Show patches with: State = Action Required       |   94 patches
Patch Series A/R/T S/W/F Date Submitter Delegate State
[v2] io_uring,audit: don't log IORING_OP_MADVISE [v2] io_uring,audit: don't log IORING_OP_MADVISE - - - --- 2023-02-01 Richard Guy Briggs New
[RFC,v9,16/16] documentation: add ipe documentation Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,15/16] ipe: kunit test for parser Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,14/16] scripts: add boot policy generation program Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,13/16] ipe: enable support for fs-verity as a trust provider Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,12/16] fsverity: consume builtin signature via LSM hook Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,11/16] ipe: add support for dm-verity as a trust provider Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,10/16] dm-verity: consume root hash digest and signature data via LSM hook Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,09/16] block|security: add LSM blob to block_device Integrity Policy Enforcement LSM (IPE) - 1 - --- 2023-01-30 Fan Wu New
[RFC,v9,08/16] ipe: add permissive toggle Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,07/16] uapi|audit|ipe: add ipe auditing support Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,06/16] ipe: add LSM hooks on execution and kernel read Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,05/16] ipe: add userspace interface Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,04/16] security: add new securityfs delete function Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,03/16] ipe: add evaluation loop and introduce 'boot_verified' as a trust provider Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,02/16] ipe: add policy parser Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,01/16] security: add ipe lsm Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[v1,2/2] io_uring,audit: do not log IORING_OP_*GETXATTR two suggested iouring op audit updates - - - --- 2023-01-27 Richard Guy Briggs New
[v1,1/2] io_uring, audit: audit IORING_OP_FADVISE but not IORING_OP_MADVISE two suggested iouring op audit updates - - - --- 2023-01-27 Richard Guy Briggs New
[v6,3/3] fanotify, audit: Allow audit to use the full permission event response fanotify: Allow user space to pass back additional audit info - - - --- 2023-01-17 Richard Guy Briggs New
[v6,2/3] fanotify: define struct members to hold response decision context fanotify: Allow user space to pass back additional audit info - - - --- 2023-01-17 Richard Guy Briggs New
[v6,1/3] fanotify: Ensure consistent variable type for response fanotify: Allow user space to pass back additional audit info 1 - - --- 2023-01-17 Richard Guy Briggs New
[RFC,v7,16/16] documentation: add ipe documentation Integrity Policy Enforcement (IPE) - - - --- 2021-10-13 Deven Bowers New
[RFC,v7,15/16] ipe: kunit tests Integrity Policy Enforcement (IPE) - - - --- 2021-10-13 Deven Bowers New
[RFC,v7,14/16] scripts: add boot policy generation program Integrity Policy Enforcement (IPE) - - - --- 2021-10-13 Deven Bowers New
[RFC,v7,13/16] ipe: enable support for fs-verity as a trust provider Integrity Policy Enforcement (IPE) - - - --- 2021-10-13 Deven Bowers New
[RFC,v7,12/16] fsverity|security: add security hooks to fsverity digest and signature Integrity Policy Enforcement (IPE) - - - --- 2021-10-13 Deven Bowers New
[RFC,v7,11/16] ipe: add support for dm-verity as a trust provider Integrity Policy Enforcement (IPE) - - - --- 2021-10-13 Deven Bowers New
[RFC,v7,10/16] fs|dm-verity: add block_dev LSM blob and submit dm-verity data Integrity Policy Enforcement (IPE) - - - --- 2021-10-13 Deven Bowers New
[RFC,v7,09/16] ipe: introduce 'boot_verified' as a trust provider Integrity Policy Enforcement (IPE) - - - --- 2021-10-13 Deven Bowers New
[RFC,v7,08/16] ipe: add permissive toggle Integrity Policy Enforcement (IPE) - - - --- 2021-10-13 Deven Bowers New
[RFC,v7,07/16] ipe: add auditing support Integrity Policy Enforcement (IPE) - - - --- 2021-10-13 Deven Bowers New
[RFC,v7,06/16] uapi|audit: add trust audit message definitions Integrity Policy Enforcement (IPE) - - - --- 2021-10-13 Deven Bowers New
