aboutsummaryrefslogtreecommitdiffstats
path: root/security (follow)
AgeCommit message (Expand)AuthorFilesLines
2025-06-19selinux: add __GFP_NOWARN to hashtab_init() allocationsPaul Moore1-1/+2
2025-06-19selinux: optimize selinux_inode_getattr/permission() based on neveraudit|permissiveStephen Smalley2-1/+21
2025-06-19selinux: introduce neveraudit typesStephen Smalley5-1/+48
2025-06-19selinux: change security_compute_sid to return the ssid or tsid on matchStephen Smalley1-5/+11
2025-06-17ipe: don't bother with removal of files in directory we'll be removingAl Viro2-22/+14
2025-06-17evm_secfs: clear securityfs interactionsAl Viro1-8/+7
2025-06-17ima_fs: get rid of lookup-by-dentry stuffAl Viro1-66/+16
2025-06-17ima_fs: don't bother with removal of files in directory we'll be removingAl Viro1-39/+18
2025-06-17apparmor: file never has NULL f_path.mntAl Viro1-1/+1
2025-06-17landlock: opened file never has a negative dentryAl Viro1-1/+0
2025-06-16selinux: fix selinux_xfrm_alloc_user() to set correct ctx_lenStephen Smalley1-1/+1
2025-06-16selinux: add a 5 second sleep to /sys/fs/selinux/userPaul Moore1-0/+1
2025-06-16lsm: trivial comment fixKalevi Kolttonen1-1/+1
2025-06-16ima: add a knob ima= to allow disabling IMA in kdump kernelBaoquan He1-0/+26
2025-06-11make securityfs_remove() remove the entire subtreeAl Viro1-37/+10
2025-06-11securityfs: pin filesystem only for objects directly in rootAl Viro1-8/+13
2025-06-11securityfs: don't pin dentries twice, once is enough...Al Viro1-2/+0
2025-06-11KEYS: Invert FINAL_PUT bitHerbert Xu2-4/+5
2025-05-31Merge tag 'gcc-minimum-version-6.16' of git://git.kernel.org/pub/scm/linux/kernel/git/arnd/asm-genericLinus Torvalds1-76/+0
2025-05-29Merge tag 'ipe-pr-20250527' of git://git.kernel.org/pub/scm/linux/kernel/git/wufan/ipeLinus Torvalds4-26/+63
2025-05-28Merge tag 'net-next-6.16' of git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net-nextLinus Torvalds5-70/+2
2025-05-28Merge tag 'selinux-pr-20250527' of git://git.kernel.org/pub/scm/linux/kernel/git/pcmoore/selinuxLinus Torvalds11-85/+232
2025-05-28Merge tag 'lsm-pr-20250527' of git://git.kernel.org/pub/scm/linux/kernel/git/pcmoore/lsmLinus Torvalds1-18/+18
2025-05-28Merge tag 'integrity-v6.16' of git://git.kernel.org/pub/scm/linux/kernel/git/zohar/linux-integrityLinus Torvalds4-33/+185
2025-05-28Merge tag 'Smack-for-6.16' of https://github.com/cschaufler/smack-nextLinus Torvalds1-7/+5
2025-05-28Merge tag 'hardening-v6.16-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/kees/linuxLinus Torvalds1-1/+1
2025-05-27ipe: add errno field to IPE policy load auditingJasjiv Singh4-26/+63
2025-05-26Merge tag 'vfs-6.16-rc1.async.dir' of git://git.kernel.org/pub/scm/linux/kernel/git/vfs/vfsLinus Torvalds3-5/+5
2025-05-25apparmor: Document that label must be last member in struct aa_profileJohn Johansen1-1/+8
2025-05-25apparmor: make debug_values_table staticJohn Johansen1-1/+1
2025-05-25apparmor: force auditing of conflicting attachment execs from confinedRyan Lee1-0/+9
2025-05-25apparmor: include conflicting attachment info for confined ix/ux fallbackRyan Lee1-2/+33
2025-05-25apparmor: move the "conflicting profile attachments" infostr to a const declarationRyan Lee1-1/+3
2025-05-25apparmor: force audit on unconfined exec if info is set by find_attachRyan Lee1-0/+16
2025-05-25apparmor: make all generated string array headers const char *constRyan Lee1-2/+2
2025-05-25apparmor: fix loop detection used in conflicting attachment resolutionRyan Lee2-15/+12
2025-05-22Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/netJakub Kicinski3-5/+35
2025-05-19security/smack/smackfs: small kernel-doc fixesRandy Dunlap1-7/+5
2025-05-17apparmor: ensure WB_HISTORY_SIZE value is a power of 2Ryan Lee2-1/+3
2025-05-17apparmor: fix some kernel-doc issues in header filesRandy Dunlap5-8/+8
2025-05-17apparmor: Fix incorrect profile->signal range checkColin Ian King1-1/+1
2025-05-17apparmor: use SHA-256 library API instead of crypto_shash APIEric Biggers2-75/+13
2025-05-17security/apparmor: use kfree_sensitive() in unpack_secmark()Zilin Guan1-2/+2
2025-05-14ima: do not copy measurement list to kdump kernelSteven Chen1-0/+3
2025-05-12landlock: Improve bit operations in audit codeMickaël Salaün3-4/+34
2025-05-08Revert "hardening: Disable GCC randstruct for COMPILE_TEST"Kees Cook1-1/+1
2025-05-03landlock: Remove KUnit test that triggers a warningMickaël Salaün1-1/+1
2025-05-01Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/netJakub Kicinski3-17/+16
2025-04-30Kbuild: remove structleak gcc pluginArnd Bergmann1-76/+0
2025-04-29ima: measure kexec load and exec events as critical dataSteven Chen3-0/+32
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.