summaryrefslogtreecommitdiff
path: root/security
AgeCommit message (Expand)AuthorFilesLines
2025-01-08selinux: rename comparison functions for clarityChristian Göttsche7-16/+16
2025-01-08selinux: rework match_ipv6_addrmask()Christian Göttsche1-7/+5
2025-01-08selinux: constify and reconcile function parameter namesChristian Göttsche4-6/+6
2025-01-08selinux: avoid using types indicating user space interactionChristian Göttsche2-2/+2
2025-01-08selinux: supply missing field initializersChristian Göttsche2-2/+2
2025-01-08Merge tag 'selinux-pr-20250107' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds5-38/+65
2025-01-06tomoyo: automatically use patterns for several situations in learning modeTetsuo Handa1-0/+30
2025-01-05lockdown: initialize local array before use to quiet static analysisTanya Agarwal1-1/+1
2025-01-05safesetid: check size of policy writesLeo Stone1-0/+3
2025-01-05lsm: rename variable to avoid shadowingChristian Göttsche1-2/+2
2025-01-05lsm: constify function parametersChristian Göttsche1-2/+2
2025-01-05security: remove redundant assignment to return variableColin Ian King1-3/+1
2025-01-05selinux: match extended permissions to their base permissionsThiébaud Weksteen5-38/+65
2025-01-04lsm: Only build lsm_audit.c if CONFIG_SECURITY and CONFIG_AUDIT are setMickaël Salaün2-1/+6
2025-01-03ima: ignore suffixed policy rule commentsMimi Zohar1-1/+1
2025-01-03ima: limit the builtin 'tcb' dont_measure tmpfs policy ruleMimi Zohar1-1/+2
2024-12-24ima: kexec: silence RCU list traversal warningBreno Leitao1-1/+2
2024-12-22vfs: support caching symlink lengths in inodesMateusz Guzik1-1/+1
2024-12-19ima: instantiate the bprm_creds_for_exec() hookMimi Zohar2-2/+54
2024-12-19security: Add EXEC_RESTRICT_FILE and EXEC_DENY_INTERACTIVE securebitsMickaël Salaün1-6/+23
2024-12-19exec: Add a new AT_EXECVE_CHECK flag to execveat(2)Mickaël Salaün1-0/+10
2024-12-18Merge tag 'selinux-pr-20241217' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-2/+6
2024-12-17tomoyo: use realpath if symlink's pathname refers to procfsTetsuo Handa1-2/+9
2024-12-16bpf: lsm: Remove hook to bpf_task_storage_freeSong Liu1-1/+0
2024-12-16tomoyo: don't emit warning in tomoyo_write_control()Tetsuo Handa1-1/+1
2024-12-16selinux: ignore unknown extended permissionsThiébaud Weksteen1-2/+6
2024-12-16selinux: add netlink nlmsg_type audit messageThiébaud Weksteen2-2/+5
2024-12-14selinux: add support for xperms in conditional policiesChristian Göttsche6-9/+26
2024-12-11selinux: Fix SCTP error inconsistency in selinux_socket_bind()Mikhail Ivanov1-1/+1
2024-12-11selinux: use native iterator typesChristian Göttsche3-4/+4
2024-12-11selinux: add generated av_permissions.h to targetsThomas Weißschuh1-4/+3
2024-12-11ima: Suspend PCR extends and log appends when rebootingStefan Berger3-0/+47
2024-12-10fsnotify: introduce pre-content permission eventsAmir Goldstein1-1/+2
2024-12-07smack: deduplicate access to string conversionKonstantin Andreev4-40/+15
2024-12-05Merge tag 'net-6.13-rc2' of git://git.kernel.org/pub/scm/linux/kernel/git/net...Linus Torvalds1-1/+1
2024-12-05security: add trace event for cap_capableJordan Rome1-13/+41
2024-12-05capabilities: remove cap_mmap_file()Paul Moore1-7/+0
2024-12-04lsm: secctx provider check on releaseCasey Schaufler2-16/+10
2024-12-04lsm: lsm_context in security_dentry_init_securityCasey Schaufler2-9/+8
2024-12-04lsm: use lsm_context in security_inode_getsecctxCasey Schaufler3-13/+16
2024-12-04lsm: replace context+len with lsm_contextCasey Schaufler5-59/+74
2024-12-04lsm: ensure the correct LSM context releaserCasey Schaufler4-9/+23
2024-12-02module: Convert symbol namespace to string literalPeter Zijlstra1-1/+1
2024-12-01Merge tag 'lsm-pr-20241129' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-4/+5
2024-12-01selinux: use sk_to_full_sk() in selinux_ip_output()Eric Dumazet1-1/+1
2024-11-27ima: uncover hidden variable in ima_match_rules()Casey Schaufler1-4/+5
2024-11-27apparmor: lift new_profile declaration to remove C23 extension warningJohn Johansen1-2/+1
2024-11-27apparmor: replace misleading 'scrubbing environment' phrase in debug printRyan Lee1-8/+8
2024-11-27parser: drop dead code for XXX_comb macrosJohn Johansen1-24/+0
2024-11-27apparmor: Remove unused parameter L1 in macro next_combJinjie Ruan1-2/+2
generated by cgit v1.2.3 (git 2.39.0) at 2026-01-23 12:38:31 +0300