Gitiles
Code Review
Sign In
gerrit-public.fairphone.software
/
kernel
/
msm-5.4
/
a773d419275bf54854ca6cfda8f2594ed2790faa
/
security
df8ba95
Merge tag 'apparmor-pr-2017-11-30' of git://git.kernel.org/pub/scm/linux/kernel/git/jj/linux-apparmor
by Linus Torvalds
· 7 years ago
b12cbb2
apparmor: fix oops in audit_signal_cb hook
by John Johansen
· 7 years ago
1751e8a
Rename superblock flags (MS_xyz -> SB_xyz)
by Linus Torvalds
· 7 years ago
844056f
Merge branch 'timers-urgent-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip
by Linus Torvalds
· 7 years ago
dab0bad
Merge branch 'next-keys' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security
by Linus Torvalds
· 7 years ago
26064de
Merge tag 'apparmor-pr-2017-11-21' of git://git.kernel.org/pub/scm/linux/kernel/git/jj/linux-apparmor
by Linus Torvalds
· 7 years ago
ce44cd8
Merge tag 'keys-next-20171123' of git://git.kernel.org/pub/scm/linux/kernel/git/dhowells/linux-fs into next-keys
by James Morris
· 7 years ago
24ed960
treewide: Switch DEFINE_TIMER callbacks to struct timer_list *
by Kees Cook
· 7 years ago
feb3c76
apparmor: fix possible recursive lock warning in __aa_create_ns
by John Johansen
· 7 years ago
5d7c44e
apparmor: fix locking when creating a new complain profile.
by John Johansen
· 7 years ago
06d426d
apparmor: fix profile attachment for special unconfined profiles
by John Johansen
· 7 years ago
844b829
apparmor: ensure that undecidable profile attachments fail
by John Johansen
· 7 years ago
4633307
apparmor: fix leak of null profile name if profile allocation fails
by John Johansen
· 7 years ago
e3bcfc1
apparmor: remove unused redundant variable stop
by Colin Ian King
· 7 years ago
954317f
apparmor: Fix bool initialization/comparison
by Thomas Meyer
· 7 years ago
7bba39a
apparmor: initialized returned struct aa_perms
by Arnd Bergmann
· 7 years ago
5933a62
apparmor: fix spelling mistake: "resoure" -> "resource"
by Colin Ian King
· 7 years ago
020aae3
ima: do not update security.ima if appraisal status is not INTEGRITY_PASS
by Roberto Sassu
· 7 years ago
1be2172
Merge tag 'modules-for-v4.15' of git://git.kernel.org/pub/scm/linux/kernel/git/jeyu/linux
by Linus Torvalds
· 7 years ago
8c38fb5
Merge tag 'selinux-pr-20171113' of git://git.kernel.org/pub/scm/linux/kernel/git/pcmoore/selinux
by Linus Torvalds
· 7 years ago
5bbcc0f
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next
by Linus Torvalds
· 7 years ago
0a9dd0e
security: keys: Replace time_t with time64_t for struct key_preparsed_payload
by Baolin Wang
· 7 years ago
074d589
security: keys: Replace time_t/timespec with time64_t
by Baolin Wang
· 7 years ago
37dc795
Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6
by Linus Torvalds
· 7 years ago
2bcc673
Merge branch 'timers-core-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip
by Linus Torvalds
· 7 years ago
8e9a2db
Merge branch 'locking-core-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip
by Linus Torvalds
· 7 years ago
b33e3cc
Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security
by Linus Torvalds
· 7 years ago
55b3a0c
Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security
by Linus Torvalds
· 7 years ago
4dc6758
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
by David S. Miller
· 7 years ago
e5729f8
ima: Remove redundant conditional operator
by Thiago Jung Bauermann
· 7 years ago
39adb92
