twx-linux

History

John Johansen 6f442d42c0 apparmor: fix profile verification and enable it The transition table size was not being set by compat mappings resulting in the profile verification code not being run. Unfortunately the checks were also buggy not being correctly updated from the old accept perms, to the new layout. Also indicate to userspace that the kernel has the permstable verification fixes. BugLink: http://bugs.launchpad.net/bugs/2017903 Fixes: 670f31774ab6 ("apparmor: verify permission table indexes") Signed-off-by: John Johansen <john.johansen@canonical.com> Reviewed-by: Jon Tourville <jontourville@me.com>		2023-07-06 10:59:55 -07:00
..
apparmor	apparmor: fix profile verification and enable it	2023-07-06 10:59:55 -07:00
bpf
integrity	fs.vfsuid.ima.v6.2-rc1	2022-12-21 08:13:01 -08:00
keys	integrity-v6.2	2022-12-13 14:22:50 -08:00
landlock	landlock: Support file truncation	2022-10-19 09:01:44 +02:00
loadpin	LoadPin: Ignore the "contents" argument of the LSM hooks	2022-12-14 14:34:18 -08:00
lockdown	lockdown: ratelimit denial messages	2022-09-14 07:37:50 -04:00
safesetid	LSM: SafeSetID: Add setgroups() security policy handling	2022-07-15 18:24:42 +00:00
selinux	lsm/stable-6.2 PR 20221212	2022-12-13 09:47:48 -08:00
smack	lsm/stable-6.2 PR 20221212	2022-12-13 09:47:48 -08:00
tomoyo	security: Create file_truncate hook from path_truncate hook	2022-10-19 09:01:40 +02:00
yama
commoncap.c	lsm/stable-6.2 PR 20221212	2022-12-13 09:47:48 -08:00
device_cgroup.c	device_cgroup: Roll back to original exceptions after copy failure	2022-11-16 18:28:55 -05:00
inode.c
Kconfig	x86/retbleed: Add fine grained Kconfig knobs	2022-06-29 17:43:41 +02:00
Kconfig.hardening	security: Restrict CONFIG_ZERO_CALL_USED_REGS to gcc or clang > 15.0.6	2022-12-14 16:05:36 -08:00
lsm_audit.c	audit: Fix some kernel-doc warnings	2022-10-28 06:37:55 -04:00
Makefile	security: remove unneeded subdir-$(CONFIG_...)	2021-09-03 08:17:20 +09:00
min_addr.c
security.c	lsm/stable-6.2 PR 20221212	2022-12-13 09:47:48 -08:00