summaryrefslogtreecommitdiffstats
path: root/security
Commit message (Expand)AuthorAgeFilesLines
* missing barriers in some of unix_sock ->addr and ->path accessesAl Viro2019-03-191-4/+6
* apparmor: Fix aa_label_build() error handling for failed mergesJohn Johansen2019-03-131-1/+4
* KEYS: always initialize keyring_index_key::desc_lenEric Biggers2019-02-274-6/+4
* KEYS: allow reaching the keys quotas exactlyEric Biggers2019-02-271-2/+2
* smack: fix access permissions for keyringZoran Markovic2019-02-121-3/+9
* selinux: always allow mounting submountsOndrej Mosnacek2019-01-261-1/+1
* selinux: fix GPF on invalid policyStephen Smalley2019-01-221-1/+2
* LSM: Check for NULL cred-security on freeJames Morris2019-01-221-0/+7
* Yama: Check for pid death before checking ancestryKees Cook2019-01-221-1/+3
* selinux: policydb - fix byte order and alignment issuesOndrej Mosnacek2019-01-131-15/+36
* selinux: add support for RTM_NEWCHAIN, RTM_DELCHAIN, and RTM_GETCHAINPaul Moore2018-12-081-1/+12
* selinux: Add __GFP_NOWARN to allocation at str_read()Tetsuo Handa2018-12-011-1/+1
* apparmor: Fix uninitialized value in aa_split_fqnameZubin Mithra2018-11-271-2/+4
* selinux: check length properly in SCTP bind hookOndrej Mosnacek2018-11-211-0/+3
* ima: open a new file instance if no read permissionsGoldwyn Rodrigues2018-11-131-20/+34
* ima: fix showing large 'violations' or 'runtime_measurements_count'Eric Biggers2018-11-131-3/+3
* selinux: fix mounting of cgroup2 under older policiesStephen Smalley2018-11-131-0/+5
* Smack: ptrace capability use fixesCasey Schaufler2018-11-131-3/+10
* Revert "uapi/linux/keyctl.h: don't use C++ reserved keyword as a struct membe...Lubomir Rintel2018-09-251-1/+1
* Revert "x86/mm/legacy: Populate the user page-table with user pgd's"Joerg Roedel2018-09-141-1/+1
* Merge tag 'apparmor-pr-2018-09-06' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds2018-09-061-1/+0
|\
| * apparmor: fix bad debug check in apparmor_secid_to_secctx()John Johansen2018-09-031-1/+0
* | uapi/linux/keyctl.h: don't use C++ reserved keyword as a struct member nameRandy Dunlap2018-09-041-1/+1
|/
* Merge tag 'apparmor-pr-2018-08-23' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds2018-08-247-44/+20
|\
| * apparmor: remove no-op permission check in policy_unpackJohn Johansen2018-08-221-32/+0
| * apparmor: fix an error code in __aa_create_ns()Dan Carpenter2018-08-211-1/+1
| * apparmor: Fix failure to audit context info in build_change_hatJohn Johansen2018-07-201-1/+1
| * apparmor: Fully initialize aa_perms struct when answering userspace queryTyler Hicks2018-07-191-4/+1
| * apparmor: Check buffer bounds when mapping permissions maskTyler Hicks2018-07-193-6/+17
* | Merge branch 'userns-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds2018-08-241-1/+1
|\ \
| * | cap_inode_getsecurity: use d_find_any_alias() instead of d_find_alias()Eddie.Horng2018-08-111-1/+1
* | | init: allow initcall tables to be emitted using relative referencesArd Biesheuvel2018-08-221-7/+10
* | | Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds2018-08-1512-46/+108
|\ \ \
| * | | EVM: fix return value check in evm_write_xattrs()Wei Yongjun2018-07-221-2/+2
| * | | integrity: prevent deadlock during digsig verification.Mikhail Kurinnoi2018-07-182-1/+29
| * | | evm: Allow non-SHA1 digital signaturesMatthew Garrett2018-07-184-31/+46
| * | | evm: Don't deadlock if a crypto algorithm is unavailableMatthew Garrett2018-07-181-1/+2
| * | | integrity: silence warning when CONFIG_SECURITYFS is not enabledSudeep Holla2018-07-181-3/+6
| * | | ima: Differentiate auditing policy rules from "audit" actionsStefan Berger2018-07-181-2/+2
| * | | ima: Do not audit if CONFIG_INTEGRITY_AUDIT is not setStefan Berger2018-07-183-1/+21
| * | | ima: Use audit_log_format() rather than audit_log_string()Stefan Berger2018-07-182-7/+2
| * | | ima: Call audit_log_string() rather than logging it untrustedStefan Berger2018-07-181-1/+1
* | | | Merge branch 'next-tpm' of git://git.kernel.org/pub/scm/linux/kernel/git/jmor...Linus Torvalds2018-08-154-16/+10
|\ \ \ \
| * | | | ima: Get rid of ima_used_chip and use ima_tpm_chip != NULL insteadStefan Berger2018-07-284-8/+4
| * | | | ima: Use tpm_default_chip() and call TPM functions with a tpm_chipStefan Berger2018-07-284-9/+7
| |/ / /
* | | | Merge branch 'next-smack' of git://git.kernel.org/pub/scm/linux/kernel/git/jm...Linus Torvalds2018-08-151-6/+16
|\ \ \ \
| * \ \ \ Merge branch 'smack-for-4.19-a' of https://github.com/cschaufler/next-smack i...James Morris2018-07-301-6/+16
| |\ \ \ \ | | |/ / / | |/| | |
| | * | | Smack: Inform peer that IPv6 traffic has been blockedPiotr Sawicki2018-07-231-0/+4
| | * | | Smack: Check UDP-Lite and DCCP protocols during IPv6 handlingPiotr Sawicki2018-07-231-1/+3
| | * | | Smack: Fix handling of IPv4 traffic received by PF_INET6 socketsPiotr Sawicki2018-07-231-5/+9
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-28 22:36:17 +0000