summaryrefslogtreecommitdiff
path: root/security
Commit message (Expand)AuthorAgeFilesLines
* mm, treewide: rename kzfree() to kfree_sensitive()Waiman Long2020-08-0710-62/+62
* Merge tag 'integrity-v5.9' of git://git.kernel.org/pub/scm/linux/kernel/git/z...Linus Torvalds2020-08-0612-140/+283
|\
| * integrity: remove redundant initialization of variable retColin Ian King2020-07-271-1/+1
| * ima: move APPRAISE_BOOTPARAM dependency on ARCH_POLICY to runtimeBruno Meneguele2020-07-202-1/+7
| * ima: AppArmor satisfies the audit rule requirementsTyler Hicks2020-07-201-1/+1
| * ima: Rename internal filter rule functionsTyler Hicks2020-07-202-25/+21
| * ima: Support additional conditionals in the KEXEC_CMDLINE hook functionTyler Hicks2020-07-207-22/+28
| * ima: Use the common function to detect LSM conditionals in a ruleTyler Hicks2020-07-201-9/+2
| * ima: Move comprehensive rule validation checks out of the token parserTyler Hicks2020-07-203-46/+37
| * ima: Use correct type for the args_p member of ima_rule_entry.lsm elementsTyler Hicks2020-07-201-9/+9
| * ima: Shallow copy the args_p member of ima_rule_entry.lsm elementsTyler Hicks2020-07-201-10/+8
| * ima: Fail rule parsing when appraise_flag=blacklist is unsupportableTyler Hicks2020-07-201-1/+14
| * ima: Fail rule parsing when the KEY_CHECK hook is combined with an invalid condTyler Hicks2020-07-161-0/+7
| * ima: Fail rule parsing when the KEXEC_CMDLINE hook is combined with an invali...Tyler Hicks2020-07-161-0/+21
| * ima: Fail rule parsing when buffer hook functions have an invalid actionTyler Hicks2020-07-161-2/+38
| * ima: Free the entire rule if it fails to parseTyler Hicks2020-07-161-1/+2
| * ima: Free the entire rule when deleting a list of rulesTyler Hicks2020-07-161-5/+24
| * ima: Have the LSM free its audit ruleTyler Hicks2020-07-162-1/+6
| * IMA: Add audit log for failure conditionsLakshmi Ramasubramanian2020-07-164-22/+51
| * integrity: Add errno field in audit messageLakshmi Ramasubramanian2020-07-162-1/+23
* | Merge tag 'Smack-for-5.9' of git://github.com/cschaufler/smack-nextLinus Torvalds2020-08-061-3/+16
|\ \
| * | Smack: prevent underflow in smk_set_cipso()Dan Carpenter2020-07-271-1/+1
| * | Smack: fix another vsscanf out of boundsDan Carpenter2020-07-271-0/+4
| * | Smack: fix use-after-free in smk_write_relabel_self()Eric Biggers2020-07-141-2/+11
* | | Merge tag 'cap-checkpoint-restore-v5.9' of git://git.kernel.org/pub/scm/linux...Linus Torvalds2020-08-041-2/+3
|\ \ \
| * | | capabilities: Introduce CAP_CHECKPOINT_RESTOREAdrian Reber2020-07-191-2/+3
* | | | Merge branch 'exec-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/eb...Linus Torvalds2020-08-043-5/+5
|\ \ \ \
| * | | | exec: Implement kernel_execveEric W. Biederman2020-07-213-5/+5
| | |/ / | |/| |
* | | | Merge tag 'audit-pr-20200803' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds2020-08-045-55/+49
|\ \ \ \
| * | | | audit: purge audit_log_string from the intra-kernel audit APIRichard Guy Briggs2020-07-215-55/+44
| * | | | audit: issue CWD record to accompany LSM_AUDIT_DATA_* recordsRichard Guy Briggs2020-07-081-0/+5
| |/ / /
* | | | Merge tag 'selinux-pr-20200803' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds2020-08-0414-161/+240
|\ \ \ \
| * | | | selinux: complete the inlining of hashtab functionsOndrej Mosnacek2020-07-092-59/+63
| * | | | selinux: prepare for inlining of hashtab functionsOndrej Mosnacek2020-07-097-63/+110
| * | | | selinux: specialize symtab insert and search functionsOndrej Mosnacek2020-07-087-56/+69
| * | | | selinux: Fix spelling mistakes in the commentslihao2020-07-083-3/+3
| * | | | selinux: fixed a checkpatch warning with the sizeof macroEthan Edwards2020-06-291-2/+2
| * | | | selinux: log error messages on required process class / permissionsStephen Smalley2020-06-231-5/+15
| * | | | selinux: allow reading labels before policy is loadedJonathan Lebon2020-06-231-1/+6
| |/ / /
* | | | Merge tag 'var-init-v5.9-rc1' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds2020-08-041-4/+25
|\ \ \ \
| * | | | security: allow using Clang's zero initialization for stack variablesglider@google.com2020-06-161-4/+25
| |/ / /
* | | | Merge tag 'for-5.9/block-20200802' of git://git.kernel.dk/linux-blockLinus Torvalds2020-08-031-0/+1
|\ \ \ \ | |_|/ / |/| | |
| * | | block: move block-related definitions out of fs.hChristoph Hellwig2020-06-241-0/+1
* | | | integrity/ima: switch to using __kernel_readChristoph Hellwig2020-07-081-13/+1
* | | | Merge tag 'fixes-v5.8-rc3-a' of git://git.kernel.org/pub/scm/linux/kernel/git...Linus Torvalds2020-06-301-1/+16
|\ \ \ \ | |_|_|/ |/| | |
| * | | security: Fix hook iteration and default value for inode_copy_up_xattrKP Singh2020-06-231-1/+16
| |/ /
* | | ima: extend boot_aggregate with kernel measurementsMaurizio Drocco2020-06-242-2/+15
|/ /
* | Merge tag 'selinux-pr-20200621' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds2020-06-212-13/+12
|\ \
| * | selinux: fix undefined return of cond_evaluate_exprTom Rix2020-06-171-0/+3
| * | selinux: fix a double free in cond_read_node()/cond_read_list()Tom Rix2020-06-161-13/+5
View Lorry Controller Status