summaryrefslogtreecommitdiffstats
path: root/security
AgeCommit message (Expand)AuthorLines
2026-02-01apparmor: add .kunitconfigRyota Sakamoto-0/+5
2026-01-30pkcs7, x509: Rename ->digest to ->mDavid Howells-2/+2
2026-01-30keys/trusted_keys: establish PKWM as a trusted sourceSrish Srinivasan-1/+205
2026-01-29lsm: preserve /proc/sys/vm/mmap_min_addr when !CONFIG_SECURITYPaul Moore-18/+3
2026-01-29apparmor: cleanup remove unused percpu critical sections in buffer managementJohn Johansen-5/+0
2026-01-29apparmor: document the buffer hold, add an overflow guardJohn Johansen-2/+26
2026-01-29apparmor: avoid per-cpu hold underflow in aa_get_bufferZhengmian Hu-1/+2
2026-01-29apparmor: split xxx_in_ns into its two separate semantic use casesJohn Johansen-46/+61
2026-01-29apparmor: make label_match return a consistent valueJohn Johansen-11/+9
2026-01-29apparmor: remove apply_modes_to_perms from label_matchJohn Johansen-3/+0
2026-01-29apparmor: fix fast path cache check for unix socketsJohn Johansen-14/+21
2026-01-29apparmor: fix rlimit for posix cpu timersJohn Johansen-0/+5
2026-01-29apparmor: refactor/cleanup cred helper fns.John Johansen-31/+69
2026-01-29apparmor: fix label and profile debug macrosJohn Johansen-1/+3
2026-01-29apparmor: move check for aa_null file to cover all casesJohn Johansen-6/+10
2026-01-29apparmor: guard against free routines being called with a NULLJohn Johansen-0/+6
2026-01-29apparmor: return -ENOMEM in unpack_perms_table upon alloc failureRyan Lee-2/+4
2026-01-29apparmor: account for in_atomic removal in common_file_permRyan Lee-3/+2
2026-01-29apparmor: drop in_atomic flag in common_mmap, and common_file_permJohn Johansen-12/+9
2026-01-29apparmor: fix boolean argument in apparmor_mmap_fileRyan Lee-1/+1
2026-01-29apparmor: userns: Add support for execpath in usernsMaxime Bélair-0/+32
2026-01-29apparmor: add support loading per permission taggingJohn Johansen-18/+269
2026-01-28tomoyo: Use scoped init guardMarco Elver-1/+1
2026-01-26ima: verify the previous kernel's IMA buffer lies in addressable RAMHarshit Mogalapalli-0/+35
2026-01-25keys/trusted_keys: fix handle passed to tpm_buf_append_name during unsealSrish Srinivasan-2/+2
2026-01-23evm: Use ordered xattrs list to calculate HMAC in evm_init_hmac()Roberto Sassu-4/+10
2026-01-22apparmor: make str table more generic and be able to have multiple entriesJohn Johansen-46/+90
2026-01-22apparmor: Fix & Optimize table creation from possibly unaligned memoryHelge Deller-9/+10
2026-01-22AppArmor: Allow apparmor to handle unaligned dfa tablesHelge Deller-7/+8
2026-01-22apparmor: Replace deprecated strcpy with memcpy in gen_symlink_nameThorsten Blum-4/+8
2026-01-22apparmor: fix NULL sock in aa_sock_file_permJohn Johansen-2/+4
2026-01-20kernel.h: drop hex.h and update all hex.h usersRandy Dunlap-0/+8
2026-01-18Merge tag 'landlock-6.19-rc6' of git://git.kernel.org/pub/scm/linux/kernel/gi...Linus Torvalds-64/+87
2026-01-18apparmor: fix NULL pointer dereference in __unix_needs_revalidationSystem Administrator-0/+3
2026-01-18apparmor: Replace deprecated strcpy in d_namespace_pathThorsten Blum-5/+8
2026-01-18apparmor: Replace sprintf/strcpy with scnprintf/strscpy in aa_policy_initThorsten Blum-9/+7
2026-01-16apparmor: replace sprintf with snprintf in aa_new_learning_profileThorsten Blum-6/+9
2026-01-14selinux: drop the BUG() in cred_has_capability()Paul Moore-1/+0
2026-01-14selinux: fix a capabilities parsing typo in selinux_bpf_token_capable()Paul Moore-1/+1
2026-01-13selinux: add support for BPF token access controlEric Suen-4/+131
2026-01-13selinux: move the selinux_blob_sizes structPaul Moore-21/+21
2026-01-09security: Add KUnit tests for kuid_root_in_ns and vfsuid_root_in_currentnsRyan Foster-0/+309
2026-01-07KEYS: trusted: Make use of tee bus methodsUwe Kleine-König-7/+5
2026-01-07KEYS: trusted: Migrate to use tee specific driver registration functionUwe Kleine-König-3/+2
2026-01-06lsm: make keys for static branch staticBen Dooks-1/+1
2026-01-05security/tomoyo: Enable context analysisMarco Elver-49/+122
2026-01-05loadpin: Implement custom proc_handler for enforceJoel Granados-21/+16
2025-12-30smack: /smack/doi: accept previously used valuesKonstantin Andreev-26/+45
2025-12-30smack: /smack/doi must be > 0Konstantin Andreev-5/+7
2025-12-30security: smack: fix indentation in smack_access.cTaimoor Zaeem-1/+1
generated by cgit v1.2.3 (git 2.46.0) at 2026-05-01 14:01:32 +0000