Linux Hardening - Patchwork

Show patches with: Submitter = Kees Cook | Archived = No | 1298 patches

« 1 2 ... 10 11 12 13 »

Patch	Series	A/R/T	S/W/F	Date	Submitter	Delegate	State
[2/3] seccomp: Invalidate seccomp mode to catch death failures	signal: HANDLER_EXIT should clear SIGNAL_UNKILLABLE	- - -	---	2022-02-10	Kees Cook		Mainlined
[1/3] signal: HANDLER_EXIT should clear SIGNAL_UNKILLABLE	signal: HANDLER_EXIT should clear SIGNAL_UNKILLABLE	- 1 -	---	2022-02-10	Kees Cook		Mainlined
overflow: Provide constant expression struct_size	overflow: Provide constant expression struct_size	- 1 1	---	2022-02-10	Kees Cook		Mainlined
um: Enable FORTIFY_SOURCE	um: Enable FORTIFY_SOURCE	- - -	---	2022-02-10	Kees Cook		Changes Requested
[v7,8/8] fortify: Add Clang support	fortify: Add Clang support	- 1 -	---	2022-02-08	Kees Cook		Mainlined
[v7,7/8] fortify: Make sure strlen() may still be used as a constant expression	fortify: Add Clang support	- 1 -	---	2022-02-08	Kees Cook		Mainlined
[v7,6/8] fortify: Use __diagnose_as() for better diagnostic coverage	fortify: Add Clang support	- 1 -	---	2022-02-08	Kees Cook		Mainlined
[v7,5/8] fortify: Make pointer arguments const	fortify: Add Clang support	- 1 -	---	2022-02-08	Kees Cook		Mainlined
[v7,4/8] Compiler Attributes: Add __diagnose_as for Clang	fortify: Add Clang support	- 2 -	---	2022-02-08	Kees Cook		Mainlined
[v7,3/8] Compiler Attributes: Add __overloadable for Clang	fortify: Add Clang support	- 2 -	---	2022-02-08	Kees Cook		Mainlined
[v7,2/8] Compiler Attributes: Add __pass_object_size for Clang	fortify: Add Clang support	- 2 -	---	2022-02-08	Kees Cook		Mainlined
[v7,1/8] fortify: Replace open-coded __gnu_inline attribute	fortify: Add Clang support	- 1 -	---	2022-02-08	Kees Cook		Mainlined
scsi: ibmvscsis: Silence -Warray-bounds warning	scsi: ibmvscsis: Silence -Warray-bounds warning	- 1 -	---	2022-02-08	Kees Cook		Mainlined
[3/3] gcc-plugins/stackleak: Ignore .noinstr.text and .entry.text	gcc-plugins/stackleak: Ignore .noinstr.text and .entry.text	- - -	---	2022-02-06	Kees Cook		Mainlined
[2/3] gcc-plugins/stackleak: Exactly match strings instead of prefixes	gcc-plugins/stackleak: Ignore .noinstr.text and .entry.text	- - -	---	2022-02-06	Kees Cook		Changes Requested
[1/3] gcc-plugins/stackleak: Provide verbose mode	gcc-plugins/stackleak: Ignore .noinstr.text and .entry.text	- - -	---	2022-02-06	Kees Cook		Mainlined
[v2] x86/build: don't build CONFIG_X86_32 as -ffreestanding	[v2] x86/build: don't build CONFIG_X86_32 as -ffreestanding	- 2 -	---	2022-02-03	Kees Cook		Changes Requested
[v2] gcc-plugins/stackleak: Use noinstr in favor of notrace	[v2] gcc-plugins/stackleak: Use noinstr in favor of notrace	- - -	---	2022-02-03	Kees Cook		Mainlined
[v6,4/4] fortify: Add Clang support	fortify: Add Clang support	- - -	---	2022-02-03	Kees Cook		Superseded
[v6,3/4] Compiler Attributes: Add __diagnose_as for Clang	fortify: Add Clang support	- 1 -	---	2022-02-03	Kees Cook		Superseded
[v6,2/4] Compiler Attributes: Add __overloadable for Clang	fortify: Add Clang support	- 1 -	---	2022-02-03	Kees Cook		Superseded
[v6,1/4] Compiler Attributes: Add __pass_object_size for Clang	fortify: Add Clang support	- - -	---	2022-02-03	Kees Cook		Superseded
m68k: cmpxchg: Dereference matching size	m68k: cmpxchg: Dereference matching size	1 1 -	---	2022-02-02	Kees Cook		Mainlined
alpha: Silence -Warray-bounds warnings	alpha: Silence -Warray-bounds warnings	- - -	---	2022-02-02	Kees Cook		Mainlined
[4/4,v5] fortify: Add Clang support	fortify: Add Clang support	- - -	---	2022-02-02	Kees Cook		Superseded
[3/4] Compiler Attributes: Add __diagnose_as	fortify: Add Clang support	- - -	---	2022-02-02	Kees Cook		Superseded
