Show patches with: State = Action Required       |   11925 patches
« 1 2 3 4119 120 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
[v9,4/4] evm: Support multiple LSMs providing an xattr evm: Do HMAC of multiple per LSM xattrs for new inodes - - - --- 2023-03-29 Roberto Sassu pcmoore New
[v9,3/4] evm: Align evm_inode_init_security() definition with LSM infrastructure evm: Do HMAC of multiple per LSM xattrs for new inodes - - - --- 2023-03-29 Roberto Sassu pcmoore New
[v9,2/4] security: Allow all LSMs to provide xattrs for inode_init_security hook evm: Do HMAC of multiple per LSM xattrs for new inodes - - - --- 2023-03-29 Roberto Sassu pcmoore New
[v9,1/4] reiserfs: Add security prefix to xattr name in reiserfs_security_write() evm: Do HMAC of multiple per LSM xattrs for new inodes - - - --- 2023-03-29 Roberto Sassu pcmoore New
[28/28] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache security: Move IMA and EVM to the LSM infrastructure - - - --- 2023-03-03 Roberto Sassu pcmoore New
[27/28] integrity: Move integrity functions to the LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - - - --- 2023-03-03 Roberto Sassu pcmoore New
[26/28] evm: Move to LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - - - --- 2023-03-03 Roberto Sassu pcmoore New
[25/28] ima: Move IMA-Appraisal to LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - - - --- 2023-03-03 Roberto Sassu pcmoore New
[24/28] ima: Move to LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - - - --- 2023-03-03 Roberto Sassu pcmoore New
[23/28] security: Introduce LSM_ORDER_LAST security: Move IMA and EVM to the LSM infrastructure - - - --- 2023-03-03 Roberto Sassu pcmoore New
[22/28] security: Introduce key_post_create_or_update hook security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore New
[21/28] security: Introduce inode_post_remove_acl hook security: Move IMA and EVM to the LSM infrastructure - - - --- 2023-03-03 Roberto Sassu pcmoore New
[20/28] security: Introduce inode_post_set_acl hook security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore New
[19/28] security: Introduce inode_post_create_tmpfile hook security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore New
[18/28] security: Introduce path_post_mknod hook security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore New
[17/28] security: Introduce file_pre_free_security hook security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore New
[16/28] security: Introduce file_post_open hook security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore New
[15/28] security: Introduce inode_post_removexattr hook security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore New
[14/28] security: Introduce inode_post_setattr hook security: Move IMA and EVM to the LSM infrastructure - 2 - --- 2023-03-03 Roberto Sassu pcmoore New
[13/28] security: Align inode_setattr hook definition with EVM security: Move IMA and EVM to the LSM infrastructure 1 1 - --- 2023-03-03 Roberto Sassu pcmoore New
[12/28] fs: Fix description of vfs_tmpfile() security: Move IMA and EVM to the LSM infrastructure 1 - - --- 2023-03-03 Roberto Sassu pcmoore New
[11/28] evm: Complete description of evm_inode_setattr() security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore New
[10/28] evm: Align evm_inode_post_setxattr() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore New
[09/28] evm: Align evm_inode_setxattr() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore New
[08/28] evm: Align evm_inode_post_setattr() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore New
[07/28] ima: Align ima_post_read_file() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore New
[06/28] ima: Align ima_inode_removexattr() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore New
