Show patches with: none      |   16501 patches
« 1 2 ... 36 37 38165 166 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
[v6,3/6] security: Remove security_old_inode_init_security() evm: Do HMAC of multiple per LSM xattrs for new inodes - - - --- 2022-11-23 Roberto Sassu pcmoore Superseded
[v6,2/6] ocfs2: Switch to security_inode_init_security() evm: Do HMAC of multiple per LSM xattrs for new inodes - - - --- 2022-11-23 Roberto Sassu pcmoore Superseded
[v6,1/6] reiserfs: Switch to security_inode_init_security() evm: Do HMAC of multiple per LSM xattrs for new inodes - - - --- 2022-11-23 Roberto Sassu pcmoore Superseded
[v5,6/6] evm: Support multiple LSMs providing an xattr evm: Prepare for moving to the LSM infrastructure - - - --- 2022-11-23 Roberto Sassu pcmoore Superseded
[v5,5/6] evm: Align evm_inode_init_security() definition with LSM infrastructure evm: Prepare for moving to the LSM infrastructure - - - --- 2022-11-23 Roberto Sassu pcmoore Superseded
[v5,4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook evm: Prepare for moving to the LSM infrastructure - - - --- 2022-11-23 Roberto Sassu pcmoore Superseded
[v5,3/6] security: Remove security_old_inode_init_security() evm: Prepare for moving to the LSM infrastructure - - - --- 2022-11-23 Roberto Sassu pcmoore Superseded
[v5,2/6] ocfs2: Switch to security_inode_init_security() evm: Prepare for moving to the LSM infrastructure - - - --- 2022-11-23 Roberto Sassu pcmoore Superseded
[v5,1/6] reiserfs: Switch to security_inode_init_security() evm: Prepare for moving to the LSM infrastructure - - - --- 2022-11-23 Roberto Sassu pcmoore Superseded
[RFC,v2,1/1] Use a fs callback to set security specific data RFC on how to include LSM hooks for io_uring commands - - - --- 2022-11-22 Joel Granados pcmoore Changes Requested
[v3,3/3] certs: don't try to update blacklist keys certs: Prevent spurious errors on repeated blacklisting - - - --- 2022-11-18 Thomas Weißschuh Handled Elsewhere
[v3,2/3] KEYS: Add key_create() certs: Prevent spurious errors on repeated blacklisting - - - --- 2022-11-18 Thomas Weißschuh Handled Elsewhere
[v3,1/3] certs: log hash value on blacklist error certs: Prevent spurious errors on repeated blacklisting - - - --- 2022-11-18 Thomas Weißschuh Handled Elsewhere
landlock: Allow filesystem layout changes for domains without such rule type landlock: Allow filesystem layout changes for domains without such rule type - - - --- 2022-11-17 Mickaël Salaün Handled Elsewhere
[PoC] bpf: Call return value check function in the JITed code [PoC] bpf: Call return value check function in the JITed code - - - --- 2022-11-16 Roberto Sassu pcmoore Handled Elsewhere
[RFC,1/1] Use ioctl selinux callback io_uring commands that implement the ioctl op convention RFC on how to include LSM hooks for io_uring commands - - - --- 2022-11-16 Joel Granados Changes Requested
[mm-unstable,v1,20/20] mm: rename FOLL_FORCE to FOLL_PTRACE mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) - - - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,19/20] habanalabs: remove FOLL_FORCE usage mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) 1 - - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,18/20] RDMA/hw/qib/qib_user_pages: remove FOLL_FORCE usage mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) - - - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,17/20] drm/exynos: remove FOLL_FORCE usage mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) - 1 - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,16/20] mm/frame-vector: remove FOLL_FORCE usage mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) 2 2 - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,15/20] media: pci/ivtv: remove FOLL_FORCE usage mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) 1 - - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,14/20] drm/etnaviv: remove FOLL_FORCE usage mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) - 1 - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,13/20] media: videobuf-dma-sg: remove FOLL_FORCE usage mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) 1 1 - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,12/20] RDMA/siw: remove FOLL_FORCE usage mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) - 