[2/4] Compiler Attributes: Add __overloadable	fortify: Add Clang support	- - -	---	2022-02-02	Kees Cook		Superseded
[1/4] Compiler Attributes: Add Clang's __pass_object_size	fortify: Add Clang support	- - -	---	2022-02-02	Kees Cook		Superseded
gcc-plugins/stackleak: Use noinstr in favor of notrace	gcc-plugins/stackleak: Use noinstr in favor of notrace	- 1 -	---	2022-02-02	Kees Cook		Superseded
scsi: mpt3sas: Convert to flexible arrays	scsi: mpt3sas: Convert to flexible arrays	- - -	---	2022-02-01	Kees Cook		Mainlined
exec: Fix min/max typo in stack space calculation	exec: Fix min/max typo in stack space calculation	- - -	---	2022-02-01	Kees Cook		Mainlined
selftests: kselftest framework: Provide "finished" helper	selftests: kselftest framework: Provide "finished" helper	- - -	---	2022-02-01	Kees Cook		Mainlined
selftests/exec: Test for empty string on NULL argv	selftests/exec: Test for empty string on NULL argv	- - -	---	2022-02-01	Kees Cook		Mainlined
exec: Force single empty string when argv is empty	exec: Force single empty string when argv is empty	3 - -	---	2022-02-01	Kees Cook		Mainlined
selftests/exec: Avoid future NULL argv execve warning	selftests/exec: Avoid future NULL argv execve warning	- - -	---	2022-02-01	Kees Cook		Changes Requested
tcwg_kernel-build.sh: Report toolchain versions	tcwg_kernel-build.sh: Report toolchain versions	- - -	---	2022-01-31	Kees Cook		Handled Elsewhere
linux/const.h: Explain how __is_constexpr() works	linux/const.h: Explain how __is_constexpr() works	1 - -	---	2022-01-31	Kees Cook		Changes Requested
lib/test_string.c: Add test for strlen()	lib/test_string.c: Add test for strlen()	- - -	---	2022-01-30	Kees Cook		Changes Requested
[v4] fortify: Work around Clang inlining bugs	[v4] fortify: Work around Clang inlining bugs	- - -	---	2022-01-30	Kees Cook		Changes Requested
fortify: Update compile-time tests for Clang 14	fortify: Update compile-time tests for Clang 14	- 2 -	---	2022-01-30	Kees Cook		Mainlined
Kconfig.debug: Make DEBUG_INFO always default=n	Kconfig.debug: Make DEBUG_INFO always default=n	- 1 -	---	2022-01-28	Kees Cook		Mainlined
fs/binfmt_elf: Add padding NULL when argc == 0	fs/binfmt_elf: Add padding NULL when argc == 0	- - 1	---	2022-01-26	Kees Cook		Changes Requested
perf: Avoid -Warray-bounds warning for __rel_loc macro	perf: Avoid -Warray-bounds warning for __rel_loc macro	- 1 -	---	2022-01-25	Kees Cook		Mainlined
[v3] Kconfig.debug: Make DEBUG_INFO selectable from a choice	[v3] Kconfig.debug: Make DEBUG_INFO selectable from a choice	- 3 1	---	2022-01-25	Kees Cook		Mainlined
[v2,2/2] overflow: Implement size_t saturating arithmetic helpers	overflow: Implement size_t saturating arithmetic helpers	- - -	---	2022-01-24	Kees Cook		Mainlined
[v2,1/2] test_overflow: Regularize test reporting output	overflow: Implement size_t saturating arithmetic helpers	1 1 -	---	2022-01-24	Kees Cook		Mainlined
[RESEND] media: omap3isp: Use struct_group() for memcpy() region	[RESEND] media: omap3isp: Use struct_group() for memcpy() region	- 2 -	---	2022-01-24	Kees Cook		Mainlined
[RESEND] net/mlx5e: Use struct_group() for memcpy() region	[RESEND] net/mlx5e: Use struct_group() for memcpy() region	- - -	---	2022-01-24	Kees Cook		Mainlined
[v2,RESEND] net/mlx5e: Avoid field-overflowing memcpy()	[v2,RESEND] net/mlx5e: Avoid field-overflowing memcpy()	- - -	---	2022-01-24	Kees Cook		Mainlined
mptcp: Use struct_group() to avoid cross-field memset()	mptcp: Use struct_group() to avoid cross-field memset()	- 1 -	---	2022-01-21	Kees Cook		Mainlined
[v2] Kconfig.debug: Make DEBUG_INFO selectable from a choice	[v2] Kconfig.debug: Make DEBUG_INFO selectable from a choice	- 3 1	---	2022-01-21	Kees Cook		Superseded
[v3] tpm: vtpm_proxy: Check length to avoid compiler warning	[v3] tpm: vtpm_proxy: Check length to avoid compiler warning	- 1 -	---	2022-01-19	Kees Cook		Mainlined
