aboutsummaryrefslogtreecommitdiffstats
path: root/security
AgeCommit message (Expand)AuthorFilesLines
2018-08-24Merge tag 'apparmor-pr-2018-08-23' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds7-44/+20
2018-08-24Merge branch 'userns-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-1/+1
2018-08-22apparmor: remove no-op permission check in policy_unpackJohn Johansen1-32/+0
2018-08-22init: allow initcall tables to be emitted using relative referencesArd Biesheuvel1-7/+10
2018-08-21apparmor: fix an error code in __aa_create_ns()Dan Carpenter1-1/+1
2018-08-15Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds12-46/+108
2018-08-15Merge branch 'next-tpm' of git://git.kernel.org/pub/scm/linux/kernel/git/jmor...Linus Torvalds4-16/+10
2018-08-15Merge branch 'next-smack' of git://git.kernel.org/pub/scm/linux/kernel/git/jm...Linus Torvalds1-6/+16
2018-08-15Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert...Linus Torvalds1-1/+1
2018-08-15Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-nextLinus Torvalds1-1/+1
2018-08-15Merge tag 'kbuild-v4.19' of git://git.kernel.org/pub/scm/linux/kernel/git/mas...Linus Torvalds1-1/+1
2018-08-15Merge tag 'selinux-pr-20180814' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds13-189/+198
2018-08-15Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds7-17/+192
2018-08-15Merge tag 'hardened-usercopy-v4.19-rc1' of git://git.kernel.org/pub/scm/linux...Linus Torvalds1-1/+0
2018-08-13Merge branch 'work.open3' of git://git.kernel.org/pub/scm/linux/kernel/git/vi...Linus Torvalds8-22/+22
2018-08-11cap_inode_getsecurity: use d_find_any_alias() instead of d_find_alias()Eddie.Horng1-1/+1
2018-08-07selinux: cleanup dentry and inodes on error in selinuxfsnixiaoming1-8/+25
2018-08-03Merge git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linuxHerbert Xu3-47/+38
2018-07-30Merge branch 'smack-for-4.19-a' of https://github.com/cschaufler/next-smack i...James Morris1-6/+16
2018-07-28ima: Get rid of ima_used_chip and use ima_tpm_chip != NULL insteadStefan Berger4-8/+4
2018-07-28ima: Use tpm_default_chip() and call TPM functions with a tpm_chipStefan Berger4-9/+7
2018-07-23net: sched: introduce chain object to uapiJiri Pirko1-1/+1
2018-07-23Smack: Inform peer that IPv6 traffic has been blockedPiotr Sawicki1-0/+4
2018-07-23Smack: Check UDP-Lite and DCCP protocols during IPv6 handlingPiotr Sawicki1-1/+3
2018-07-23Smack: Fix handling of IPv4 traffic received by PF_INET6 socketsPiotr Sawicki1-5/+9
2018-07-22EVM: fix return value check in evm_write_xattrs()Wei Yongjun1-2/+2
2018-07-20apparmor: Fix failure to audit context info in build_change_hatJohn Johansen1-1/+1
2018-07-19apparmor: Fully initialize aa_perms struct when answering userspace queryTyler Hicks1-4/+1
2018-07-19apparmor: Check buffer bounds when mapping permissions maskTyler Hicks3-6/+17
2018-07-20x86/pti: Allow CONFIG_PAGE_TABLE_ISOLATION for x86_32Joerg Roedel1-1/+1
2018-07-18integrity: prevent deadlock during digsig verification.Mikhail Kurinnoi2-1/+29
2018-07-18evm: Allow non-SHA1 digital signaturesMatthew Garrett4-31/+46
2018-07-18evm: Don't deadlock if a crypto algorithm is unavailableMatthew Garrett1-1/+2
2018-07-18integrity: silence warning when CONFIG_SECURITYFS is not enabledSudeep Holla1-3/+6
2018-07-18ima: Differentiate auditing policy rules from "audit" actionsStefan Berger1-2/+2
