2023-05-16 | Arne Welzel | fortify: strscpy: Fix flipped q and p docstring typo Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2023-05-16 | Kees Cook | ubsan: Tighten UBSAN_BOUNDS on GCC Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2023-03-25 | Kees Cook | kheaders: Use array declaration instead of char Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2023-03-08 | John Stultz | pstore: Revert pmsg_lock back to a normal mutex Cc: Kees Cook <keescook@chromium.org> Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2023-02-08 | Eric Biggers | randstruct: disable Clang 15 support Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2023-02-08 | Kees Cook | uaccess: Add minimum bounds check on kernel buffer... Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2023-02-08 | Kees Cook | arm64: Support Clang UBSAN trap codes for better reporting Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2023-02-08 | Kees Cook | coda: Avoid partial allocation of sig_inputArgs Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2023-02-02 | Kees Cook | Merge branch 'for-linus/hardening' into for-next/hardening |
commit | commitdiff | tree |
2023-02-02 | Sam James | gcc-plugins: drop -std=gnu++11 to fix GCC 13 build Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2023-01-27 | Andy Shevchenko | lib/string: Use strchr() in strpbrk() Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2023-01-27 | Kees Cook | crypto: hisilicon: Wipe entire pool on error Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2023-01-27 | Kees Cook | net/i40e: Replace 0-length array with flexible array Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2023-01-27 | Kees Cook | io_uring: Replace 0-length array with flexible array Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2023-01-27 | Kees Cook | ext4: Fix function prototype mismatch for ext4_feat_ktype Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2023-01-27 | Paulo Miguel Almeida | i915/gvt: Replace one-element array with flexible-array... Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2023-01-27 | Kees Cook | drm/nouveau/disp: Fix nvif_outp_acquire_dp() argument... Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2023-01-25 | Kees Cook | bcache: Silence memcpy() run-time false positive warnings Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2023-01-25 | Kees Cook | gcc-plugins: Reorganize gimple includes for GCC 13 Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2023-01-25 | Kees Cook | kunit: memcpy: Split slow memcpy tests into MEMCPY_SLOW_KUNI... Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2023-01-19 | Kees Cook | LoadPin: Allow filesystem switch when not enforcing Signed-off-by: Kees Cook <keescook@chromium.org> ...org/r/20221209195746.1366607-4-keescook@chromium.org |
commit | commitdiff | tree |
2023-01-19 | Kees Cook | LoadPin: Move pin reporting cleanly out of locking Signed-off-by: Kees Cook <keescook@chromium.org> ...org/r/20221209195746.1366607-3-keescook@chromium.org |
commit | commitdiff | tree |
2023-01-19 | Kees Cook | LoadPin: Refactor sysctl initialization Signed-off-by: Kees Cook <keescook@chromium.org> ...org/r/20221209195746.1366607-2-keescook@chromium.org |
commit | commitdiff | tree |
2023-01-19 | Kees Cook | LoadPin: Refactor read-only check into a helper Signed-off-by: Kees Cook <keescook@chromium.org> ...org/r/20221209195746.1366607-1-keescook@chromium.org |
commit | commitdiff | tree |
2023-01-19 | Kees Cook | ARM: ixp4xx: Replace 0-length arrays with flexible... Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2023-01-14 | Randy Dunlap | seccomp: fix kernel-doc function name warning Cc: Kees Cook <keescook@chromium.org> Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2023-01-13 | Sami Tolvanen | kbuild: Fix CFI hash randomization with KASAN Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2023-01-13 | Kees Cook | firmware: coreboot: Check size of table entry and use... Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2023-01-05 | Kees Cook | fortify: Use __builtin_dynamic_object_size() when available Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2023-01-05 | Stephen Rothwell | rxrpc: replace zero-lenth array with DECLARE_FLEX_ARRAY... Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-12-23 | Luca Stefani | pstore: Properly assign mem_type property Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-12-23 | John Stultz | pstore: Make sure CONFIG_PSTORE_PMSG selects CONFIG_RT_MUTEXES Cc: Kees Cook <keescook@chromium.org> Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-12-23 | Sami Tolvanen | cfi: Fix CFI failure with KASAN Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-12-16 | Kees Cook | exit: Use READ_ONCE() for all oops/warn limit reads Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-12-15 | John Stultz | pstore: Switch pmsg_lock to an rt_mutex to avoid priority... Cc: Kees Cook <keescook@chromium.org> Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-12-15 | Nathan Chancellor | security: Restrict CONFIG_ZERO_CALL_USED_REGS to gcc... Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-12-15 | Kristina Martsenko | lkdtm: cfi: Make PAC test work with GCC 7 and 8 Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-12-14 | Kees Cook | docs: Fix path paste-o for /sys/kernel/warn_count Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-12-14 | Kees Cook | LoadPin: Ignore the "contents" argument of the LSM... Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-12-06 | Stephen Boyd | pstore: Avoid kcore oops by vmap()ing with VM_IOREMAP Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-12-02 | Wang Yufen | pstore/ram: Fix error return code in ramoops_probe() Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-12-02 | Liu Shixin | binfmt_misc: fix shift-out-of-bounds in check_special_flags Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-12-02 | Gustavo A. R. Silva | ksmbd: replace one-element arrays with flexible-array... Reviewed-by: Kees Cook <keescook@chromium.org> Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-12-02 | Kees Cook | hpet: Replace one-element array with flexible-array... Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-12-02 | Kees Cook | um: virt-pci: Avoid GCC non-NULL warning Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-12-02 | haifeng.xu | signal: Initialize the info in ksignal Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-12-02 | Anders Roxell | lib: fortify_kunit: build without structleak plugin Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-12-02 | Kees Cook | panic: Expose "warn_count" to sysfs Signed-off-by: Kees Cook <keescook@chromium.org> ...org/r/20221117234328.594699-6-keescook@chromium.org |
commit | commitdiff | tree |
2022-12-02 | Kees Cook | panic: Introduce warn_limit Signed-off-by: Kees Cook <keescook@chromium.org> ...org/r/20221117234328.594699-5-keescook@chromium.org |
commit | commitdiff | tree |
2022-12-02 | Kees Cook | panic: Consolidate open-coded panic_on_warn checks Signed-off-by: Kees Cook <keescook@chromium.org> ...org/r/20221117234328.594699-4-keescook@chromium.org |
commit | commitdiff | tree |
2022-12-02 | Kees Cook | exit: Allow oops_limit to be disabled Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-12-02 | Randy Dunlap | seccomp: document the "filter_count" field Cc: Kees Cook <keescook@chromium.org> Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-12-02 | Kuniyuki Iwashima | seccomp: Move copy_seccomp() to no failure path. Suggested-by: Kees Cook <keescook@chromium.org> Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-12-02 | Gautam Menghani | selftests/seccomp: Check CAP_SYS_ADMIN capability in... Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-12-02 | Wang Yufen | binfmt: Fix error return code in load_elf_fdpic_binary() Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-12-01 | Kees Cook | exit: Expose "oops_count" to sysfs Signed-off-by: Kees Cook <keescook@chromium.org> ...org/r/20221117234328.594699-3-keescook@chromium.org |
commit | commitdiff | tree |
2022-12-01 | Jann Horn | exit: Put an upper limit on how often we can oops Signed-off-by: Kees Cook <keescook@chromium.org> ...org/r/20221117234328.594699-2-keescook@chromium.org |
commit | commitdiff | tree |
2022-12-01 | Kees Cook | panic: Separate sysctl logic from CONFIG_SMP Signed-off-by: Kees Cook <keescook@chromium.org> ...org/r/20221117234328.594699-1-keescook@chromium.org |
commit | commitdiff | tree |
2022-12-01 | Gustavo A. R. Silva | mm/pgtable: Fix multiple -Wstringop-overflow warnings Reviewed-by: Kees Cook <keescook@chromium.org> Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-12-01 | Kees Cook | mm: Make ksize() a reporting-only function Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-11-23 | Kees Cook | kunit/fortify: Validate __alloc_size attribute results Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-11-18 | Nathan Chancellor | drm/sti: Fix return type of sti_{dvo,hda,hdmi}_connector_mod... Reviewed-by: Kees Cook <keescook@chromium.org> Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-11-18 | Nathan Chancellor | drm/fsl-dcu: Fix return type of fsl_dcu_drm_connector_mode_v... Reviewed-by: Kees Cook <keescook@chromium.org> Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-11-18 | Kees Cook | driver core: Add __alloc_size hint to devm allocators Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-11-18 | Kees Cook | exec: Remove FOLL_FORCE for stack setup Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-11-17 | Bo Liu | binfmt_elf: replace IS_ERR() with IS_ERR_VALUE() Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-11-08 | Kees Cook | Merge branch 'for-linus/hardening' into for-next/hardening |
