summaryrefslogtreecommitdiffstats
path: root/security/apparmor
AgeCommit message (Expand)AuthorLines
2025-05-25apparmor: Document that label must be last member in struct aa_profileJohn Johansen-1/+8
2025-05-25apparmor: make debug_values_table staticJohn Johansen-1/+1
2025-05-25apparmor: force auditing of conflicting attachment execs from confinedRyan Lee-0/+9
2025-05-25apparmor: include conflicting attachment info for confined ix/ux fallbackRyan Lee-2/+33
2025-05-25apparmor: move the "conflicting profile attachments" infostr to a const decla...Ryan Lee-1/+3
2025-05-25apparmor: force audit on unconfined exec if info is set by find_attachRyan Lee-0/+16
2025-05-25apparmor: make all generated string array headers const char *constRyan Lee-2/+2
2025-05-25apparmor: fix loop detection used in conflicting attachment resolutionRyan Lee-15/+12
2025-05-17apparmor: ensure WB_HISTORY_SIZE value is a power of 2Ryan Lee-1/+3
2025-05-17apparmor: fix some kernel-doc issues in header filesRandy Dunlap-8/+8
2025-05-17apparmor: Fix incorrect profile->signal range checkColin Ian King-1/+1
2025-05-17apparmor: use SHA-256 library API instead of crypto_shash APIEric Biggers-75/+13
2025-05-17security/apparmor: use kfree_sensitive() in unpack_secmark()Zilin Guan-2/+2
2025-04-08VFS: rename lookup_one_len family to lookup_noperm and remove permission checkNeilBrown-2/+2
2025-02-27Change inode_operations.mkdir to return struct dentry *NeilBrown-4/+4
2025-02-10apparmor: Remove unused variable 'sock' in __file_sock_perm()Nathan Chancellor-3/+0
2025-02-10apparmor: use the condition in AA_BUG_FMT even with debug disabledMateusz Guzik-1/+5
2025-02-10apparmor: fix typos and spelling errorsTanya Agarwal-9/+9
2025-02-10apparmor: Modify mismatched function nameJiapeng Chong-1/+1
2025-02-10apparmor: Modify mismatched function nameJiapeng Chong-1/+1
2025-02-10apparmor: Fix checking address of an array in accum_label_info()Nathan Chancellor-1/+1
2025-01-28treewide: const qualify ctl_tables where applicableJoel Granados-1/+1
2025-01-21Merge tag 'lsm-pr-20250121' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds-19/+22
2025-01-20Merge tag 'vfs-6.14-rc1.misc' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds-1/+1
2025-01-18apparmor: fix dbus permission queries to v9 ABIJohn Johansen-0/+8
2025-01-18apparmor: gate make fine grained unix mediation behind v9 abiJohn Johansen-10/+26
2025-01-18apparmor: add fine grained af_unix mediationJohn Johansen-58/+1063
2025-01-18apparmor: in preparation for finer networking rules rework match_protJohn Johansen-14/+75
2025-01-18apparmor: lift kernel socket check out of critical sectionJohn Johansen-1/+5
2025-01-18apparmor: remove af_select macroJohn Johansen-36/+9
2025-01-18apparmor: add ability to mediate caps with policy state machineJohn Johansen-6/+62
2025-01-18apparmor: fix x_table_lookup when stacking is not the first entryJohn Johansen-23/+29
2025-01-18apparmor: add support for profiles to define the kill signalJohn Johansen-6/+34
2025-01-18apparmor: add additional flags to extended permission.John Johansen-21/+54
2025-01-18apparmor: carry mediation check on labelJohn Johansen-24/+68
2025-01-18apparmor: cleanup: refactor file_perm() to doc semantics of some checksJohn Johansen-2/+15
2025-01-18apparmor: remove explicit restriction that unconfined cannot use change_hatJohn Johansen-3/+18
2025-01-18apparmor: ensure labels with more than one entry have correct flagsJohn Johansen-1/+2
2025-01-18apparmor: switch signal mediation to use RULE_MEDIATESJohn Johansen-5/+5
2025-01-18apparmor: remove redundant unconfined check.John Johansen-2/+1
2025-01-18apparmor: cleanup: attachment perm lookup to use lookup_perms()John Johansen-8/+6
2025-01-18apparmor: Improve debug print infrastructureJohn Johansen-34/+177
2025-01-18apparmor: Use str_yes_no() helper functionThorsten Blum-4/+4
2024-12-22vfs: support caching symlink lengths in inodesMateusz Guzik-1/+1
2024-12-04lsm: secctx provider check on releaseCasey Schaufler-8/+5
2024-12-04lsm: replace context+len with lsm_contextCasey Schaufler-16/+15
2024-12-04lsm: ensure the correct LSM context releaserCasey Schaufler-3/+10
2024-12-02module: Convert symbol namespace to string literalPeter Zijlstra-1/+1
2024-11-26apparmor: lift new_profile declaration to remove C23 extension warningJohn Johansen-2/+1
2024-11-26apparmor: replace misleading 'scrubbing environment' phrase in debug printRyan Lee-8/+8
generated by cgit v1.2.3 (git 2.46.0) at 2026-06-17 03:16:59 +0000