2018-07-18ima: Do not audit if CONFIG_INTEGRITY_AUDIT is not setStefan Berger3-1/+21
2018-07-18ima: Use audit_log_format() rather than audit_log_string()Stefan Berger2-7/+2
2018-07-18ima: Call audit_log_string() rather than logging it untrustedStefan Berger1-1/+1
2018-07-17security: check for kstrdup() failure in lsm_append()Eric Biggers1-0/+2
2018-07-17security: export security_kernel_load_data functionArnd Bergmann1-0/+1
2018-07-17selinux: constify write_op[]Eric Biggers1-1/+1
2018-07-18kbuild: move bin2c back to scripts/ from scripts/basic/Masahiro Yamada1-1/+1
2018-07-16ima: based on policy warn about loading firmware (pre-allocated buffer)Mimi Zohar1-0/+8
2018-07-16module: replace the existing LSM hook in init_moduleMimi Zohar3-13/+31
2018-07-16ima: add build time policyMimi Zohar2-3/+101
2018-07-16ima: based on policy require signed firmware (sysfs fallback)Mimi Zohar1-1/+9
2018-07-16ima: based on policy require signed kexec kernel imagesMimi Zohar4-1/+36
2018-07-16security: define new LSM hook named security_kernel_load_dataMimi Zohar1-0/+5
2018-07-12IMA: don't propagate opened through the entire thingAl Viro3-12/+12
2018-07-12->file_open(): lose cred argumentAl Viro5-9/+9
2018-07-12security_file_open(): lose cred argumentAl Viro1-2/+2
2018-07-09crypto: remove redundant type flags from tfm allocationEric Biggers1-1/+1
2018-07-02usercopy: Do not select BUG with HARDENED_USERCOPYKamal Mostafa1-1/+0
2018-06-30Merge tag 'selinux-pr-20180629' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-45/+33
2018-06-28selinux: move user accesses in selinuxfs out of locked regionsJann Horn1-45/+33
2018-06-26dh key: fix rounding up KDF output lengthEric Biggers1-2/+4
2018-06-23Smack: Mark inode instant in smack_task_to_inodeCasey Schaufler1-0/+1
2018-06-19selinux: Cleanup printk logging in netnodepeter enderborg1-3/+2
2018-06-19selinux: Cleanup printk logging in avcpeter enderborg1-1/+1
2018-06-19selinux: Cleanup printk logging in netifpeter enderborg1-7/+4
2018-06-19selinux: Cleanup printk logging in netportpeter enderborg1-3/+2
2018-06-19selinux: Cleanup printk logging in sidtabpeter enderborg1-3/+2
2018-06-19selinux: Cleanup printk logging in netlinkpeter enderborg1-1/+1
2018-06-19selinux: Cleanup printk logging in selinuxfspeter enderborg1-5/+5
2018-06-19selinux: Cleanup printk logging in servicespeter enderborg1-36/+35
2018-06-19selinux: Cleanup printk logging in avtabpeter enderborg1-25/+26
2018-06-19selinux: Cleanup printk logging in hookspeter enderborg1-35/+33
2018-06-19selinux: Cleanup printk logging in policydbpeter enderborg1-45/+46
2018-06-19selinux: Cleanup printk logging in ebitmappeter enderborg1-8/+7
2018-06-19selinux: Cleanup printk logging in conditionalpeter enderborg1-8/+8
2018-06-15docs: Fix some broken referencesMauro Carvalho Chehab1-1/+1
2018-06-15docs: fix broken references with multiple hintsMauro Carvalho Chehab1-1/+1
2018-06-14Merge tag 'apparmor-pr-2018-06-13' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds14-71/+310
2018-06-12treewide: kzalloc() -> kcalloc()Kees Cook2-2/+2
2018-06-12treewide: kmalloc() -> kmalloc_array()Kees Cook1-1/+1
2018-06-07Merge branch 'next-smack' of git://git.kernel.org/pub/scm/linux/kernel/git/jm...Linus Torvalds1-7/+5
2018-06-07Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds13-83/+362
2018-06-07apparmor: fix ptrace read checkJohn Johansen1-1/+2
2018-06-07apparmor: fix memory leak when deduping profile loadJohn Johansen1-0/+3
