Show patches with: State = Action Required       |   12047 patches
« 1 2 3 4120 121 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
ipe: fallback to platform keyring also if key in trusted keyring is rejected ipe: fallback to platform keyring also if key in trusted keyring is rejected - - - --- 2024-09-27 Luca Boccassi New
[2/2] Revert "mm: introduce PF_MEMALLOC_NORECLAIM, PF_MEMALLOC_NOWARN" remove PF_MEMALLOC_NORECLAIM - 4 - --- 2024-09-26 Michal Hocko New
[1/2] bcachefs: do not use PF_MEMALLOC_NORECLAIM remove PF_MEMALLOC_NORECLAIM - 3 - --- 2024-09-26 Michal Hocko New
[RFC] rust: add PidNamespace wrapper [RFC] rust: add PidNamespace wrapper - - - --- 2024-09-26 Christian Brauner New
[v3,2/2] ipe: also reject policy updates with the same version [v3,1/2] ipe: return -ESTALE instead of -EINVAL on update when new policy has a lower version 1 1 - --- 2024-09-25 Luca Boccassi New
[v3,1/2] ipe: return -ESTALE instead of -EINVAL on update when new policy has a lower version [v3,1/2] ipe: return -ESTALE instead of -EINVAL on update when new policy has a lower version 1 1 - --- 2024-09-25 Luca Boccassi New
[v2,2/2] ipe: also reject policy updates with the same version [v2,1/2] ipe: return -ESTALE instead of -EINVAL on update when new policy has a lower version - 1 - --- 2024-09-25 Luca Boccassi New
[v2,1/2] ipe: return -ESTALE instead of -EINVAL on update when new policy has a lower version [v2,1/2] ipe: return -ESTALE instead of -EINVAL on update when new policy has a lower version 1 1 - --- 2024-09-25 Luca Boccassi New
[RFC] capabilities: remove cap_mmap_file() [RFC] capabilities: remove cap_mmap_file() - 2 - --- 2024-09-25 Paul Moore New
[RFC,v3] mm: move the check of READ_IMPLIES_EXEC out of do_mmap() [RFC,v3] mm: move the check of READ_IMPLIES_EXEC out of do_mmap() - - - --- 2024-09-25 Shu Han New
[RFC,v2] mm: move the check of READ_IMPLIES_EXEC out of do_mmap() [RFC,v2] mm: move the check of READ_IMPLIES_EXEC out of do_mmap() - - - --- 2024-09-25 Shu Han New
[RFC,v2] mm: move security_mmap_file() back into do_mmap() [RFC,v2] mm: move security_mmap_file() back into do_mmap() - - - --- 2024-09-25 Shu Han New
tomoyo: fallback to realpath if symlink's pathname does not exist tomoyo: fallback to realpath if symlink's pathname does not exist - - - --- 2024-09-25 Tetsuo Handa New
mm: move security_file_mmap() back into do_mmap() mm: move security_file_mmap() back into do_mmap() - - - --- 2024-09-25 Shu Han New
mm: move the check of READ_IMPLIES_EXEC out of do_mmap() mm: move the check of READ_IMPLIES_EXEC out of do_mmap() - - - --- 2024-09-25 Shu Han New
[GIT,PULL] lsm/lsm-pr-20240923 [GIT,PULL] lsm/lsm-pr-20240923 - - - --- 2024-09-23 Paul Moore New
[GIT,PULL] Landlock updates for v6.12 [GIT,PULL] Landlock updates for v6.12 - - - --- 2024-09-23 Mickaël Salaün New
[2/2] ipe: also reject policy updates with the same version [1/2] ipe: return -ESTALE instead of -EINVAL on update when new policy has a lower version - 1 - --- 2024-09-22 Luca Boccassi New
[1/2] ipe: return -ESTALE instead of -EINVAL on update when new policy has a lower version [1/2] ipe: return -ESTALE instead of -EINVAL on update when new policy has a lower version - - - --- 2024-09-22 Luca Boccassi New
[v5,5/5] tpm: flush the auth session only when /dev/tpm0 is open Lazy flush for the auth session - 1 1 --- 2024-09-21 Jarkko Sakkinen New
[v5,4/5] tpm: Allocate chip->auth in tpm2_start_auth_session() Lazy flush for the auth session - 1 - --- 2024-09-21 Jarkko Sakkinen New
[v5,3/5] tpm: flush the null key only when /dev/tpm0 is accessed Lazy flush for the auth session - - 1 --- 2024-09-21 Jarkko Sakkinen New
