index
:
wireguard-linux
backport-5.4.y
davem/net
davem/net-next
devel
gregkh/stable-5.4.y
jd/deferred-aip-removal
jd/new-archs
jd/orphan-parallel
jd/shorter-socket-lock
jd/unified-crypt-queue
jd/xdp-l3
stable
WireGuard for the Linux kernel
Jason A. Donenfeld
about
summary
refs
log
tree
commit
diff
stats
homepage
log msg
author
committer
range
path:
root
/
security
(
follow
)
Age
Commit message (
Expand
)
Author
Files
Lines
2022-06-14
efi: Do not import certificates from UEFI Secure Boot for T2 Macs
Aditya Garg
2
-0
/
+41
2022-06-06
lockdown: also lock down previous kgdb use
Daniel Thompson
1
-0
/
+2
2022-04-15
Fix incorrect type in assignment of ipv6 port for audit
Casey Schaufler
1
-1
/
+1
2022-04-15
selinux: use correct type for context length
Christian Göttsche
1
-1
/
+1
2022-04-15
LSM: general protection fault in legacy_parse_param
Casey Schaufler
2
-5
/
+17
2022-04-15
TOMOYO: fix __setup handlers return values
Randy Dunlap
1
-2
/
+2
2022-04-15
KEYS: fix length validation in keyctl_pkey_params_get_2()
Eric Biggers
1
-3
/
+11
2022-02-16
ima: Do not print policy rule with inactive LSM labels
Stefan Berger
1
-0
/
+8
2022-02-16
ima: Allow template selection with ima_template[_fmt]= after ima_hash=
Roberto Sassu
1
-3
/
+7
2022-02-16
ima: Remove ima_policy file before directory
Stefan Berger
1
-1
/
+1
2022-02-16
integrity: check the return value of audit_log_start()
Xiaoke Wang
1
-0
/
+2
2022-01-27
selinux: fix potential memleak in selinux_add_opt()
Bernard Zhao
1
-2
/
+10
2022-01-05
selinux: initialize proto variable in selinux_ip_postroute_compat()
Tom Rix
1
-1
/
+1
2022-01-05
tomoyo: Check exceeded quota early in tomoyo_domain_quota_is_ok().
Dmitry Vyukov
1
-7
/
+7
2021-12-17
selinux: fix race condition when computing ocontext SIDs
Ondrej Mosnacek
1
-72
/
+87
2021-11-21
fortify: Explicitly disable Clang support
Kees Cook
1
-0
/
+3
2021-11-17
apparmor: fix error check
Tom Rix
1
-2
/
+2
2021-11-17
smackfs: use netlbl_cfg_cipsov4_del() for deleting cipso_v4_doi
Tetsuo Handa
1
-1
/
+1
2021-11-17
smackfs: use __GFP_NOFAIL for smk_cipso_doi()
Tetsuo Handa
1
-3
/
+1
2021-11-17
smackfs: Fix use-after-free in netlbl_catmap_walk()
Pawan Gupta
1
-1
/
+4
2021-11-17
evm: mark evm_fixmode as __ro_after_init
Austin Kim
1
-1
/
+1
2021-11-17
binder: use cred instead of task for selinux checks
Todd Kjos
2
-28
/
+22
2021-09-26
apparmor: remove duplicate macro list_entry_is_head()
Andy Shevchenko
1
-3
/
+0
2021-09-22
Smack: Fix wrong semantics in smk_access_entry()
Tianjia Zhang
1
-9
/
+8
2021-09-15
IMA: remove the dependency on CRYPTO_MD5
THOBY Simon
1
-1
/
+0
2021-09-15
IMA: remove -Wmissing-prototypes warning
Austin Kim
1
-1
/
+1
2021-07-19
smackfs: restrict bytes count in smk_set_cipso()
Tetsuo Handa
1
-0
/
+2
2021-07-19
selinux: use __GFP_NOWARN with GFP_NOWAIT in the AVC
Minchan Kim
1
-6
/
+7
2021-07-14
evm: fix writing <securityfs>/evm overflow
Mimi Zohar
1
-2
/
+3
2021-07-14
evm: Refuse EVM_ALLOW_METADATA_WRITES only if an HMAC key is loaded
Roberto Sassu
1
-4
/
+4
2021-07-14
evm: Execute evm_inode_init_security() only when an HMAC key is loaded
Roberto Sassu
1
-2
/
+3
2021-07-07
x86/efi: remove unused variables
YueHaibing
1
-5
/
+0
2021-06-30
certs: Add EFI_CERT_X509_GUID support for dbx entries
Eric Snowberg
1
-0
/
+11
2021-06-30
x86/efi: move common keyring handler functions to new file
Nayna Jain
4
-67
/
+115
2021-05-11
security: commoncap: fix -Wstringop-overread warning
Arnd Bergmann
1
-1
/
+1
2021-03-30
integrity: double check iint_cache was initialized
Mimi Zohar
1
-0
/
+8
2021-03-17
Revert 95ebabde382c ("capabilities: Don't allow writing ambiguous v3 file capabilities")
Eric W. Biederman
1
-11
/
+1
2021-03-07
smackfs: restrict bytes count in smackfs write functions
Sabyrzhan Tasbolatov
1
-2
/
+19
2021-03-04
KEYS: trusted: Fix migratable=1 failing
Jarkko Sakkinen
1
-1
/
+1
2021-03-04
certs: Fix blacklist flag type confusion
David Howells
2
-3
/
+4
2021-03-04
capabilities: Don't allow writing ambiguous v3 file capabilities
Eric W. Biederman
1
-1
/
+11
2021-03-04
ima: Free IMA measurement buffer after kexec syscall
Lakshmi Ramasubramanian
1
-0
/
+2
2021-03-04
ima: Free IMA measurement buffer on error
Lakshmi Ramasubramanian
1
-0
/
+1
2021-03-04
evm: Fix memleak in init_desc
Dinghao Liu
1
-2
/
+5
2021-02-17
cap: fix conversions on getxattr
Miklos Szeredi
1
-24
/
+43
2021-01-19
dump_common_audit_data(): fix racy accesses to ->d_name
Al Viro
1
-2
/
+5
2020-12-30
ima: Don't modify file descriptor mode on the fly
Roberto Sassu
1
-15
/
+5
2020-12-30
selinux: fix inode_doinit_with_dentry() LABEL_INVALID error handling
Paul Moore
1
-18
/
+13
2020-12-30
selinux: fix error initialization in inode_doinit_with_dentry()
Tianyue Ren
1
-3
/
+16
2020-12-08
ima: extend boot_aggregate with kernel measurements
Maurizio Drocco
2
-2
/
+15
[next]