Show patches with: State = Action Required       |   12124 patches
« 1 2 ... 18 19 20121 122 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
[v27,05/25] LSM: Use lsmblob in security_audit_rule_match LSM: Module stacking for AppArmor 2 2 - --- 2021-06-11 Casey Schaufler New
[v27,04/25] IMA: avoid label collisions with stacked LSMs LSM: Module stacking for AppArmor - - - --- 2021-06-11 Casey Schaufler New
[v27,03/25] LSM: provide lsm name and id slot mappings LSM: Module stacking for AppArmor - - - --- 2021-06-11 Casey Schaufler New
[v27,02/25] LSM: Add the lsmblob data structure. LSM: Module stacking for AppArmor 3 - - --- 2021-06-11 Casey Schaufler New
[v27,01/25] LSM: Infrastructure management of the sock security LSM: Module stacking for AppArmor 2 2 - --- 2021-06-11 Casey Schaufler New
[v6,4/4] certs: Adjustment due to 'Check whether openssl tool is available' Add support for ECDSA-signed kernel modules - - - --- 2021-06-10 Stefan Berger New
[v6,3/4] certs: Add support for using elliptic curve keys for signing modules Add support for ECDSA-signed kernel modules 1 - 1 --- 2021-06-10 Stefan Berger New
[v6,2/4] certs: Check whether openssl tool is available Add support for ECDSA-signed kernel modules - - - --- 2021-06-10 Stefan Berger New
[v6,1/4] certs: Trigger creation of RSA module signing key if it's not an RSA key Add support for ECDSA-signed kernel modules - 1 1 --- 2021-06-10 Stefan Berger New
tpm2_load_command leaks memory tpm2_load_command leaks memory - - - --- 2021-06-10 Dhiraj Shah New
[-next] Yama: fix doc warnings [-next] Yama: fix doc warnings - - - --- 2021-06-10 ChenXiaoSong New
[-next] tomoyo: fix doc warnings [-next] tomoyo: fix doc warnings - - - --- 2021-06-10 ChenXiaoSong New
[-next] netlabel: Fix memory leak in netlbl_mgmt_add_common [-next] netlabel: Fix memory leak in netlbl_mgmt_add_common - - - --- 2021-06-10 Liu Shixin New
LSM: SafeSetID: Mark safesetid_initialized as __initdata LSM: SafeSetID: Mark safesetid_initialized as __initdata - - - --- 2021-06-08 Austin Kim New
[2/2] evm: output EVM digest calculation info EVM: add some debugging info - 1 - --- 2021-06-08 Mimi Zohar New
[1/2] ima: differentiate between EVM failures in the audit log EVM: add some debugging info - 1 - --- 2021-06-08 Mimi Zohar New
[5/5] ima: Pass NULL instead of 0 to ima_get_action() in ima_file_mprotect() [1/5] doc: Fix warning in Documentation/security/IMA-templates.rst - - - --- 2021-06-08 Roberto Sassu New
[4/5] ima: Include header defining ima_post_key_create_or_update() [1/5] doc: Fix warning in Documentation/security/IMA-templates.rst - - - --- 2021-06-08 Roberto Sassu New
[3/5] ima/evm: Fix type mismatch [1/5] doc: Fix warning in Documentation/security/IMA-templates.rst - - - --- 2021-06-08 Roberto Sassu New
[2/5] ima: Set correct casting types [1/5] doc: Fix warning in Documentation/security/IMA-templates.rst - - - --- 2021-06-08 Roberto Sassu New
[1/5] doc: Fix warning in Documentation/security/IMA-templates.rst [1/5] doc: Fix warning in Documentation/security/IMA-templates.rst - - - --- 2021-06-08 Roberto Sassu New
net: ipv4: fix memory leak in netlbl_cipsov4_add_std net: ipv4: fix memory leak in netlbl_cipsov4_add_std 1 - - --- 2021-06-08 Nanyong Sun New
[-next,v2] capability: fix doc warnings in capability.c [-next,v2] capability: fix doc warnings in capability.c - - - --- 2021-06-08 Baokun Li New
[next] ima: Fix fall-through warning for Clang [next] ima: Fix fall-through warning for Clang - 1 - --- 2021-06-07 Gustavo A. R. Silva New
[net-next] netlabel: Fix spelling mistakes [net-next] netlabel: Fix spelling mistakes 1 - - --- 2021-06-07 Zheng Yongjun New
