summaryrefslogtreecommitdiff
path: root/security
AgeCommit message (Expand)AuthorFilesLines
2025-07-10selinux: change security_compute_sid to return the ssid or tsid on matchStephen Smalley1-5/+11
2025-06-27selinux: fix selinux_xfrm_alloc_user() to set correct ctx_lenStephen Smalley1-1/+1
2025-05-29smack: Revert "smackfs: Added check catlen"Konstantin Andreev1-14/+3
2025-05-29smack: recognize ipv4 CIPSO w/o categoriesKonstantin Andreev1-0/+4
2025-05-29ima: process_measurement() needlessly takes inode_lock() on MAY_READFrederick Lawler1-1/+3
2025-04-20landlock: Prepare to add second errataMickaël Salaün1-0/+12
2025-04-20landlock: Always allow signals between threads of the same processMickaël Salaün3-6/+64
2025-04-20landlock: Add erratum for TCP fixMickaël Salaün1-0/+15
2025-04-20landlock: Add the errata interfaceMickaël Salaün4-4/+138
2025-04-20landlock: Move code to ease future backportsMickaël Salaün1-5/+5
2025-04-20ima: limit the number of ToMToU integrity violationsMimi Zohar2-4/+5
2025-04-20ima: limit the number of open-writers integrity violationsMimi Zohar2-2/+10
2025-04-10smack: ipv4/ipv6: tcp/dccp/sctp: fix incorrect child socket labelKonstantin Andreev1-24/+0
2025-04-10smack: dont compile ipv6 code unless ipv6 is configuredKonstantin Andreev2-1/+15
2025-03-28keys: Fix UAF in key_put()David Howells2-1/+5
2025-03-07ima: Reset IMA_NONACTION_RULE_FLAGS after post_setattrRoberto Sassu2-2/+8
2025-03-07landlock: Fix non-TCP sockets restrictionMikhail Ivanov1-2/+1
2025-02-17KEYS: trusted: dcp: fix improper sg use with CONFIG_VMAP_STACK=yDavid Gstir1-4/+18
2025-02-17tomoyo: don't emit warning in tomoyo_write_control()Tetsuo Handa1-1/+1
2025-02-17safesetid: check size of policy writesLeo Stone1-0/+3
2025-02-08landlock: Handle weird filesMickaël Salaün1-6/+5
2025-01-23apparmor: allocate xmatch for nullpdb inside aa_alloc_nullRyan Lee1-0/+1
2025-01-09selinux: ignore unknown extended permissionsThiébaud Weksteen1-2/+6
2024-12-05apparmor: test: Fix memory leak for aa_unpack_strdup()Jinjie Ruan1-0/+6
2024-12-05apparmor: fix 'Do simple duplicate message elimination'chao liu1-0/+2
2024-11-12Merge tag 'integrity-v6.12' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds3-5/+16
2024-11-12Merge tag 'landlock-6.12-rc7' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds5-57/+96
2024-11-09landlock: Optimize scope enforcementMickaël Salaün1-3/+15
2024-11-09landlock: Refactor network access mask managementMickaël Salaün1-22/+6
2024-11-09landlock: Refactor filesystem access mask managementMickaël Salaün3-32/+75
2024-11-04KEYS: trusted: dcp: fix NULL dereference in AEAD crypto operationDavid Gstir1-4/+5
2024-11-04security/keys: fix slab-out-of-bounds in key_task_permissionChen Ridong1-2/+5
2024-10-18ipe: fallback to platform keyring also if key in trusted keyring is rejectedLuca Boccassi1-1/+1
2024-10-17ipe: allow secondary and platform keyrings to install/update policiesLuca Boccassi2-1/+32
2024-10-17ipe: also reject policy updates with the same versionLuca Boccassi1-1/+1
2024-10-17ipe: return -ESTALE instead of -EINVAL on update when new policy has a lower ...Luca Boccassi1-1/+1
2024-10-09integrity: Use static_assert() to check struct sizesGustavo A. R. Silva1-0/+4
2024-10-09evm: stop avoidably reading i_writecount in evm_file_releaseMateusz Guzik1-1/+2
2024-10-09ima: fix buffer overrun in ima_eventdigest_init_commonSamasth Norway Ananda1-4/+10
2024-10-09bcachefs: do not use PF_MEMALLOC_NORECLAIMMichal Hocko1-4/+6
2024-10-05Merge tag 'hardening-v6.12-rc2' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-2/+2
2024-10-05Merge tag 'lsm-pr-20241004' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds11-577/+118
2024-10-04tomoyo: revert CONFIG_SECURITY_TOMOYO_LKM supportPaul Moore11-577/+118
2024-10-02move asm/unaligned.h to linux/unaligned.hAl Viro2-2/+2
2024-09-28hardening: Adjust dependencies in selection of MODVERSIONSNathan Chancellor1-2/+2
2024-09-27Merge tag 'tomoyo-pr-20240927' of git://git.code.sf.net/p/tomoyo/tomoyoLinus Torvalds12-121/+583
2024-09-25tomoyo: fallback to realpath if symlink's pathname does not existTetsuo Handa1-3/+6
2024-09-24Merge tag 'bpf-next-6.12-struct-fd' of git://git.kernel.org/pub/scm/linux/ker...Linus Torvalds2-2/+2
2024-09-24Merge tag 'landlock-6.12-rc1' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds8-9/+269
2024-09-24Merge tag 'lsm-pr-20240923' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds3-11/+5
generated by cgit v1.2.3 (git 2.25.1) at 2026-01-02 17:32:51 +0000