aboutsummaryrefslogtreecommitdiffstats
path: root/security
AgeCommit message (Expand)AuthorFilesLines
2026-01-30pkcs7, x509: Rename ->digest to ->mDavid Howells1-2/+2
2026-01-30keys/trusted_keys: establish PKWM as a trusted sourceSrish Srinivasan4-1/+205
2026-01-29lsm: preserve /proc/sys/vm/mmap_min_addr when !CONFIG_SECURITYPaul Moore3-18/+3
2026-01-29apparmor: cleanup remove unused percpu critical sections in buffer managementJohn Johansen1-5/+0
2026-01-29apparmor: document the buffer hold, add an overflow guardJohn Johansen1-2/+26
2026-01-29apparmor: avoid per-cpu hold underflow in aa_get_bufferZhengmian Hu1-1/+2
2026-01-29apparmor: split xxx_in_ns into its two separate semantic use casesJohn Johansen5-46/+61
2026-01-29apparmor: make label_match return a consistent valueJohn Johansen1-11/+9
2026-01-29apparmor: remove apply_modes_to_perms from label_matchJohn Johansen1-3/+0
2026-01-29apparmor: fix fast path cache check for unix socketsJohn Johansen1-14/+21
2026-01-29apparmor: fix rlimit for posix cpu timersJohn Johansen1-0/+5
2026-01-29apparmor: refactor/cleanup cred helper fns.John Johansen1-31/+69
2026-01-29apparmor: fix label and profile debug macrosJohn Johansen1-1/+3
2026-01-29apparmor: move check for aa_null file to cover all casesJohn Johansen2-6/+10
2026-01-29apparmor: guard against free routines being called with a NULLJohn Johansen1-0/+6
2026-01-29apparmor: return -ENOMEM in unpack_perms_table upon alloc failureRyan Lee1-2/+4
2026-01-29apparmor: account for in_atomic removal in common_file_permRyan Lee1-3/+2
2026-01-29apparmor: drop in_atomic flag in common_mmap, and common_file_permJohn Johansen1-12/+9
2026-01-29apparmor: fix boolean argument in apparmor_mmap_fileRyan Lee1-1/+1
2026-01-29apparmor: userns: Add support for execpath in usernsMaxime Bélair1-0/+32
2026-01-29apparmor: add support loading per permission taggingJohn Johansen8-18/+269
2026-01-28tomoyo: Use scoped init guardMarco Elver1-1/+1
2026-01-26ima: verify the previous kernel's IMA buffer lies in addressable RAMHarshit Mogalapalli1-0/+35
2026-01-25keys/trusted_keys: fix handle passed to tpm_buf_append_name during unsealSrish Srinivasan1-2/+2
2026-01-23evm: Use ordered xattrs list to calculate HMAC in evm_init_hmac()Roberto Sassu1-4/+10
2026-01-22apparmor: make str table more generic and be able to have multiple entriesJohn Johansen5-46/+90
2026-01-22apparmor: Fix & Optimize table creation from possibly unaligned memoryHelge Deller2-9/+10
2026-01-22AppArmor: Allow apparmor to handle unaligned dfa tablesHelge Deller1-7/+8
2026-01-22apparmor: Replace deprecated strcpy with memcpy in gen_symlink_nameThorsten Blum1-4/+8
2026-01-22apparmor: fix NULL sock in aa_sock_file_permJohn Johansen1-2/+4
2026-01-20kernel.h: drop hex.h and update all hex.h usersRandy Dunlap8-0/+8
2026-01-18Merge tag 'landlock-6.19-rc6' of git://git.kernel.org/pub/scm/linux/kernel/git/mic/linuxLinus Torvalds7-64/+87
2026-01-18apparmor: fix NULL pointer dereference in __unix_needs_revalidationSystem Administrator1-0/+3
2026-01-18apparmor: Replace deprecated strcpy in d_namespace_pathThorsten Blum1-5/+8
2026-01-18apparmor: Replace sprintf/strcpy with scnprintf/strscpy in aa_policy_initThorsten Blum1-9/+7
2026-01-16apparmor: replace sprintf with snprintf in aa_new_learning_profileThorsten Blum1-6/+9
2026-01-14selinux: drop the BUG() in cred_has_capability()Paul Moore1-1/+0
2026-01-14selinux: fix a capabilities parsing typo in selinux_bpf_token_capable()Paul Moore1-1/+1
2026-01-13selinux: add support for BPF token access controlEric Suen6-4/+131
2026-01-13selinux: move the selinux_blob_sizes structPaul Moore1-21/+21
2026-01-09security: Add KUnit tests for kuid_root_in_ns and vfsuid_root_in_currentnsRyan Foster3-0/+309
2026-01-07KEYS: trusted: Make use of tee bus methodsUwe Kleine-König1-7/+5
2026-01-07KEYS: trusted: Migrate to use tee specific driver registration functionUwe Kleine-König1-3/+2
2026-01-06lsm: make keys for static branch staticBen Dooks1-1/+1
2026-01-05security/tomoyo: Enable context analysisMarco Elver9-49/+122
2026-01-05loadpin: Implement custom proc_handler for enforceJoel Granados1-21/+16
2025-12-30smack: /smack/doi: accept previously used valuesKonstantin Andreev1-26/+45
2025-12-30smack: /smack/doi must be > 0Konstantin Andreev1-5/+7
2025-12-30security: smack: fix indentation in smack_access.cTaimoor Zaeem1-1/+1
2025-12-29landlock: Improve the comment for domain_is_scopedTingmao Wang1-4/+4
Copyright © 1996 – 2026 Jason A. Donenfeld. All Rights Reverse Engineered.