[-next] apparmor: fix doc warning [-next] apparmor: fix doc warning - - - --- 2021-06-07 ChenXiaoSong New
[-next] Smack: fix doc warning [-next] Smack: fix doc warning - - - --- 2021-06-07 ChenXiaoSong New
[v8,8/8] MAINTAINERS: Add a new entry for the Brute LSM Fork brute force attack mitigation - - - --- 2021-06-05 John Wood New
[v8,7/8] Documentation: Add documentation for the Brute LSM Fork brute force attack mitigation - - - --- 2021-06-05 John Wood New
[v8,6/8] selftests/brute: Add tests for the Brute LSM Fork brute force attack mitigation - - - --- 2021-06-05 John Wood New
[v8,5/8] security/brute: Notify to userspace "task killed" Fork brute force attack mitigation - - - --- 2021-06-05 John Wood New
[v8,4/8] security/brute: Mitigate a brute force attack Fork brute force attack mitigation - - - --- 2021-06-05 John Wood New
[v8,3/8] security/brute: Detect a brute force attack Fork brute force attack mitigation - - - --- 2021-06-05 John Wood New
[v8,2/8] security/brute: Define a LSM and add sysctl attributes Fork brute force attack mitigation - - - --- 2021-06-05 John Wood New
[v8,1/8] security: Add LSM hook at the point where a task gets a fatal signal Fork brute force attack mitigation - 1 - --- 2021-06-05 John Wood New
[32/34] docs: userspace-api: landlock.rst: avoid using ReSt :doc:`foo` markup docs: avoid using ReST :doc:`foo` tag - - - --- 2021-06-05 Mauro Carvalho Chehab New
[29/34] docs: security: landlock.rst: avoid using ReSt :doc:`foo` markup docs: avoid using ReST :doc:`foo` tag - - - --- 2021-06-05 Mauro Carvalho Chehab New
[-next] capability: fix doc warnings in capability.c [-next] capability: fix doc warnings in capability.c - - - --- 2021-06-05 Baokun Li New
[RESEND,v2,6/7] ima: Define new template evm-sig Untitled series #493361 - - - --- 2021-06-03 Roberto Sassu New
[v5,2/2] certs: Add support for using elliptic curve keys for signing modules Add support for ECDSA-signed kernel modules - - - --- 2021-06-02 Stefan Berger New
[v5,1/2] certs: Trigger creation of RSA module signing key if it's not an RSA key Add support for ECDSA-signed kernel modules - - - --- 2021-06-02 Stefan Berger New
[v5,2/2] certs: Add support for using elliptic curve keys for signing modules Add support for ECDSA-signed kernel modules 1 - 1 --- 2021-06-01 Stefan Berger New
[v5,1/2] certs: Trigger creation of RSA module signing key if it's not an RSA key Add support for ECDSA-signed kernel modules - 1 1 --- 2021-06-01 Stefan Berger New
[RESEND,v2,5/7] ima: Define new template fields xattrnames, xattrlengths and xattrvalues Untitled series #491545 - - - --- 2021-06-01 Roberto Sassu New
[2/2] audit: block PERM fields being used with io_uring filtering [1/2] audit: add filtering for io_uring records, addendum - - - --- 2021-05-31 Richard Guy Briggs New
[1/2] audit: add filtering for io_uring records, addendum [1/2] audit: add filtering for io_uring records, addendum - - - --- 2021-05-31 Richard Guy Briggs New
apparmor: Remove the repeated declaration apparmor: Remove the repeated declaration 1 - - --- 2021-05-29 Shaokun Zhang New
security: remove unneeded subdir-$(CONFIG_...) security: remove unneeded subdir-$(CONFIG_...) - - - --- 2021-05-28 Masahiro Yamada New
[v2,7/7] evm: Don't return an error in evm_write_xattrs() if audit is not enabled ima: Add template fields to verify EVM portable signatures - - - --- 2021-05-28 Roberto Sassu New
[v2,6/7] ima: Define new template evm-sig ima: Add template fields to verify EVM portable signatures - - - --- 2021-05-28 Roberto Sassu New
[v2,5/7] ima: Define new template fields xattrnames, xattrlengths and xattrvalues ima: Add template fields to verify EVM portable signatures - - - --- 2021-05-28 Roberto Sassu New
