aboutsummaryrefslogtreecommitdiffstats
path: root/security
AgeCommit message (Expand)AuthorFilesLines
2019-01-05Merge branch 'mount.part1' of git://git.kernel.org/pub/scm/linux/kernel/git/v...Linus Torvalds6-741/+459
2019-01-03Remove 'type' argument from access_ok() functionLinus Torvalds1-1/+1
2019-01-02Merge branch 'next-tpm' of git://git.kernel.org/pub/scm/linux/kernel/git/jmor...Linus Torvalds1-2/+3
2019-01-02Merge branch 'next-smack' of git://git.kernel.org/pub/scm/linux/kernel/git/jm...Linus Torvalds1-3/+9
2019-01-02Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds11-92/+633
2019-01-01KEYS: fix parsing invalid pkey info stringEric Biggers1-0/+2
2018-12-29Merge tag 'kconfig-v4.21' of git://git.kernel.org/pub/scm/linux/kernel/git/ma...Linus Torvalds2-10/+10
2018-12-28Merge branch 'akpm' (patches from Andrew)Linus Torvalds1-1/+1
2018-12-28Merge tag 'libnvdimm-for-4.21' of git://git.kernel.org/pub/scm/linux/kernel/g...Linus Torvalds3-11/+21
2018-12-28mm: convert totalram_pages and totalhigh_pages variables to atomicArun KS1-1/+1
2018-12-27Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert...Linus Torvalds4-7/+6
2018-12-27Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-nextLinus Torvalds1-2/+2
2018-12-27Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds29-39/+22
2018-12-27Merge tag 'selinux-pr-20181224' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds9-396/+625
2018-12-27Merge tag 'audit-pr-20181224' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds1-1/+1
2018-12-21smack: rewrite smack_sb_eat_lsm_opts()Al Viro1-85/+23
2018-12-21smack: get rid of match_token()Al Viro1-18/+38
2018-12-21smack: take the guts of smack_parse_opts_str() into a new helperAl Viro1-57/+57
2018-12-21LSM: new method: ->sb_add_mnt_opt()Al Viro3-30/+24
2018-12-21selinux: rewrite selinux_sb_eat_lsm_opts()Al Viro1-92/+54
2018-12-21selinux: regularize Opt_... names a bitAl Viro1-8/+8
2018-12-21selinux: switch away from match_token()Al Viro1-27/+55
2018-12-21selinux: new helper - selinux_add_opt()Al Viro1-73/+53
2018-12-21smack: switch to private smack_mnt_optsAl Viro1-102/+55
2018-12-21selinux: switch to private struct selinux_mnt_optsAl Viro1-161/+101
2018-12-21LSM: hide struct security_mnt_opts from any generic codeAl Viro3-32/+85
2018-12-21selinux: kill selinux_sb_get_mnt_opts()Al Viro1-147/+51
2018-12-21LSM: turn sb_eat_lsm_opts() into a methodAl Viro3-12/+31
2018-12-21btrfs: sanitize security_mnt_opts useAl Viro1-0/+1
2018-12-21selinux; don't open-code a loop in sb_finish_set_opts()Al Viro1-4/+2
2018-12-21LSM: split ->sb_set_mnt_opts() out of ->sb_kern_mount()Al Viro3-27/+3
2018-12-21new helper: security_sb_eat_lsm_opts()Al Viro1-3/+12
2018-12-21LSM: lift extracting and parsing LSM options into the caller of ->sb_remount()Al Viro2-37/+15
2018-12-21LSM: lift parsing LSM options into the caller of ->sb_kern_mount()Al Viro3-43/+9
2018-12-21smack: make smack_parse_opts_str() clean up on failureAl Viro1-0/+1
2018-12-22treewide: surround Kconfig file paths with double quotesMasahiro Yamada2-10/+10
2018-12-20Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netDavid S. Miller3-7/+7
2018-12-20security: integrity: partial revert of make ima_main explicitly non-modularPaul Gortmaker1-1/+1
2018-12-20selinux: expand superblock_doinit() callsAl Viro1-30/+24
2018-12-20vfs: Suppress MS_* flag defs within the kernel unless explicitly enabledDavid Howells4-0/+4