commit | commitdiff | tree |
2022-11-08 | Nathan Chancellor | vmlinux.lds.h: Fix placement of '.data..decrypted'... Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-11-02 | Kees Cook | overflow: Introduce overflows_type() and castable_to_type() Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-11-01 | Kees Cook | coredump: Proactively round up to kmalloc bucket size Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-11-01 | Kees Cook | btrfs: send: Proactively round up to kmalloc bucket... Signed-off-by: Kees Cook <keescook@chromium.org> ...org/r/20220923202822.2667581-8-keescook@chromium.org |
commit | commitdiff | tree |
2022-11-01 | Kees Cook | dma-buf: Proactively round up to kmalloc bucket size Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-11-01 | Xin Li | kbuild: upgrade the orphan section warning to an error... Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-11-01 | Kees Cook | cred: Do not default to init_cred in prepare_kernel_cred() Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-11-01 | Kees Cook | fortify: Do not cast to "unsigned char" Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-11-01 | Kees Cook | siphash: Convert selftest to KUnit Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-11-01 | Kees Cook | fortify: Short-circuit known-safe calls to strscpy() Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-11-01 | Kees Cook | string: Convert strscpy() self-test to KUnit Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-11-01 | Kees Cook | string: Add __realloc_size hint to kmemdup() Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-10-28 | Kees Cook | kunit/memcpy: Add dynamic size and window tests Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-10-28 | Kees Cook | string: Rewrite and add more kern-doc for the str*... Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-10-28 | Kees Cook | fortify: Capture __bos() results in const temp vars Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-10-25 | Rolf Eike Beer | binfmt_elf: simplify error handling in load_elf_phdrs() Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-10-25 | Rolf Eike Beer | binfmt_elf: fix documented return value for load_elf_phdrs() Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-10-25 | Rolf Eike Beer | exec: simplify initial stack size expansion Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-10-25 | Kees Cook | binfmt: Fix whitespace issues Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-10-25 | Kees Cook | exec: Add comments on check_unsafe_exec() fs counting Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-10-25 | Rolf Eike Beer | ELF uapi: add spaces before '{' Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-10-25 | Andrei Vagin | selftests/timens: add a test for vfork+exit Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-10-25 | Andrei Vagin | fs/exec: switch timens when a task gets a new mm Cc: Kees Cook <keescook@chromium.org> Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-10-25 | Li Zetao | fs/binfmt_elf: Fix memory leak in load_elf_binary() Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-10-25 | Bernd Edlinger | exec: Copy oldsighand->action under spin-lock Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-10-25 | Kees Cook | overflow: Refactor test skips for Clang-specific issues Signed-off-by: Kees Cook <keescook@chromium.org> ...org/r/20221006230017.1833458-1-keescook@chromium.org |
commit | commitdiff | tree |
2022-10-25 | Nick Desaulniers | overflow: disable failing tests for older clang versions Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-10-25 | Kees Cook | overflow: Fix kern-doc markup for functions Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-10-19 | Guilherme G. Piccoli | pstore: Alert on backend write error Signed-off-by: Kees Cook <keescook@chromium.org> |
commit | commitdiff | tree |
2022-10-19 | Kees Cook | MAINTAINERS: Update pstore maintainers Signed-off-by: Kees Cook <keescook@chromium.org> ...org/r/20221011200112.731334-6-keescook@chromium.org |
commit | commitdiff | tree |
2022-10-19 | Kees Cook | pstore/ram: Set freed addresses to NULL Signed-off-by: Kees Cook <keescook@chromium.org> ...org/r/20221011200112.731334-5-keescook@chromium.org |
commit | commitdiff | tree |
2022-10-17 | Kees Cook | pstore/ram: Move internal definitions out of kernel... Signed-off-by: Kees Cook <keescook@chromium.org> ...org/r/20221011200112.731334-4-keescook@chromium.org |
commit | commitdiff | tree |
2022-10-17 | Kees Cook | pstore/ram: Move pmsg init earlier Signed-off-by: Kees Cook <keescook@chromium.org> ...org/r/20221011200112.731334-3-keescook@chromium.org |
commit | commitdiff | tree |
next |