Gitiles
Code Review
Sign In
review.shift-gmbh.com
/
SHIFTPHONES
/
android_kernel_shift_sdm845
/
26fad52fa04417bf913afcec754923d531f64997
/
security
26fad52
Merge 4.9.164 into android-4.9
by Greg Kroah-Hartman
· 6 years ago
713b91c
missing barriers in some of unix_sock ->addr and ->path accesses
by Al Viro
· 6 years ago
ccc2aae
KEYS: restrict /proc/keys by credentials at open time
by Eric Biggers
· 7 years ago
9df256d
Merge 4.9.161 into android-4.9
by Greg Kroah-Hartman
· 6 years ago
dc070cd
KEYS: always initialize keyring_index_key::desc_len
by Eric Biggers
· 6 years ago
6704b9d
KEYS: allow reaching the keys quotas exactly
by Eric Biggers
· 6 years ago
8817a28
Merge 4.9.156 into android-4.9
by Greg Kroah-Hartman
· 6 years ago
f096ede
smack: fix access permissions for keyring
by Zoran Markovic
· 6 years ago
fe0eb27
Merge 4.9.153 into android-4.9
by Greg Kroah-Hartman
· 6 years ago
62044cb
selinux: always allow mounting submounts
by Ondrej Mosnacek
· 6 years ago
fd37e28
Merge 4.9.152 into android-4.9
by Greg Kroah-Hartman
· 6 years ago
aedbb45
selinux: fix GPF on invalid policy
by Stephen Smalley
· 6 years ago
a017e39
LSM: Check for NULL cred-security on free
by James Morris
· 6 years ago
4fd72a1
Yama: Check for pid death before checking ancestry
by Kees Cook
· 6 years ago
db71418
Merge 4.9.142 into android-4.9
by Greg Kroah-Hartman
· 6 years ago
1f89834
ima: re-initialize iint->atomic_flags
by Mimi Zohar
· 7 years ago
166f454
ima: re-introduce own integrity cache lock
by Dmitry Kasatkin
· 7 years ago
87043e4
EVM: Add support for portable signature format
by Matthew Garrett
· 7 years ago
5f9fb1a
ima: always measure and audit files in policy
by Mimi Zohar
· 8 years ago
5fed1ff
Revert "evm: Translate user/group ids relative to s_user_ns when computing HMAC"
by Eric W. Biederman
· 8 years ago
47ff762
selinux: Add __GFP_NOWARN to allocation at str_read()
by Tetsuo Handa
· 6 years ago
e1260be
Merge 4.9.137 into android-4.9
by Greg Kroah-Hartman
· 6 years ago
53de32d
ima: fix showing large 'violations' or 'runtime_measurements_count'
by Eric Biggers
· 6 years ago
b727d1c
Merge 4.9.129 into android-4.9
by Greg Kroah-Hartman
· 6 years ago
eddbab1
evm: Don't deadlock if a crypto algorithm is unavailable
by Matthew Garrett
· 7 years ago
a64fa27
Smack: Fix handling of IPv4 traffic received by PF_INET6 sockets
by Piotr Sawicki
· 6 years ago
ba01a42
Merge 4.9.128 into android-4.9
by Greg Kroah-Hartman
· 6 years ago
d1f534f
selinux: use GFP_NOWAIT in the AVC kmem_caches
by Michal Hocko
· 7 years ago
6a1b592
Merge 4.9.124 into android-4.9
by Greg Kroah-Hartman
· 6 years ago
ebc6dcb
Smack: Mark inode instant in smack_task_to_inode
by Casey Schaufler
· 7 years ago
8b21e85
Merge 4.9.117 into android-4.9
by Greg Kroah-Hartman
· 6 years ago
81be552
ima: based on policy verify firmware signatures (pre-allocated buffer)
by Mimi Zohar
· 7 years ago
42a730a
Merge 4.9.107 into android-4.9
by Greg Kroah-Hartman
· 7 years ago
c738c80
