summaryrefslogtreecommitdiffstats
path: root/security (follow)
Commit message (Expand)AuthorAgeFilesLines
* Merge tag 'integrity-v6.10' of ssh://ra.kernel.org/pub/scm/linux/kernel/git/z...Linus Torvalds2024-05-1517-90/+325
|\
| * ima: add crypto agility support for template-hash algorithmEnrico Bravi2024-04-124-18/+132
| * evm: Rename is_unsupported_fs to is_unsupported_hmac_fsStefan Berger2024-04-091-9/+10
| * fs: Rename SB_I_EVM_UNSUPPORTED to SB_I_EVM_HMAC_UNSUPPORTEDStefan Berger2024-04-091-1/+1
| * evm: Enforce signatures on unsupported filesystem for EVM_INIT_X509Stefan Berger2024-04-091-5/+7
| * ima: re-evaluate file integrity on file metadata changeStefan Berger2024-04-091-1/+13
| * evm: Store and detect metadata inode attributes changesStefan Berger2024-04-093-10/+49
| * ima: Move file-change detection variables into new structureStefan Berger2024-04-094-13/+10
| * evm: Use the metadata inode to calculate metadata hashStefan Berger2024-04-091-1/+1
| * evm: Implement per signature type decision in security_inode_copy_up_xattrStefan Berger2024-04-091-3/+28
| * security: allow finer granularity in permitting copy-up of security xattrsStefan Berger2024-04-094-5/+6
| * ima: Rename backing_inode to real_inodeStefan Berger2024-04-091-8/+10
| * integrity: Avoid -Wflex-array-member-not-at-end warningsGustavo A. R. Silva2024-04-087-15/+31
| * ima: define an init_module critical data recordMimi Zohar2024-04-081-0/+7
| * ima: Fix use-after-free on a dentry's dname.nameStefan Berger2024-04-082-7/+26
* | Merge tag 'selinux-pr-20240513' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds2024-05-1512-126/+146
|\ \
| * | selinux: constify source policy in cond_policydb_dup()Christian Göttsche2024-05-014-14/+17
| * | selinux: avoid printk_ratelimit()Christian Göttsche2024-05-011-2/+1
| * | selinux: pre-allocate the status pageChristian Göttsche2024-05-011-0/+6
| * | selinux: clarify return code in filename_trans_read_helper_compat()Ondrej Mosnacek2024-04-041-0/+1
| * | selinux: use u32 as bit position type in ebitmap codeChristian Göttsche2024-03-282-35/+34
| * | selinux: improve symtab string hashingChristian Göttsche2024-03-281-11/+11
| * | selinux: dump statistics for more hash tablesChristian Göttsche2024-03-282-7/+19
| * | selinux: make more use of current_sid()Christian Göttsche2024-03-272-21/+8
| * | selinux: update numeric format specifiers for ebitmapsChristian Göttsche2024-03-271-6/+6
| * | selinux: improve error checking in sel_write_load()Paul Moore2024-03-261-14/+16
| * | selinux: cleanup selinux_lsm_getattr()Paul Moore2024-03-261-18/+18
| * | selinux: reject invalid ebitmapsChristian Göttsche2024-03-261-0/+11
* | | Merge tag 'lsm-pr-20240513' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds2024-05-154-4/+0
|\ \ \
| * | | lsm: remove the now superfluous sentinel element from ctl_table arrayJoel Granados2024-04-154-4/+0
| |/ /
* | | Merge tag 'net-next-6.10' of git://git.kernel.org/pub/scm/linux/kernel/git/ne...Linus Torvalds2024-05-152-2/+6
|\ \ \
| * | | netlabel: fix RCU annotation for IPv4 options on socket creationDavide Caratti2024-05-132-2/+6
| | |/ | |/|
* | | Merge tag 'keys-next-6.10-rc1' of git://git.kernel.org/pub/scm/linux/kernel/g...Linus Torvalds2024-05-133-24/+30
|\ \ \
| * | | keys: Fix overwrite of key expiration on instantiationSilvio Gissi2024-05-091-1/+2
| * | | keys: update key quotas in key_put()Luis Henriques2024-05-093-23/+28
| |/ /
* | | Merge tag 'tpmdd-next-6.10-rc1' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds2024-05-132-53/+106
|\ \ \
| * | | KEYS: trusted: Add session encryption protection to the seal/unseal pathJames Bottomley2024-05-091-27/+61
| * | | KEYS: trusted: tpm2: Use struct tpm_buf for sized buffersJarkko Sakkinen2024-05-091-23/+31
| * | | tpm: Store the length of the tpm_buf data separately.Jarkko Sakkinen2024-05-091-4/+5
| * | | tpm: Remove tpm_send()Jarkko Sakkinen2024-05-091-2/+12
| |/ /
* | | docs: trusted-encrypted: add DCP as new trust sourceDavid Gstir2024-05-091-0/+19
* | | KEYS: trusted: Introduce NXP DCP-backed trusted keysDavid Gstir2024-05-094-1/+328
* | | KEYS: trusted: improve scalability of trust source configDavid Gstir2024-05-091-2/+8
|/ /
* | security: Place security_path_post_mknod() where the original IMA call wasRoberto Sassu2024-04-031-2/+2
* | selinux: avoid dereference of garbage after mount failureChristian Göttsche2024-04-021-5/+7
|/
* Merge tag 'mm-nonmm-stable-2024-03-14-09-36' of git://git.kernel.org/pub/scm/...Linus Torvalds2024-03-151-2/+0
|\
| * fortify: drop Clang version check for 12.0.1 or newerNathan Chancellor2024-02-231-2/+0
| * treewide: update LLVM Bugzilla linksNathan Chancellor2024-02-231-1/+1
* | Merge tag 'lsm-pr-20240314' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds2024-03-155-18/+24
|\ \
| * | lsm: handle the NULL buffer case in lsm_fill_user_ctx()Paul Moore2024-03-141-1/+7
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-19 15:31:49 +0100