Show patches with: Submitter = Roberto Sassu       |    State = Action Required       |   122 patches
« 1 2 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
[POC,USER,SPACE] Introduce LSM to protect pinned objects [POC,USER,SPACE] Introduce LSM to protect pinned objects - - - --- 2022-04-05 Roberto Sassu New
[18/18] bpf-preload/selftests: Preload a test eBPF program and check pinned objects bpf: Secure and authenticated preloading of eBPF programs - - - --- 2022-03-28 Roberto Sassu New
[17/18] bpf-preload/selftests: Add test for automatic generation of preload methods bpf: Secure and authenticated preloading of eBPF programs - - - --- 2022-03-28 Roberto Sassu New
[16/18] bpf-preload: Do kernel mount to ensure that pinned objects don't disappear bpf: Secure and authenticated preloading of eBPF programs - - - --- 2022-03-28 Roberto Sassu New
[15/18] bpf-preload: Generate code of kernel module to preload bpf: Secure and authenticated preloading of eBPF programs - - - --- 2022-03-28 Roberto Sassu New
[14/18] bpf-preload: Switch to new preload registration method bpf: Secure and authenticated preloading of eBPF programs - - - --- 2022-03-28 Roberto Sassu New
[13/18] bpf-preload: Move pinned links and maps to a dedicated directory in bpffs bpf: Secure and authenticated preloading of eBPF programs - - - --- 2022-03-28 Roberto Sassu New
[12/18] bpf-preload: Implement new registration method for preloading eBPF programs bpf: Secure and authenticated preloading of eBPF programs - - - --- 2022-03-28 Roberto Sassu New
[11/18] bpf-preload: Store multiple bpf_preload_ops structures in a linked list bpf: Secure and authenticated preloading of eBPF programs - - - --- 2022-03-28 Roberto Sassu New
[10/18] bpf-preload: Generate bpf_preload_ops bpf: Secure and authenticated preloading of eBPF programs - - - --- 2022-03-28 Roberto Sassu New
[09/18] bpf-preload: Generate code to pin non-internal maps bpf: Secure and authenticated preloading of eBPF programs - - - --- 2022-03-28 Roberto Sassu New
[08/18] bpf-preload: Generate load_skel() bpf: Secure and authenticated preloading of eBPF programs - - - --- 2022-03-28 Roberto Sassu New
[07/18] bpf-preload: Generate preload() bpf: Secure and authenticated preloading of eBPF programs - - - --- 2022-03-28 Roberto Sassu New
[06/18] bpf-preload: Generate free_objs_and_skel() bpf: Secure and authenticated preloading of eBPF programs - - - --- 2022-03-28 Roberto Sassu New
[05/18] bpf-preload: Generate static variables bpf: Secure and authenticated preloading of eBPF programs - - - --- 2022-03-28 Roberto Sassu New
[04/18] bpf-preload: Export and call bpf_obj_do_pin_kernel() bpf: Secure and authenticated preloading of eBPF programs - - - --- 2022-03-28 Roberto Sassu New
[03/18] bpf-preload: Generalize object pinning from the kernel bpf: Secure and authenticated preloading of eBPF programs - - - --- 2022-03-28 Roberto Sassu New
[02/18] bpf-preload: Move bpf_preload.h to include/linux bpf: Secure and authenticated preloading of eBPF programs - - - --- 2022-03-28 Roberto Sassu New
[01/18] bpf: Export bpf_link_inc() bpf: Secure and authenticated preloading of eBPF programs - - - --- 2022-03-28 Roberto Sassu New
[RFC,5/5] shmem: Add fsverity support shmem/fsverity: Prepare for mandatory integrity enforcement - - - --- 2021-11-12 Roberto Sassu New
[RFC,4/5] shmem: Avoid segfault in shmem_read_mapping_page_gfp() shmem/fsverity: Prepare for mandatory integrity enforcement - - - --- 2021-11-12 Roberto Sassu New
[RFC,3/5] fsverity: Do initialization earlier shmem/fsverity: Prepare for mandatory integrity enforcement - - - --- 2021-11-12 Roberto Sassu New
[RFC,2/5] fsverity: Revalidate built-in signatures at file open shmem/fsverity: Prepare for mandatory integrity enforcement - - - --- 2021-11-12 Roberto Sassu New
