summaryrefslogtreecommitdiff
path: root/security
AgeCommit message (Expand)AuthorFilesLines
4 daysMerge tag 'integrity-v6.10' of ssh://ra.kernel.org/pub/scm/linux/kernel/git/z...Linus Torvalds17-90/+325
4 daysMerge tag 'selinux-pr-20240513' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds12-126/+146
4 daysMerge tag 'lsm-pr-20240513' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds4-4/+0
4 daysMerge tag 'net-next-6.10' of git://git.kernel.org/pub/scm/linux/kernel/git/ne...Linus Torvalds2-2/+6
6 daysnetlabel: fix RCU annotation for IPv4 options on socket creationDavide Caratti2-2/+6
6 daysMerge tag 'keys-next-6.10-rc1' of git://git.kernel.org/pub/scm/linux/kernel/g...Linus Torvalds3-24/+30
6 daysMerge tag 'tpmdd-next-6.10-rc1' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds2-53/+106
10 daysKEYS: trusted: Add session encryption protection to the seal/unseal pathJames Bottomley1-27/+61
10 daysKEYS: trusted: tpm2: Use struct tpm_buf for sized buffersJarkko Sakkinen1-23/+31
10 daystpm: Store the length of the tpm_buf data separately.Jarkko Sakkinen1-4/+5
10 daystpm: Remove tpm_send()Jarkko Sakkinen1-2/+12
10 daysdocs: trusted-encrypted: add DCP as new trust sourceDavid Gstir1-0/+19
10 daysKEYS: trusted: Introduce NXP DCP-backed trusted keysDavid Gstir4-1/+328
10 daysKEYS: trusted: improve scalability of trust source configDavid Gstir1-2/+8
10 dayskeys: Fix overwrite of key expiration on instantiationSilvio Gissi1-1/+2
10 dayskeys: update key quotas in key_put()Luis Henriques3-23/+28
2024-05-01selinux: constify source policy in cond_policydb_dup()Christian Göttsche4-14/+17
2024-05-01selinux: avoid printk_ratelimit()Christian Göttsche1-2/+1
2024-05-01selinux: pre-allocate the status pageChristian Göttsche1-0/+6
2024-04-15lsm: remove the now superfluous sentinel element from ctl_table arrayJoel Granados4-4/+0
2024-04-12ima: add crypto agility support for template-hash algorithmEnrico Bravi4-18/+132
2024-04-10evm: Rename is_unsupported_fs to is_unsupported_hmac_fsStefan Berger1-9/+10
2024-04-10fs: Rename SB_I_EVM_UNSUPPORTED to SB_I_EVM_HMAC_UNSUPPORTEDStefan Berger1-1/+1
2024-04-10evm: Enforce signatures on unsupported filesystem for EVM_INIT_X509Stefan Berger1-5/+7
2024-04-10ima: re-evaluate file integrity on file metadata changeStefan Berger1-1/+13
2024-04-10evm: Store and detect metadata inode attributes changesStefan Berger3-10/+49
2024-04-10ima: Move file-change detection variables into new structureStefan Berger4-13/+10
2024-04-10evm: Use the metadata inode to calculate metadata hashStefan Berger1-1/+1
2024-04-10evm: Implement per signature type decision in security_inode_copy_up_xattrStefan Berger1-3/+28
2024-04-10security: allow finer granularity in permitting copy-up of security xattrsStefan Berger4-5/+6
2024-04-10ima: Rename backing_inode to real_inodeStefan Berger1-8/+10
2024-04-08integrity: Avoid -Wflex-array-member-not-at-end warningsGustavo A. R. Silva7-15/+31
2024-04-08ima: define an init_module critical data recordMimi Zohar1-0/+7
2024-04-08ima: Fix use-after-free on a dentry's dname.nameStefan Berger2-7/+26
2024-04-04selinux: clarify return code in filename_trans_read_helper_compat()Ondrej Mosnacek1-0/+1
2024-04-03security: Place security_path_post_mknod() where the original IMA call wasRoberto Sassu1-2/+2
2024-04-02selinux: avoid dereference of garbage after mount failureChristian Göttsche1-5/+7
2024-03-28selinux: use u32 as bit position type in ebitmap codeChristian Göttsche2-35/+34
2024-03-28selinux: improve symtab string hashingChristian Göttsche1-11/+11
2024-03-28selinux: dump statistics for more hash tablesChristian Göttsche2-7/+19
2024-03-28selinux: make more use of current_sid()Christian Göttsche2-21/+8
2024-03-27selinux: update numeric format specifiers for ebitmapsChristian Göttsche1-6/+6
2024-03-26selinux: improve error checking in sel_write_load()Paul Moore1-14/+16
2024-03-26selinux: cleanup selinux_lsm_getattr()Paul Moore1-18/+18
2024-03-26selinux: reject invalid ebitmapsChristian Göttsche1-0/+11
2024-03-15Merge tag 'mm-nonmm-stable-2024-03-14-09-36' of git://git.kernel.org/pub/scm/...Linus Torvalds1-2/+0
2024-03-15Merge tag 'lsm-pr-20240314' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds5-18/+24
2024-03-15Merge tag 'landlock-6.9-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git...Linus Torvalds10-23/+293
2024-03-14lsm: handle the NULL buffer case in lsm_fill_user_ctx()Paul Moore1-1/+7
2024-03-14lsm: use 32-bit compatible data types in LSM syscallsCasey Schaufler5-17/+17
generated by cgit v1.2.3 (git 2.39.0) at 2024-05-19 13:39:39 +0300