| Commit message (Expand) | Author | Age |
|---|
| * | efi/efi_test: Lock down /dev/efi_test and require CAP_SYS_ADMIN | Javier Martinez Canillas | 2019-10-31 |
| * | Merge tag 'selinux-pr-20191007' of git://git.kernel.org/pub/scm/linux/kernel/... | Linus Torvalds | 2019-10-08 |
| |\ |
|
| | * | selinux: fix context string corruption in convert_context() | Ondrej Mosnacek | 2019-10-03 |
| * | | integrity: remove pointless subdir-$(CONFIG_...) | Masahiro Yamada | 2019-10-05 |
| * | | integrity: remove unneeded, broken attempt to add -fshort-wchar | Masahiro Yamada | 2019-10-05 |
| * | | Merge branch 'next-lockdown' of git://git.kernel.org/pub/scm/linux/kernel/git... | Linus Torvalds | 2019-09-28 |
| |\ \ |
|
| | * | | security: constify some arrays in lockdown LSM | Matthew Garrett | 2019-09-10 |
| | * | | lockdown: Print current->comm in restriction messages | Matthew Garrett | 2019-08-20 |
| | * | | tracefs: Restrict tracefs when the kernel is locked down | Matthew Garrett | 2019-08-20 |
| | * | | debugfs: Restrict debugfs when the kernel is locked down | David Howells | 2019-08-20 |
| | * | | kexec: Allow kexec_file() with appropriate IMA policy when locked down | Matthew Garrett | 2019-08-20 |
| | * | | lockdown: Lock down perf when in confidentiality mode | David Howells | 2019-08-20 |
| | * | | bpf: Restrict bpf when kernel lockdown is in confidentiality mode | David Howells | 2019-08-20 |
| | * | | lockdown: Lock down tracing and perf kprobes when in confidentiality mode | David Howells | 2019-08-20 |
| | * | | lockdown: Lock down /proc/kcore | David Howells | 2019-08-20 |
| | * | | x86/mmiotrace: Lock down the testmmiotrace module | David Howells | 2019-08-20 |
| | * | | lockdown: Lock down module params that specify hardware parameters (eg. ioport) | David Howells | 2019-08-20 |
| | * | | lockdown: Lock down TIOCSSERIAL | David Howells | 2019-08-20 |
| | * | | lockdown: Prohibit PCMCIA CIS storage when the kernel is locked down | David Howells | 2019-08-20 |
| | * | | ACPI: Limit access to custom_method when the kernel is locked down | Matthew Garrett | 2019-08-20 |
| | * | | x86/msr: Restrict MSR access when the kernel is locked down | Matthew Garrett | 2019-08-20 |
| | * | | x86: Lock down IO port access when the kernel is locked down | Matthew Garrett | 2019-08-20 |
| | * | | PCI: Lock down BAR access when the kernel is locked down | Matthew Garrett | 2019-08-20 |
| | * | | hibernate: Disable when the kernel is locked down | Josh Boyer | 2019-08-20 |
| | * | | kexec_file: split KEXEC_VERIFY_SIG into KEXEC_SIG and KEXEC_SIG_FORCE | Jiri Bohac | 2019-08-20 |
| | * | | kexec_load: Disable at runtime if the kernel is locked down | Matthew Garrett | 2019-08-20 |
| | * | | lockdown: Restrict /dev/{mem,kmem,port} when the kernel is locked down | Matthew Garrett | 2019-08-20 |
| | * | | lockdown: Enforce module signatures if the kernel is locked down | David Howells | 2019-08-20 |
| | * | | security: Add a static lockdown policy LSM | Matthew Garrett | 2019-08-20 |
| | * | | security: Add a "locked down" LSM hook | Matthew Garrett | 2019-08-20 |
| | * | | security: Support early LSMs | Matthew Garrett | 2019-08-20 |
| * | | | Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/gi... | Linus Torvalds | 2019-09-27 |
| |\ \ \ |
|
| | * | | | ima: ima_api: Use struct_size() in kzalloc() | Gustavo A. R. Silva | 2019-08-29 |
| | * | | | ima: use struct_size() in kzalloc() | Gustavo A. R. Silva | 2019-08-29 |
| | * | | | ima: Fix use after free in ima_read_modsig() | Thiago Jung Bauermann | 2019-08-28 |
| | * | | | ima: fix freeing ongoing ahash_request | Sascha Hauer | 2019-08-05 |
| | * | | | ima: always return negative code for error | Sascha Hauer | 2019-08-05 |
| | * | | | ima: Store the measurement again when appraising a modsig | Thiago Jung Bauermann | 2019-08-05 |
| | * | | | ima: Define ima-modsig template | Thiago Jung Bauermann | 2019-08-05 |
| | * | | | ima: Collect modsig | Thiago Jung Bauermann | 2019-08-05 |
| | * | | | ima: Implement support for module-style appended signatures | Thiago Jung Bauermann | 2019-08-05 |
| | * | | | ima: Factor xattr_verify() out of ima_appraise_measurement() | Thiago Jung Bauermann | 2019-08-05 |
| | * | | | ima: Add modsig appraise_type option for module-style appended signatures | Thiago Jung Bauermann | 2019-08-05 |
| | * | | | integrity: Select CONFIG_KEYS instead of depending on it | Thiago Jung Bauermann | 2019-08-05 |
| | * | | | ima: initialize the "template" field with the default template | Mimi Zohar | 2019-08-01 |
| * | | | | KEYS: trusted: correctly initialize digests and fix locking issue | Roberto Sassu | 2019-09-24 |
| * | | | | Merge tag 'smack-for-5.4-rc1' of git://github.com/cschaufler/smack-next | Linus Torvalds | 2019-09-23 |
| |\ \ \ \ |
|
| | * | | | | smack: use GFP_NOFS while holding inode_smack::smk_lock | Eric Biggers | 2019-09-04 |
| | * | | | | security: smack: Fix possible null-pointer dereferences in smack_socket_sock_... | Jia-Ju Bai | 2019-09-04 |
| | * | | | | smack: fix some kernel-doc notations | luanshi | 2019-09-04 |
