Show patches with: State = Action Required       |    Archived = No       |   724 patches
« 1 2 3 47 8 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
[v4,6/6] integrity: machine keyring CA configuration Add CA enforcement keyring restrictions - - - --- 2023-02-07 Eric Snowberg New
[v4,5/6] KEYS: CA link restriction Add CA enforcement keyring restrictions - - - --- 2023-02-07 Eric Snowberg New
[v4,4/6] KEYS: X.509: Parse Key Usage Add CA enforcement keyring restrictions - - - --- 2023-02-07 Eric Snowberg New
[v4,3/6] KEYS: X.509: Parse Basic Constraints for CA Add CA enforcement keyring restrictions - - - --- 2023-02-07 Eric Snowberg New
[v4,2/6] KEYS: Add missing function documentation Add CA enforcement keyring restrictions - 1 - --- 2023-02-07 Eric Snowberg New
[v4,1/6] KEYS: Create static version of public_key_verify_signature Add CA enforcement keyring restrictions - 2 - --- 2023-02-07 Eric Snowberg New
[v15,26/26] ima: Enable IMA namespaces ima: Namespace IMA with audit support in IMA-ns - - - --- 2023-02-06 Stefan Berger New
[v15,25/26] ima: Restrict informational audit messages to init_ima_ns ima: Namespace IMA with audit support in IMA-ns - - - --- 2023-02-06 Stefan Berger New
[v15,24/26] ima: Limit number of policy rules in non-init_ima_ns ima: Namespace IMA with audit support in IMA-ns - - - --- 2023-02-06 Stefan Berger New
[v15,23/26] ima: Show owning user namespace's uid and gid when displaying policy ima: Namespace IMA with audit support in IMA-ns - 2 - --- 2023-02-06 Stefan Berger New
[v15,22/26] ima: Introduce securityfs file to activate an IMA namespace ima: Namespace IMA with audit support in IMA-ns - - - --- 2023-02-06 Stefan Berger New
[v15,21/26] ima: Setup securityfs for IMA namespace ima: Namespace IMA with audit support in IMA-ns 2 1 - --- 2023-02-06 Stefan Berger New
[v15,20/26] ima: Remove unused iints from the integrity_iint_cache ima: Namespace IMA with audit support in IMA-ns - - - --- 2023-02-06 Stefan Berger New
[v15,19/26] ima: Namespace audit status flags ima: Namespace IMA with audit support in IMA-ns - - - --- 2023-02-06 Stefan Berger New
[v15,18/26] integrity: Add optional callback function to integrity_inode_free() ima: Namespace IMA with audit support in IMA-ns - - - --- 2023-02-06 Stefan Berger New
[v15,17/26] integrity/ima: Define ns_status for storing namespaced iint data ima: Namespace IMA with audit support in IMA-ns - - - --- 2023-02-06 Stefan Berger New
[v15,16/26] ima: Add functions for creating and freeing of an ima_namespace ima: Namespace IMA with audit support in IMA-ns 2 1 - --- 2023-02-06 Stefan Berger New
[v15,15/26] ima: Implement ima_free_policy_rules() for freeing of an ima_namespace ima: Namespace IMA with audit support in IMA-ns - 2 - --- 2023-02-06 Stefan Berger New
[v15,14/26] ima: Implement hierarchical processing of file accesses ima: Namespace IMA with audit support in IMA-ns - 2 - --- 2023-02-06 Stefan Berger New
[v15,13/26] userns: Add pointer to ima_namespace to user_namespace ima: Namespace IMA with audit support in IMA-ns 1 1 - --- 2023-02-06 Stefan Berger New
[v15,12/26] ima: Only accept AUDIT rules for non-init_ima_ns namespaces for now ima: Namespace IMA with audit support in IMA-ns 1 1 - --- 2023-02-06 Stefan Berger New
[v15,11/26] ima: Define mac_admin_ns_capable() as a wrapper for ns_capable() ima: Namespace IMA with audit support in IMA-ns - - - --- 2023-02-06 Stefan Berger New
[v15,10/26] ima: Switch to lazy lsm policy updates for better performance ima: Namespace IMA with audit support in IMA-ns 1 - - --- 2023-02-06 Stefan Berger New
[v15,09/26] ima: Move ima_lsm_policy_notifier into ima_namespace ima: Namespace IMA with audit support in IMA-ns 1 1 - --- 2023-02-06 Stefan Berger New
[v15,08/26] ima: Move IMA securityfs files into ima_namespace or onto stack ima: Namespace IMA with audit support in IMA-ns 2 1 - --- 2023-02-06 Stefan Berger New