[RFC,v7,05/16] ipe: add LSM hooks on execution and kernel read Integrity Policy Enforcement (IPE) - - - --- 2021-10-13 Deven Bowers New
[RFC,v7,04/16] ipe: add userspace interface Integrity Policy Enforcement (IPE) - - - --- 2021-10-13 Deven Bowers New
[RFC,v7,03/16] ipe: add evaluation loop Integrity Policy Enforcement (IPE) - - - --- 2021-10-13 Deven Bowers New
[RFC,v7,02/16] ipe: add policy parser Integrity Policy Enforcement (IPE) - - - --- 2021-10-13 Deven Bowers New
[RFC,v7,01/16] security: add ipe lsm & initial context creation Integrity Policy Enforcement (IPE) - - - --- 2021-10-13 Deven Bowers New
[v2,RESEND] powerpc/audit: Convert powerpc to AUDIT_ARCH_COMPAT_GENERIC [v2,RESEND] powerpc/audit: Convert powerpc to AUDIT_ARCH_COMPAT_GENERIC - - - --- 2021-08-24 Christophe Leroy New
[v28,01/25] LSM: Infrastructure management of the sock security [v28,01/25] LSM: Infrastructure management of the sock security 2 2 - --- 2021-07-22 Casey Schaufler New
[RFC] audit: reduce the number of kauditd_thread wakeups [RFC] audit: reduce the number of kauditd_thread wakeups 1 - - --- 2021-06-06 Paul Moore New
[V1] audit: log xattr args not covered by syscall record [V1] audit: log xattr args not covered by syscall record - - - --- 2021-05-07 Richard Guy Briggs New
alpha: Add syscall_get_return_value() alpha: Add syscall_get_return_value() - - - --- 2021-04-26 He Zhe New
[ghak90,v11,11/11] audit: add capcontid to set contid outside init_user_ns audit: implement container identifier - - - --- 2021-01-12 Richard Guy Briggs New
[ghak90,v11,10/11] audit: track container nesting audit: implement container identifier - - - --- 2021-01-12 Richard Guy Briggs New
[ghak90,v11,09/11] audit: contid check descendancy and nesting audit: implement container identifier - - - --- 2021-01-12 Richard Guy Briggs New
[ghak90,v11,08/11] audit: add support for containerid to network namespaces audit: implement container identifier 1 1 - --- 2021-01-12 Richard Guy Briggs New
[ghak90,v11,07/11] audit: add containerid filtering audit: implement container identifier 2 1 - --- 2021-01-12 Richard Guy Briggs New
[ghak90,v11,06/11] audit: add containerid support for user records audit: implement container identifier 1 1 - --- 2021-01-12 Richard Guy Briggs New
[ghak90,v11,05/11] audit: add support for non-syscall auxiliary records audit: implement container identifier 2 1 - --- 2021-01-12 Richard Guy Briggs New
[ghak90,v11,04/11] audit: add contid support for signalling the audit daemon audit: implement container identifier - - - --- 2021-01-12 Richard Guy Briggs New
[ghak90,v11,03/11] audit: log container info of syscalls audit: implement container identifier 3 1 - --- 2021-01-12 Richard Guy Briggs New
[ghak90,v11,02/11] audit: add container id audit: implement container identifier 3 1 - --- 2021-01-12 Richard Guy Briggs New
[ghak90,v11,01/11] audit: collect audit task parameters audit: implement container identifier 1 1 - --- 2021-01-12 Richard Guy Briggs New
audit-testsuite: tests for subject and object correctness audit-testsuite: tests for subject and object correctness - - - --- 2020-11-12 Casey Schaufler New
[RFC,v6,11/11] cleanup: uapi/linux/audit.h Integrity Policy Enforcement LSM (IPE) - - - --- 2020-07-30 Deven Bowers New
[RFC,v6,10/11] documentation: add ipe documentation Integrity Policy Enforcement LSM (IPE) 1 - - --- 2020-07-30 Deven Bowers New
[RFC,v6,09/11] ipe: add property for dmverity roothash Integrity Policy Enforcement LSM (IPE) - - - --- 2020-07-30 Deven Bowers New
[RFC,v6,08/11] dm-verity: add bdev_setsecurity hook for root-hash Integrity Policy Enforcement LSM (IPE) - - - --- 2020-07-30 Deven Bowers New
[RFC,v6,07/11] ipe: add property for signed dmverity volumes Integrity Policy Enforcement LSM (IPE) - - - --- 2020-07-30 Deven Bowers New
[RFC,v6,06/11] dm-verity: add bdev_setsecurity hook for dm-verity signature Integrity Policy Enforcement LSM (IPE) - - - --- 2020-07-30 Deven Bowers New
[RFC,v6,05/11] fs: add security blob and hooks for block_device Integrity Policy Enforcement LSM (IPE) - - - --- 2020-07-30 Deven Bowers New
[RFC,v6,04/11] ipe: add property for trust of boot volume Integrity Policy Enforcement LSM (IPE) - - - --- 2020-07-30 Deven Bowers New