2018-06-07apparmor: fix mediation of prlimitJohn Johansen1-1/+1
2018-06-07apparmor: fixup secid map conversion to using IDRJohn Johansen4-8/+29
2018-06-07apparmor: Use an IDR to allocate apparmor secidsMatthew Wilcox1-103/+11
2018-06-07apparmor: Fix memory leak of rule on error exit pathTyler Hicks1-2/+4
2018-06-07apparmor: modify audit rule support to support profile stacksJohn Johansen1-17/+10
2018-06-07apparmor: Add support for audit rule filteringMatthew Garrett3-1/+107
2018-06-07apparmor: Convert to use match_string() helperAndy Shevchenko1-14/+11
2018-06-07apparmor: improve get_buffers macro by using get_cpu_ptrJohn Johansen1-17/+16
2018-06-06Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-nextLinus Torvalds2-2/+6
2018-06-06Merge tag 'audit-pr-20180605' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds6-14/+17
2018-06-06Merge tag 'selinux-pr-20180605' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-6/+12
2018-06-06Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds5-23/+64
2018-06-05Merge branch 'smack-for-4.18' of https://github.com/cschaufler/next-smack int...James Morris1-7/+5
2018-06-05Smack: Fix memory leak in smack_inode_getsecctxCasey Schaufler1-7/+5
2018-06-04Merge branch 'userns-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds2-3/+8
2018-06-04Merge branch 'work.misc' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds1-4/+3
2018-06-04Merge branch 'hch.procfs' of git://git.kernel.org/pub/scm/linux/kernel/git/vi...Linus Torvalds1-32/+2
2018-06-03Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netDavid S. Miller1-1/+1
2018-06-01EVM: unlock on error path in evm_read_xattrs()Dan Carpenter1-1/+3
2018-05-31EVM: prevent array underflow in evm_write_xattrs()Dan Carpenter1-1/+1
2018-05-31EVM: Fix null dereference on xattr when xattr fails to allocateColin Ian King1-2/+4
2018-05-31EVM: fix memory leak of temporary buffer 'temp'Colin Ian King1-0/+2
2018-05-31IMA: use list_splice_tail_init_rcu() instead of its open coded variantPetko Manolov1-15/+2
2018-05-31ima: use match_string() helperYisheng Xie1-7/+4
2018-05-30Merge tag 'selinux-pr-20180530' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-1/+1
2018-05-29selinux: KASAN: slab-out-of-bounds in xattr_getsecuritySachin Grover1-1/+1
2018-05-26Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netDavid S. Miller1-4/+16
2018-05-24capabilities: Allow privileged user in s_user_ns to set security.* xattrsEric W. Biederman1-2/+6
2018-05-22ima: fix updating the ima_appraise flagMimi Zohar1-9/+19
2018-05-22ima: based on policy verify firmware signatures (pre-allocated buffer)Mimi Zohar1-0/+1
2018-05-22ima: define a new policy condition based on the filesystem nameMimi Zohar1-1/+24
2018-05-21Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netDavid S. Miller1-22/+28
2018-05-21Merge branch 'fixes' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfsLinus Torvalds1-4/+16
2018-05-18EVM: Allow runtime modification of the set of verified xattrsMatthew Garrett4-4/+188
2018-05-18EVM: turn evm_config_xattrnames into a listMatthew Garrett3-39/+57
2018-05-17Merge tag 'selinux-pr-20180516' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-22/+28
2018-05-17integrity: Add an integrity directory in securityfsMatthew Garrett4-4/+52
2018-05-17ima: Remove unused variable ima_initializedPetr Vorel2-6/+2
2018-05-17ima: Unify loggingPetr Vorel3-2/+9
