summaryrefslogtreecommitdiff
path: root/security
AgeCommit message (Expand)AuthorFilesLines
2025-07-16Revert "apparmor: use SHA-256 library API instead of crypto_shash API"John Johansen2-13/+75
2025-07-16apparmor: mitigate parser generating large xtablesJohn Johansen3-6/+45
2025-07-14apparmor: use SHA-256 library API instead of crypto_shash APIEric Biggers2-75/+13
2025-07-09integrity/platform_certs: Allow loading of keys in the static key management ...Srish Srinivasan1-2/+3
2025-07-04tree-wide: s/struct fileattr/struct file_kattr/gChristian Brauner2-4/+4
2025-07-01selinux: implement inode_file_[g|s]etattr hooksAndrey Albershteyn1-0/+14
2025-07-01lsm: introduce new hooks for setting/getting inode fsxattrAndrey Albershteyn1-0/+30
2025-06-30smack: fix kernel-doc warnings for smk_import_valid_label()Konstantin Andreev1-2/+4
2025-06-27landlock: Fix warning from KUnit testsTingmao Wang1-27/+42
2025-06-25selinux: don't bother with selinuxfs_info_free() on failuresAl Viro1-2/+0
2025-06-25smack: fix bug: setting task label silently ignores input garbageKonstantin Andreev3-63/+148
2025-06-25smack: fix bug: unprivileged task can create labelsKonstantin Andreev1-14/+27
2025-06-23exec: Correct the permission check for unsafe execEric W. Biederman1-12/+8
2025-06-22smack: fix bug: invalid label of unix socket fileKonstantin Andreev1-14/+44
2025-06-22smack: always "instantiate" inode in smack_inode_init_security()Konstantin Andreev1-3/+7
2025-06-22smack: deduplicate xattr setting in smack_inode_init_security()Konstantin Andreev1-27/+29
2025-06-22smack: fix bug: SMACK64TRANSMUTE set on non-directoryKonstantin Andreev1-12/+14
2025-06-22smack: deduplicate "does access rule request transmutation"Konstantin Andreev1-25/+32
2025-06-20selinux: add __GFP_NOWARN to hashtab_init() allocationsPaul Moore1-1/+2
2025-06-20selinux: optimize selinux_inode_getattr/permission() based on neveraudit|perm...Stephen Smalley2-1/+21
2025-06-20selinux: introduce neveraudit typesStephen Smalley5-1/+48
2025-06-19selinux: change security_compute_sid to return the ssid or tsid on matchStephen Smalley1-5/+11
2025-06-18ipe: don't bother with removal of files in directory we'll be removingAl Viro2-22/+14
2025-06-18evm_secfs: clear securityfs interactionsAl Viro1-8/+7
2025-06-18ima_fs: get rid of lookup-by-dentry stuffAl Viro1-66/+16
2025-06-18ima_fs: don't bother with removal of files in directory we'll be removingAl Viro1-39/+18
2025-06-18apparmor: file never has NULL f_path.mntAl Viro1-1/+1
2025-06-18landlock: opened file never has a negative dentryAl Viro1-1/+0
2025-06-17selinux: fix selinux_xfrm_alloc_user() to set correct ctx_lenStephen Smalley1-1/+1
2025-06-17selinux: add a 5 second sleep to /sys/fs/selinux/userPaul Moore1-0/+1
2025-06-17lsm: trivial comment fixKalevi Kolttonen1-1/+1
2025-06-16ima: add a knob ima= to allow disabling IMA in kdump kernelBaoquan He1-0/+26
2025-06-12make securityfs_remove() remove the entire subtreeAl Viro1-37/+10
2025-06-12securityfs: pin filesystem only for objects directly in rootAl Viro1-8/+13
2025-06-11securityfs: don't pin dentries twice, once is enough...Al Viro1-2/+0
2025-06-11KEYS: Invert FINAL_PUT bitHerbert Xu2-4/+5
2025-05-31Merge tag 'gcc-minimum-version-6.16' of git://git.kernel.org/pub/scm/linux/ke...Linus Torvalds1-76/+0
2025-05-29Merge tag 'ipe-pr-20250527' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds4-26/+63
2025-05-29Merge tag 'net-next-6.16' of git://git.kernel.org/pub/scm/linux/kernel/git/ne...Linus Torvalds5-70/+2
2025-05-28Merge tag 'selinux-pr-20250527' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds11-85/+232
2025-05-28Merge tag 'lsm-pr-20250527' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds1-18/+18
2025-05-28Merge tag 'integrity-v6.16' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds4-33/+185
2025-05-28Merge tag 'Smack-for-6.16' of https://github.com/cschaufler/smack-nextLinus Torvalds1-7/+5
2025-05-28Merge tag 'hardening-v6.16-rc1' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds1-1/+1
2025-05-28ipe: add errno field to IPE policy load auditingJasjiv Singh4-26/+63
2025-05-26Merge tag 'vfs-6.16-rc1.async.dir' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds3-5/+5
2025-05-26apparmor: Document that label must be last member in struct aa_profileJohn Johansen1-1/+8
2025-05-26apparmor: make debug_values_table staticJohn Johansen1-1/+1
2025-05-26apparmor: force auditing of conflicting attachment execs from confinedRyan Lee1-0/+9
2025-05-26apparmor: include conflicting attachment info for confined ix/ux fallbackRyan Lee1-2/+33
generated by cgit v1.2.3 (git 2.39.0) at 2026-06-17 18:37:49 +0300