[05/28] ima: Align ima_inode_setxattr() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore New
[04/28] ima: Align ima_file_mprotect() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore New
[03/28] ima: Align ima_post_create_tmpfile() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore New
[02/28] ima: Align ima_post_path_mknod() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore New
[01/28] ima: Align ima_inode_post_setattr() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore New
[v15,26/26] ima: Enable IMA namespaces ima: Namespace IMA with audit support in IMA-ns - - - --- 2023-02-06 Stefan Berger pcmoore New
[v15,25/26] ima: Restrict informational audit messages to init_ima_ns ima: Namespace IMA with audit support in IMA-ns - - - --- 2023-02-06 Stefan Berger pcmoore New
[v15,24/26] ima: Limit number of policy rules in non-init_ima_ns ima: Namespace IMA with audit support in IMA-ns - - - --- 2023-02-06 Stefan Berger pcmoore New
[v15,23/26] ima: Show owning user namespace's uid and gid when displaying policy ima: Namespace IMA with audit support in IMA-ns - 2 - --- 2023-02-06 Stefan Berger pcmoore New
[v15,22/26] ima: Introduce securityfs file to activate an IMA namespace ima: Namespace IMA with audit support in IMA-ns - - - --- 2023-02-06 Stefan Berger pcmoore New
[v15,21/26] ima: Setup securityfs for IMA namespace ima: Namespace IMA with audit support in IMA-ns 2 1 - --- 2023-02-06 Stefan Berger pcmoore New
[v15,20/26] ima: Remove unused iints from the integrity_iint_cache ima: Namespace IMA with audit support in IMA-ns - - - --- 2023-02-06 Stefan Berger pcmoore New
[v15,19/26] ima: Namespace audit status flags ima: Namespace IMA with audit support in IMA-ns - - - --- 2023-02-06 Stefan Berger pcmoore New
[v15,18/26] integrity: Add optional callback function to integrity_inode_free() ima: Namespace IMA with audit support in IMA-ns - - - --- 2023-02-06 Stefan Berger pcmoore New
[v15,17/26] integrity/ima: Define ns_status for storing namespaced iint data ima: Namespace IMA with audit support in IMA-ns - - - --- 2023-02-06 Stefan Berger pcmoore New
[v15,16/26] ima: Add functions for creating and freeing of an ima_namespace ima: Namespace IMA with audit support in IMA-ns 2 1 - --- 2023-02-06 Stefan Berger pcmoore New
[v15,15/26] ima: Implement ima_free_policy_rules() for freeing of an ima_namespace ima: Namespace IMA with audit support in IMA-ns - 2 - --- 2023-02-06 Stefan Berger pcmoore New
[v15,14/26] ima: Implement hierarchical processing of file accesses ima: Namespace IMA with audit support in IMA-ns - 2 - --- 2023-02-06 Stefan Berger pcmoore New
[v15,13/26] userns: Add pointer to ima_namespace to user_namespace ima: Namespace IMA with audit support in IMA-ns 1 1 - --- 2023-02-06 Stefan Berger pcmoore New
[v15,12/26] ima: Only accept AUDIT rules for non-init_ima_ns namespaces for now ima: Namespace IMA with audit support in IMA-ns 1 1 - --- 2023-02-06 Stefan Berger pcmoore New
[v15,11/26] ima: Define mac_admin_ns_capable() as a wrapper for ns_capable() ima: Namespace IMA with audit support in IMA-ns - - - --- 2023-02-06 Stefan Berger pcmoore New
[v15,10/26] ima: Switch to lazy lsm policy updates for better performance ima: Namespace IMA with audit support in IMA-ns 1 - - --- 2023-02-06 Stefan Berger pcmoore New
[v15,09/26] ima: Move ima_lsm_policy_notifier into ima_namespace ima: Namespace IMA with audit support in IMA-ns 1 1 - --- 2023-02-06 Stefan Berger pcmoore New
[v15,08/26] ima: Move IMA securityfs files into ima_namespace or onto stack ima: Namespace IMA with audit support in IMA-ns 2 1 - --- 2023-02-06 Stefan Berger pcmoore New
[v15,07/26] ima: Move some IMA policy and filesystem related variables into ima_namespace ima: Namespace IMA with audit support in IMA-ns 2 1 - --- 2023-02-06 Stefan Berger pcmoore New
