iv/linux
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
linux/security/apparmor
History
Dimitri John Ledkov e44a4dc4b3 apparmor: switch SECURITY_APPARMOR_HASH from sha1 to sha256 
sha1 is insecure and has colisions, thus it is not useful for even
lightweight policy hash checks. Switch to sha256, which on modern
hardware is fast enough.

Separately as per NIST Policy on Hash Functions, sha1 usage must be
withdrawn by 2030. This config option currently is one of many that
holds up sha1 usage.

Signed-off-by: Dimitri John Ledkov <dimitri.ledkov@canonical.com>
Signed-off-by: John Johansen <john.johansen@canonical.com>
2023-11-19 00:47:56 -08:00
..
include
apparmor: Fix regression in mount mediation
2023-10-18 16:01:32 -07:00
.gitignore
.gitignore: add SPDX License Identifier
2020-03-25 11:50:48 +01:00
apparmorfs.c
apparmor: switch SECURITY_APPARMOR_HASH from sha1 to sha256
2023-11-19 00:47:56 -08:00
audit.c
apparmor: add io_uring mediation
2023-10-18 15:58:49 -07:00
capability.c
apparmor: Fix some kernel-doc comments
2023-10-23 00:25:49 -07:00
crypto.c
apparmor: switch SECURITY_APPARMOR_HASH from sha1 to sha256
2023-11-19 00:47:56 -08:00
domain.c
apparmor: Fix one kernel-doc comment
2023-10-23 00:26:05 -07:00
file.c
apparmor: refcount the pdb
2023-10-18 15:30:47 -07:00
ipc.c
apparmor: refcount the pdb
2023-10-18 15:30:47 -07:00
Kconfig
apparmor: switch SECURITY_APPARMOR_HASH from sha1 to sha256
2023-11-19 00:47:56 -08:00
label.c
apparmor: refcount the pdb
2023-10-18 15:30:47 -07:00
lib.c
apparmor: refcount the pdb
2023-10-18 15:30:47 -07:00
lsm.c
+ Features
2023-11-03 09:48:17 -10:00
Makefile
+ Features
2022-12-14 13:42:09 -08:00
match.c
apparmor: refcount the pdb
2023-10-18 15:30:47 -07:00
mount.c
apparmor: Fix regression in mount mediation
2023-10-18 16:01:32 -07:00
net.c
apparmor: refcount the pdb
2023-10-18 15:30:47 -07:00
nulldfa.in
apparmor: cleanup add proper line wrapping to nulldfa.in
2018-02-09 11:30:01 -08:00
path.c
security: apparmor: delete repeated words in comments
2021-02-07 04:15:46 -08:00
policy_compat.c
apparmor: fixup return comments for kernel doc cleanups by Gaosheng Cui
2023-08-08 13:12:19 -07:00
policy_ns.c
apparmor: remove unused functions in policy_ns.c/.h
2023-10-15 21:44:31 -07:00
policy_unpack_test.c
apparmor: fix use of strcpy in policy_unpack_test
2023-07-06 10:58:49 -07:00
policy_unpack.c
+ Features
2023-11-03 09:48:17 -10:00
policy.c
apparmor: Fix some kernel-doc comments
2023-10-23 00:26:27 -07:00
procattr.c
apparmor: fix obsoleted comments for aa_getprocattr() and audit_resource()
2022-10-24 22:35:23 -07:00
resource.c
apparmor: pass cred through to audit info.
2023-10-18 15:30:38 -07:00
secid.c
apparmor: fix kernel-doc complaints
2023-01-10 10:04:35 -08:00
stacksplitdfa.in
apparmor: use the dfa to do label parse string splitting
2018-02-09 11:30:01 -08:00
task.c
apparmor: add user namespace creation mediation
2023-10-18 15:49:02 -07:00