summaryrefslogtreecommitdiff
path: root/security
AgeCommit message (Expand)Author
2025-01-17landlock: Align partial refer access checks with final onesMickaël Salaün
2025-01-17landlock: Simplify initially denied access rightsMickaël Salaün
2025-01-17landlock: Move access typesMickaël Salaün
2025-01-17landlock: Factor out check_access_path()Mickaël Salaün
2025-01-14landlock: Use scoped guards for ruleset in landlock_add_rule()Mickaël Salaün
2025-01-14landlock: Use scoped guards for rulesetMickaël Salaün
2025-01-14landlock: Constify get_mode_access()Mickaël Salaün
2025-01-14landlock: Handle weird filesMickaël Salaün
2025-01-12security: remove get_task_comm() and print task comm directlyYafang Shao
2025-01-08hardening: Document INIT_STACK_ALL_PATTERN behavior with GCCGeert Uytterhoeven
2025-01-07selinux: make more use of str_read() when loading the policyChristian Göttsche
2025-01-07selinux: avoid unnecessary indirection in struct level_datumChristian Göttsche
2025-01-07selinux: use known type instead of void pointerChristian Göttsche
2025-01-07selinux: rename comparison functions for clarityChristian Göttsche
2025-01-07selinux: rework match_ipv6_addrmask()Christian Göttsche
2025-01-07selinux: constify and reconcile function parameter namesChristian Göttsche
2025-01-07selinux: avoid using types indicating user space interactionChristian Göttsche
2025-01-07selinux: supply missing field initializersChristian Göttsche
2025-01-07Merge tag 'selinux-pr-20250107' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds
2025-01-06tomoyo: automatically use patterns for several situations in learning modeTetsuo Handa
2025-01-05lockdown: initialize local array before use to quiet static analysisTanya Agarwal
2025-01-04safesetid: check size of policy writesLeo Stone
2025-01-04lsm: rename variable to avoid shadowingChristian Göttsche
2025-01-04lsm: constify function parametersChristian Göttsche
2025-01-04security: remove redundant assignment to return variableColin Ian King
2025-01-04selinux: match extended permissions to their base permissionsThiébaud Weksteen
2025-01-04lsm: Only build lsm_audit.c if CONFIG_SECURITY and CONFIG_AUDIT are setMickaël Salaün
2025-01-03ima: ignore suffixed policy rule commentsMimi Zohar
2025-01-03ima: limit the builtin 'tcb' dont_measure tmpfs policy ruleMimi Zohar
2024-12-24ima: kexec: silence RCU list traversal warningBreno Leitao
2024-12-22vfs: support caching symlink lengths in inodesMateusz Guzik
2024-12-18ima: instantiate the bprm_creds_for_exec() hookMimi Zohar
2024-12-18security: Add EXEC_RESTRICT_FILE and EXEC_DENY_INTERACTIVE securebitsMickaël Salaün
2024-12-18exec: Add a new AT_EXECVE_CHECK flag to execveat(2)Mickaël Salaün
2024-12-18Merge tag 'selinux-pr-20241217' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds
2024-12-17tomoyo: use realpath if symlink's pathname refers to procfsTetsuo Handa
2024-12-16bpf: lsm: Remove hook to bpf_task_storage_freeSong Liu
2024-12-16tomoyo: don't emit warning in tomoyo_write_control()Tetsuo Handa
2024-12-15selinux: ignore unknown extended permissionsThiébaud Weksteen
2024-12-15selinux: add netlink nlmsg_type audit messageThiébaud Weksteen
2024-12-13selinux: add support for xperms in conditional policiesChristian Göttsche
2024-12-11selinux: Fix SCTP error inconsistency in selinux_socket_bind()Mikhail Ivanov
2024-12-11selinux: use native iterator typesChristian Göttsche
2024-12-11selinux: add generated av_permissions.h to targetsThomas Weißschuh
2024-12-11ima: Suspend PCR extends and log appends when rebootingStefan Berger
2024-12-10fsnotify: introduce pre-content permission eventsAmir Goldstein
2024-12-06smack: deduplicate access to string conversionKonstantin Andreev
2024-12-05Merge tag 'net-6.13-rc2' of git://git.kernel.org/pub/scm/linux/kernel/git/net...Linus Torvalds
2024-12-04security: add trace event for cap_capableJordan Rome
2024-12-04capabilities: remove cap_mmap_file()Paul Moore
generated by cgit (git 2.34.1) at 2025-08-04 21:38:34 +0000