1 - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,11/20] RDMA/usnic: remove FOLL_FORCE usage mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) - 1 - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,10/20] RDMA/umem: remove FOLL_FORCE usage mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) - 1 1 --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,09/20] mm/gup: reliable R/O long-term pinning in COW mappings mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) 1 2 - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,08/20] mm: extend FAULT_FLAG_UNSHARE support to anything in a COW mapping mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) - 1 - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,07/20] mm: don't call vm_ops->huge_fault() in wp_huge_pmd()/wp_huge_pud() for priva… mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) - 1 - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,06/20] mm: rework handling in do_wp_page() based on private vs. shared mappings mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) - 1 - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,05/20] mm: add early FAULT_FLAG_WRITE consistency checks mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) - 1 - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,04/20] mm: add early FAULT_FLAG_UNSHARE consistency checks mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) - 1 - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,03/20] selftests/vm: cow: R/O long-term pinning reliability tests for non-anon pages mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) - - - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,02/20] selftests/vm: cow: basic COW tests for non-anonymous pages mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) - - - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,01/20] selftests/vm: anon_cow: prepare for non-anonymous COW tests mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) 1 - - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[RFC,4/4] security: Enforce limitations on return values from LSMs security: Ensure LSMs return expected values - - - --- 2022-11-15 Roberto Sassu pcmoore Rejected
[RFC,3/4] lsm: Redefine LSM_HOOK() macro to add return value flags as argument security: Ensure LSMs return expected values - - - --- 2022-11-15 Roberto Sassu pcmoore Changes Requested
[RFC,2/4] lsm: Add missing return values doc in lsm_hooks.h and fix formatting security: Ensure LSMs return expected values - - - --- 2022-11-15 Roberto Sassu pcmoore Changes Requested
[RFC,1/4] lsm: Clarify documentation of vm_enough_memory hook security: Ensure LSMs return expected values - 1 - --- 2022-11-15 Roberto Sassu pcmoore Changes Requested
[bpf,v2] selftests/bpf: fix memory leak of lsm_cgroup [bpf,v2] selftests/bpf: fix memory leak of lsm_cgroup 1 - - --- 2022-11-15 wangyufen Handled Elsewhere
[RFC] SELINUX: Remove obsolete deferred inode security init list. [RFC] SELINUX: Remove obsolete deferred inode security init list. - - - --- 2022-11-14 Konstantin Meskhidze (A) Handled Elsewhere
[bpf] selftests/bpf: fix memory leak of lsm_cgroup [bpf] selftests/bpf: fix memory leak of lsm_cgroup - - - --- 2022-11-14 wangyufen Handled Elsewhere
[RESEND,v2,2/2] kernel/watch_queue: NULL the dangling *pipe, and use it for clear check watch_queue: Clean up some code - - - --- 2022-11-12 Siddh Raman Pant Handled Elsewhere
[RESEND,v2,1/2] include/linux/watch_queue: Improve documentation watch_queue: Clean up some code - - - --- 2022-11-12 Siddh Raman Pant Handled Elsewhere
ima: Fix misuse of dereference of pointer in template_desc_init_fields() ima: Fix misuse of dereference of pointer in template_desc_init_fields() - 1 - --- 2022-11-12 Xiu Jianfeng Handled Elsewhere
[v5,06/11] security: keys: trusted: Verify creation data Encrypted Hibernation - 1 - --- 2022-11-11 Evan Green Handled Elsewhere
[v5,05/11] security: keys: trusted: Allow storage of PCR values in creation data Encrypted Hibernation - 2 - --- 2022-11-11 Evan Green Handled Elsewhere
[v5,04/11] security: keys: trusted: Include TPM2 creation data Encrypted Hibernation - - - --- 2022-11-11 Evan Green Handled Elsewhere
