Show patches with: none      |   17310 patches
« 1 2 3 4173 174 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
[RFC,v3,3/3] selftests/landlock: Test that MPTCP actions are not restricted Fix non-TCP sockets restriction - - - --- 2025-02-05 Mikhail Ivanov New
[RFC,v3,2/3] selftests/landlock: Test TCP accesses with protocol=IPPROTO_TCP Fix non-TCP sockets restriction - - - --- 2025-02-05 Mikhail Ivanov New
[RFC,v3,1/3] landlock: Fix non-TCP sockets restriction Fix non-TCP sockets restriction - - - --- 2025-02-05 Mikhail Ivanov New
ima: Reset IMA_NONACTION_RULE_FLAGS after post_setattr ima: Reset IMA_NONACTION_RULE_FLAGS after post_setattr - - - --- 2025-02-04 Roberto Sassu New
[v7,7/7] ima: measure kexec load and exec events as critical data ima: kexec: measure events between kexec load and excute - 1 - --- 2025-02-03 steven chen New
[v7,6/7] ima: make the kexec extra memory configurable ima: kexec: measure events between kexec load and excute - - - --- 2025-02-03 steven chen New
[v7,5/7] ima: kexec: move IMA log copy from kexec load to execute ima: kexec: measure events between kexec load and excute - 1 - --- 2025-02-03 steven chen New
[v7,4/7] ima: kexec: define functions to copy IMA log at soft boot Untitled series #930245 - 2 - --- 2025-02-03 steven chen New
[v7,4/7] ima: kexec: define functions to copy IMA log at soft boot ima: kexec: measure events between kexec load and excute - 2 - --- 2025-02-03 steven chen New
[v7,3/7] ima: kexec: skip IMA segment validation after kexec soft reboot ima: kexec: measure events between kexec load and excute - 1 - --- 2025-02-03 steven chen New
[v7,2/7] kexec: define functions to map and unmap segments ima: kexec: measure events between kexec load and excute - 2 - --- 2025-02-03 steven chen New
[v7,1/7] ima: define and call ima_alloc_kexec_file_buf ima: kexec: measure events between kexec load and excute - 1 - --- 2025-02-03 steven chen New
[v7,7/7] ima: measure kexec load and exec events as critical data ima: kexec: measure events between kexec load and excute - 1 - --- 2025-02-03 steven chen New
[v7,6/7] ima: make the kexec extra memory configurable ima: kexec: measure events between kexec load and excute - - - --- 2025-02-03 steven chen New
[v7,4/7] ima: kexec: define functions to copy IMA log at soft boot Untitled series #930146 - 2 - --- 2025-02-03 steven chen New
[v7,4/7] ima: kexec: define functions to copy IMA log at soft boot ima: kexec: measure events between kexec load and excute - 2 - --- 2025-02-03 steven chen New
[v7,3/7] ima: kexec: skip IMA segment validation after kexec soft reboot ima: kexec: measure events between kexec load and excute - - - --- 2025-02-03 steven chen New
[v7,2/7] kexec: define functions to map and unmap segments ima: kexec: measure events between kexec load and excute - 2 - --- 2025-02-03 steven chen New
[v7,1/7] ima: define and call ima_alloc_kexec_file_buf ima: kexec: measure events between kexec load and excute - 1 - --- 2025-02-03 steven chen New
[v7,7/7] ima: measure kexec load and exec events as critical data ima: kexec: measure events between kexec load and excute - 1 - --- 2025-02-03 steven chen New
[v7,6/7] ima: make the kexec extra memory configurable ima: kexec: measure events between kexec load and excute - - - --- 2025-02-03 steven chen New
[v7,4/7] ima: kexec: define functions to copy IMA log at soft boot Untitled series #930144 - 2 - --- 2025-02-03 steven chen New