[v3,3/3] staging: rtl8712: Drop get_recvframe_data()	staging: rtl*: Check for NULL header value	- - -	---	2022-01-18	Kees Cook		Mainlined
[v3,2/3] staging: rtl8723bs: Drop get_recvframe_data()	staging: rtl*: Check for NULL header value	- - -	---	2022-01-18	Kees Cook		Mainlined
[v3,1/3] staging: r8188eu: Drop get_recvframe_data()	staging: rtl*: Check for NULL header value	- - -	---	2022-01-18	Kees Cook		Mainlined
[v2] tpm: vtpm_proxy: Double-check to avoid buffer overflow	[v2] tpm: vtpm_proxy: Double-check to avoid buffer overflow	- 1 -	---	2022-01-18	Kees Cook		Superseded
[-next] eeprom: at25: Replace strncpy() with strscpy()	[-next] eeprom: at25: Replace strncpy() with strscpy()	- - 1	---	2022-01-18	Kees Cook		Mainlined
[5.17-rc1,v2] eeprom: at25: Restore missing allocation	[5.17-rc1,v2] eeprom: at25: Restore missing allocation	- 2 1	---	2022-01-18	Kees Cook		Mainlined
[3/3,v2] staging: rtl8712: Drop get_recvframe_data()	staging: rtl*: Check for NULL header value	- - -	---	2022-01-15	Kees Cook		Superseded
[2/3,v2] staging: rtl8723bs: Drop get_recvframe_data()	staging: rtl*: Check for NULL header value	- - -	---	2022-01-15	Kees Cook		Superseded
[1/3,v2] staging: r8188eu: Drop get_recvframe_data()	staging: rtl*: Check for NULL header value	- - -	---	2022-01-15	Kees Cook		Superseded
tpm: vtpm_proxy: Avoid device-originated buffer overflow	tpm: vtpm_proxy: Avoid device-originated buffer overflow	- 1 -	---	2022-01-13	Kees Cook		Superseded
staging: rtl8723bs: Check for NULL header value	staging: rtl8723bs: Check for NULL header value	- - -	---	2022-01-13	Kees Cook		Changes Requested
staging: r8188eu: Check for NULL header value	staging: r8188eu: Check for NULL header value	- - -	---	2022-01-13	Kees Cook		Changes Requested
[RESEND] sata_fsl: Use struct_group() for memcpy() region	[RESEND] sata_fsl: Use struct_group() for memcpy() region	- - -	---	2022-01-12	Kees Cook		Mainlined
[v3] crypto: octeontx2 - Avoid stack variable overflow	[v3] crypto: octeontx2 - Avoid stack variable overflow	1 - -	---	2022-01-12	Kees Cook		Mainlined
[v2] iio: addac: ad74413r: Do not reference negative array offsets	[v2] iio: addac: ad74413r: Do not reference negative array offsets	- 2 -	---	2022-01-12	Kees Cook		Mainlined
[v2] arm64: atomics: lse: Dereference matching size	[v2] arm64: atomics: lse: Dereference matching size	2 - -	---	2022-01-12	Kees Cook		Mainlined
arm64: atomics: Dereference matching size	arm64: atomics: Dereference matching size	2 - -	---	2022-01-07	Kees Cook		Superseded
eeprom: at25: Restore missing allocation	eeprom: at25: Restore missing allocation	- 1 -	---	2022-01-07	Kees Cook		Superseded
[v2] iio: addac: Do not reference negative array offsets	[v2] iio: addac: Do not reference negative array offsets	- 1 -	---	2022-01-05	Kees Cook		Superseded
[v2] crypto: octeontx2 - Avoid stack variable overflow	[v2] crypto: octeontx2 - Avoid stack variable overflow	1 - -	---	2022-01-05	Kees Cook		Superseded
[RESEND] scsi: megaraid: Avoid mismatched storage type sizes	[RESEND] scsi: megaraid: Avoid mismatched storage type sizes	- - -	---	2022-01-05	Kees Cook		Mainlined
drm/dp: Remove common Post Cursor2 register handling	drm/dp: Remove common Post Cursor2 register handling	- 2 -	---	2022-01-05	Kees Cook		Mainlined
[v2] drm/dp: Fix off-by-one in register cache size	[v2] drm/dp: Fix off-by-one in register cache size	- 1 -	---	2022-01-05	Kees Cook		Mainlined
iio: stmpe-adc: Use correctly sized arguments for bit field	iio: stmpe-adc: Use correctly sized arguments for bit field	- - -	---	2021-12-15	Kees Cook		Mainlined
irqchip: Use correctly sized arguments for bit field	irqchip: Use correctly sized arguments for bit field	- - -	---	2021-12-15	Kees Cook		Mainlined