[v5,2/5] tpm: Implement tpm2_load_null() rollback Lazy flush for the auth session - - - --- 2024-09-21 Jarkko Sakkinen New
[v5,1/5] tpm: Return on tpm2_create_null_primary() failure Lazy flush for the auth session - - - --- 2024-09-21 Jarkko Sakkinen New
apparmor: Remove deadcode apparmor: Remove deadcode - - - --- 2024-09-20 Dr. David Alan Gilbert New
[GIT,PULL] lsm/lsm-pr-20240920 [GIT,PULL] lsm/lsm-pr-20240920 - - - --- 2024-09-20 Paul Moore New
selinux,smack: properly reference the LSM blob in security_watch_key() selinux,smack: properly reference the LSM blob in security_watch_key() - 1 - --- 2024-09-19 Paul Moore New
mm: call the security_mmap_file() LSM hook in remap_file_pages() mm: call the security_mmap_file() LSM hook in remap_file_pages() 1 - - --- 2024-09-19 Paul Moore New
[v4,5/5] tpm: flush the auth session only when /dev/tpm0 is open Lazy flush for the auth session - - 1 --- 2024-09-18 Jarkko Sakkinen New
[v4,4/5] tpm: Allocate chip->auth in tpm2_start_auth_session() Lazy flush for the auth session - - - --- 2024-09-18 Jarkko Sakkinen New
[v4,3/5] tpm: flush the null key only when /dev/tpm0 is accessed Lazy flush for the auth session - - 1 --- 2024-09-18 Jarkko Sakkinen New
[v4,2/5] tpm: Return on tpm2_create_primary() failure in tpm2_load_null() Lazy flush for the auth session - - - --- 2024-09-18 Jarkko Sakkinen New
[v4,1/5] tpm: Return on tpm2_create_null_primary() failure Lazy flush for the auth session - - - --- 2024-09-18 Jarkko Sakkinen New
[5/5] LSM: Use lsm_context in security_inode_notifysecctx LSM: Replace secctx/len pairs with lsm_context - - - --- 2024-09-17 Casey Schaufler New
[4/5] LSM: secctx provider check on release LSM: Replace secctx/len pairs with lsm_context - - - --- 2024-09-17 Casey Schaufler New
[3/5] LSM: lsm_context in security_dentry_init_security LSM: Replace secctx/len pairs with lsm_context - - - --- 2024-09-17 Casey Schaufler New
[2/5] LSM: Use lsm_context in security_inode_getsecctx LSM: Replace secctx/len pairs with lsm_context - - - --- 2024-09-17 Casey Schaufler New
[1/5] LSM: Replace context+len with lsm_context LSM: Replace secctx/len pairs with lsm_context - 1 - --- 2024-09-17 Casey Schaufler New
[v3,7/7] tpm: open code tpm2_create_null_primary() Lazy flush for the auth session - - - --- 2024-09-17 Jarkko Sakkinen New
[v3,6/7] tpm: flush the auth session only when /dev/tpm0 is open Lazy flush for the auth session - - - --- 2024-09-17 Jarkko Sakkinen New
[v3,5/7] tpm: Allocate chip->auth in tpm2_start_auth_session() Lazy flush for the auth session - - - --- 2024-09-17 Jarkko Sakkinen New
[v3,4/7] tpm: flush the null key only when /dev/tpm0 is accessed Lazy flush for the auth session - - 1 --- 2024-09-17 Jarkko Sakkinen New
[v3,3/7] tpm: Return on tpm2_create_primary() failure in tpm2_load_null() Lazy flush for the auth session - - - --- 2024-09-17 Jarkko Sakkinen New
[v3,2/7] tpm: Return on tpm2_create_null_primary() failure Lazy flush for the auth session - - - --- 2024-09-17 Jarkko Sakkinen New
[v3,1/7] tpm: Remove the top-level documentation tpm2-sessions.c Lazy flush for the auth session - - - --- 2024-09-17 Jarkko Sakkinen New
[v10,8/8] rust: file: add abstraction for `poll_table` File abstractions needed by Rust Binder - 3 - --- 2024-09-15 Alice Ryhl pcmoore New
[v10,7/8] rust: file: add `Kuid` wrapper File abstractions needed by Rust Binder - 3 - --- 2024-09-15 Alice Ryhl pcmoore New
[v10,6/8] rust: file: add `FileDescriptorReservation` File abstractions needed by Rust Binder - 4 - --- 2024-09-15 Alice Ryhl pcmoore New
[v10,5/8] rust: security: add abstraction for secctx File abstractions needed by Rust Binder 1 5 - --- 2024-09-15 Alice Ryhl pcmoore New