ima: Fix bool initialization/comparison
by Thomas Meyer
· 7 years ago
7c9bc09
ima: check signature enforcement against cmdline param instead of CONFIG
by Bruno E. O. Meneguele
· 7 years ago
ebe7c0a
ima: fix hash algorithm initialization
by Boshi Wang
· 7 years ago
0485d06
EVM: Only complain about a missing HMAC key once
by Matthew Garrett
· 7 years ago
f00d797
EVM: Allow userspace to signal an RSA key has been loaded
by Matthew Garrett
· 7 years ago
096b854
EVM: Include security.apparmor in EVM measurements
by Matthew Garrett
· 7 years ago
a7d3d03
integrity: use kernel_read_file_from_path() to read x509 certs
by Christoph Hellwig
· 7 years ago
f3cc6b2
ima: always measure and audit files in policy
by Mimi Zohar
· 7 years ago
2068626
ima: don't remove the securityfs policy file
by Mimi Zohar
· 7 years ago
f7dc4c9
apparmor: fix off-by-one comparison on MAXMAPPED_SIG
by John Johansen
· 7 years ago
8c5db92
Merge branch 'linus' into locking/core, to resolve conflicts
by Ingo Molnar
· 7 years ago
ecf8fec
device_cgroup: prepare code for bpf-based device controller
by Roman Gushchin
· 7 years ago
67e306f
device_cgroup: add DEVCG_ prefix to ACC_* and DEV_* constants
by Roman Gushchin
· 7 years ago
2a17178
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
by David S. Miller
· 7 years ago
46f1414
ima: move to generic async completion
by Gilad Ben-Yossef
· 7 years ago
ead7515
Merge tag 'spdx_identifiers-4.14-rc8' of git://git.kernel.org/pub/scm/linux/kernel/git/gregkh/driver-core
by Linus Torvalds
· 7 years ago
b244131
License cleanup: add SPDX GPL-2.0 license identifier to files with no license
by Greg Kroah-Hartman
· 7 years ago
a3c812f
KEYS: trusted: fix writing past end of buffer in trusted_read()
by Eric Biggers
· 7 years ago
3239b6f
KEYS: return full count in keyring_read() if buffer is too small
by Eric Biggers
· 7 years ago
d6d80cb
Smack: Base support for overlayfs
by Casey Schaufler
· 7 years ago
e4dca7b
treewide: Fix function prototypes for module_param_call()
by Kees Cook
· 7 years ago
e1ea2f9
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
by David S. Miller
· 7 years ago
80c094a
Revert "apparmor: add base infastructure for socket mediation"
by Linus Torvalds
· 7 years ago
9babb09
Merge tag 'v4.14-rc6' into locking/core, to pick up fixes
by Ingo Molnar
· 7 years ago
f8ddadc
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
by David S. Miller
· 7 years ago
9273409
tomoyo: fix timestamping for y2038
by Arnd Bergmann
· 7 years ago
f66e448
selinux: bpf: Add addtional check for bpf object file receive
by Chenbo Feng
· 7 years ago
ec27c35
selinux: bpf: Add selinux check for eBPF syscall operations
by Chenbo Feng
· 7 years ago
afdb09c
security: bpf: Add LSM hooks for bpf object related syscall
by Chenbo Feng
· 7 years ago
dbbbe11
capabilities: audit log other surprising conditions
by Richard Guy Briggs
· 7 years ago
588fb2c
capabilities: fix logic for effective root or real root
by Richard Guy Briggs
· 7 years ago
c0d1ade
capabilities: invert logic for clarity
by Richard Guy Briggs
· 7 years ago
02ebbaf
capabilities: remove a layer of conditional logic
by Richard Guy Briggs
· 7 years ago
9fbc2c7
capabilities: move audit log decision to function
by Richard Guy Briggs
· 7 years ago
81a6a01
capabilities: use intuitive names for id changes
by Richard Guy Briggs
· 7 years ago
9304b46