selinux: KASAN: slab-out-of-bounds in xattr_getsecurity
by Sachin Grover
· 7 years ago
28fffa9
Revert "ima: limit file hash setting by user to fix and log modes"
by Mimi Zohar
· 8 years ago
9797dcb
Merge 4.9.104 into android-4.9
by Greg Kroah-Hartman
· 7 years ago
99d8240
ima: Fallback to the builtin hash algorithm
by Petr Vorel
· 7 years ago
8a5a436
integrity/security: fix digsig.c build error with header file
by Randy Dunlap
· 7 years ago
8683408
Merge 4.9.94 into android-4.9
by Greg Kroah-Hartman
· 7 years ago
b983b2a
selinux: do not check open permission on sockets
by Stephen Smalley
· 8 years ago
05baf14
Merge tag 'v4.9.93' into android-4.9
by Greg Hackmann
· 7 years ago
1978d82
selinux: Remove redundant check for unknown labeling behavior
by Matthias Kaehlcke
· 8 years ago
00972ac
selinux: Remove unnecessary check of array base in selinux_set_mapping()
by Matthias Kaehlcke
· 8 years ago
960923f
Merge 4.9.89 into android-4.9
by Greg Kroah-Hartman
· 7 years ago
27a0856
ima: relax requiring a file signature for new files with zero length
by Mimi Zohar
· 7 years ago
d55a55b
apparmor: Make path_max parameter readonly
by John Johansen
· 8 years ago
b243aa8
selinux: check for address length in selinux_socket_bind()
by Alexander Potapenko
· 8 years ago
24da2c8
BACKPORT: treewide: Fix function prototypes for module_param_call()
by Kees Cook
· 7 years ago
a9d0273
Merge 4.9.84 into android-4.9
by Greg Kroah-Hartman
· 7 years ago
077463b
security/keys: BIG_KEY requires CONFIG_CRYPTO
by Arnd Bergmann
· 7 years ago
5e6f51a
selinux: skip bounded transition processing if the policy isn't loaded
by Paul Moore
· 7 years ago
fe1cb58
selinux: ensure the context is NUL terminated in security_context_to_sid_core()
by Paul Moore
· 7 years ago
f8bbe51
Merge 4.9.81 into android-4.9
by Greg Kroah-Hartman
· 7 years ago
9692602
KEYS: encrypted: fix buffer overread in valid_master_desc()
by Eric Biggers
· 8 years ago
bc7ff9b
Merge 4.9.75 into android-4.9
by Greg Kroah-Hartman
· 7 years ago
e71fac0
KPTI: Rename to PAGE_TABLE_ISOLATION
by Kees Cook
· 7 years ago
2c27217
x86/kaiser: Reenable PARAVIRT
by Borislav Petkov
· 7 years ago
1ce27de
kaiser: delete KAISER_REAL_SWITCH option
by Hugh Dickins
· 7 years ago
639c005
kaiser: KAISER depends on SMP
by Hugh Dickins
· 7 years ago
8f0baad
kaiser: merged update
by Dave Hansen
· 7 years ago
13be448
KAISER: Kernel Address Isolation
by Richard Fellner
· 8 years ago
3f1d77c
Merge 4.9.69 into android-4.9
by Greg Kroah-Hartman
· 7 years ago
982707e
KEYS: add missing permission check for request_key() destination
by Eric Biggers
· 7 years ago
fdeec8f
Merge 4.9.68 into android-4.9
by Greg Kroah-Hartman
· 7 years ago
b0a4608
ima: fix hash algorithm initialization
by Boshi Wang
· 7 years ago
ea83e4a
Merge 4.9.65 into android-4.9
by Greg Kroah-Hartman
· 7 years ago
2cfbb32
ima: do not update security.ima if appraisal status is not INTEGRITY_PASS
by Roberto Sassu
· 7 years ago
44a3afc
Merge 4.9.63 into android-4.9
