index
:
linux.git
arm64-uaccess
link_path_walk
linus
master
mmu_gather-race-fix
proc-cmdline
runtime-constants
tty-splice
word-at-a-time
x86-rep-insns
x86-uaccess-cleanup
Linux kernel mainline tree
Linus Torvalds
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
security
Commit message (
Expand
)
Author
Age
Files
Lines
*
efi/efi_test: Lock down /dev/efi_test and require CAP_SYS_ADMIN
Javier Martinez Canillas
2019-10-31
1
-0
/
+1
*
Merge tag 'selinux-pr-20191007' of git://git.kernel.org/pub/scm/linux/kernel/...
Linus Torvalds
2019-10-08
1
-1
/
+8
|
\
|
*
selinux: fix context string corruption in convert_context()
Ondrej Mosnacek
2019-10-03
1
-1
/
+8
*
|
integrity: remove pointless subdir-$(CONFIG_...)
Masahiro Yamada
2019-10-05
1
-2
/
+0
*
|
integrity: remove unneeded, broken attempt to add -fshort-wchar
Masahiro Yamada
2019-10-05
1
-1
/
+0
*
|
Merge branch 'next-lockdown' of git://git.kernel.org/pub/scm/linux/kernel/git...
Linus Torvalds
2019-09-28
10
-16
/
+350
|
\
\
|
*
|
security: constify some arrays in lockdown LSM
Matthew Garrett
2019-09-10
1
-2
/
+2
|
*
|
lockdown: Print current->comm in restriction messages
Matthew Garrett
2019-08-19
1
-2
/
+6
|
*
|
tracefs: Restrict tracefs when the kernel is locked down
Matthew Garrett
2019-08-19
1
-0
/
+1
|
*
|
debugfs: Restrict debugfs when the kernel is locked down
David Howells
2019-08-19
1
-0
/
+1
|
*
|
kexec: Allow kexec_file() with appropriate IMA policy when locked down
Matthew Garrett
2019-08-19
3
-1
/
+53
|
*
|
lockdown: Lock down perf when in confidentiality mode
David Howells
2019-08-19
1
-0
/
+1
|
*
|
bpf: Restrict bpf when kernel lockdown is in confidentiality mode
David Howells
2019-08-19
1
-0
/
+1
|
*
|
lockdown: Lock down tracing and perf kprobes when in confidentiality mode
David Howells
2019-08-19
1
-0
/
+1
|
*
|
lockdown: Lock down /proc/kcore
David Howells
2019-08-19
1
-0
/
+1
|
*
|
x86/mmiotrace: Lock down the testmmiotrace module
David Howells
2019-08-19
1
-0
/
+1
|
*
|
lockdown: Lock down module params that specify hardware parameters (eg. ioport)
David Howells
2019-08-19
1
-0
/
+1
|
*
|
lockdown: Lock down TIOCSSERIAL
David Howells
2019-08-19
1
-0
/
+1
|
*
|
lockdown: Prohibit PCMCIA CIS storage when the kernel is locked down
David Howells
2019-08-19
1
-0
/
+1
|
*
|
ACPI: Limit access to custom_method when the kernel is locked down
Matthew Garrett
2019-08-19
1
-0
/
+1
|
*
|
x86/msr: Restrict MSR access when the kernel is locked down
Matthew Garrett
2019-08-19
1
-0
/
+1
|
*
|
x86: Lock down IO port access when the kernel is locked down
Matthew Garrett
2019-08-19
1
-0
/
+1
|
*
|
PCI: Lock down BAR access when the kernel is locked down
Matthew Garrett
2019-08-19
1
-0
/
+1
|
*
|
hibernate: Disable when the kernel is locked down
Josh Boyer
2019-08-19
1
-0
/
+1
|
*
|
kexec_file: split KEXEC_VERIFY_SIG into KEXEC_SIG and KEXEC_SIG_FORCE
Jiri Bohac
2019-08-19
2
-2
/
+2
|
*
|
kexec_load: Disable at runtime if the kernel is locked down
Matthew Garrett
2019-08-19
1
-0
/
+1
|
*
|
lockdown: Restrict /dev/{mem,kmem,port} when the kernel is locked down
Matthew Garrett
2019-08-19
1
-0
/
+1
|
*
|
lockdown: Enforce module signatures if the kernel is locked down
David Howells
2019-08-19
2
-0
/
+2
|
*
|
security: Add a static lockdown policy LSM
Matthew Garrett
2019-08-19
5
-5
/
+224
|
*
|
security: Add a "locked down" LSM hook
Matthew Garrett
2019-08-19
1
-0
/
+6
|
*
|
security: Support early LSMs
Matthew Garrett
2019-08-19
1
-8
/
+42
*
|
|
Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi...
Linus Torvalds
2019-09-27
15
-105
/
+627
|
\
\
\
|
*
|
|
ima: ima_api: Use struct_size() in kzalloc()
Gustavo A. R. Silva
2019-08-29
1
-2
/
+2
|
*
|
|
ima: use struct_size() in kzalloc()
Gustavo A. R. Silva
2019-08-29
1
-3
/
+2
|
*
|
|
ima: Fix use after free in ima_read_modsig()
Thiago Jung Bauermann
2019-08-28
1
-1
/
+2
|
*
|
|
ima: fix freeing ongoing ahash_request
Sascha Hauer
2019-08-05
1
-0
/
+5
|
*
|
|
ima: always return negative code for error
Sascha Hauer
2019-08-05
1
-1
/
+4
|
*
|
|
ima: Store the measurement again when appraising a modsig
Thiago Jung Bauermann
2019-08-05
4
-7
/
+47
|
*
|
|
ima: Define ima-modsig template
Thiago Jung Bauermann
2019-08-05
8
-6
/
+156
|
*
|
|
ima: Collect modsig
Thiago Jung Bauermann
2019-08-05
5
-5
/
+60
|
*
|
|
ima: Implement support for module-style appended signatures
Thiago Jung Bauermann
2019-08-05
8
-23
/
+209
|
*
|
|
ima: Factor xattr_verify() out of ima_appraise_measurement()
Thiago Jung Bauermann
2019-08-05
1
-60
/
+81
|
*
|
|
ima: Add modsig appraise_type option for module-style appended signatures
Thiago Jung Bauermann
2019-08-05
6
-2
/
+62
|
*
|
|
integrity: Select CONFIG_KEYS instead of depending on it
Thiago Jung Bauermann
2019-08-05
1
-1
/
+1
|
*
|
|
ima: initialize the "template" field with the default template
Mimi Zohar
2019-08-01
1
-2
/
+4
*
|
|
|
KEYS: trusted: correctly initialize digests and fix locking issue
Roberto Sassu
2019-09-25
1
-0
/
+5
*
|
|
|
Merge tag 'smack-for-5.4-rc1' of git://github.com/cschaufler/smack-next
Linus Torvalds
2019-09-23
2
-23
/
+23
|
\
\
\
\
|
*
|
|
|
smack: use GFP_NOFS while holding inode_smack::smk_lock
Eric Biggers
2019-09-04
2
-4
/
+4
|
*
|
|
|
security: smack: Fix possible null-pointer dereferences in smack_socket_sock_...
Jia-Ju Bai
2019-09-04
1
-0
/
+2
|
*
|
|
|
smack: fix some kernel-doc notations
luanshi
2019-09-04
1
-18
/
+15
[next]