[RFC,v6,03/11] security: add ipe lsm policy parser and policy loading Integrity Policy Enforcement LSM (IPE) - - - --- 2020-07-30 Deven Bowers New
[RFC,v6,02/11] security: add ipe lsm evaluation loop and audit system Integrity Policy Enforcement LSM (IPE) - - - --- 2020-07-30 Deven Bowers New
[RFC,v6,01/11] scripts: add ipe tooling to generate boot policy Integrity Policy Enforcement LSM (IPE) - - - --- 2020-07-30 Deven Bowers New
[ghak90,V9,13/13] audit: add capcontid to set contid outside init_user_ns audit: implement container identifier - - - --- 2020-06-27 Richard Guy Briggs New
[ghak90,V9,12/13] audit: track container nesting audit: implement container identifier - - - --- 2020-06-27 Richard Guy Briggs New
[ghak90,V9,11/13] audit: contid check descendancy and nesting audit: implement container identifier - - - --- 2020-06-27 Richard Guy Briggs New
[ghak90,V9,10/13] audit: add support for containerid to network namespaces audit: implement container identifier 1 1 - --- 2020-06-27 Richard Guy Briggs New
[ghak90,V9,09/13] audit: add containerid filtering audit: implement container identifier 2 1 - --- 2020-06-27 Richard Guy Briggs New
[ghak90,V9,08/13] audit: add containerid support for user records audit: implement container identifier 1 1 - --- 2020-06-27 Richard Guy Briggs New
[ghak90,V9,07/13] audit: add support for non-syscall auxiliary records audit: implement container identifier 2 1 - --- 2020-06-27 Richard Guy Briggs New
[ghak90,V9,06/13] audit: add contid support for signalling the audit daemon audit: implement container identifier - - - --- 2020-06-27 Richard Guy Briggs New
[ghak90,V9,05/13] audit: log container info of syscalls audit: implement container identifier 3 1 - --- 2020-06-27 Richard Guy Briggs New
[ghak90,V9,04/13] audit: log drop of contid on exit of last task audit: implement container identifier - - - --- 2020-06-27 Richard Guy Briggs New
[ghak90,V9,03/13] audit: read container ID of a process audit: implement container identifier 2 1 - --- 2020-06-27 Richard Guy Briggs New
[ghak90,V9,02/13] audit: add container id audit: implement container identifier 3 1 - --- 2020-06-27 Richard Guy Briggs New
[ghak90,V9,01/13] audit: collect audit task parameters audit: implement container identifier 1 1 - --- 2020-06-27 Richard Guy Briggs New
kernel: convert switch/case fallthrough comments to fallthrough; kernel: convert switch/case fallthrough comments to fallthrough; - - - --- 2019-10-18 Joe Perches New
[RFC,v3] security, capability: pass object information to security_capable [RFC,v3] security, capability: pass object information to security_capable - - - --- 2019-08-15 Aaron Goidel New
[RFC] audit, security: allow LSMs to selectively enable audit collection [RFC] audit, security: allow LSMs to selectively enable audit collection - - - --- 2019-08-15 Aaron Goidel New
[RFC] audit-testsuite: improve our chances of losing records in lost_reset [RFC] audit-testsuite: improve our chances of losing records in lost_reset - - - --- 2018-12-13 Paul Moore New
[ghak95] audit: Do not log full CWD path on empty relative paths [ghak95] audit: Do not log full CWD path on empty relative paths - 1 - --- 2018-08-02 Ondrej Mosnacek New
[V2] audit: remove arch_f pointer from struct audit_krule - - - --- 2018-02-16 Richard Guy Briggs New
[RFC,ghak21,4/4] audit: add parent of refused symlink to audit_names - - - --- 2018-02-14 Richard Guy Briggs New
[RFC,ghak21,3/4] audit: add refused symlink to audit_names - - - --- 2018-02-14 Richard Guy Briggs New
[RFC,ghak21,2/4] audit: link denied should not directly generate PATH record - - - --- 2018-02-14 Richard Guy Briggs New
[RFC,ghak21,1/4] audit: make ANOM_LINK obey audit_enabled and audit_dummy_context - - - --- 2018-02-14 Richard Guy Briggs New
[ghak8,ALT4,V4,3/3] audit: add new filetypes CREATE_ANON and PARENT_ANON - - - --- 2018-02-12 Richard Guy Briggs New
[ghak8,ALT4,V4,2/3] audit: append new fstype field for anonymous PATH records - - - --- 2018-02-12 Richard Guy Briggs New
[ghak8,ALT4,V4,1/3] audit: show partial pathname for entries with anonymous parents - - - --- 2018-02-12 Richard Guy Briggs New
[1/1] audit: log binding and unbinding to netlink multicast - 1 - --- 2017-10-13 Steve Grubb New
audit: catch errors from audit_filter_rules field checks - - - --- 2016-06-14 Richard Guy Briggs New