[v15,06/26] ima: Move measurement list related variables into ima_namespace ima: Namespace IMA with audit support in IMA-ns - 2 - --- 2023-02-06 Stefan Berger pcmoore New
[v15,05/26] ima: Move ima_htable into ima_namespace ima: Namespace IMA with audit support in IMA-ns 1 2 - --- 2023-02-06 Stefan Berger pcmoore New
[v15,04/26] ima: Move arch_policy_entry into ima_namespace ima: Namespace IMA with audit support in IMA-ns 1 2 - --- 2023-02-06 Stefan Berger pcmoore New
[v15,03/26] ima: Define ima_namespace struct and start moving variables into it ima: Namespace IMA with audit support in IMA-ns 1 1 - --- 2023-02-06 Stefan Berger pcmoore New
[v15,02/26] securityfs: Extend securityfs with namespacing support ima: Namespace IMA with audit support in IMA-ns 1 - - --- 2023-02-06 Stefan Berger pcmoore New
[v15,01/26] securityfs: rework dentry creation ima: Namespace IMA with audit support in IMA-ns - 2 - --- 2023-02-06 Stefan Berger pcmoore New
[RESEND,bpf-next,4/4] bpf: Only enable BPF LSM hooks when an LSM program is attached Reduce overhead of LSMs with static calls - - - --- 2023-01-20 KP Singh pcmoore New
[RESEND,bpf-next,3/4] security: Replace indirect LSM hook calls with static calls Reduce overhead of LSMs with static calls - - - --- 2023-01-20 KP Singh pcmoore New
[RESEND,bpf-next,2/4] security: Generate a header with the count of enabled LSMs Reduce overhead of LSMs with static calls - - - --- 2023-01-20 KP Singh pcmoore New
[RESEND,bpf-next,1/4] kernel: Add helper macros for loop unrolling Reduce overhead of LSMs with static calls - - - --- 2023-01-20 KP Singh pcmoore New
[RFC,v2,1/1] Use a fs callback to set security specific data RFC on how to include LSM hooks for io_uring commands - - - --- 2022-11-22 Joel Granados pcmoore New
[v5] vfs, security: Fix automount superblock LSM init problem, preventing NFS sb sharing [v5] vfs, security: Fix automount superblock LSM init problem, preventing NFS sb sharing 2 1 1 --- 2022-11-10 David Howells pcmoore New
[v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message [v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message - 1 - --- 2022-06-15 Christian Göttsche pcmoore New
[v3,8/8] net: use new capable_any functionality [v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message - - - --- 2022-06-15 Christian Göttsche pcmoore New
[v3,7/8] bpf: use new capable_any functionality [v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message - - - --- 2022-06-15 Christian Göttsche pcmoore New
[v3,6/8] kernel: use new capable_any functionality [v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message - - - --- 2022-06-15 Christian Göttsche pcmoore New
[v3,5/8] fs: use new capable_any functionality [v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message - - - --- 2022-06-15 Christian Göttsche pcmoore New
[v3,4/8] drivers: use new capable_any functionality [v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message - 1 - --- 2022-06-15 Christian Göttsche pcmoore New
[v3,3/8] block: use new capable_any functionality [v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message - 1 - --- 2022-06-15 Christian Göttsche pcmoore New
[v3,2/8] capability: use new capable_any functionality [v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message - - - --- 2022-06-15 Christian Göttsche pcmoore New
[v10,6/7] doc: trusted-encrypted: describe new CAAM trust source KEYS: trusted: Introduce support for NXP CAAM-based trusted keys - 2 - --- 2022-05-13 Ahmad Fatoum New
[v10,5/7] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys KEYS: trusted: Introduce support for NXP CAAM-based trusted keys - 3 5 --- 2022-05-13 Ahmad Fatoum New
[v10,4/7] crypto: caam - add in-kernel interface for blob generator KEYS: trusted: Introduce support for NXP CAAM-based trusted keys - 2 5 --- 2022-05-13 Ahmad Fatoum New