[RFC,1/5] fsverity: Introduce fsverity_get_file_digest() shmem/fsverity: Prepare for mandatory integrity enforcement - - - --- 2021-11-12 Roberto Sassu New
fs: Return raw xattr for security.* if there is size disagreement with LSMs fs: Return raw xattr for security.* if there is size disagreement with LSMs - - 1 --- 2021-06-16 Roberto Sassu New
[v3,6/6] evm: Support multiple LSMs providing an xattr evm: Prepare for moving to the LSM infrastructure - - - --- 2021-04-27 Roberto Sassu New
[v3,5/6] evm: Align evm_inode_init_security() definition with LSM infrastructure evm: Prepare for moving to the LSM infrastructure - - - --- 2021-04-27 Roberto Sassu New
[v3,4/6] security: Support multiple LSMs implementing the inode_init_security hook evm: Prepare for moving to the LSM infrastructure - - - --- 2021-04-27 Roberto Sassu New
[v3,3/6] security: Pass xattrs allocated by LSMs to the inode_init_security hook evm: Prepare for moving to the LSM infrastructure - - - --- 2021-04-27 Roberto Sassu New
[v3,2/6] security: Rewrite security_old_inode_init_security() evm: Prepare for moving to the LSM infrastructure - - - --- 2021-04-27 Roberto Sassu New
[v3,1/6] reiserfs: Add missing calls to reiserfs_security_free() evm: Prepare for moving to the LSM infrastructure - - - --- 2021-04-27 Roberto Sassu New
[RESEND,v5,09/12] evm: Allow setxattr() and setattr() for unmodified metadata Untitled series #462747 - 1 - --- 2021-04-07 Roberto Sassu New
[v5,12/12] ima: Don't remove security.ima if file must not be appraised evm: Improve usability of portable signatures - 1 - --- 2021-04-07 Roberto Sassu New
[v5,11/12] ima: Introduce template field evmsig and write to field sig as fallback evm: Improve usability of portable signatures - - - --- 2021-04-07 Roberto Sassu New
[v5,10/12] ima: Allow imasig requirement to be satisfied by EVM portable signatures evm: Improve usability of portable signatures - 1 - --- 2021-04-07 Roberto Sassu New
[v5,09/12] evm: Allow setxattr() and setattr() for unmodified metadata evm: Improve usability of portable signatures - 1 - --- 2021-04-07 Roberto Sassu New
[v5,08/12] evm: Pass user namespace to set/remove xattr hooks evm: Improve usability of portable signatures - 1 - --- 2021-04-07 Roberto Sassu New
[v5,07/12] evm: Allow xattr/attr operations for portable signatures evm: Improve usability of portable signatures - 1 - --- 2021-04-07 Roberto Sassu New
[v5,06/12] evm: Ignore INTEGRITY_NOLABEL/INTEGRITY_NOXATTRS if conditions are safe evm: Improve usability of portable signatures - - - --- 2021-04-07 Roberto Sassu New
[v5,05/12] evm: Introduce evm_status_revalidate() evm: Improve usability of portable signatures - - - --- 2021-04-07 Roberto Sassu New
[v5,04/12] ima: Move ima_reset_appraise_flags() call to post hooks evm: Improve usability of portable signatures - - - --- 2021-04-07 Roberto Sassu New
[v5,03/12] evm: Refuse EVM_ALLOW_METADATA_WRITES only if an HMAC key is loaded evm: Improve usability of portable signatures - - - --- 2021-04-07 Roberto Sassu New
[v5,02/12] evm: Load EVM key in ima_load_x509() to avoid appraisal evm: Improve usability of portable signatures - 1 - --- 2021-04-07 Roberto Sassu New
[v5,01/12] evm: Execute evm_inode_init_security() only when an HMAC key is loaded evm: Improve usability of portable signatures - 1 - --- 2021-04-07 Roberto Sassu New
[v4,11/11] ima: Don't remove security.ima if file must not be appraised evm: Improve usability of portable signatures - 1 - --- 2021-03-05 Roberto Sassu New
[v4,10/11] ima: Introduce template field evmsig and write to field sig as fallback evm: Improve usability of portable signatures - - - --- 2021-03-05 Roberto Sassu New
[v4,09/11] ima: Allow imasig requirement to be satisfied by EVM portable signatures evm: Improve usability of portable signatures - 1 - --- 2021-03-05 Roberto Sassu New