2018-12-19net: use skb_sec_path helper in more placesFlorian Westphal1-2/+2
2018-12-17ima: cleanup the match_token policy codeMimi Zohar1-5/+5
2018-12-17security: don't use a negative Opt_err token indexLinus Torvalds2-2/+2
2018-12-17integrity: Remove references to module keyringThiago Jung Bauermann2-4/+2
2018-12-17Merge tag 'tpmdd-next-20181217' of git://git.infradead.org/users/jjs/linux-tp...James Morris1-2/+3
2018-12-17Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi...James Morris11-91/+634
2018-12-17Merge tag 'v4.20-rc7' into next-generalJames Morris4-4/+23
2018-12-13Merge branch 'smack-for-4.21-a' of https://github.com/cschaufler/next-smack i...James Morris1-3/+9
2018-12-13keys-encrypted: add nvdimm key format type to encrypted keysDave Jiang1-9/+20
2018-12-13keys: Export lookup_user_key to external usersDave Jiang2-2/+1
2018-12-12ima: Use inode_is_open_for_writeNikolay Borisov1-1/+1
2018-12-12ima: Support platform keyring for kernel appraisalNayna Jain1-2/+12
2018-12-12efi: Allow the "db" UEFI variable to be suppressedJosh Boyer1-10/+35
2018-12-12efi: Import certificates from UEFI Secure BootJosh Boyer2-1/+173
2018-12-12efi: Add an EFI signature blob parserDave Howells2-1/+110
2018-12-12integrity: Load certs to the platform keyringNayna Jain3-24/+86
2018-12-12integrity: Define a trusted platform keyringNayna Jain5-16/+81
2018-12-12security: fs: make inode explicitly non-modularPaul Gortmaker1-4/+2
2018-12-12security: audit and remove any unnecessary uses of module.hPaul Gortmaker24-24/+14
2018-12-12security: integrity: make evm_main explicitly non-modularPaul Gortmaker1-4/+1
2018-12-12keys: remove needless modular infrastructure from ecryptfs_formatPaul Gortmaker1-3/+2
2018-12-12security: integrity: make ima_main explicitly non-modularPaul Gortmaker1-4/+3
2018-12-11ima: don't measure/appraise files on efivarfsMimi Zohar1-1/+3
2018-12-11x86/ima: define arch_get_ima_policy() for x86Eric Richter1-1/+9
2018-12-11ima: add support for arch specific policiesNayna Jain1-2/+70
2018-12-11ima: refactor ima_init_policy()Nayna Jain1-41/+56
2018-12-11ima: prevent kexec_load syscall based on runtime secureboot flagNayna Jain1-6/+13
2018-12-05selinux: overhaul sidtab to fix bug and improve performanceOndrej Mosnacek5-324/+468
2018-12-05selinux: use separate table for initial SID lookupOndrej Mosnacek5-110/+173
2018-12-03smack: fix access permissions for keyringZoran Markovic1-3/+9
2018-11-29Merge tag 'selinux-pr-20181129' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-1/+12
2018-11-29selinux: add support for RTM_NEWCHAIN, RTM_DELCHAIN, and RTM_GETCHAINPaul Moore1-1/+12
2018-11-26audit: use current whenever possiblePaul Moore1-1/+1
2018-11-26selinux: make "selinux_policycap_names[]" const char *Alexey Dobriyan2-2/+2
2018-11-26selinux: always allow mounting submountsOndrej Mosnacek1-1/+1
2018-11-20selinux: refactor sidtab conversionOndrej Mosnacek3-41/+42
2018-11-20crypto: drop mask=CRYPTO_ALG_ASYNC from 'shash' tfm allocationsEric Biggers4-7/+6
2018-11-15Merge tag 'selinux-pr-20181115' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds2-3/+10
2018-11-13selinux: fix non-MLS handling in mls_context_to_sid()Paul Moore1-3/+7
2018-11-13integrity: support new struct public_key_signature encoding fieldMimi Zohar1-0/+1
2018-11-13selinux: check length properly in SCTP bind hookOndrej Mosnacek1-0/+3
