summaryrefslogtreecommitdiff
path: root/security
AgeCommit message (Expand)Author
2019-08-19bpf: Restrict bpf when kernel lockdown is in confidentiality modeDavid Howells
2019-08-19lockdown: Lock down tracing and perf kprobes when in confidentiality modeDavid Howells
2019-08-19lockdown: Lock down /proc/kcoreDavid Howells
2019-08-19x86/mmiotrace: Lock down the testmmiotrace moduleDavid Howells
2019-08-19lockdown: Lock down module params that specify hardware parameters (eg. ioport)David Howells
2019-08-19lockdown: Lock down TIOCSSERIALDavid Howells
2019-08-19lockdown: Prohibit PCMCIA CIS storage when the kernel is locked downDavid Howells
2019-08-19ACPI: Limit access to custom_method when the kernel is locked downMatthew Garrett
2019-08-19x86/msr: Restrict MSR access when the kernel is locked downMatthew Garrett
2019-08-19x86: Lock down IO port access when the kernel is locked downMatthew Garrett
2019-08-19PCI: Lock down BAR access when the kernel is locked downMatthew Garrett
2019-08-19hibernate: Disable when the kernel is locked downJosh Boyer
2019-08-19kexec_file: split KEXEC_VERIFY_SIG into KEXEC_SIG and KEXEC_SIG_FORCEJiri Bohac
2019-08-19kexec_load: Disable at runtime if the kernel is locked downMatthew Garrett
2019-08-19lockdown: Restrict /dev/{mem,kmem,port} when the kernel is locked downMatthew Garrett
2019-08-19lockdown: Enforce module signatures if the kernel is locked downDavid Howells
2019-08-19security: Add a static lockdown policy LSMMatthew Garrett
2019-08-19security: Add a "locked down" LSM hookMatthew Garrett
2019-08-19security: Support early LSMsMatthew Garrett
2019-08-13KEYS: trusted: allow module init if TPM is inactive or deactivatedRoberto Sassu
2019-08-12fanotify, inotify, dnotify, security: add security hook for fs notificationsAaron Goidel
2019-08-05ima: fix freeing ongoing ahash_requestSascha Hauer
2019-08-05ima: always return negative code for errorSascha Hauer
2019-08-05ima: Store the measurement again when appraising a modsigThiago Jung Bauermann
2019-08-05ima: Define ima-modsig templateThiago Jung Bauermann
2019-08-05ima: Collect modsigThiago Jung Bauermann
2019-08-05ima: Implement support for module-style appended signaturesThiago Jung Bauermann
2019-08-05ima: Factor xattr_verify() out of ima_appraise_measurement()Thiago Jung Bauermann
2019-08-05ima: Add modsig appraise_type option for module-style appended signaturesThiago Jung Bauermann
2019-08-05integrity: Select CONFIG_KEYS instead of depending on itThiago Jung Bauermann
2019-08-05selinux: always return a secid from the network caches if we find onePaul Moore
2019-08-05selinux: policydb - rename type_val_to_struct_arrayOndrej Mosnacek
2019-08-05selinux: policydb - fix some checkpatch.pl warningsOndrej Mosnacek
2019-08-05selinux: shuffle around policydb.c to get rid of forward declarationsPaul Moore
2019-08-02Merge tag 'selinux-pr-20190801' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds
2019-08-01ima: initialize the "template" field with the default templateMimi Zohar
2019-07-31selinux: fix memory leak in policydb_init()Ondrej Mosnacek
2019-07-28Merge tag 'meminit-v5.3-rc2' of git://git.kernel.org/pub/scm/linux/kernel/git...Linus Torvalds
2019-07-26Merge tag 'selinux-pr-20190726' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds
2019-07-25structleak: disable STRUCTLEAK_BYREF in combination with KASAN_STACKArnd Bergmann
2019-07-24selinux: check sidtab limit before adding a new entryOndrej Mosnacek
2019-07-19Merge branch 'work.mount0' of git://git.kernel.org/pub/scm/linux/kernel/git/v...Linus Torvalds
2019-07-18proc/sysctl: add shared variables for range checkMatteo Croce
2019-07-16Merge tag 'docs/v5.3-1' of git://git.kernel.org/pub/scm/linux/kernel/git/mche...Linus Torvalds
2019-07-15LSM: SafeSetID: fix use of literal -1 in capable hookJann Horn
2019-07-15LSM: SafeSetID: verify transitive constrainednessJann Horn
2019-07-15LSM: SafeSetID: add read handlerJann Horn
2019-07-15LSM: SafeSetID: rewrite userspace API to atomic updatesJann Horn
2019-07-15LSM: SafeSetID: fix userns handling in securityfsJann Horn
2019-07-15LSM: SafeSetID: refactor policy parsingJann Horn
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-19 02:32:09 +0000