[v4,08/11] evm: Allow setxattr() and setattr() for unmodified metadata evm: Improve usability of portable signatures - - - --- 2021-03-05 Roberto Sassu New
[v4,07/11] evm: Allow xattr/attr operations for portable signatures evm: Improve usability of portable signatures - 1 - --- 2021-03-05 Roberto Sassu New
[v4,06/11] evm: Ignore INTEGRITY_NOLABEL/INTEGRITY_NOXATTRS if conditions are safe evm: Improve usability of portable signatures - - - --- 2021-03-05 Roberto Sassu New
[v4,05/11] evm: Introduce evm_status_revalidate() evm: Improve usability of portable signatures - - - --- 2021-03-05 Roberto Sassu New
[v4,04/11] ima: Move ima_reset_appraise_flags() call to post hooks evm: Improve usability of portable signatures - - - --- 2021-03-05 Roberto Sassu New
[v4,03/11] evm: Refuse EVM_ALLOW_METADATA_WRITES only if an HMAC key is loaded evm: Improve usability of portable signatures - - - --- 2021-03-05 Roberto Sassu New
[v4,02/11] evm: Load EVM key in ima_load_x509() to avoid appraisal evm: Improve usability of portable signatures - 1 - --- 2021-03-05 Roberto Sassu New
[v4,01/11] evm: Execute evm_inode_init_security() only when an HMAC key is loaded evm: Improve usability of portable signatures - 1 - --- 2021-03-05 Roberto Sassu New
[v3,11/11] ima: Don't remove security.ima if file must not be appraised evm: Improve usability of portable signatures - 1 - --- 2020-11-11 Roberto Sassu New
[v3,10/11] ima: Introduce template field evmsig and write to field sig as fallback evm: Improve usability of portable signatures - - - --- 2020-11-11 Roberto Sassu New
[v3,09/11] ima: Allow imasig requirement to be satisfied by EVM portable signatures evm: Improve usability of portable signatures - 1 - --- 2020-11-11 Roberto Sassu New
[v3,08/11] evm: Allow setxattr() and setattr() for unmodified metadata evm: Improve usability of portable signatures - - - --- 2020-11-11 Roberto Sassu New
[v3,07/11] evm: Allow xattr/attr operations for portable signatures evm: Improve usability of portable signatures - 1 - --- 2020-11-11 Roberto Sassu New
[v3,06/11] evm: Ignore INTEGRITY_NOLABEL if no HMAC key is loaded evm: Improve usability of portable signatures - - - --- 2020-11-11 Roberto Sassu New
[v3,05/11] evm: Introduce evm_status_revalidate() evm: Improve usability of portable signatures - - - --- 2020-11-11 Roberto Sassu New
[v3,04/11] ima: Move ima_reset_appraise_flags() call to post hooks evm: Improve usability of portable signatures - - - --- 2020-11-11 Roberto Sassu New
[v3,03/11] evm: Refuse EVM_ALLOW_METADATA_WRITES only if an HMAC key is loaded evm: Improve usability of portable signatures - - - --- 2020-11-11 Roberto Sassu New
[v3,02/11] evm: Load EVM key in ima_load_x509() to avoid appraisal evm: Improve usability of portable signatures - 1 - --- 2020-11-11 Roberto Sassu New
[v3,01/11] evm: Execute evm_inode_init_security() only when an HMAC key is loaded evm: Improve usability of portable signatures - 1 - --- 2020-11-11 Roberto Sassu New
[RFC,3/3] evm: Return -EAGAIN to ignore verification failures [RFC,1/3] evm: Move hooks outside LSM infrastructure - - - --- 2020-04-29 Roberto Sassu New
[RFC,2/3] evm: Extend API of post hooks to pass the result of pre hooks [RFC,1/3] evm: Move hooks outside LSM infrastructure - - - --- 2020-04-29 Roberto Sassu New
[RFC,1/3] evm: Move hooks outside LSM infrastructure [RFC,1/3] evm: Move hooks outside LSM infrastructure - - - --- 2020-04-29 Roberto Sassu New
[v4,14/14] ima: add Documentation/security/IMA-digest-lists.txt ima: introduce IMA Digest Lists extension - - - --- 2019-06-14 Roberto Sassu New
[v4,13/14] ima: introduce new policies initrd and appraise_initrd ima: introduce IMA Digest Lists extension - - - --- 2019-06-14 Roberto Sassu New
[v4,12/14] ima: add support for appraisal with digest lists ima: introduce IMA Digest Lists extension - - - --- 2019-06-14 Roberto Sassu New