2018-05-17ima: Reflect correct permissions for policyPetr Vorel1-0/+2
2018-05-16proc: introduce proc_create_seq{,_data}Christoph Hellwig1-32/+2
2018-05-14audit: use inline function to get audit contextRichard Guy Briggs6-14/+17
2018-05-14selinux: correctly handle sa_family cases in selinux_sctp_bind_connect()Alexey Kodanev1-1/+2
2018-05-14selinux: fix address family in bind() and connect() to match address/portAlexey Kodanev1-11/+7
2018-05-14selinux: add AF_UNSPEC and INADDR_ANY checks to selinux_socket_bind()Alexey Kodanev1-10/+19
2018-05-14__inode_security_revalidate() never gets NULL opt_dentryAl Viro1-4/+3
2018-05-13fix breakage caused by d_find_alias() semantics changeAl Viro1-4/+16
2018-05-11dh key: get rid of stack allocated array for zeroesTycho Andersen1-3/+3
2018-05-11dh key: get rid of stack allocated arrayTycho Andersen1-19/+10
2018-05-11big key: get rid of stack array allocationTycho Andersen1-1/+10
2018-05-08apparmor: fix '*seclen' is never less than zeroJohn Johansen1-9/+11
2018-05-04smack: provide socketpair callbackTom Gundersen1-0/+22
2018-05-04selinux: provide socketpair callbackDavid Herrmann1-0/+13
2018-05-04security: add hook for socketpair()David Herrmann1-0/+6
2018-05-03net: initial AF_XDP skeletonBjörn Töpel2-2/+6
2018-05-03evm: Don't update hmacs in user ns mountsSeth Forshee1-1/+2
2018-05-03apparmor: fix typo "preconfinement"Zygmunt Krynicki1-1/+1
2018-05-03apparmor: fix typo "independent"Zygmunt Krynicki1-1/+1
2018-05-03apparmor: fix typo "traverse"Zygmunt Krynicki1-1/+1
2018-05-03apparmor: fix typo "type"Zygmunt Krynicki1-1/+1
2018-05-03apparmor: fix typo "replace"Zygmunt Krynicki1-1/+1
2018-05-03apparmor: fix typo "comparison"Zygmunt Krynicki1-3/+3
2018-05-03apparmor: fix typo "loosen"Zygmunt Krynicki1-1/+1
2018-05-02apparmor: add the ability to get a task's secidJohn Johansen1-0/+8
2018-05-02apparmor: add support for mapping secids and using secctxesJohn Johansen6-25/+224
2018-04-24Merge branch 'userns-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-0/+2
2018-04-17audit: normalize MAC_POLICY_LOAD recordRichard Guy Briggs1-1/+1
2018-04-17audit: normalize MAC_STATUS recordRichard Guy Briggs1-4/+10
2018-04-16security: selinux: Change return type to vm_fault_tSouptick Joarder1-1/+1
2018-04-13Merge tag 'apparmor-pr-2018-04-10' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds32-523/+2117
2018-04-11ipc/msg: introduce msgctl(MSG_STAT_ANY)Davidlohr Bueso2-0/+2
2018-04-11ipc/sem: introduce semctl(SEM_STAT_ANY)Davidlohr Bueso2-0/+2
2018-04-11ipc/shm: introduce shmctl(SHM_STAT_ANY)Davidlohr Bueso2-0/+2
2018-04-10commoncap: Handle memory allocation failure.Tetsuo Handa1-0/+2
2018-04-10Merge tag 'trace-v4.17' of git://git.kernel.org/pub/scm/linux/kernel/git/rost...Linus Torvalds1-1/+7
2018-04-09selinux: fix missing dput() before selinuxfs unmountStephen Smalley1-0/+1
2018-04-07Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds16-68/+207
2018-04-07Merge branch 'next-smack' of git://git.kernel.org/pub/scm/linux/kernel/git/jm...Linus Torvalds1-0/+2
2018-04-07Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds4-27/+35
2018-04-06Merge tag 'selinux-pr-20180403' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds28-1224/+2311
2018-04-06Merge branch 'akpm' (patches from Andrew)Linus Torvalds2-1/+1
2018-04-06Merge branch 'work.misc' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...Linus Torvalds1-1/+0