capabilities: use root_priveleged inline to clarify logic
by Richard Guy Briggs
· 7 years ago
fc7eadf
capabilities: rename has_cap to has_fcap
by Richard Guy Briggs
· 7 years ago
4c7e715
capabilities: intuitive names for cap gain status
by Richard Guy Briggs
· 7 years ago
db1a892
capabilities: factor out cap_bprm_set_creds privileged root
by Richard Guy Briggs
· 7 years ago
76ba89c
commoncap: move assignment of fs_ns to avoid null pointer dereference
by Colin Ian King
· 7 years ago
494b9ae7
Merge commit 'tags/keys-fixes-20171018' into fixes-v4.14-rc5
by James Morris
· 7 years ago
ab5c69f
KEYS: load key flags and expiry time atomically in proc_keys_show()
by Eric Biggers
· 7 years ago
9d6c871
KEYS: Load key expiry time atomically in keyring_search_iterator()
by Eric Biggers
· 7 years ago
1823d47
KEYS: load key flags and expiry time atomically in key_validate()
by Eric Biggers
· 7 years ago
60ff5b2
KEYS: don't let add_key() update an uninstantiated key
by David Howells
· 7 years ago
363b02d
KEYS: Fix race between updating and finding a negative key
by David Howells
· 7 years ago
3cd18d1
security/keys: BIG_KEY requires CONFIG_CRYPTO
by Arnd Bergmann
· 7 years ago
5794ed7
selinux: remove extraneous initialization of slots_used and max_chain_len
by Colin Ian King
· 7 years ago
73e4977
selinux: remove redundant assignment to len
by Colin Ian King
· 7 years ago
add2437
selinux: remove redundant assignment to str
by Colin Ian King
· 7 years ago
13923d0
KEYS: encrypted: fix dereference of NULL user_key_payload
by Eric Biggers
· 7 years ago
26c4eb1
locking/rwsem, security/apparmor: Replace homebrew use of write_can_lock() with lockdep
by Will Deacon
· 7 years ago
1d27e3e
timer: Remove expires and data arguments from DEFINE_TIMER
by Kees Cook
· 7 years ago
4298555
selinux: fix build warning
by Corentin LABBE
· 7 years ago
c0d4f46
selinux: fix build warning by removing the unused sid variable
by Corentin LABBE
· 7 years ago
6b24030
selinux: Perform both commoncap and selinux xattr checks
by Eric W. Biederman
· 7 years ago
57e7ba0
lsm: fix smack_inode_removexattr and xattr_getsecurity memleak
by Casey Schaufler
· 7 years ago
2569e7e
Merge commit 'keys-fixes-20170927' into fixes-v4.14-rc3
by James Morris
· 7 years ago
428490e
security/keys: rewrite all of big_key crypto
by Jason A. Donenfeld
· 7 years ago
9108018
security/keys: properly zero out sensitive key material in big_key
by Jason A. Donenfeld
· 7 years ago
e007ce9
KEYS: use kmemdup() in request_key_auth_new()
by Eric Biggers
· 7 years ago
4aa68e0
KEYS: restrict /proc/keys by credentials at open time
by Eric Biggers
· 7 years ago
8f67456
KEYS: reset parent each time before searching key_user_tree
by Eric Biggers
· 7 years ago
37863c4
KEYS: prevent KEYCTL_READ on negative key
by Eric Biggers
· 7 years ago
237bbd2
KEYS: prevent creating a different user's keyrings
by Eric Biggers
· 7 years ago
e645016
KEYS: fix writing past end of user-supplied buffer in keyring_read()
by Eric Biggers
· 7 years ago
7fc0786
KEYS: fix key refcount leak in keyctl_read_key()
by Eric Biggers
· 7 years ago
884bee0
KEYS: fix key refcount leak in keyctl_assume_authority()
by Eric Biggers
· 7 years ago
f7b48cf
KEYS: don't revoke uninstantiated key in request_key_auth_new()
by Eric Biggers
· 7 years ago
44d8143
KEYS: fix cred refcount leak in request_key_auth_new()
by Eric Biggers
· 7 years ago
Next »