Age | Commit message (Expand) | Author | Files | Lines |
2024-05-13 | landlock: Add IOCTL access right for character and block devices | Günther Noack | 3 | -5/+224 |
2024-05-10 | apparmor: fix possible NULL pointer dereference | Leesoo Ahn | 1 | -0/+4 |
2024-05-10 | apparmor: fix typo in kernel doc | Christian Göttsche | 1 | -1/+1 |
2024-05-10 | apparmor: remove useless static inline function is_deleted | Colin Ian King | 1 | -13/+0 |
2024-05-10 | apparmor: use kvfree_sensitive to free data->data | Fedor Pchelkin | 2 | -1/+2 |
2024-05-10 | apparmor: Fix null pointer deref when receiving skb during sock creation | Xiao Liang | 1 | -0/+7 |
2024-05-10 | kbuild: use $(src) instead of $(srctree)/$(src) for source directory | Masahiro Yamada | 1 | -1/+1 |
2024-05-09 | KEYS: trusted: Add session encryption protection to the seal/unseal path | James Bottomley | 1 | -27/+61 |
2024-05-09 | KEYS: trusted: tpm2: Use struct tpm_buf for sized buffers | Jarkko Sakkinen | 1 | -23/+31 |
2024-05-09 | tpm: Store the length of the tpm_buf data separately. | Jarkko Sakkinen | 1 | -4/+5 |
2024-05-09 | tpm: Remove tpm_send() | Jarkko Sakkinen | 1 | -2/+12 |
2024-05-09 | docs: trusted-encrypted: add DCP as new trust source | David Gstir | 1 | -0/+19 |
2024-05-09 | KEYS: trusted: Introduce NXP DCP-backed trusted keys | David Gstir | 4 | -1/+328 |
2024-05-09 | KEYS: trusted: improve scalability of trust source config | David Gstir | 1 | -2/+8 |
2024-05-09 | keys: Fix overwrite of key expiration on instantiation | Silvio Gissi | 1 | -1/+2 |
2024-05-09 | keys: update key quotas in key_put() | Luis Henriques | 3 | -23/+28 |
2024-04-30 | selinux: constify source policy in cond_policydb_dup() | Christian Göttsche | 4 | -14/+17 |
2024-04-30 | selinux: avoid printk_ratelimit() | Christian Göttsche | 1 | -2/+1 |
2024-04-30 | selinux: pre-allocate the status page | Christian Göttsche | 1 | -0/+6 |
2024-04-25 | mm: init_mlocked_on_free_v3 | York Jasper Niebuhr | 1 | -0/+15 |
2024-04-15 | lsm: remove the now superfluous sentinel element from ctl_table array | Joel Granados | 4 | -4/+0 |
2024-04-12 | ima: add crypto agility support for template-hash algorithm | Enrico Bravi | 4 | -18/+132 |
2024-04-09 | evm: Rename is_unsupported_fs to is_unsupported_hmac_fs | Stefan Berger | 1 | -9/+10 |
2024-04-09 | fs: Rename SB_I_EVM_UNSUPPORTED to SB_I_EVM_HMAC_UNSUPPORTED | Stefan Berger | 1 | -1/+1 |
2024-04-09 | evm: Enforce signatures on unsupported filesystem for EVM_INIT_X509 | Stefan Berger | 1 | -5/+7 |
2024-04-09 | ima: re-evaluate file integrity on file metadata change | Stefan Berger | 1 | -1/+13 |
2024-04-09 | evm: Store and detect metadata inode attributes changes | Stefan Berger | 3 | -10/+49 |
2024-04-09 | ima: Move file-change detection variables into new structure | Stefan Berger | 4 | -13/+10 |
2024-04-09 | evm: Use the metadata inode to calculate metadata hash | Stefan Berger | 1 | -1/+1 |
2024-04-09 | evm: Implement per signature type decision in security_inode_copy_up_xattr | Stefan Berger | 1 | -3/+28 |
2024-04-09 | security: allow finer granularity in permitting copy-up of security xattrs | Stefan Berger | 4 | -5/+6 |
2024-04-09 | ima: Rename backing_inode to real_inode | Stefan Berger | 1 | -8/+10 |
2024-04-08 | integrity: Avoid -Wflex-array-member-not-at-end warnings | Gustavo A. R. Silva | 7 | -15/+31 |
2024-04-08 | ima: define an init_module critical data record | Mimi Zohar | 1 | -0/+7 |
2024-04-08 | ima: Fix use-after-free on a dentry's dname.name | Stefan Berger | 2 | -7/+26 |
2024-04-04 | selinux: clarify return code in filename_trans_read_helper_compat() | Ondrej Mosnacek | 1 | -0/+1 |
2024-04-03 | security: Place security_path_post_mknod() where the original IMA call was | Roberto Sassu | 1 | -2/+2 |
2024-04-01 | selinux: avoid dereference of garbage after mount failure | Christian Göttsche | 1 | -5/+7 |
2024-03-27 | selinux: use u32 as bit position type in ebitmap code | Christian Göttsche | 2 | -35/+34 |
2024-03-27 | selinux: improve symtab string hashing | Christian Göttsche | 1 | -11/+11 |
2024-03-27 | selinux: dump statistics for more hash tables | Christian Göttsche | 2 | -7/+19 |
2024-03-27 | selinux: make more use of current_sid() | Christian Göttsche | 2 | -21/+8 |
2024-03-27 | selinux: update numeric format specifiers for ebitmaps | Christian Göttsche | 1 | -6/+6 |
2024-03-26 | selinux: improve error checking in sel_write_load() | Paul Moore | 1 | -14/+16 |
2024-03-26 | selinux: cleanup selinux_lsm_getattr() | Paul Moore | 1 | -18/+18 |
2024-03-26 | selinux: reject invalid ebitmaps | Christian Göttsche | 1 | -0/+11 |
2024-03-14 | Merge tag 'mm-nonmm-stable-2024-03-14-09-36' of git://git.kernel.org/pub/scm/... | Linus Torvalds | 1 | -2/+0 |
2024-03-14 | Merge tag 'lsm-pr-20240314' of git://git.kernel.org/pub/scm/linux/kernel/git/... | Linus Torvalds | 5 | -18/+24 |
2024-03-14 | Merge tag 'landlock-6.9-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git... | Linus Torvalds | 10 | -23/+293 |
2024-03-14 | lsm: handle the NULL buffer case in lsm_fill_user_ctx() | Paul Moore | 1 | -1/+7 |