[v10,4/8] rust: cred: add Rust abstraction for `struct cred` File abstractions needed by Rust Binder - 6 - --- 2024-09-15 Alice Ryhl pcmoore New
[v10,3/8] rust: file: add Rust abstraction for `struct file` File abstractions needed by Rust Binder - 2 - --- 2024-09-15 Alice Ryhl pcmoore New
[v10,2/8] rust: task: add `Task::current_raw` File abstractions needed by Rust Binder - 4 - --- 2024-09-15 Alice Ryhl pcmoore New
[v10,1/8] rust: types: add `NotThreadSafe` File abstractions needed by Rust Binder - 5 - --- 2024-09-15 Alice Ryhl pcmoore New
[v2] ipe: allow secondary and platform keyrings to install/update policies [v2] ipe: allow secondary and platform keyrings to install/update policies - 1 - --- 2024-09-15 Luca Boccassi pcmoore Needs ACK
[v3,13/13] LSM: Remove lsm_prop scaffolding LSM: Move away from secids - - - --- 2024-09-10 Casey Schaufler pcmoore Under Review
[v3,12/13] Use lsm_prop for audit data LSM: Move away from secids - - - --- 2024-09-10 Casey Schaufler pcmoore Under Review
[v3,11/13] Audit: Change context data from secid to lsm_prop LSM: Move away from secids - - - --- 2024-09-10 Casey Schaufler pcmoore Under Review
[v3,10/13] LSM: Create new security_cred_getlsmprop LSM hook LSM: Move away from secids - - - --- 2024-09-10 Casey Schaufler pcmoore Under Review
[v3,09/13] Audit: use an lsm_prop in audit_names LSM: Move away from secids - - - --- 2024-09-10 Casey Schaufler pcmoore Under Review
[v3,08/13] LSM: Use lsm_prop in security_inode_getsecid LSM: Move away from secids - - - --- 2024-09-10 Casey Schaufler pcmoore Under Review
[v3,07/13] LSM: Use lsm_prop in security_current_getsecid LSM: Move away from secids - - - --- 2024-09-10 Casey Schaufler pcmoore Under Review
[v3,06/13] Audit: Update shutdown LSM data LSM: Move away from secids - - - --- 2024-09-10 Casey Schaufler pcmoore Under Review
[v3,05/13] LSM: Use lsm_prop in security_ipc_getsecid LSM: Move away from secids - - - --- 2024-09-10 Casey Schaufler pcmoore Under Review
[v3,04/13] Audit: maintain an lsm_prop in audit_context LSM: Move away from secids - - - --- 2024-09-10 Casey Schaufler pcmoore Under Review
[v3,03/13] LSM: Add lsmprop_to_secctx hook LSM: Move away from secids - - - --- 2024-09-10 Casey Schaufler pcmoore Under Review
[v3,02/13] LSM: Use lsm_prop in security_audit_rule_match LSM: Move away from secids - - - --- 2024-09-10 Casey Schaufler pcmoore Under Review
[v3,01/13] LSM: Add the lsm_prop data structure. LSM: Move away from secids - - - --- 2024-09-10 Casey Schaufler pcmoore Under Review
[v4,14/14] Activate the configuration and build of the TSEM LSM. Implement Trusted Security Event Modeling. - - - --- 2024-08-26 Dr. Greg pcmoore New
[v4,13/14] Implement infrastructure for loadable security models. Implement Trusted Security Event Modeling. - - - --- 2024-08-26 Dr. Greg pcmoore New
[v4,12/14] Implement configuration and methods for default model. Implement Trusted Security Event Modeling. - - - --- 2024-08-26 Dr. Greg pcmoore New
[v4,11/14] Implement the internal Trusted Modeling Agent. Implement Trusted Security Event Modeling. - - - --- 2024-08-26 Dr. Greg pcmoore New
[v4,10/14] Implement security event mapping. Implement Trusted Security Event Modeling. - - - --- 2024-08-26 Dr. Greg pcmoore New
[v4,09/14] Add event processing implementation. Implement Trusted Security Event Modeling. - - - --- 2024-08-26 Dr. Greg pcmoore New
[v4,08/14] Add security event description export facility. Implement Trusted Security Event Modeling. - - - --- 2024-08-26 Dr. Greg pcmoore New