by Greg Kroah-Hartman
· 7 years ago
31c8c49
security/keys: add CONFIG_KEYS_COMPAT to Kconfig
by Bilal Amarni
· 8 years ago
a6d71ba
Merge 4.9.62 into android-4.9
by Greg Kroah-Hartman
· 7 years ago
419ec34
KEYS: trusted: fix writing past end of buffer in trusted_read()
by Eric Biggers
· 7 years ago
64a2345
KEYS: trusted: sanitize all key material
by Eric Biggers
· 8 years ago
ab71bee
apparmor: fix undefined reference to `aa_g_hash_policy'
by John Johansen
· 8 years ago
c4789f8
Merge 4.9.61 into android-4.9
by Greg Kroah-Hartman
· 7 years ago
0be72ae
KEYS: return full count in keyring_read() if buffer is too small
by Eric Biggers
· 7 years ago
0521e0b
UPSTREAM: selinux: bpf: Add addtional check for bpf object file receive
by Chenbo Feng
· 7 years ago
9b62913
UPSTREAM: selinux: bpf: Add selinux check for eBPF syscall operations
by Chenbo Feng
· 7 years ago
f3ad376
BACKPORT: security: bpf: Add LSM hooks for bpf object related syscall
by Chenbo Feng
· 7 years ago
16cc920
Merge 4.9.59 into android-4.9
by Greg Kroah-Hartman
· 7 years ago
63c8e45
KEYS: Fix race between updating and finding a negative key
by David Howells
· 7 years ago
da0c750
KEYS: don't let add_key() update an uninstantiated key
by David Howells
· 7 years ago
fec442e
KEYS: encrypted: fix dereference of NULL user_key_payload
by Eric Biggers
· 7 years ago
63da420
f2fs: catch up to v4.14-rc1
by Hyojun Kim
· 7 years ago
cdbe07a
Merge 4.9.55 into android-4.9
by Greg Kroah-Hartman
· 7 years ago
88c195d
lsm: fix smack_inode_removexattr and xattr_getsecurity memleak
by Casey Schaufler
· 7 years ago
379e3b2
Merge 4.9.53 into android-4.9
by Greg Kroah-Hartman
· 7 years ago
dda70d2
KEYS: prevent KEYCTL_READ on negative key
by Eric Biggers
· 7 years ago
bfe9d7b
KEYS: prevent creating a different user's keyrings
by Eric Biggers
· 7 years ago
47e8bd1
KEYS: fix writing past end of user-supplied buffer in keyring_read()
by Eric Biggers
· 7 years ago
0c70fb8
security/keys: rewrite all of big_key crypto
by Jason A. Donenfeld
· 7 years ago
2f9be92
security/keys: properly zero out sensitive key material in big_key
by Jason A. Donenfeld
· 7 years ago
0268f76
ANDROID: commoncap: Begin to warn users of implicit PARANOID_NETWORK capability grants
by John Stultz
· 7 years ago
598195a
Merge 4.9.37 into android-4.9
by Greg Kroah-Hartman
· 7 years ago
73a0a68
KEYS: Fix an error code in request_master_key()
by Dan Carpenter
· 8 years ago
8bdee678
UPSTREAM: selinux: enable genfscon labeling for tracefs
by Jeff Vander Stoep
· 8 years ago
da3493c
Merge 4.9.32 into android-4.9
by Greg Kroah-Hartman
· 8 years ago
d24c1c1
KEYS: encrypted: avoid encrypting/decrypting stack buffers
by Eric Biggers
· 8 years ago
2436976
KEYS: fix freeing uninitialized memory in key_update()
by Eric Biggers
· 8 years ago
1b253e0
KEYS: fix dereferencing NULL payload with nonzero length
by Eric Biggers
· 8 years ago
951d823
Merge 4.9.30 into android-4.9
by Greg Kroah-Hartman
· 8 years ago
Next »