[v15,07/26] ima: Move some IMA policy and filesystem related variables into ima_namespace ima: Namespace IMA with audit support in IMA-ns 2 1 - --- 2023-02-06 Stefan Berger New
[v15,06/26] ima: Move measurement list related variables into ima_namespace ima: Namespace IMA with audit support in IMA-ns - 2 - --- 2023-02-06 Stefan Berger New
[v15,05/26] ima: Move ima_htable into ima_namespace ima: Namespace IMA with audit support in IMA-ns 1 2 - --- 2023-02-06 Stefan Berger New
[v15,04/26] ima: Move arch_policy_entry into ima_namespace ima: Namespace IMA with audit support in IMA-ns 1 2 - --- 2023-02-06 Stefan Berger New
[v15,03/26] ima: Define ima_namespace struct and start moving variables into it ima: Namespace IMA with audit support in IMA-ns 1 1 - --- 2023-02-06 Stefan Berger New
[v15,02/26] securityfs: Extend securityfs with namespacing support ima: Namespace IMA with audit support in IMA-ns 1 - - --- 2023-02-06 Stefan Berger New
[v15,01/26] securityfs: rework dentry creation ima: Namespace IMA with audit support in IMA-ns - 2 - --- 2023-02-06 Stefan Berger New
[V2,4/4] spi: tegra210-quad: Enable TPM wait polling Tegra TPM driver with hw flow control - - - --- 2023-02-03 Krishna Yarlagadda New
[V2,3/4] spi: dt-bindings: Add Tegra TPM wait polling flag Tegra TPM driver with hw flow control - - - --- 2023-02-03 Krishna Yarlagadda New
[V2,2/4] tpm: tegra: Support SPI tpm wait state detect Tegra TPM driver with hw flow control - - - --- 2023-02-03 Krishna Yarlagadda New
[V2,1/4] dt-bindings: tpm: Add compatible for Tegra TPM Tegra TPM driver with hw flow control - - - --- 2023-02-03 Krishna Yarlagadda New
[ima-evm-utils,v5] Add tests for MMAP_CHECK and MMAP_CHECK_REQPROT hooks [ima-evm-utils,v5] Add tests for MMAP_CHECK and MMAP_CHECK_REQPROT hooks - - - --- 2023-02-03 Roberto Sassu New
[4/4] spi: tegra210-quad: Enable TPM wait polling Tegra TPM driver with hw flow control - - - --- 2023-02-02 Krishna Yarlagadda New
[3/4] spi: dt-bindings: Add Tegra TPM wait polling flag Tegra TPM driver with hw flow control - - - --- 2023-02-02 Krishna Yarlagadda New
[2/4] tpm: tegra: Support SPI tpm wait state detect Tegra TPM driver with hw flow control - - - --- 2023-02-02 Krishna Yarlagadda New
[1/4] dt-bindings: tpm: Add compatible for Tegra TPM Tegra TPM driver with hw flow control - - - --- 2023-02-02 Krishna Yarlagadda New
[ima-evm-utils,v4] Add tests for MMAP_CHECK and MMAP_CHECK_REQPROT hooks [ima-evm-utils,v4] Add tests for MMAP_CHECK and MMAP_CHECK_REQPROT hooks - - - --- 2023-02-02 Roberto Sassu New
[ima-evm-utils,v3] Add tests for MMAP_CHECK and MMAP_CHECK_REQPROT hooks [ima-evm-utils,v3] Add tests for MMAP_CHECK and MMAP_CHECK_REQPROT hooks - - - --- 2023-02-01 Roberto Sassu New
[ima-evm-utils,v2] Add tests for MMAP_CHECK and MMAP_CHECK_REQPROT hooks [ima-evm-utils,v2] Add tests for MMAP_CHECK and MMAP_CHECK_REQPROT hooks - 1 - --- 2023-01-31 Roberto Sassu New
[v4,2/2] ima: Introduce MMAP_CHECK_REQPROT hook [v4,1/2] ima: Align ima_file_mmap() parameters with mmap_file LSM hook - - - --- 2023-01-31 Roberto Sassu New
[v4,1/2] ima: Align ima_file_mmap() parameters with mmap_file LSM hook [v4,1/2] ima: Align ima_file_mmap() parameters with mmap_file LSM hook - 1 - --- 2023-01-31 Roberto Sassu New
[ima-evm-utils] Fix reading the TPM 2.0 PCRs [ima-evm-utils] Fix reading the TPM 2.0 PCRs - - - --- 2023-01-31 Mimi Zohar New
Fix reading the TPM 2.0 PCRs Fix reading the TPM 2.0 PCRs - - - --- 2023-01-31 Mimi Zohar New
[ima-evm-utils,v2] Introduce expect_pass_if() and expect_fail_if() [ima-evm-utils,v2] Introduce expect_pass_if() and expect_fail_if() - 1 - --- 2023-01-31 Roberto Sassu New
[ima-evm-utils] Introduce expect_pass_if() and expect_fail_if() [ima-evm-utils] Introduce expect_pass_if() and expect_fail_if() - 1 - --- 2023-01-31 Roberto Sassu New