[v4,07/14] Add namespace implementation. Implement Trusted Security Event Modeling. - - - --- 2024-08-26 Dr. Greg pcmoore New
[v4,06/14] Implement TSEM control plane. Implement Trusted Security Event Modeling. - - - --- 2024-08-26 Dr. Greg pcmoore New
[v4,05/14] Add root domain trust implementation. Implement Trusted Security Event Modeling. - - - --- 2024-08-26 Dr. Greg pcmoore New
[v4,04/14] Add primary TSEM implementation file. Implement Trusted Security Event Modeling. - - - --- 2024-08-26 Dr. Greg pcmoore New
[v4,03/14] TSEM global declarations. Implement Trusted Security Event Modeling. - - - --- 2024-08-26 Dr. Greg pcmoore New
[v4,02/14] Add TSEM specific documentation. Implement Trusted Security Event Modeling. - - - --- 2024-08-26 Dr. Greg pcmoore New
[v4,01/14] Update MAINTAINERS file. Implement Trusted Security Event Modeling. - - - --- 2024-08-26 Dr. Greg pcmoore New
[RESEND] cred: separate the refcount from frequently read fields [RESEND] cred: separate the refcount from frequently read fields - - - --- 2024-08-22 Mateusz Guzik pcmoore New
[v2,2/2] security: remove unused cred_alloc_blank/cred_transfer helpers get rid of cred_transfer - - - --- 2024-08-05 Jann Horn pcmoore Under Review
[v2,1/2] KEYS: use synchronous task work for changing parent credentials get rid of cred_transfer - - - --- 2024-08-05 Jann Horn pcmoore Under Review
[RFC,v19,5/5] samples/should-exec: Add set-should-exec Script execution control (was O_MAYEXEC) - - - --- 2024-07-04 Mickaël Salaün pcmoore Under Review
[RFC,v19,4/5] selftests/landlock: Add tests for execveat + AT_CHECK Script execution control (was O_MAYEXEC) - - - --- 2024-07-04 Mickaël Salaün pcmoore Under Review
[RFC,v19,3/5] selftests/exec: Add tests for AT_CHECK and related securebits Script execution control (was O_MAYEXEC) - - - --- 2024-07-04 Mickaël Salaün pcmoore Under Review
[RFC,v19,2/5] security: Add new SHOULD_EXEC_CHECK and SHOULD_EXEC_RESTRICT securebits Script execution control (was O_MAYEXEC) - - - --- 2024-07-04 Mickaël Salaün pcmoore Under Review
[RFC,v19,1/5] exec: Add a new AT_CHECK flag to execveat(2) Script execution control (was O_MAYEXEC) - - - --- 2024-07-04 Mickaël Salaün pcmoore Under Review
[RFC,v2,8/8] clavis: Introduce new LSM called clavis Clavis LSM - - - --- 2024-05-31 Eric Snowberg pcmoore Under Review
[RFC,v2,7/8] clavis: Introduce a new key type called clavis_key_acl Clavis LSM - - - --- 2024-05-31 Eric Snowberg pcmoore Under Review
[RFC,v2,6/8] keys: Add ability to track intended usage of the public key Clavis LSM - - - --- 2024-05-31 Eric Snowberg pcmoore Under Review
[RFC,v2,5/8] keys: Add new verification type (VERIFYING_CLAVIS_SIGNATURE) Clavis LSM - - - --- 2024-05-31 Eric Snowberg pcmoore Under Review
[RFC,v2,4/8] clavis: Prevent clavis boot param from changing during kexec Clavis LSM - - - --- 2024-05-31 Eric Snowberg pcmoore Under Review
[RFC,v2,3/8] efi: Make clavis boot param persist across kexec Clavis LSM - - - --- 2024-05-31 Eric Snowberg pcmoore Under Review
[RFC,v2,2/8] clavis: Introduce a new system keyring called clavis Clavis LSM - - - --- 2024-05-31 Eric Snowberg pcmoore Under Review
[RFC,v2,1/8] certs: Introduce ability to link to a system key Clavis LSM - - - --- 2024-05-31 Eric Snowberg pcmoore Under Review
cred: plug a hole in struct cred cred: plug a hole in struct cred - - - --- 2024-05-30 Mateusz Guzik pcmoore New
[v1,1/2] landlock: Fix d_parent walk Fix warning in collect_domain_accesses() - - - --- 2024-05-16 Mickaël Salaün pcmoore New
[RFC] ima: Use sequence number to wait for policy updates [RFC] ima: Use sequence number to wait for policy updates - - - --- 2024-05-07 Roberto Sassu pcmoore New
« 1 2 3 4120 121 »