summaryrefslogtreecommitdiff
path: root/security
AgeCommit message (Expand)AuthorFilesLines
2024-08-20ipe: add permissive toggleDeven Bowers5-4/+102
2024-08-20audit,ipe: add IPE auditing supportDeven Bowers10-18/+381
2024-08-20ipe: add userspace interfaceDeven Bowers8-0/+727
2024-08-20lsm: add new securityfs delete functionFan Wu1-0/+25
2024-08-20ipe: introduce 'boot_verified' as a trust providerFan Wu8-6/+101
2024-08-20initramfs,lsm: add a security hook to do_populate_rootfs()Fan Wu1-0/+10
2024-08-20ipe: add LSM hooks on execution and kernel readDeven Bowers6-0/+235
2024-08-20ipe: add evaluation loopDeven Bowers3-0/+127
2024-08-20ipe: add policy parserDeven Bowers5-0/+697
2024-08-19lsm: add IPE lsmDeven Bowers7-6/+93
2024-08-15KEYS: trusted: dcp: fix leak of blob encryption keyDavid Gstir1-12/+21
2024-08-15KEYS: trusted: fix DCP blob payload length assignmentDavid Gstir1-1/+1
2024-08-15lockdown: Make lockdown_lsmid staticYue Haibing1-1/+1
2024-08-12introduce fd_file(), convert all accessors to it.Al Viro3-15/+15
2024-08-12lsm: add the inode_free_security_rcu() LSM implementation hookPaul Moore5-33/+32
2024-08-12lsm: cleanup lsm_hooks.hPaul Moore1-1/+1
2024-08-08selinux: revert our use of vma_is_initial_heap()Paul Moore1-1/+11
2024-08-07selinux: add the processing of the failure of avc_add_xperms_decision()Zhen Lei1-1/+5
2024-08-06selinux: fix potential counting error in avc_add_xperms_decision()Zhen Lei1-1/+1
2024-07-31lsm: Refactor return value of LSM hook inode_copy_up_xattrXu Kuohai4-14/+9
2024-07-31lsm: Refactor return value of LSM hook vm_enough_memoryXu Kuohai3-25/+12
2024-07-29lsm: infrastructure management of the perf_event security blobCasey Schaufler3-16/+28
2024-07-29lsm: infrastructure management of the infiniband blobCasey Schaufler3-15/+23
2024-07-29lsm: infrastructure management of the dev_tun blobCasey Schaufler3-18/+26
2024-07-29lsm: add helper for blob allocationsCasey Schaufler1-64/+33
2024-07-29lsm: infrastructure management of the key security blobCasey Schaufler5-37/+68
2024-07-29lsm: infrastructure management of the sock securityCasey Schaufler10-113/+132
2024-07-29selinux: refactor code to return ERR_PTR in selinux_netlbl_sock_genattrGaosheng Cui1-9/+9
2024-07-29selinux: Streamline type determination in security_compute_sidCanfeng Guo1-17/+19
2024-07-27Merge tag 'apparmor-pr-2024-07-25' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds8-34/+65
2024-07-27Merge tag 'landlock-6.11-rc1-houdini-fix' of git://git.kernel.org/pub/scm/lin...Linus Torvalds1-2/+9
2024-07-24sysctl: treewide: constify the ctl_table argument of proc_handlersJoel Granados3-3/+3
2024-07-24apparmor: unpack transition table if dfa is not presentGeorgia Garcia1-17/+25
2024-07-24apparmor: try to avoid refing the label in apparmor_file_openMateusz Guzik2-2/+23
2024-07-24apparmor: test: add MODULE_DESCRIPTION()Jeff Johnson1-0/+1
2024-07-24apparmor: take nosymfollow flag into accountAlexander Mikhalitsyn1-0/+2
2024-07-24landlock: Don't lose track of restrictions on cred_transferJann Horn1-2/+9
2024-07-20Merge tag 'landlock-6.11-rc1' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds4-29/+18
2024-07-19Merge tag 'v6.11-p1' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert...Linus Torvalds1-2/+1
2024-07-18landlock: Various documentation improvementsGünther Noack1-8/+9
2024-07-16Merge tag 'perf-core-2024-07-16' of git://git.kernel.org/pub/scm/linux/kernel...Linus Torvalds1-1/+1
2024-07-16Merge tag 'Smack-for-6.10' of https://github.com/cschaufler/smack-nextLinus Torvalds1-4/+10
2024-07-16Merge tag 'lsm-pr-20240715' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds3-42/+100
2024-07-16Merge tag 'selinux-pr-20240715' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-1/+1
2024-07-15Merge tag 'keys-next-6.11-rc1' of git://git.kernel.org/pub/scm/linux/kernel/g...Linus Torvalds2-0/+2
2024-07-09selinux,smack: remove the capability checks in the removexattr hooksPaul Moore2-10/+3
2024-07-09task_work: s/task_work_cancel()/task_work_cancel_func()/Frederic Weisbecker1-1/+1
2024-07-08landlock: Use bit-fields for storing handled layer access masksGünther Noack3-21/+9
2024-07-05Merge tag 'integrity-v6.10-fix' of ssh://ra.kernel.org/pub/scm/linux/kernel/g...Linus Torvalds1-2/+1
2024-07-02selinux: Use 1UL for EBITMAP_BIT to match maps typeCanfeng Guo1-1/+1
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-24 12:08:05 +0000