[v10,3/7] crypto: caam - determine whether CAAM supports blob encap/decap KEYS: trusted: Introduce support for NXP CAAM-based trusted keys - 1 1 --- 2022-05-13 Ahmad Fatoum New
[v10,2/7] KEYS: trusted: allow use of kernel RNG for key material KEYS: trusted: Introduce support for NXP CAAM-based trusted keys 2 3 3 --- 2022-05-13 Ahmad Fatoum New
[v10,1/7] KEYS: trusted: allow use of TEE as backend without TCG_TPM support KEYS: trusted: Introduce support for NXP CAAM-based trusted keys - 3 5 --- 2022-05-13 Ahmad Fatoum New
[v2] landlock: Explain how to support Landlock [v2] landlock: Explain how to support Landlock - 1 - --- 2022-05-13 Mickaël Salaün New
[v4] x86/kexec: Carry forward IMA measurement log on kexec [v4] x86/kexec: Carry forward IMA measurement log on kexec - 1 - --- 2022-05-12 Jonathan McDowell New
[v1] landlock: Explain how to support Landlock [v1] landlock: Explain how to support Landlock - - - --- 2022-05-12 Mickaël Salaün New
[-next] apparmor: Fix aa_str_perms() kernel-doc comment [-next] apparmor: Fix aa_str_perms() kernel-doc comment 1 - - --- 2022-05-12 Yang Li New
[v8,4/4] kexec, KEYS, s390: Make use of built-in and secondary keyring for signature verification Untitled series #640875 2 1 - --- 2022-05-12 Coiby Xu New
[v8,3/4] arm64: kexec_file: use more system keyrings to verify kernel image signature Untitled series #640875 2 - - --- 2022-05-12 Coiby Xu New
[v8,2/4] kexec, KEYS: make the code in bzImage64_verify_sig generic Untitled series #640875 1 1 - --- 2022-05-12 Coiby Xu New
loadpin: stop using bdevname loadpin: stop using bdevname - - - --- 2022-05-12 Christoph Hellwig New
[v7,4/4] kexec, KEYS, s390: Make use of built-in and secondary keyring for signature verification Untitled series #640797 1 1 - --- 2022-05-12 Coiby Xu New
[v7,3/4] arm64: kexec_file: use more system keyrings to verify kernel image signature Untitled series #640797 2 - - --- 2022-05-12 Coiby Xu New
[v7,2/4] kexec, KEYS: make the code in bzImage64_verify_sig generic Untitled series #640797 1 1 - --- 2022-05-12 Coiby Xu New
[v3] x86/kexec: Carry forward IMA measurement log on kexec [v3] x86/kexec: Carry forward IMA measurement log on kexec - - - --- 2022-05-11 Jonathan McDowell New
[v2] big_keys: Use struct for internal payload [v2] big_keys: Use struct for internal payload - - - --- 2022-05-10 Kees Cook New
big_keys: Use struct for internal payload big_keys: Use struct for internal payload - - - --- 2022-05-08 Kees Cook New
[v3,12/12] landlock: Add design choices documentation for filesystem access rights Landlock: file linking and renaming support - 1 - --- 2022-05-06 Mickaël Salaün New
[v3,11/12] landlock: Document good practices about filesystem policies Landlock: file linking and renaming support - 1 - --- 2022-05-06 Mickaël Salaün New
[v3,10/12] landlock: Document LANDLOCK_ACCESS_FS_REFER and ABI versioning Landlock: file linking and renaming support - 1 - --- 2022-05-06 Mickaël Salaün New
[v3,09/12] samples/landlock: Add support for file reparenting Landlock: file linking and renaming support - 1 - --- 2022-05-06 Mickaël Salaün New
[v3,08/12] selftests/landlock: Add 11 new test suites dedicated to file reparenting Landlock: file linking and renaming support - - - --- 2022-05-06 Mickaël Salaün New
[v3,07/12] landlock: Add support for file reparenting with LANDLOCK_ACCESS_FS_REFER Landlock: file linking and renaming support - 1 - --- 2022-05-06 Mickaël Salaün New
[v3,06/12] LSM: Remove double path_rename hook calls for RENAME_EXCHANGE Landlock: file linking and renaming support 2 1 - --- 2022-05-06 Mickaël Salaün New
[v3,05/12] landlock: Move filesystem helpers and add a new one Landlock: file linking and renaming support - 1 - --- 2022-05-06 Mickaël Salaün New
« 1 2 3 4119 120 »