summaryrefslogtreecommitdiffstats
path: root/security
AgeCommit message (Expand)AuthorFilesLines
2020-01-22ima: add the ability to query the cached hash of a given fileFlorent Revest1-0/+49
2020-01-22ima: Add a space after printing LSM rules for readabilityClay Chang1-0/+1
2020-01-20selinux: fix regression introduced by move_mount(2) syscallStephen Smalley1-0/+10
2020-01-16selinux: do not allocate ancillary buffer on first loadOndrej Mosnacek1-15/+13
2020-01-16selinux: remove redundant allocation and helper functionsPaul Moore1-58/+36
2020-01-16selinux: remove redundant selinux_nlmsg_permHuaisheng Ye1-39/+34
2020-01-16selinux: fix wrong buffer types in policydb.cOndrej Mosnacek1-2/+2
2020-01-15net: bridge: vlan: add rtm definitions and dump supportNikolay Aleksandrov1-1/+4
2020-01-10kunit: building kunit as a module breaks allmodconfigAlan Maguire1-1/+1
2020-01-10selinux: reorder hooks to make runtime disable less brokenOndrej Mosnacek1-31/+70
2020-01-10selinux: treat atomic flags more carefullyOndrej Mosnacek3-31/+61
2020-01-10selinux: make default_noexec read-only after initStephen Smalley1-1/+1
2020-01-10selinux: move ibpkeys code under CONFIG_SECURITY_INFINIBAND.Ravi Kumar Siddojigari2-2/+15
2020-01-10selinux: remove redundant msg_msg_alloc_securityHuaisheng Ye1-11/+6
2020-01-09apparmor: add AppArmor KUnit tests for policy unpackMike Salvatore3-0/+627
2020-01-09IMA: fix measuring asymmetric keys KconfigLakshmi Ramasubramanian2-1/+7
2020-01-07Documentation,selinux: fix references to old selinuxfs mount pointStephen Smalley1-3/+4
2020-01-07selinux: deprecate disabling SELinux and runtimePaul Moore2-0/+10
2020-01-06selinux: allow per-file labelling for binderfsHridya Valsaraju1-0/+1
2020-01-06selinuxfs: use scnprintf to get real length for inodeliuyang341-2/+2
2020-01-04Merge tag 'apparmor-pr-2020-01-04' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds5-47/+55
2020-01-04apparmor: fix aa_xattrs_match() may sleep while holding a RCU lockJohn Johansen3-42/+46
2020-01-02apparmor: only get a label reference if the fast path check failsJohn Johansen1-4/+8
2020-01-02apparmor: fix bind mounts aborting with -ENOMEMPatrick Steinhardt1-1/+1
2020-01-02tomoyo: Use atomic_t for statistics counterTetsuo Handa1-7/+4
2019-12-31Merge tag 'tomoyo-fixes-for-5.5' of git://git.osdn.net/gitroot/tomoyo/tomoyo-...Linus Torvalds5-44/+27
2019-12-24selinux: remove set but not used variable 'sidtab'YueHaibing1-8/+0
2019-12-23selinux: ensure the policy has been loaded before reading the sidtab statsPaul Moore1-0/+6
2019-12-21selinux: ensure we cleanup the internal AVC counters on error in avc_update()Jaihind Yadav1-1/+1
2019-12-18selinux: randomize layout of key structuresStephen Smalley4-4/+4
2019-12-18selinux: clean up selinux_enabled/disabled/enforcing_bootStephen Smalley7-18/+17
2019-12-18Merge tag 'tpmdd-next-20191219' of git://git.infradead.org/users/jjs/linux-tpmddLinus Torvalds5-12/+4
2019-12-17security: keys: trusted: fix lost handle flushJames Bottomley1-0/+1
2019-12-16tomoyo: Suppress RCU warning at list_for_each_entry_rcu().Tetsuo Handa4-13/+26
2019-12-12KEYS: remove CONFIG_KEYS_COMPATEric Biggers4-12/+3
2019-12-12IMA: Read keyrings= option from the IMA policyLakshmi Ramasubramanian1-1/+28
2019-12-12IMA: Add support to limit measuring keysLakshmi Ramasubramanian6-17/+82
2019-12-12KEYS: Call the IMA hook to measure keysLakshmi Ramasubramanian1-0/+10
2019-12-12IMA: Define an IMA hook to measure keysLakshmi Ramasubramanian2-0/+53
2019-12-12IMA: Add KEY_CHECK func to measure keysLakshmi Ramasubramanian2-1/+4
2019-12-12IMA: Check IMA policy flagLakshmi Ramasubramanian1-0/+3
2019-12-12ima: avoid appraise error for hash calc interruptPatrick Callaghan1-1/+3
2019-12-12selinux: remove unnecessary selinux cred requestYang Guo1-4/+3
2019-12-11tomoyo: Don't use nifty names on sockets.Tetsuo Handa1-31/+1
2019-12-10selinux: ensure we cleanup the internal AVC counters on error in avc_insert()Paul Moore1-27/+24
2019-12-10security: only build lsm_audit if CONFIG_SECURITY=yStephen Smalley1-1/+1
2019-12-09selinux: clean up selinux_inode_permission MAY_NOT_BLOCK testsStephen Smalley1-4/+4
2019-12-09selinux: fall back to ref-walk if audit is requiredStephen Smalley3-26/+17
2019-12-09selinux: revert "stop passing MAY_NOT_BLOCK to the AVC upon follow_link"Stephen Smalley3-4/+30
2019-12-09security,lockdown,selinux: implement SELinux lockdownStephen Smalley5-27/+70
generated by cgit v1.2.3 (git 2.39.1) at 2024-08-01 06:09:51 +0000