[v2] integrity: Fix memory leakage in keyring allocation error path [v2] integrity: Fix memory leakage in keyring allocation error path - - - --- 2022-11-11 Guozihua (Scott) Handled Elsewhere
net: fix memory leak in security_sk_alloc() net: fix memory leak in security_sk_alloc() - - - --- 2022-11-11 wangyufen Rejected
KEYS: trusted: tee: Make registered shm dependency explicit KEYS: trusted: tee: Make registered shm dependency explicit - 1 1 --- 2022-11-10 Sumit Garg Handled Elsewhere
[v5] vfs, security: Fix automount superblock LSM init problem, preventing NFS sb sharing [v5] vfs, security: Fix automount superblock LSM init problem, preventing NFS sb sharing 2 1 1 --- 2022-11-10 David Howells pcmoore New
[v4,5/5] evm: Support multiple LSMs providing an xattr evm: Prepare for moving to the LSM infrastructure - - - --- 2022-11-10 Roberto Sassu pcmoore Superseded
[v4,4/5] evm: Align evm_inode_init_security() definition with LSM infrastructure evm: Prepare for moving to the LSM infrastructure - - - --- 2022-11-10 Roberto Sassu pcmoore Superseded
[v4,3/5] security: Allow all LSMs to provide xattrs for inode_init_security hook evm: Prepare for moving to the LSM infrastructure - - - --- 2022-11-10 Roberto Sassu pcmoore Superseded
[v4,2/5] security: Rewrite security_old_inode_init_security() evm: Prepare for moving to the LSM infrastructure - - - --- 2022-11-10 Roberto Sassu pcmoore Superseded
[v4,1/5] reiserfs: Add missing calls to reiserfs_security_free() evm: Prepare for moving to the LSM infrastructure - 1 - --- 2022-11-10 Roberto Sassu pcmoore Accepted
[RFC] lsm,fs: fix vfs_getxattr_alloc() return type and caller error paths [RFC] lsm,fs: fix vfs_getxattr_alloc() return type and caller error paths - 2 - --- 2022-11-10 Paul Moore pcmoore Accepted
integrity: Free key restriction when keyring allocation fails integrity: Free key restriction when keyring allocation fails - - - --- 2022-11-09 Guozihua (Scott) Handled Elsewhere
[v2,3/3] certs: don't try to update blacklist keys certs: Prevent spurious errors on repeated blacklisting - - - --- 2022-11-09 Thomas Weißschuh Handled Elsewhere
[v2,2/3] KEYS: Add key_create() certs: Prevent spurious errors on repeated blacklisting - - - --- 2022-11-09 Thomas Weißschuh Handled Elsewhere
[v2,1/3] certs: log more information on blacklist error certs: Prevent spurious errors on repeated blacklisting - - - --- 2022-11-09 Thomas Weißschuh Handled Elsewhere
[GIT,PULL] LSM fixes for v6.1 (#2) [GIT,PULL] LSM fixes for v6.1 (#2) - - - --- 2022-11-07 Paul Moore pcmoore Accepted
[v1,1/2] lsm,io_uring: add LSM hook for io_uring_setup Add LSM access controls for io_uring_setup - - - --- 2022-11-07 Gil Cukierman pcmoore Handled Elsewhere
[v3] samples/landlock: Document best-effort approach for LANDLOCK_ACCESS_FS_REFER [v3] samples/landlock: Document best-effort approach for LANDLOCK_ACCESS_FS_REFER - - - --- 2022-11-07 Günther Noack Handled Elsewhere
integrity: iint: Remove unnecessary (void*) conversions integrity: iint: Remove unnecessary (void*) conversions - - - --- 2022-11-07 Li zeming Handled Elsewhere
[4/4] powerpc/pseries: expose authenticated variables stored in LPAR PKS powerpc/pseries: expose firmware security variables via filesystem - - - --- 2022-11-06 Nayna Jain pcmoore Rejected
[3/4] powerpc/pseries: initialize fwsecurityfs with plpks arch-specific structure powerpc/pseries: expose firmware security variables via filesystem - - - --- 2022-11-06 Nayna Jain pcmoore Rejected
[2/4] fs: define a firmware security filesystem named fwsecurityfs powerpc/pseries: expose firmware security variables via filesystem - - - --- 2022-11-06 Nayna Jain pcmoore Rejected
[1/4] powerpc/pseries: Add new functions to PLPKS driver powerpc/pseries: expose firmware security variables via filesystem - - - --- 2022-11-06 Nayna Jain pcmoore Rejected
[GIT,PULL] Landlock fix for v6.1 #2 [GIT,PULL] Landlock fix for v6.1 #2 - - - --- 2022-11-04 Mickaël Salaün Handled Elsewhere
[v2] samples/landlock: Document best-effort approach for LANDLOCK_ACCESS_FS_REFER [v2] samples/landlock: Document best-effort approach for LANDLOCK_ACCESS_FS_REFER - - - --- 2022-11-04 Günther Noack Handled Elsewhere
ima: Make a copy of sig and digest in asymmetric_verify() ima: Make a copy of sig and digest in asymmetric_verify() - - - --- 2022-11-04 Roberto Sassu Handled Elsewhere
