| Commit message (Expand) | Author | Age | Files | Lines |
* | Merge tag 'selinux-pr-20191007' of git://git.kernel.org/pub/scm/linux/kernel/... | Linus Torvalds | 2019-10-08 | 1 | -1/+8 |
|\ |
|
| * | selinux: fix context string corruption in convert_context() | Ondrej Mosnacek | 2019-10-03 | 1 | -1/+8 |
* | | integrity: remove pointless subdir-$(CONFIG_...) | Masahiro Yamada | 2019-10-05 | 1 | -2/+0 |
* | | integrity: remove unneeded, broken attempt to add -fshort-wchar | Masahiro Yamada | 2019-10-05 | 1 | -1/+0 |
* | | Merge branch 'next-lockdown' of git://git.kernel.org/pub/scm/linux/kernel/git... | Linus Torvalds | 2019-09-28 | 10 | -16/+350 |
|\ \ |
|
| * | | security: constify some arrays in lockdown LSM | Matthew Garrett | 2019-09-10 | 1 | -2/+2 |
| * | | lockdown: Print current->comm in restriction messages | Matthew Garrett | 2019-08-20 | 1 | -2/+6 |
| * | | tracefs: Restrict tracefs when the kernel is locked down | Matthew Garrett | 2019-08-20 | 1 | -0/+1 |
| * | | debugfs: Restrict debugfs when the kernel is locked down | David Howells | 2019-08-20 | 1 | -0/+1 |
| * | | kexec: Allow kexec_file() with appropriate IMA policy when locked down | Matthew Garrett | 2019-08-20 | 3 | -1/+53 |
| * | | lockdown: Lock down perf when in confidentiality mode | David Howells | 2019-08-20 | 1 | -0/+1 |
| * | | bpf: Restrict bpf when kernel lockdown is in confidentiality mode | David Howells | 2019-08-20 | 1 | -0/+1 |
| * | | lockdown: Lock down tracing and perf kprobes when in confidentiality mode | David Howells | 2019-08-20 | 1 | -0/+1 |
| * | | lockdown: Lock down /proc/kcore | David Howells | 2019-08-20 | 1 | -0/+1 |
| * | | x86/mmiotrace: Lock down the testmmiotrace module | David Howells | 2019-08-20 | 1 | -0/+1 |
| * | | lockdown: Lock down module params that specify hardware parameters (eg. ioport) | David Howells | 2019-08-20 | 1 | -0/+1 |
| * | | lockdown: Lock down TIOCSSERIAL | David Howells | 2019-08-20 | 1 | -0/+1 |
| * | | lockdown: Prohibit PCMCIA CIS storage when the kernel is locked down | David Howells | 2019-08-20 | 1 | -0/+1 |
| * | | ACPI: Limit access to custom_method when the kernel is locked down | Matthew Garrett | 2019-08-20 | 1 | -0/+1 |
| * | | x86/msr: Restrict MSR access when the kernel is locked down | Matthew Garrett | 2019-08-20 | 1 | -0/+1 |
| * | | x86: Lock down IO port access when the kernel is locked down | Matthew Garrett | 2019-08-20 | 1 | -0/+1 |
| * | | PCI: Lock down BAR access when the kernel is locked down | Matthew Garrett | 2019-08-20 | 1 | -0/+1 |
| * | | hibernate: Disable when the kernel is locked down | Josh Boyer | 2019-08-20 | 1 | -0/+1 |
| * | | kexec_file: split KEXEC_VERIFY_SIG into KEXEC_SIG and KEXEC_SIG_FORCE | Jiri Bohac | 2019-08-20 | 2 | -2/+2 |
| * | | kexec_load: Disable at runtime if the kernel is locked down | Matthew Garrett | 2019-08-20 | 1 | -0/+1 |
| * | | lockdown: Restrict /dev/{mem,kmem,port} when the kernel is locked down | Matthew Garrett | 2019-08-20 | 1 | -0/+1 |
| * | | lockdown: Enforce module signatures if the kernel is locked down | David Howells | 2019-08-20 | 2 | -0/+2 |
| * | | security: Add a static lockdown policy LSM | Matthew Garrett | 2019-08-20 | 5 | -5/+224 |
| * | | security: Add a "locked down" LSM hook | Matthew Garrett | 2019-08-20 | 1 | -0/+6 |
| * | | security: Support early LSMs | Matthew Garrett | 2019-08-20 | 1 | -8/+42 |
* | | | Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi... | Linus Torvalds | 2019-09-28 | 15 | -105/+627 |
|\ \ \ |
|
| * | | | ima: ima_api: Use struct_size() in kzalloc() | Gustavo A. R. Silva | 2019-08-29 | 1 | -2/+2 |
| * | | | ima: use struct_size() in kzalloc() | Gustavo A. R. Silva | 2019-08-29 | 1 | -3/+2 |
| * | | | ima: Fix use after free in ima_read_modsig() | Thiago Jung Bauermann | 2019-08-28 | 1 | -1/+2 |
| * | | | ima: fix freeing ongoing ahash_request | Sascha Hauer | 2019-08-06 | 1 | -0/+5 |
| * | | | ima: always return negative code for error | Sascha Hauer | 2019-08-06 | 1 | -1/+4 |
| * | | | ima: Store the measurement again when appraising a modsig | Thiago Jung Bauermann | 2019-08-06 | 4 | -7/+47 |
| * | | | ima: Define ima-modsig template | Thiago Jung Bauermann | 2019-08-06 | 8 | -6/+156 |
| * | | | ima: Collect modsig | Thiago Jung Bauermann | 2019-08-06 | 5 | -5/+60 |
| * | | | ima: Implement support for module-style appended signatures | Thiago Jung Bauermann | 2019-08-06 | 8 | -23/+209 |
| * | | | ima: Factor xattr_verify() out of ima_appraise_measurement() | Thiago Jung Bauermann | 2019-08-06 | 1 | -60/+81 |
| * | | | ima: Add modsig appraise_type option for module-style appended signatures | Thiago Jung Bauermann | 2019-08-06 | 6 | -2/+62 |
| * | | | integrity: Select CONFIG_KEYS instead of depending on it | Thiago Jung Bauermann | 2019-08-06 | 1 | -1/+1 |
| * | | | ima: initialize the "template" field with the default template | Mimi Zohar | 2019-08-01 | 1 | -2/+4 |
* | | | | KEYS: trusted: correctly initialize digests and fix locking issue | Roberto Sassu | 2019-09-25 | 1 | -0/+5 |
* | | | | Merge tag 'smack-for-5.4-rc1' of git://github.com/cschaufler/smack-next | Linus Torvalds | 2019-09-23 | 2 | -23/+23 |
|\ \ \ \ |
|
| * | | | | smack: use GFP_NOFS while holding inode_smack::smk_lock | Eric Biggers | 2019-09-04 | 2 | -4/+4 |
| * | | | | security: smack: Fix possible null-pointer dereferences in smack_socket_sock_... | Jia-Ju Bai | 2019-09-04 | 1 | -0/+2 |
| * | | | | smack: fix some kernel-doc notations | luanshi | 2019-09-04 | 1 | -18/+15 |
| * | | | | Smack: Don't ignore other bprm->unsafe flags if LSM_UNSAFE_PTRACE is set | Jann Horn | 2019-09-04 | 1 | -1/+2 |
| | |/ /
| |/| | |
|