summaryrefslogtreecommitdiff
path: root/security
AgeCommit message (Expand)AuthorFilesLines
2024-07-05Merge tag 'integrity-v6.10-fix' of ssh://ra.kernel.org/pub/scm/linux/kernel/g...Linus Torvalds1-2/+1
2024-06-17Merge tag 'lsm-pr-20240617' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds8-17/+27
2024-06-17Merge tag 'mm-hotfixes-stable-2024-06-17-11-43' of git://git.kernel.org/pub/s...Linus Torvalds1-15/+0
2024-06-17Merge tag 'hardening-v6.10-rc5' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-0/+1
2024-06-15Revert "mm: init_mlocked_on_free_v3"David Hildenbrand1-15/+0
2024-06-13ima: Avoid blocking in RCU read-side critical sectionGUO Zihua8-17/+27
2024-06-06yama: document function parameterChristian Göttsche1-0/+1
2024-06-03ima: fix wrong zero-assignment during securityfs dentry removeEnrico Bravi1-2/+1
2024-06-03tomoyo: update project linksTetsuo Handa2-2/+2
2024-05-31landlock: Fix d_parent walkMickaël Salaün1-2/+11
2024-05-24Merge tag 'hardening-v6.10-rc1-fixes' of git://git.kernel.org/pub/scm/linux/k...Linus Torvalds1-0/+3
2024-05-21KEYS: trusted: Do not use WARN when encode failsJarkko Sakkinen1-1/+2
2024-05-21KEYS: trusted: Fix memory leak in tpm2_key_encode()Jarkko Sakkinen1-6/+18
2024-05-19Merge tag 'mm-stable-2024-05-17-19-19' of git://git.kernel.org/pub/scm/linux/...Linus Torvalds1-0/+15
2024-05-18loadpin: Prevent SECURITY_LOADPIN_ENFORCE=y without module decompressionStephen Boyd1-0/+3
2024-05-18Merge tag 'kbuild-v6.10' of git://git.kernel.org/pub/scm/linux/kernel/git/mas...Linus Torvalds1-1/+1
2024-05-18Merge tag 'landlock-6.10-rc1' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds3-5/+224
2024-05-15Merge tag 'integrity-v6.10' of ssh://ra.kernel.org/pub/scm/linux/kernel/git/z...Linus Torvalds17-90/+325
2024-05-15Merge tag 'selinux-pr-20240513' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds12-126/+146
2024-05-15Merge tag 'lsm-pr-20240513' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds4-4/+0
2024-05-14Merge tag 'net-next-6.10' of git://git.kernel.org/pub/scm/linux/kernel/git/ne...Linus Torvalds2-2/+6
2024-05-13netlabel: fix RCU annotation for IPv4 options on socket creationDavide Caratti2-2/+6
2024-05-13Merge tag 'keys-next-6.10-rc1' of git://git.kernel.org/pub/scm/linux/kernel/g...Linus Torvalds3-24/+30
2024-05-13Merge tag 'tpmdd-next-6.10-rc1' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds2-53/+106
2024-05-13landlock: Add IOCTL access right for character and block devicesGünther Noack3-5/+224
2024-05-10kbuild: use $(src) instead of $(srctree)/$(src) for source directoryMasahiro Yamada1-1/+1
2024-05-09KEYS: trusted: Add session encryption protection to the seal/unseal pathJames Bottomley1-27/+61
2024-05-09KEYS: trusted: tpm2: Use struct tpm_buf for sized buffersJarkko Sakkinen1-23/+31
2024-05-09tpm: Store the length of the tpm_buf data separately.Jarkko Sakkinen1-4/+5
2024-05-09tpm: Remove tpm_send()Jarkko Sakkinen1-2/+12
2024-05-09docs: trusted-encrypted: add DCP as new trust sourceDavid Gstir1-0/+19
2024-05-09KEYS: trusted: Introduce NXP DCP-backed trusted keysDavid Gstir4-1/+328
2024-05-09KEYS: trusted: improve scalability of trust source configDavid Gstir1-2/+8
2024-05-09keys: Fix overwrite of key expiration on instantiationSilvio Gissi1-1/+2
2024-05-09keys: update key quotas in key_put()Luis Henriques3-23/+28
2024-04-30selinux: constify source policy in cond_policydb_dup()Christian Göttsche4-14/+17
2024-04-30selinux: avoid printk_ratelimit()Christian Göttsche1-2/+1
2024-04-30selinux: pre-allocate the status pageChristian Göttsche1-0/+6
2024-04-25mm: init_mlocked_on_free_v3York Jasper Niebuhr1-0/+15
2024-04-15lsm: remove the now superfluous sentinel element from ctl_table arrayJoel Granados4-4/+0
2024-04-12ima: add crypto agility support for template-hash algorithmEnrico Bravi4-18/+132
2024-04-09evm: Rename is_unsupported_fs to is_unsupported_hmac_fsStefan Berger1-9/+10
2024-04-09fs: Rename SB_I_EVM_UNSUPPORTED to SB_I_EVM_HMAC_UNSUPPORTEDStefan Berger1-1/+1
2024-04-09evm: Enforce signatures on unsupported filesystem for EVM_INIT_X509Stefan Berger1-5/+7
2024-04-09ima: re-evaluate file integrity on file metadata changeStefan Berger1-1/+13
2024-04-09evm: Store and detect metadata inode attributes changesStefan Berger3-10/+49
2024-04-09ima: Move file-change detection variables into new structureStefan Berger4-13/+10
2024-04-09evm: Use the metadata inode to calculate metadata hashStefan Berger1-1/+1
2024-04-09evm: Implement per signature type decision in security_inode_copy_up_xattrStefan Berger1-3/+28
2024-04-09security: allow finer granularity in permitting copy-up of security xattrsStefan Berger4-5/+6