2018-11-13integrity: support new struct public_key_signature encoding fieldMimi Zohar1-0/+1
2018-11-13tpm: use u32 instead of int for PCR indexTomas Winkler1-2/+3
2018-11-12Merge tag 'v4.20-rc2' into next-generalJames Morris39-326/+880
2018-11-05selinux: policydb - fix byte order and alignment issuesOndrej Mosnacek1-15/+36
2018-11-05tomoyo: fix small typoYangtao Li1-1/+1
2018-11-02Merge tag 'apparmor-pr-2018-11-01' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds12-17/+291
2018-11-01apparmor: clean an indentation issue, remove extraneous spaceColin Ian King1-1/+1
2018-11-01apparmor: fix checkpatch error in Parse secmark policyJohn Johansen1-1/+1
2018-10-26KEYS: Move trusted.h to include/keys [ver #2]Denis Kenzior2-137/+1
2018-10-26KEYS: trusted: Expose common functionality [ver #2]Denis Kenzior2-5/+21
2018-10-26KEYS: Provide keyctls to drive the new key type ops for asymmetric keys [ver #2]David Howells5-0/+405
2018-10-25Merge branch 'next-loadpin' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds2-13/+17
2018-10-25Merge branch 'next-smack' of git://git.kernel.org/pub/scm/linux/kernel/git/jm...Linus Torvalds2-7/+11
2018-10-25Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds9-43/+54
2018-10-24Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds8-25/+50
2018-10-24Merge tag 'selinux-pr-20181022' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds5-111/+88
2018-10-24Merge branch 'siginfo-linus' of git://git.kernel.org/pub/scm/linux/kernel/git...Linus Torvalds4-4/+4
2018-10-18Merge tag 'loadpin-security-next' of https://git.kernel.org/pub/scm/linux/ker...James Morris2-13/+17
2018-10-18LoadPin: Rename boot param "enabled" to "enforce"Kees Cook2-12/+13
2018-10-18LoadPin: Report friendly block device nameKees Cook1-1/+4
2018-10-12apparmor: add #ifdef checks for secmark filteringArnd Bergmann2-0/+12
2018-10-10LSM: Don't ignore initialization failuresKees Cook1-1/+3
2018-10-10LSM: Provide init debugging infrastructureKees Cook1-0/+18
2018-10-10LSM: Record LSM name in struct lsm_infoKees Cook5-0/+5
2018-10-10LSM: Convert security_initcall() into DEFINE_LSM()Kees Cook5-5/+15
2018-10-10LSM: Convert from initcall to struct lsm_infoKees Cook2-9/+6
2018-10-10LSM: Remove initcall tracingKees Cook1-7/+1
2018-10-10LSM: Rename .security_initcall section to .lsm_infoKees Cook1-2/+2
2018-10-10LSM: Correctly announce start of LSM initializationKees Cook1-1/+2
2018-10-10ima: open a new file instance if no read permissionsGoldwyn Rodrigues1-20/+34
2018-10-10ima: fix showing large 'violations' or 'runtime_measurements_count'Eric Biggers1-3/+3
2018-10-10security/integrity: remove unnecessary 'init_keyring' variableEric Biggers1-7/+1
2018-10-10security/integrity: constify some read-only dataEric Biggers8-13/+16
2018-10-03signal: Distinguish between kernel_siginfo and siginfoEric W. Biederman4-4/+4
2018-10-03apparmor: Fix uninitialized value in aa_split_fqnameZubin Mithra1-2/+4
2018-10-03apparmor: don't try to replace stale label in ptraceme checkJann Horn1-2/+2
2018-10-03apparmor: Replace spin_is_locked() with lockdepLance Roy1-1/+1
2018-10-03apparmor: Allow filtering based on secmark policyMatthew Garrett2-1/+177
2018-10-03apparmor: Parse secmark policyMatthew Garrett4-0/+77
2018-10-03apparmor: Add a wildcard secidMatthew Garrett2-2/+4
2018-09-25Revert "uapi/linux/keyctl.h: don't use C++ reserved keyword as a struct membe...Lubomir Rintel1-1/+1
