4
-7
/
+6
2018-11-15
Merge tag 'selinux-pr-20181115' of git://git.kernel.org/pub/scm/linux/kernel/...
Linus Torvalds
2
-3
/
+10
2018-11-14
apparmor: Fix warning about unused function apparmor_ipv6_postroute
Petr Vorel
1
-0
/
+2
2018-11-13
selinux: fix non-MLS handling in mls_context_to_sid()
Paul Moore
1
-3
/
+7
2018-11-13
integrity: support new struct public_key_signature encoding field
Mimi Zohar
1
-0
/
+1
2018-11-13
selinux: check length properly in SCTP bind hook
Ondrej Mosnacek
1
-0
/
+3
2018-11-13
integrity: support new struct public_key_signature encoding field
Mimi Zohar
1
-0
/
+1
2018-11-13
tpm: use u32 instead of int for PCR index
Tomas Winkler
1
-2
/
+3
2018-11-12
Merge tag 'v4.20-rc2' into next-general
James Morris
39
-326
/
+880
[next]