aboutsummaryrefslogtreecommitdiffstats
path: root/security (unfollow)
AgeCommit message (Expand)AuthorFilesLines
2019-12-12IMA: Check IMA policy flagLakshmi Ramasubramanian1-0/+3
2019-12-12ima: avoid appraise error for hash calc interruptPatrick Callaghan1-1/+3
2019-12-12selinux: remove unnecessary selinux cred requestYang Guo1-4/+3
2019-12-11tomoyo: Don't use nifty names on sockets.Tetsuo Handa1-31/+1
2019-12-10selinux: ensure we cleanup the internal AVC counters on error in avc_insert()Paul Moore1-27/+24
2019-12-10security: only build lsm_audit if CONFIG_SECURITY=yStephen Smalley1-1/+1
2019-12-09selinux: clean up selinux_inode_permission MAY_NOT_BLOCK testsStephen Smalley1-4/+4
2019-12-09selinux: fall back to ref-walk if audit is requiredStephen Smalley3-26/+17
2019-12-09selinux: revert "stop passing MAY_NOT_BLOCK to the AVC upon follow_link"Stephen Smalley3-4/+30
2019-12-09security,lockdown,selinux: implement SELinux lockdownStephen Smalley5-27/+70
2019-12-09selinux: cache the SID -> context string translationOndrej Mosnacek4-94/+288
2019-12-09selinux: sidtab reverse lookup hash tableJeff Vander Stoep9-167/+306
2019-12-09treewide: Use sizeof_field() macroPankaj Bharadiya1-2/+2
2019-12-08namei: allow nd_jump_link() to produce errorsAleksa Sarai1-2/+4
2019-11-29x86/efi: remove unused variablesYueHaibing1-5/+0
2019-11-26net: port < inet_prot_sock(net) --> inet_port_requires_bind_service(net, port)Maciej ┼╗enczykowski1-2/+2
2019-11-22apparmor: make it so work buffers can be allocated from atomic contextJohn Johansen6-38/+62
2019-11-22apparmor: reduce rcu_read_lock scope for aa_file_perm mediationJohn Johansen1-3/+3
2019-11-22apparmor: fix wrong buffer allocation in aa_new_mountJohn Johansen1-4/+4
2019-11-22apparmor: fix unsigned len comparison with less than zeroColin Ian King1-5/+7
2019-11-15y2038: move itimer reset into itimer.cArnd Bergmann1-7/+3
2019-11-12KEYS: trusted: Remove set but not used variable 'keyhndl'zhengbin1-2/+0
2019-11-12KEYS: trusted: Move TPM2 trusted keys codeSumit Garg3-2/+317
2019-11-12KEYS: trusted: Create trusted keys subsystemSumit Garg3-2/+9
2019-11-12KEYS: Use common tpm_buf for trusted and asymmetric keysSumit Garg1-55/+43
2019-11-12tpm: Move tpm_buf code to include/linux/Sumit Garg1-6/+6
2019-11-13powerpc: Load firmware trusted keys/hashes into kernel keyringNayna Jain3-1/+108
2019-11-13x86/efi: move common keyring handler functions to new fileNayna Jain4-67/+115
2019-11-12ima: Check against blacklisted hashes for files with modsigNayna Jain5-6/+60
2019-11-12ima: Make process_buffer_measurement() genericNayna Jain2-18/+43
2019-10-31efi/efi_test: Lock down /dev/efi_test and require CAP_SYS_ADMINJavier Martinez Canillas1-0/+1
2019-10-30security/safesetid: Replace rcu_swap_protected() with rcu_replace_pointer()Paul E. McKenney1-2/+2
2019-10-28powerpc/xmon: Restrict when kernel is locked downChristopher M. Riedl1-0/+2
2019-10-23pipe: Reduce #inclusion of pipe_fs_i.hDavid Howells1-1/+0
2019-10-17perf_event: Add support for LSM and SELinux checksJoel Fernandes (Google)4-1/+103
2019-10-07selinux: default_range glblub implementationJoshua Brindle7-1/+62
2019-10-07device_cgroup: Export devcgroup_check_permissionHarish Kasiviswanathan1-2/+13
2019-10-05integrity: remove pointless subdir-$(CONFIG_...)Masahiro Yamada1-2/+0
2019-10-05integrity: remove unneeded, broken attempt to add -fshort-wcharMasahiro Yamada1-1/+0
2019-10-03selinux: fix context string corruption in convert_context()Ondrej Mosnacek1-1/+8
2019-10-01net: rtnetlink: add linkprop commands to add and delete alternative ifnamesJiri Pirko1-1/+3
2019-10-01selinux: allow labeling before policy is loadedJonathan Lebon1-0/+12
2019-10-01selinux: remove load size limitzhanglin1-4/+0
2019-09-25KEYS: trusted: correctly initialize digests and fix locking issueRoberto Sassu1-0/+5
2019-09-17LSM: SafeSetID: Stop releasing uninitialized rulesetMicah Morton1-1/+2
2019-09-10security: constify some arrays in lockdown LSMMatthew Garrett1-2/+2
2019-09-05keys: Fix missing null pointer check in request_key_auth_describe()Hillf Danton1-0/+6
2019-09-04selinux: fix residual uses of current_security() for the SELinux blobStephen Smalley2-11/+11
2019-09-04smack: use GFP_NOFS while holding inode_smack::smk_lockEric Biggers2-4/+4
2019-09-04security: smack: Fix possible null-pointer dereferences in smack_socket_sock_rcv_skb()Jia-Ju Bai1-0/+2