[v5,25/25] integrity/powerpc: Support loading keys from PLPKS pSeries dynamic secure boot secvar interface + platform keyring loading - 1 - --- 2023-01-31 Andrew Donnellan New
[v5,24/25] integrity/powerpc: Improve error handling & reporting when loading certs pSeries dynamic secure boot secvar interface + platform keyring loading - 1 - --- 2023-01-31 Andrew Donnellan New
[v5,23/25] powerpc/pseries: Implement secvars for dynamic secure boot pSeries dynamic secure boot secvar interface + platform keyring loading - - - --- 2023-01-31 Andrew Donnellan New
[v5,22/25] powerpc/pseries: Pass PLPKS password on kexec pSeries dynamic secure boot secvar interface + platform keyring loading - - - --- 2023-01-31 Andrew Donnellan New
[v5,21/25] powerpc/pseries: Add helper to get PLPKS password length pSeries dynamic secure boot secvar interface + platform keyring loading - 1 - --- 2023-01-31 Andrew Donnellan New
[v5,20/25] powerpc/pseries: Turn PSERIES_PLPKS into a hidden option pSeries dynamic secure boot secvar interface + platform keyring loading - 1 - --- 2023-01-31 Andrew Donnellan New
[v5,19/25] powerpc/pseries: Make caller pass buffer to plpks_read_var() pSeries dynamic secure boot secvar interface + platform keyring loading - 1 - --- 2023-01-31 Andrew Donnellan New
[v5,18/25] powerpc/pseries: Log hcall return codes for PLPKS debug pSeries dynamic secure boot secvar interface + platform keyring loading - 1 - --- 2023-01-31 Andrew Donnellan New
[v5,17/25] powerpc/pseries: Implement signed update for PLPKS objects pSeries dynamic secure boot secvar interface + platform keyring loading - 1 - --- 2023-01-31 Andrew Donnellan New
[v5,16/25] powerpc/pseries: Expose PLPKS config values, support additional fields pSeries dynamic secure boot secvar interface + platform keyring loading - 1 - --- 2023-01-31 Andrew Donnellan New
[v5,15/25] powerpc/pseries: Move PLPKS constants to header file pSeries dynamic secure boot secvar interface + platform keyring loading - 1 - --- 2023-01-31 Andrew Donnellan New
[v5,14/25] powerpc/pseries: Move plpks.h to include directory pSeries dynamic secure boot secvar interface + platform keyring loading - 1 - --- 2023-01-31 Andrew Donnellan New
[v5,13/25] powerpc/secvar: Don't print error on ENOENT when reading variables pSeries dynamic secure boot secvar interface + platform keyring loading - 1 - --- 2023-01-31 Andrew Donnellan New
[v5,12/25] powerpc/secvar: Warn when PAGE_SIZE is smaller than max object size pSeries dynamic secure boot secvar interface + platform keyring loading - 1 - --- 2023-01-31 Andrew Donnellan New
[v5,11/25] powerpc/secvar: Allow backend to populate static list of variable names pSeries dynamic secure boot secvar interface + platform keyring loading - 1 - --- 2023-01-31 Andrew Donnellan New
[v5,10/25] powerpc/secvar: Extend sysfs to include config vars pSeries dynamic secure boot secvar interface + platform keyring loading - 1 - --- 2023-01-31 Andrew Donnellan New
[v5,09/25] powerpc/secvar: Clean up init error messages pSeries dynamic secure boot secvar interface + platform keyring loading - 1 - --- 2023-01-31 Andrew Donnellan New
[v5,08/25] powerpc/secvar: Handle max object size in the consumer pSeries dynamic secure boot secvar interface + platform keyring loading - 1 - --- 2023-01-31 Andrew Donnellan New
[v5,07/25] powerpc/secvar: Handle format string in the consumer pSeries dynamic secure boot secvar interface + platform keyring loading - 1 - --- 2023-01-31 Andrew Donnellan New
[v5,06/25] powerpc/secvar: Use sysfs_emit() instead of sprintf() pSeries dynamic secure boot secvar interface + platform keyring loading - 1 - --- 2023-01-31 Andrew Donnellan New
[v5,05/25] powerpc/secvar: Warn and error if multiple secvar ops are set pSeries dynamic secure boot secvar interface + platform keyring loading - - - --- 2023-01-31 Andrew Donnellan New