[v4,06/11] security: keys: trusted: Verify creation data Encrypted Hibernation - 1 - --- 2022-11-03 Evan Green Handled Elsewhere
[v4,05/11] security: keys: trusted: Allow storage of PCR values in creation data Encrypted Hibernation - 2 - --- 2022-11-03 Evan Green Handled Elsewhere
[v4,04/11] security: keys: trusted: Include TPM2 creation data Encrypted Hibernation - 1 - --- 2022-11-03 Evan Green Handled Elsewhere
[v2] fs: don't audit the capability check in simple_xattr_list() [v2] fs: don't audit the capability check in simple_xattr_list() - 2 - --- 2022-11-03 Ondrej Mosnacek pcmoore Handled Elsewhere
[6b/10] CaitSith: Add policy management functions. [6b/10] CaitSith: Add policy management functions. - - - --- 2022-11-02 Tetsuo Handa pcmoore Rejected
[6a/10] CaitSith: Add policy management functions. [6a/10] CaitSith: Add policy management functions. - - - --- 2022-11-02 Tetsuo Handa pcmoore Rejected
[10/10] CaitSith: Add Kconfig and Makefile files. [01/10] security: Export security_hook_heads - - - --- 2022-11-02 Tetsuo Handa pcmoore Rejected
[09/10] CaitSith: Add garbage collector functions. [01/10] security: Export security_hook_heads - - - --- 2022-11-02 Tetsuo Handa pcmoore Rejected
[08/10] CaitSith: Add pathname calculation functions. [01/10] security: Export security_hook_heads - - - --- 2022-11-02 Tetsuo Handa pcmoore Rejected
[07/10] CaitSith: Add permission checking functions. [01/10] security: Export security_hook_heads - - - --- 2022-11-02 Tetsuo Handa pcmoore Rejected
[05/10] CaitSith: Add LSM interface management file. [01/10] security: Export security_hook_heads - - - --- 2022-11-02 Tetsuo Handa pcmoore Rejected
[04/10] CaitSith: Add header file. [01/10] security: Export security_hook_heads - - - --- 2022-11-02 Tetsuo Handa pcmoore Rejected
[03/10] fs,kernel: Export d_absolute_path()/find_task_by_pid_ns()/find_task_by_vpid() [01/10] security: Export security_hook_heads - - - --- 2022-11-02 Tetsuo Handa pcmoore Rejected
[02/10] mm: Export copy_to_kernel_nofault() [01/10] security: Export security_hook_heads - - - --- 2022-11-02 Tetsuo Handa pcmoore Rejected
[01/10] security: Export security_hook_heads [01/10] security: Export security_hook_heads - - - --- 2022-11-02 Tetsuo Handa pcmoore Rejected
ima: Fix memory leak in __ima_inode_hash() ima: Fix memory leak in __ima_inode_hash() - 1 - --- 2022-11-02 Roberto Sassu Handled Elsewhere
[v2] LSM: Better reporting of actual LSMs at boot [v2] LSM: Better reporting of actual LSMs at boot 2 - - --- 2022-11-02 Kees Cook pcmoore Accepted
capabilities: fix undefined behavior in bit shift for CAP_TO_MASK capabilities: fix undefined behavior in bit shift for CAP_TO_MASK 1 1 - --- 2022-10-31 Gaosheng Cui pcmoore Accepted
[GIT,PULL] LSM fixes for v6.1 (#1) [GIT,PULL] LSM fixes for v6.1 (#1) - - - --- 2022-10-31 Paul Moore pcmoore Accepted
samples/landlock: Document best-effort approach for LANDLOCK_ACCESS_FS_REFER samples/landlock: Document best-effort approach for LANDLOCK_ACCESS_FS_REFER - - - --- 2022-10-30 Günther Noack Handled Elsewhere
apparmor: Add __init annotation to aa_{setup/teardown}_dfa_engine() apparmor: Add __init annotation to aa_{setup/teardown}_dfa_engine() 1 - - --- 2022-10-29 Xiu Jianfeng Handled Elsewhere
[RESEND,RFC,3/3] selftests/bpf: Check if return values of LSM programs are allowed [RESEND,RFC,1/3] lsm: Clarify documentation of vm_enough_memory hook - - - --- 2022-10-28 Roberto Sassu pcmoore Superseded
[RESEND,RFC,2/3] bpf-lsm: Limit values that can be returned by security modules [RESEND,RFC,1/3] lsm: Clarify documentation of vm_enough_memory hook - - - --- 2022-10-28 Roberto Sassu pcmoore Superseded
[RESEND,RFC,1/3] lsm: Clarify documentation of vm_enough_memory hook [RESEND,RFC,1/3] lsm: Clarify documentation of vm_enough_memory hook - 1 - --- 2022-10-28 Roberto Sassu pcmoore Superseded
[RFC,3/3] selftests/bpf: Check if return values of LSM programs are allowed [RFC,1/3] lsm: Clarify documentation of vm_enough_memory hook - - - --- 2022-10-28 Roberto Sassu Superseded
[RFC,2/3] bpf-lsm: Limit values that can be returned by security modules [RFC,1/3] lsm: Clarify documentation of vm_enough_memory hook - - - --- 2022-10-28 Roberto Sassu Superseded
« 1 2 ... 36 37 38165 166 »