2018-09-18Smack: Mark expected switch fall-throughGustavo A. R. Silva1-1/+1
2018-09-18Smack: ptrace capability use fixesCasey Schaufler1-3/+10
2018-09-18Smack: remove set but not used variable 'root_inode'YueHaibing1-3/+0
2018-09-14Revert "x86/mm/legacy: Populate the user page-table with user pgd's"Joerg Roedel1-1/+1
2018-09-13selinux: Add __GFP_NOWARN to allocation at str_read()Tetsuo Handa1-1/+1
2018-09-13apparmor: don't try to replace stale label in ptrace access checkJann Horn2-2/+4
2018-09-07apparmor: Fix network performance issue in aa_label_sk_permTony Jones1-6/+9
2018-09-06Merge tag 'apparmor-pr-2018-09-06' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds1-1/+0
2018-09-05selinux: refactor mls_context_to_sid() and make it stricterJann Horn3-110/+82
2018-09-04uapi/linux/keyctl.h: don't use C++ reserved keyword as a struct member nameRandy Dunlap1-1/+1
2018-09-04selinux: fix mounting of cgroup2 under older policiesStephen Smalley1-0/+5
2018-09-04security: tomoyo: Fix obsolete functionDing Xiang1-1/+2
2018-09-04Merge tag 'v4.19-rc2' into next-generalJames Morris46-383/+427
2018-09-03apparmor: fix bad debug check in apparmor_secid_to_secctx()John Johansen1-1/+0
2018-08-29security/capabilities: remove check for -EINVALChristian Brauner1-3/+0
2018-08-24Merge tag 'apparmor-pr-2018-08-23' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds7-44/+20
2018-08-24Merge branch 'userns-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-1/+1
2018-08-22apparmor: remove no-op permission check in policy_unpackJohn Johansen1-32/+0
2018-08-22init: allow initcall tables to be emitted using relative referencesArd Biesheuvel1-7/+10
2018-08-21apparmor: fix an error code in __aa_create_ns()Dan Carpenter1-1/+1
2018-08-15Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds12-46/+108
2018-08-15Merge branch 'next-tpm' of git://git.kernel.org/pub/scm/linux/kernel/git/jmor...Linus Torvalds4-16/+10
2018-08-15Merge branch 'next-smack' of git://git.kernel.org/pub/scm/linux/kernel/git/jm...Linus Torvalds1-6/+16
2018-08-15Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert...Linus Torvalds1-1/+1
2018-08-15Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-nextLinus Torvalds1-1/+1
2018-08-15Merge tag 'kbuild-v4.19' of git://git.kernel.org/pub/scm/linux/kernel/git/mas...Linus Torvalds1-1/+1
2018-08-15Merge tag 'selinux-pr-20180814' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds13-189/+198
2018-08-15Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds7-17/+192
2018-08-15Merge tag 'hardened-usercopy-v4.19-rc1' of git://git.kernel.org/pub/scm/linux...Linus Torvalds1-1/+0
2018-08-13Merge branch 'work.open3' of git://git.kernel.org/pub/scm/linux/kernel/git/vi...Linus Torvalds8-22/+22
2018-08-11cap_inode_getsecurity: use d_find_any_alias() instead of d_find_alias()Eddie.Horng1-1/+1
2018-08-07selinux: cleanup dentry and inodes on error in selinuxfsnixiaoming1-8/+25
2018-08-03Merge git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linuxHerbert Xu3-47/+38
2018-07-30Merge branch 'smack-for-4.19-a' of https://github.com/cschaufler/next-smack i...James Morris1-6/+16
2018-07-28ima: Get rid of ima_used_chip and use ima_tpm_chip != NULL insteadStefan Berger4-8/+4
2018-07-28ima: Use tpm_default_chip() and call TPM functions with a tpm_chipStefan Berger4-9/+7
2018-07-23net: sched: introduce chain object to uapiJiri Pirko1-1/+1