[v5,04/25] powerpc/secvar: Use u64 in secvar_operations pSeries dynamic secure boot secvar interface + platform keyring loading - 2 - --- 2023-01-31 Andrew Donnellan New
[v5,03/25] powerpc/secvar: Fix incorrect return in secvar_sysfs_load() pSeries dynamic secure boot secvar interface + platform keyring loading - 1 - --- 2023-01-31 Andrew Donnellan New
[v5,02/25] powerpc/pseries: Fix alignment of PLPKS structures and buffers pSeries dynamic secure boot secvar interface + platform keyring loading - 1 - --- 2023-01-31 Andrew Donnellan New
[v5,01/25] powerpc/pseries: Fix handling of PLPKS object flushing timeout pSeries dynamic secure boot secvar interface + platform keyring loading - 1 1 --- 2023-01-31 Andrew Donnellan New
[-next] evm: call dump_security_xattr() in all cases to remove code duplication [-next] evm: call dump_security_xattr() in all cases to remove code duplication - - - --- 2023-01-31 xiujianfeng New
[RFC,v9,16/16] documentation: add ipe documentation Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,15/16] ipe: kunit test for parser Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,14/16] scripts: add boot policy generation program Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,13/16] ipe: enable support for fs-verity as a trust provider Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,12/16] fsverity: consume builtin signature via LSM hook Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,11/16] ipe: add support for dm-verity as a trust provider Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,10/16] dm-verity: consume root hash digest and signature data via LSM hook Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,09/16] block|security: add LSM blob to block_device Integrity Policy Enforcement LSM (IPE) - 1 - --- 2023-01-30 Fan Wu New
[RFC,v9,08/16] ipe: add permissive toggle Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,07/16] uapi|audit|ipe: add ipe auditing support Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,06/16] ipe: add LSM hooks on execution and kernel read Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,05/16] ipe: add userspace interface Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,04/16] security: add new securityfs delete function Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,03/16] ipe: add evaluation loop and introduce 'boot_verified' as a trust provider Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,02/16] ipe: add policy parser Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,01/16] security: add ipe lsm Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[-next,v2] tpm: of: fix return value check in tpm_read_log_memory_region() [-next,v2] tpm: of: fix return value check in tpm_read_log_memory_region() - - - --- 2023-01-30 Yang Yingliang New
[-next] tpm: of: fix return value check in tpm_read_log_memory_region() [-next] tpm: of: fix return value check in tpm_read_log_memory_region() - - - --- 2023-01-29 Yang Yingliang New
[-next] evm: call dump_security_xattr() in all cases to remove code duplication [-next] evm: call dump_security_xattr() in all cases to remove code duplication - - - --- 2023-01-29 xiujianfeng New
[RFC,v1,3/3] ima: Use TPM RNG for vPCR.secret if it's presented. ima: vPCR debug/security - - - --- 2023-01-27 Ilya Hanov New
[RFC,v1,2/3] ima: ascii_vpcr pseudo-file for sysadmins ima: vPCR debug/security - - - --- 2023-01-27 Ilya Hanov New
[RFC,v1,1/3] ima: Add a UUID value for each vPCR ima: vPCR debug/security - - - --- 2023-01-27 Ilya Hanov New
[v3,2/2] tpm: Add reserved memory event log tpm: Add reserved memory event log - 1 - --- 2023-01-26 Eddie James New
[v3,1/2] tpm: Use managed allocation for bios event log tpm: Add reserved memory event log - 1 1 --- 2023-01-26 Eddie James New
« 1 2 3 47 8 »