bus: mhi: core: Use correctly sized arguments for bit field	bus: mhi: core: Use correctly sized arguments for bit field	- 1 -	---	2021-12-15	Kees Cook		Handled Elsewhere
iommu: Use correctly sized arguments for bit field	iommu: Use correctly sized arguments for bit field	1 - -	---	2021-12-15	Kees Cook		Mainlined
iio: addac: Do not reference negative array offsets	iio: addac: Do not reference negative array offsets	- - -	---	2021-12-15	Kees Cook		Superseded
crypto: octeontx2 - Avoid stack variable overflow	crypto: octeontx2 - Avoid stack variable overflow	- - -	---	2021-12-15	Kees Cook		Superseded
[17/17] fortify: Work around Clang inlining bugs	Enable strict compile-time memcpy() fortify checks	- - -	---	2021-12-13	Kees Cook		Superseded
[16/17] fortify: Detect struct member overflows in memset() at compile-time	Enable strict compile-time memcpy() fortify checks	- - -	---	2021-12-13	Kees Cook		Mainlined
[15/17] scsi: lpfc: Use struct_group() to initialize struct lpfc_cgn_info	Enable strict compile-time memcpy() fortify checks	- - -	---	2021-12-13	Kees Cook		Handled Elsewhere
[14/17] IB/mthca: Use memset_startat() for clearing mpt_entry	Enable strict compile-time memcpy() fortify checks	- - -	---	2021-12-13	Kees Cook		Handled Elsewhere
[13/17] intel_th: msu: Use memset_startat() for clearing hw header	Enable strict compile-time memcpy() fortify checks	1 - -	---	2021-12-13	Kees Cook		Mainlined
[12/17] iw_cxgb4: Use memset_startat() for cpl_t5_pass_accept_rpl	Enable strict compile-time memcpy() fortify checks	- - -	---	2021-12-13	Kees Cook		Handled Elsewhere
[11/17] dm integrity: Use struct_group() to zero struct journal_sector	Enable strict compile-time memcpy() fortify checks	- - -	---	2021-12-13	Kees Cook		Handled Elsewhere
[10/17] drbd: Use struct_group() to zero algs	Enable strict compile-time memcpy() fortify checks	- - -	---	2021-12-13	Kees Cook		Handled Elsewhere
[09/17] RDMA/mlx5: Use memset_after() to zero struct mlx5_ib_mr	Enable strict compile-time memcpy() fortify checks	1 - -	---	2021-12-13	Kees Cook		Handled Elsewhere
[08/17] ath11k: Use memset_startat() for clearing queue descriptors	Enable strict compile-time memcpy() fortify checks	- - -	---	2021-12-13	Kees Cook		Handled Elsewhere
[07/17] fortify: Detect struct member overflows in memmove() at compile-time	Enable strict compile-time memcpy() fortify checks	- - -	---	2021-12-13	Kees Cook		Mainlined
[06/17] fortify: Detect struct member overflows in memcpy() at compile-time	Enable strict compile-time memcpy() fortify checks	- - -	---	2021-12-13	Kees Cook		Mainlined
[05/17] sata_fsl: Use struct_group() for memcpy() region	Enable strict compile-time memcpy() fortify checks	- - -	---	2021-12-13	Kees Cook		Handled Elsewhere
[04/17] media: omap3isp: Use struct_group() for memcpy() region	Enable strict compile-time memcpy() fortify checks	- - -	---	2021-12-13	Kees Cook		Superseded
[03/17] net/mlx5e: Use struct_group() for memcpy() region	Enable strict compile-time memcpy() fortify checks	- - -	---	2021-12-13	Kees Cook		Superseded
[02/17] net/mlx5e: Avoid field-overflowing memcpy()	Enable strict compile-time memcpy() fortify checks	- - -	---	2021-12-13	Kees Cook		Superseded
[01/17] KVM: x86: Replace memset() "optimization" with normal per-field writes	Enable strict compile-time memcpy() fortify checks	- - -	---	2021-12-13	Kees Cook		Superseded
Kconfig.debug: Make DEBUG_INFO selectable from a choice	Kconfig.debug: Make DEBUG_INFO selectable from a choice	- 3 1	---	2021-12-10	Kees Cook	kees	Changes Requested
[v2] net/mlx5e: Avoid field-overflowing memcpy()	[v2] net/mlx5e: Avoid field-overflowing memcpy()	- - -	---	2021-12-09	Kees Cook		Superseded

« 1 2 ... 10 11 12 13 »