2018-04-06init, tracing: instrument security and console initcall trace eventsAbderrahmane Benbachir1-1/+7
2018-04-05headers: untangle kmemleak.h from mm.hRandy Dunlap2-1/+1
2018-04-03Merge branch 'userns-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds3-201/+120
2018-03-31Merge git://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf-nextDavid S. Miller1-6/+1
2018-03-30apparmor: fix memory leak on buffer on error exit pathColin Ian King1-1/+3
2018-03-31security: convert security hooks to use hlistSargun Dhillon1-11/+11
2018-03-29security: Remove rtnl_lock() in selinux_xfrm_notify_policyload()Kirill Tkhai1-2/+0
2018-03-29net: Introduce net_rwsem to protect net_namespace_listKirill Tkhai1-0/+2
2018-03-28macro: introduce COUNT_ARGS() macroAlexei Starovoitov1-6/+1
2018-03-27ipc/smack: Tidy up from the change in type of the ipc security hooksEric W. Biederman1-139/+58
2018-03-27net: Drop pernet_operations::asyncKirill Tkhai2-2/+0
2018-03-27Merge branch 'smack-for-4.17' of git://github.com/cschaufler/next-smack into ...James Morris1-0/+2
2018-03-25ima: Fallback to the builtin hash algorithmPetr Vorel2-0/+15
2018-03-25ima: Add smackfs to the default appraise/measure listMartin Townsend1-0/+2
2018-03-25evm: check for remount ro in progress before writingSascha Hauer1-2/+6
2018-03-25ima: Improvements in ima_appraise_measurement()Thiago Jung Bauermann1-13/+22
2018-03-25ima: Simplify ima_eventsig_init()Thiago Jung Bauermann1-8/+3
2018-03-25integrity: Remove unused macro IMA_ACTION_RULE_FLAGSThiago Jung Bauermann1-1/+0
2018-03-25ima: drop vla in ima_audit_measurement()Tycho Andersen1-6/+10
2018-03-25ima: Fix Kconfig to select TPM 2.0 CRB interfaceJiandi An1-0/+1
2018-03-23apparmor: fix dangling symlinks to policy rawdata after replacementJohn Johansen1-31/+95
2018-03-23apparmor: Fix an error code in verify_table_headers()Dan Carpenter1-1/+1
2018-03-23apparmor: fix error returns checks by making size a ssize_tColin Ian King1-1/+1
2018-03-23evm: Constify *integrity_status_msg[]Hernán Gonzalez1-1/+1
2018-03-23evm: Move evm_hmac and evm_hash from evm_main.c to evm_crypto.cHernán Gonzalez3-4/+3
2018-03-23ima: fail signature verification based on policyMimi Zohar4-6/+14
2018-03-23ima: clear IMA_HASHMimi Zohar1-1/+1
2018-03-23ima: re-evaluate files on privileged mounted filesystemsMimi Zohar1-2/+11
2018-03-23ima: fail file signature verification on non-init mounted filesystemsMimi Zohar1-1/+14
2018-03-23IMA: Support using new creds in appraisal policyMatthew Garrett7-29/+79
2018-03-23security: Add a cred_getsecid hookMatthew Garrett3-0/+31
2018-03-22msg/security: Pass kern_ipc_perm not msg_queue into the msg_queue security hooksEric W. Biederman3-36/+36
2018-03-22shm/security: Pass kern_ipc_perm not shmid_kernel into the shm security hooksEric W. Biederman3-30/+30
2018-03-22sem/security: Pass kern_ipc_perm not sem_array into the sem security hooksEric W. Biederman3-30/+30
2018-03-23Merge tag 'v4.16-rc6' into next-generalJames Morris2-23/+88
2018-03-20selinux: wrap AVC stateStephen Smalley9-297/+512
2018-03-20selinux: wrap selinuxfs stateStephen Smalley1-177/+261
2018-03-20selinux: fix handling of uninitialized selinux state in get_bools/classesStephen Smalley1-0/+13
2018-03-13apparmor: remove POLICY_MEDIATES_SAFEJohn Johansen2-12/+2
generated by cgit 1.2.3-korg (git 2.39.0) at 2024-05-15 17:20:37 +0000