summaryrefslogtreecommitdiffstats
path: root/security
AgeCommit message (Expand)AuthorFilesLines
2017-10-24Merge tag 'v4.14-rc6' into locking/core, to pick up fixesIngo Molnar15-54/+90
2017-10-22Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/netDavid S. Miller15-54/+90
2017-10-21tomoyo: fix timestamping for y2038Arnd Bergmann4-34/+13
2017-10-20selinux: bpf: Add addtional check for bpf object file receiveChenbo Feng1-0/+49
2017-10-20selinux: bpf: Add selinux check for eBPF syscall operationsChenbo Feng3-0/+117
2017-10-20security: bpf: Add LSM hooks for bpf object related syscallChenbo Feng1-0/+32
2017-10-20capabilities: audit log other surprising conditionsRichard Guy Briggs1-7/+22
2017-10-20capabilities: fix logic for effective root or real rootRichard Guy Briggs1-3/+2
2017-10-20capabilities: invert logic for clarityRichard Guy Briggs1-4/+4
2017-10-20capabilities: remove a layer of conditional logicRichard Guy Briggs1-13/+10
2017-10-20capabilities: move audit log decision to functionRichard Guy Briggs1-20/+30
2017-10-20capabilities: use intuitive names for id changesRichard Guy Briggs1-6/+22
2017-10-20capabilities: use root_priveleged inline to clarify logicRichard Guy Briggs1-2/+4
2017-10-20capabilities: rename has_cap to has_fcapRichard Guy Briggs1-10/+10
2017-10-20capabilities: intuitive names for cap gain statusRichard Guy Briggs1-7/+11
2017-10-20capabilities: factor out cap_bprm_set_creds privileged rootRichard Guy Briggs1-28/+48
2017-10-19commoncap: move assignment of fs_ns to avoid null pointer dereferenceColin Ian King1-1/+2
2017-10-19Merge commit 'tags/keys-fixes-20171018' into fixes-v4.14-rc5James Morris14-53/+88
2017-10-18KEYS: load key flags and expiry time atomically in proc_keys_show()Eric Biggers1-10/+14
2017-10-18KEYS: Load key expiry time atomically in keyring_search_iterator()Eric Biggers1-1/+3
2017-10-18KEYS: load key flags and expiry time atomically in key_validate()Eric Biggers1-3/+4
2017-10-18KEYS: don't let add_key() update an uninstantiated keyDavid Howells1-0/+10
2017-10-18KEYS: Fix race between updating and finding a negative keyDavid Howells12-39/+49
2017-10-18security/keys: BIG_KEY requires CONFIG_CRYPTOArnd Bergmann1-0/+1
2017-10-16selinux: remove extraneous initialization of slots_used and max_chain_lenColin Ian King1-1/+1
2017-10-16selinux: remove redundant assignment to lenColin Ian King1-1/+0
2017-10-16selinux: remove redundant assignment to strColin Ian King1-3/+2
2017-10-12KEYS: encrypted: fix dereference of NULL user_key_payloadEric Biggers1-0/+7
2017-10-10locking/rwsem, security/apparmor: Replace homebrew use of write_can_lock() wi...Will Deacon2-15/+4
2017-10-05timer: Remove expires and data arguments from DEFINE_TIMERKees Cook1-1/+1
2017-10-04selinux: fix build warningCorentin LABBE1-2/+2
2017-10-04selinux: fix build warning by removing the unused sid variableCorentin LABBE1-2/+1
2017-10-04selinux: Perform both commoncap and selinux xattr checksEric W. Biederman1-25/+18
2017-10-04lsm: fix smack_inode_removexattr and xattr_getsecurity memleakCasey Schaufler1-30/+25
2017-09-28Merge commit 'keys-fixes-20170927' into fixes-v4.14-rc3James Morris9-152/+137
2017-09-25security/keys: rewrite all of big_key cryptoJason A. Donenfeld2-71/+60
2017-09-25security/keys: properly zero out sensitive key material in big_keyJason A. Donenfeld1-6/+6
2017-09-25KEYS: use kmemdup() in request_key_auth_new()Eric Biggers1-3/+2
2017-09-25KEYS: restrict /proc/keys by credentials at open timeEric Biggers1-6/+2
2017-09-25KEYS: reset parent each time before searching key_user_treeEric Biggers1-2/+2
2017-09-25KEYS: prevent KEYCTL_READ on negative keyEric Biggers1-0/+5
2017-09-25KEYS: prevent creating a different user's keyringsEric Biggers4-12/+21
2017-09-25KEYS: fix writing past end of user-supplied buffer in keyring_read()Eric Biggers1-9/+5
2017-09-25KEYS: fix key refcount leak in keyctl_read_key()Eric Biggers1-1/+1
2017-09-25KEYS: fix key refcount leak in keyctl_assume_authority()Eric Biggers1-4/+2
2017-09-25KEYS: don't revoke uninstantiated key in request_key_auth_new()Eric Biggers1-1/+0
2017-09-25KEYS: fix cred refcount leak in request_key_auth_new()Eric Biggers1-37/+31
2017-09-24Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-3/+3
2017-09-23security: fix description of values returned by cap_inode_need_killprivStefan Berger1-3/+3
2017-09-23Merge tag 'apparmor-pr-2017-09-22' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds24-137/+2088