[v2,4/7] evm: Verify portable signatures against all protected xattrs ima: Add template fields to verify EVM portable signatures - - - --- 2021-05-28 Roberto Sassu New
[v2,3/7] ima: Define new template field imode ima: Add template fields to verify EVM portable signatures - - - --- 2021-05-28 Roberto Sassu New
[v2,2/7] ima: Define new template fields iuid and igid ima: Add template fields to verify EVM portable signatures 1 - - --- 2021-05-28 Roberto Sassu New
[v2,1/7] ima: Add ima_show_template_uint() template library function ima: Add template fields to verify EVM portable signatures - - - --- 2021-05-28 Roberto Sassu New
crypto: arm64/gcm - remove Wunused-const-variable ghash_cpu_feature crypto: arm64/gcm - remove Wunused-const-variable ghash_cpu_feature - - - --- 2021-05-27 Austin Kim New
proc: Check /proc/$pid/attr/ writes against file opener proc: Check /proc/$pid/attr/ writes against file opener - - - --- 2021-05-25 Kees Cook New
[v7,7/7] MAINTAINERS: Add a new entry for the Brute LSM Fork brute force attack mitigation - - - --- 2021-05-22 John Wood New
[v7,6/7] Documentation: Add documentation for the Brute LSM Fork brute force attack mitigation - - - --- 2021-05-22 John Wood New
[v7,5/7] selftests/brute: Add tests for the Brute LSM Fork brute force attack mitigation - - - --- 2021-05-22 John Wood New
[RFC,9/9] Smack: Brutalist io_uring support with debug Add LSM access controls and auditing to io_uring - - - --- 2021-05-21 Paul Moore New
[RFC,8/9] selinux: add support for the io_uring access controls Add LSM access controls and auditing to io_uring - - - --- 2021-05-21 Paul Moore New
[RFC,7/9] lsm,io_uring: add LSM hooks to io_uring Add LSM access controls and auditing to io_uring - - - --- 2021-05-21 Paul Moore New
[RFC,6/9] io_uring: convert io_uring to the secure anon inode interface Add LSM access controls and auditing to io_uring - - - --- 2021-05-21 Paul Moore New
[RFC,5/9] fs: add anon_inode_getfile_secure() similar to anon_inode_getfd_secure() Add LSM access controls and auditing to io_uring - - - --- 2021-05-21 Paul Moore New
[RFC,4/9] audit: add filtering for io_uring records Add LSM access controls and auditing to io_uring - - - --- 2021-05-21 Paul Moore New
[RFC,3/9] audit: dev/test patch to force io_uring auditing Add LSM access controls and auditing to io_uring - - - --- 2021-05-21 Paul Moore New
[RFC,2/9] audit,io_uring,io-wq: add some basic audit support to io_uring Add LSM access controls and auditing to io_uring - - - --- 2021-05-21 Paul Moore New
[RFC,1/9] audit: prepare audit_context for use in calling contexts beyond syscalls Add LSM access controls and auditing to io_uring 1 - - --- 2021-05-21 Paul Moore New
[v7,4/7] security/brute: Mitigate a brute force attack Fork brute force attack mitigation - - - --- 2021-05-21 John Wood New
[v7,3/7] security/brute: Detect a brute force attack Fork brute force attack mitigation - - - --- 2021-05-21 John Wood New
[v7,2/7] security/brute: Define a LSM and add sysctl attributes Fork brute force attack mitigation - - - --- 2021-05-21 John Wood New
[v7,1/7] security: Add LSM hook at the point where a task gets a fatal signal Fork brute force attack mitigation - 1 - --- 2021-05-21 John Wood New
[7/7] evm: Don't return an error in evm_write_xattrs() if audit is not enabled ima: Add template fields to verify EVM portable signatures - - - --- 2021-05-20 Roberto Sassu New
[6/7] ima: Introduce template field evmxattrs ima: Add template fields to verify EVM portable signatures - - - --- 2021-05-20 Roberto Sassu New
[5/7] evm: Verify portable signatures against all protected xattrs ima: Add template fields to verify EVM portable signatures - - - --- 2021-05-20 Roberto Sassu New
