aboutsummaryrefslogtreecommitdiffstats
path: root/security
AgeCommit message (Expand)Author
2018-12-01Revert "evm: Translate user/group ids relative to s_user_ns when computing HMAC"Eric W. Biederman
2018-12-01selinux: Add __GFP_NOWARN to allocation at str_read()Tetsuo Handa
2018-11-13ima: fix showing large 'violations' or 'runtime_measurements_count'Eric Biggers
2018-09-26evm: Don't deadlock if a crypto algorithm is unavailableMatthew Garrett
2018-09-26Smack: Fix handling of IPv4 traffic received by PF_INET6 socketsPiotr Sawicki
2018-09-21Merge tag 'v4.9.128' into standard/baseBruce Ashfield
2018-09-21Merge tag 'v4.9.124' into standard/baseBruce Ashfield
2018-09-19selinux: use GFP_NOWAIT in the AVC kmem_cachesMichal Hocko
2018-08-24Smack: Mark inode instant in smack_task_to_inodeCasey Schaufler
2018-08-13Merge tag 'v4.9.117' into standard/baseBruce Ashfield
2018-08-03ima: based on policy verify firmware signatures (pre-allocated buffer)Mimi Zohar
2018-07-18Merge tag 'v4.9.107' into standard/baseBruce Ashfield
2018-07-18Merge tag 'v4.9.104' into standard/baseBruce Ashfield
2018-07-17Merge tag 'v4.9.94' into standard/baseBruce Ashfield
2018-07-17Merge tag 'v4.9.93' into standard/baseBruce Ashfield
2018-07-16Merge tag 'v4.9.89' into standard/baseBruce Ashfield
2018-07-16Merge tag 'v4.9.84' into standard/baseBruce Ashfield
2018-06-06selinux: KASAN: slab-out-of-bounds in xattr_getsecuritySachin Grover
2018-06-06Revert "ima: limit file hash setting by user to fix and log modes"Mimi Zohar
2018-05-30ima: Fallback to the builtin hash algorithmPetr Vorel
2018-05-30integrity/security: fix digsig.c build error with header fileRandy Dunlap
2018-04-13selinux: do not check open permission on socketsStephen Smalley
2018-04-08selinux: Remove redundant check for unknown labeling behaviorMatthias Kaehlcke
2018-04-08selinux: Remove unnecessary check of array base in selinux_set_mapping()Matthias Kaehlcke
2018-03-22ima: relax requiring a file signature for new files with zero lengthMimi Zohar
2018-03-22apparmor: Make path_max parameter readonlyJohn Johansen
2018-03-22selinux: check for address length in selinux_socket_bind()Alexander Potapenko
2018-02-25security/keys: BIG_KEY requires CONFIG_CRYPTOArnd Bergmann
2018-02-25selinux: skip bounded transition processing if the policy isn't loadedPaul Moore
2018-02-25selinux: ensure the context is NUL terminated in security_context_to_sid_core()Paul Moore
2018-02-19Merge tag 'v4.9.81' into standard/baseBruce Ashfield
2018-02-13KEYS: encrypted: fix buffer overread in valid_master_desc()Eric Biggers
2018-01-25Merge tag 'v4.9.75' into standard/baseBruce Ashfield
2018-01-05KPTI: Rename to PAGE_TABLE_ISOLATIONKees Cook
2018-01-05x86/kaiser: Reenable PARAVIRTBorislav Petkov
2018-01-05kaiser: delete KAISER_REAL_SWITCH optionHugh Dickins
2018-01-05kaiser: KAISER depends on SMPHugh Dickins
2018-01-05kaiser: merged updateDave Hansen
2018-01-05KAISER: Kernel Address IsolationRichard Fellner
2017-12-22Merge tag 'v4.9.69' into standard/baseBruce Ashfield
2017-12-22Merge tag 'v4.9.68' into standard/baseBruce Ashfield
2017-12-14KEYS: add missing permission check for request_key() destinationEric Biggers
2017-12-09ima: fix hash algorithm initializationBoshi Wang
2017-11-29Merge tag 'v4.9.65' into standard/baseBruce Ashfield
2017-11-29Merge tag 'v4.9.63' into standard/baseBruce Ashfield
2017-11-29Merge tag 'v4.9.62' into standard/baseBruce Ashfield
2017-11-24ima: do not update security.ima if appraisal status is not INTEGRITY_PASSRoberto Sassu
2017-11-18security/keys: add CONFIG_KEYS_COMPAT to KconfigBilal Amarni
2017-11-15KEYS: trusted: fix writing past end of buffer in trusted_read()Eric Biggers
2017-11-15KEYS: trusted: sanitize all key materialEric Biggers
generated by cgit 1.2.3-korg (git 2.39.0) at 2024-07-01 09:14:13 +0000