summaryrefslogtreecommitdiffstats
path: root/security
AgeCommit message (Expand)Author
2020-04-29KEYS: Avoid false positive ENOMEM error on key readWaiman Long
2020-04-23KEYS: Don't write out to userspace while holding key semaphoreWaiman Long
2020-04-21keys: Fix proc_keys_next to increase position indexVasily Averin
2020-04-17KEYS: reaching the keys quotas correctlyYang Xu
2020-03-12efi: Only print errors about failing to get certs if EFI vars are foundJavier Martinez Canillas
2020-03-05ima: ima/lsm policy rule loading logic bug fixesJanne Karhunen
2020-02-24selinux: ensure we cleanup the internal AVC counters on error in avc_update()Jaihind Yadav
2020-02-24selinux: ensure we cleanup the internal AVC counters on error in avc_insert()Paul Moore
2020-02-14selinux: fall back to ref-walk if audit is requiredStephen Smalley
2020-02-14selinux: fix regression introduced by move_mount(2) syscallStephen Smalley
2020-02-14selinux: revert "stop passing MAY_NOT_BLOCK to the AVC upon follow_link"Stephen Smalley
2020-02-11broken ping to ipv6 linklocal addresses on debian busterCasey Schaufler
2020-02-05tomoyo: Use atomic_t for statistics counterTetsuo Handa
2020-01-17tomoyo: Suppress RCU warning at list_for_each_entry_rcu().Tetsuo Handa
2020-01-09apparmor: fix aa_xattrs_match() may sleep while holding a RCU lockJohn Johansen
2020-01-04tomoyo: Don't use nifty names on sockets.Tetsuo Handa
2020-01-04apparmor: fix unsigned len comparison with less than zeroColin Ian King
2019-10-31efi/efi_test: Lock down /dev/efi_test and require CAP_SYS_ADMINJavier Martinez Canillas
2019-10-08Merge tag 'selinux-pr-20191007' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds
2019-10-05integrity: remove pointless subdir-$(CONFIG_...)Masahiro Yamada
2019-10-05integrity: remove unneeded, broken attempt to add -fshort-wcharMasahiro Yamada
2019-10-03selinux: fix context string corruption in convert_context()Ondrej Mosnacek
2019-09-28Merge branch 'next-lockdown' of git://git.kernel.org/pub/scm/linux/kernel/git...Linus Torvalds
2019-09-27Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds
2019-09-25KEYS: trusted: correctly initialize digests and fix locking issueRoberto Sassu
2019-09-23Merge tag 'smack-for-5.4-rc1' of git://github.com/cschaufler/smack-nextLinus Torvalds
2019-09-23Merge tag 'safesetid-bugfix-5.4' of git://github.com/micah-morton/linuxLinus Torvalds
2019-09-23Merge tag 'selinux-pr-20190917' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds
2019-09-17LSM: SafeSetID: Stop releasing uninitialized rulesetMicah Morton
2019-09-10security: constify some arrays in lockdown LSMMatthew Garrett
2019-09-05keys: Fix missing null pointer check in request_key_auth_describe()Hillf Danton
2019-09-04selinux: fix residual uses of current_security() for the SELinux blobStephen Smalley
2019-09-04smack: use GFP_NOFS while holding inode_smack::smk_lockEric Biggers
2019-09-04security: smack: Fix possible null-pointer dereferences in smack_socket_sock_...Jia-Ju Bai
2019-09-04smack: fix some kernel-doc notationsluanshi
2019-09-04Smack: Don't ignore other bprm->unsafe flags if LSM_UNSAFE_PTRACE is setJann Horn
2019-08-30keys: ensure that ->match_free() is called in request_key_and_link()Eric Biggers
2019-08-29ima: ima_api: Use struct_size() in kzalloc()Gustavo A. R. Silva
2019-08-29ima: use struct_size() in kzalloc()Gustavo A. R. Silva
2019-08-28ima: Fix use after free in ima_read_modsig()Thiago Jung Bauermann
2019-08-27selinux: avoid atomic_t usage in sidtabOndrej Mosnacek
2019-08-19lockdown: Print current->comm in restriction messagesMatthew Garrett
2019-08-19tracefs: Restrict tracefs when the kernel is locked downMatthew Garrett
2019-08-19debugfs: Restrict debugfs when the kernel is locked downDavid Howells
2019-08-19kexec: Allow kexec_file() with appropriate IMA policy when locked downMatthew Garrett
2019-08-19lockdown: Lock down perf when in confidentiality modeDavid Howells
2019-08-19bpf: Restrict bpf when kernel lockdown is in confidentiality modeDavid Howells
2019-08-19lockdown: Lock down tracing and perf kprobes when in confidentiality modeDavid Howells
2019-08-19lockdown: Lock down /proc/kcoreDavid Howells
2019-08-19x86/mmiotrace: Lock down the testmmiotrace moduleDavid Howells