[4/7] ima: Introduce template field imode ima: Add template fields to verify EVM portable signatures - - - --- 2021-05-20 Roberto Sassu New
[3/7] ima: Introduce template fields mntuidmap and mntgidmap ima: Add template fields to verify EVM portable signatures - - - --- 2021-05-20 Roberto Sassu New
[2/7] ima: Introduce template fields iuid and igid ima: Add template fields to verify EVM portable signatures - - - --- 2021-05-20 Roberto Sassu New
[1/7] ima: Add ima_show_template_uint() template library function ima: Add template fields to verify EVM portable signatures - - - --- 2021-05-20 Roberto Sassu New
[RESEND,05/12] evm: Introduce evm_hmac_disabled() to safely ignore verification errors Untitled series #485589 - 1 - --- 2021-05-20 Roberto Sassu New
[RFC,3/3] ima: Enable IMA SB Policy if MokIMAPolicy found Add additional MOK vars - - - --- 2021-05-17 Eric Snowberg New
[RFC,2/3] keys: Trust platform keyring if MokTrustPlatform found Add additional MOK vars - - - --- 2021-05-17 Eric Snowberg New
[RFC,1/3] keys: Add ability to trust the platform keyring Add additional MOK vars - - - --- 2021-05-17 Eric Snowberg New
[v2,2/2] selinux: fix SECURITY_LSM_NATIVE_LABELS flag handling on double mount vfs/security/NFS/btrfs: clean up and fix LSM option handling - - - --- 2021-05-17 Ondrej Mosnacek New
[v2,1/2] vfs,LSM: introduce the FS_HANDLES_LSM_OPTS flag vfs/security/NFS/btrfs: clean up and fix LSM option handling - - 1 --- 2021-05-17 Ondrej Mosnacek New
[v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks [v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks 4 - 2 --- 2021-05-17 Ondrej Mosnacek New
[v7,12/12] ima: Don't remove security.ima if file must not be appraised evm: Improve usability of portable signatures - 1 - --- 2021-05-14 Roberto Sassu New
[v7,11/12] ima: Introduce template field evmsig and write to field sig as fallback evm: Improve usability of portable signatures - - - --- 2021-05-14 Roberto Sassu New
[v7,10/12] ima: Allow imasig requirement to be satisfied by EVM portable signatures evm: Improve usability of portable signatures - 1 - --- 2021-05-14 Roberto Sassu New
[v7,09/12] evm: Deprecate EVM_ALLOW_METADATA_WRITES evm: Improve usability of portable signatures - - - --- 2021-05-14 Roberto Sassu New
[v7,08/12] evm: Allow setxattr() and setattr() for unmodified metadata evm: Improve usability of portable signatures - 1 - --- 2021-05-14 Roberto Sassu New
[v7,07/12] evm: Pass user namespace to set/remove xattr hooks evm: Improve usability of portable signatures - 1 - --- 2021-05-14 Roberto Sassu New
[v7,06/12] evm: Allow xattr/attr operations for portable signatures evm: Improve usability of portable signatures - 1 - --- 2021-05-14 Roberto Sassu New
[v7,05/12] evm: Introduce evm_hmac_disabled() to safely ignore verification errors evm: Improve usability of portable signatures - 1 - --- 2021-05-14 Roberto Sassu New
[v7,04/12] evm: Introduce evm_revalidate_status() evm: Improve usability of portable signatures - 1 - --- 2021-05-14 Roberto Sassu New
[v7,03/12] evm: Refuse EVM_ALLOW_METADATA_WRITES only if an HMAC key is loaded evm: Improve usability of portable signatures - 1 - --- 2021-05-14 Roberto Sassu New
[v7,02/12] evm: Load EVM key in ima_load_x509() to avoid appraisal evm: Improve usability of portable signatures - 1 - --- 2021-05-14 Roberto Sassu New
[v7,01/12] evm: Execute evm_inode_init_security() only when an HMAC key is loaded evm: Improve usability of portable signatures - 1 - --- 2021-05-14 Roberto Sassu New
[v2,09/13] apparmor: use get_unaligned() only for multi-byte words Unify asm/unaligned.h around struct helper 1 - - --- 2021-05-14 Arnd Bergmann New
« 1 2 ... 18 19 20121 122 »