[v4,11/14] ima: add support for measurement with digest lists ima: introduce IMA Digest Lists extension - - - --- 2019-06-14 Roberto Sassu New
[v4,10/14] ima: load parser digests and execute the parser at boot time ima: introduce IMA Digest Lists extension - - - --- 2019-06-14 Roberto Sassu New
[v4,09/14] ima: introduce new securityfs files ima: introduce IMA Digest Lists extension - - - --- 2019-06-14 Roberto Sassu New
[v4,08/14] ima: prevent usage of digest lists that are not measured/appraised ima: introduce IMA Digest Lists extension - - - --- 2019-06-14 Roberto Sassu New
[v4,07/14] ima: restrict upload of converted digest lists ima: introduce IMA Digest Lists extension - - - --- 2019-06-14 Roberto Sassu New
[v4,06/14] ima: add parser of compact digest list ima: introduce IMA Digest Lists extension - - - --- 2019-06-14 Roberto Sassu New
[v4,05/14] ima: use ima_show_htable_value to show violations and hash table data ima: introduce IMA Digest Lists extension - - - --- 2019-06-14 Roberto Sassu New
[v4,04/14] ima: generalize policy file operations ima: introduce IMA Digest Lists extension - - - --- 2019-06-14 Roberto Sassu New
[v4,03/14] ima: generalize ima_write_policy() and raise uploaded data size limit ima: introduce IMA Digest Lists extension - - - --- 2019-06-14 Roberto Sassu New
[v4,02/14] ima: generalize ima_read_policy() ima: introduce IMA Digest Lists extension - - - --- 2019-06-14 Roberto Sassu New
[v4,01/14] ima: read hash algorithm from security.ima even if appraisal is not enabled ima: introduce IMA Digest Lists extension - - - --- 2019-06-14 Roberto Sassu New
[USER] cpio: add option to add file metadata in copy-out mode [USER] cpio: add option to add file metadata in copy-out mode - - - --- 2019-05-23 Roberto Sassu New
[v4,3/3] gen_init_cpio: add support for file metadata initramfs: add support for xattrs in the initial ram disk - - - --- 2019-05-23 Roberto Sassu New
[v4,2/3] initramfs: read metadata from special file METADATA!!! initramfs: add support for xattrs in the initial ram disk - - - --- 2019-05-23 Roberto Sassu New
[v4,1/3] initramfs: add file metadata initramfs: add support for xattrs in the initial ram disk - - - --- 2019-05-23 Roberto Sassu New
[v3,2/2] initramfs: introduce do_readxattrs() initramfs: add support for xattrs in the initial ram disk - - - --- 2019-05-17 Roberto Sassu New
[v3,1/2] initramfs: set extended attributes initramfs: add support for xattrs in the initial ram disk - - - --- 2019-05-17 Roberto Sassu New
[v2,3/3] initramfs: introduce do_readxattrs() initramfs: add support for xattrs in the initial ram disk - - - --- 2019-05-09 Roberto Sassu New
[v2,2/3] initramfs: set extended attributes initramfs: add support for xattrs in the initial ram disk - - - --- 2019-05-09 Roberto Sassu New
[v2,1/3] fs: add ksys_lsetxattr() wrapper initramfs: add support for xattrs in the initial ram disk - - - --- 2019-05-09 Roberto Sassu New
[RFC] fs: set xattrs in initramfs from regular files [RFC] fs: set xattrs in initramfs from regular files - - - --- 2018-11-22 Roberto Sassu New
[v2,15/15] ima: add Documentation/security/IMA-digest-lists.txt - - - --- 2017-11-07 Roberto Sassu New
[v2,14/15] ima: add support for appraisal with digest lists - - - --- 2017-11-07 Roberto Sassu New
[v2,13/15] evm: add kernel command line option to select protected xattrs - - - --- 2017-11-07 Roberto Sassu New
[v2,12/15] ima: do not update security.ima if appraisal status is not INTEGRITY_PASS - - - --- 2017-11-07 Roberto Sassu New
[v2,11/15] ima: add policy action digest_list - - - --- 2017-11-07 Roberto Sassu New
[v2,10/15] ima: disable digest lookup if digest lists are not checked - - - --- 2017-11-07 Roberto Sassu New
[v2,09/15] ima: introduce securityfs interfaces for digest lists - - - --- 2017-11-07 Roberto Sassu New
« 1 2 »