2018-07-23Smack: Inform peer that IPv6 traffic has been blockedPiotr Sawicki1-0/+4
2018-07-23Smack: Check UDP-Lite and DCCP protocols during IPv6 handlingPiotr Sawicki1-1/+3
2018-07-23Smack: Fix handling of IPv4 traffic received by PF_INET6 socketsPiotr Sawicki1-5/+9
2018-07-22EVM: fix return value check in evm_write_xattrs()Wei Yongjun1-2/+2
2018-07-20apparmor: Fix failure to audit context info in build_change_hatJohn Johansen1-1/+1
2018-07-19apparmor: Fully initialize aa_perms struct when answering userspace queryTyler Hicks1-4/+1
2018-07-19apparmor: Check buffer bounds when mapping permissions maskTyler Hicks3-6/+17
2018-07-20x86/pti: Allow CONFIG_PAGE_TABLE_ISOLATION for x86_32Joerg Roedel1-1/+1
2018-07-18integrity: prevent deadlock during digsig verification.Mikhail Kurinnoi2-1/+29
2018-07-18evm: Allow non-SHA1 digital signaturesMatthew Garrett4-31/+46
2018-07-18evm: Don't deadlock if a crypto algorithm is unavailableMatthew Garrett1-1/+2
2018-07-18integrity: silence warning when CONFIG_SECURITYFS is not enabledSudeep Holla1-3/+6
2018-07-18ima: Differentiate auditing policy rules from "audit" actionsStefan Berger1-2/+2
2018-07-18ima: Do not audit if CONFIG_INTEGRITY_AUDIT is not setStefan Berger3-1/+21
2018-07-18ima: Use audit_log_format() rather than audit_log_string()Stefan Berger2-7/+2
2018-07-18ima: Call audit_log_string() rather than logging it untrustedStefan Berger1-1/+1
2018-07-17security: check for kstrdup() failure in lsm_append()Eric Biggers1-0/+2
2018-07-17security: export security_kernel_load_data functionArnd Bergmann1-0/+1
2018-07-17selinux: constify write_op[]Eric Biggers1-1/+1
2018-07-18kbuild: move bin2c back to scripts/ from scripts/basic/Masahiro Yamada1-1/+1
2018-07-16ima: based on policy warn about loading firmware (pre-allocated buffer)Mimi Zohar1-0/+8
2018-07-16module: replace the existing LSM hook in init_moduleMimi Zohar3-13/+31
2018-07-16ima: add build time policyMimi Zohar2-3/+101
2018-07-16ima: based on policy require signed firmware (sysfs fallback)Mimi Zohar1-1/+9
2018-07-16ima: based on policy require signed kexec kernel imagesMimi Zohar4-1/+36
2018-07-16security: define new LSM hook named security_kernel_load_dataMimi Zohar1-0/+5
2018-07-12IMA: don't propagate opened through the entire thingAl Viro3-12/+12
2018-07-12->file_open(): lose cred argumentAl Viro5-9/+9
2018-07-12security_file_open(): lose cred argumentAl Viro1-2/+2
2018-07-09crypto: remove redundant type flags from tfm allocationEric Biggers1-1/+1
2018-07-02usercopy: Do not select BUG with HARDENED_USERCOPYKamal Mostafa1-1/+0
2018-06-30Merge tag 'selinux-pr-20180629' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-45/+33
2018-06-28selinux: move user accesses in selinuxfs out of locked regionsJann Horn1-45/+33
2018-06-26dh key: fix rounding up KDF output lengthEric Biggers1-2/+4
2018-06-23Smack: Mark inode instant in smack_task_to_inodeCasey Schaufler1-0/+1
2018-06-19selinux: Cleanup printk logging in netnodepeter enderborg1-3/+2
2018-06-19selinux: Cleanup printk logging in avcpeter enderborg1-1/+1
2018-06-19selinux: Cleanup printk logging in netifpeter enderborg1-7/+4
2018-06-19selinux: Cleanup printk logging in netportpeter enderborg1-3/+2
2018-06-19selinux: Cleanup printk logging in sidtabpeter enderborg1-3/+2
2018-06-19selinux: Cleanup printk logging in netlinkpeter enderborg1-1/+1
generated by cgit 1.2.3-korg (git 2.39.0) at 2024-05-19 01:22:53 +0000