[v7,4/7] ima: kexec: define functions to copy IMA log at soft boot ima: kexec: measure events between kexec load and excute - 2 - --- 2025-02-03 steven chen New
[v7,3/7] ima: kexec: skip IMA segment validation after kexec soft reboot ima: kexec: measure events between kexec load and excute - - - --- 2025-02-03 steven chen New
[v7,2/7] kexec: define functions to map and unmap segments ima: kexec: measure events between kexec load and excute - 2 - --- 2025-02-03 steven chen New
[v7,1/7] ima: define and call ima_alloc_kexec_file_buf ima: kexec: measure events between kexec load and excute - 1 - --- 2025-02-03 steven chen New
[RFC,v1,3/3] samples/landlock: Print domain ID Expose Landlock domain IDs via pidfd - - - --- 2025-01-31 Mickaël Salaün New
[RFC,v1,2/3] pidfd: Extend PIDFD_GET_INFO with PIDFD_INFO_LANDLOCK_*_DOMAIN Expose Landlock domain IDs via pidfd - - - --- 2025-01-31 Mickaël Salaün New
[RFC,v1,1/3] landlock: Add landlock_read_domain_id() Expose Landlock domain IDs via pidfd - - - --- 2025-01-31 Mickaël Salaün New
[v5,24/24] landlock: Add audit documentation Landlock audit support - - - --- 2025-01-31 Mickaël Salaün New
[v5,23/24] selftests/landlock: Add audit tests for ptrace Landlock audit support - - - --- 2025-01-31 Mickaël Salaün New
[v5,22/24] selftests/landlock: Test audit with restrict flags Landlock audit support - - - --- 2025-01-31 Mickaël Salaün New
[v5,21/24] selftests/landlock: Add tests for audit and LANDLOCK_RESTRICT_SELF_QUIET Landlock audit support - - - --- 2025-01-31 Mickaël Salaün New
[v5,20/24] selftests/landlock: Extend tests for landlock_restrict_self()'s flags Landlock audit support - - - --- 2025-01-31 Mickaël Salaün New
[v5,19/24] samples/landlock: Enable users to log sandbox denials Landlock audit support - - - --- 2025-01-31 Mickaël Salaün New
[v5,18/24] landlock: Add LANDLOCK_RESTRICT_SELF_LOG_CROSS_EXEC Landlock audit support - - - --- 2025-01-31 Mickaël Salaün New
[v5,17/24] landlock: Add LANDLOCK_RESTRICT_SELF_QUIET_SUBDOMAINS Landlock audit support - - - --- 2025-01-31 Mickaël Salaün New
[v5,16/24] landlock: Add LANDLOCK_RESTRICT_SELF_QUIET Landlock audit support - - - --- 2025-01-31 Mickaël Salaün New
[v5,15/24] landlock: Log scoped denials Landlock audit support - - - --- 2025-01-31 Mickaël Salaün New
[v5,14/24] landlock: Log TCP bind and connect denials Landlock audit support - - - --- 2025-01-31 Mickaël Salaün New
[v5,13/24] landlock: Log truncate and IOCTL denials Landlock audit support - - - --- 2025-01-31 Mickaël Salaün New
[v5,12/24] landlock: Log file-related denials Landlock audit support - - - --- 2025-01-31 Mickaël Salaün New
[v5,11/24] landlock: Log mount-related denials Landlock audit support - - - --- 2025-01-31 Mickaël Salaün New
[v5,10/24] landlock: Add AUDIT_LANDLOCK_DOMAIN and log domain status Landlock audit support - - - --- 2025-01-31 Mickaël Salaün New
[v5,09/24] landlock: Add AUDIT_LANDLOCK_ACCESS and log ptrace denials Landlock audit support - - - --- 2025-01-31 Mickaël Salaün New
[v5,08/24] landlock: Identify domain execution crossing Landlock audit support - - - --- 2025-01-31 Mickaël Salaün New
[v5,07/24] landlock: Prepare to use credential instead of domain for fowner Landlock audit support - - - --- 2025-01-31 Mickaël Salaün New
[v5,06/24] landlock: Prepare to use credential instead of domain for scope Landlock audit support - - - --- 2025-01-31 Mickaël Salaün New
[v5,05/24] landlock: Prepare to use credential instead of domain for network Landlock audit support - - - --- 2025-01-31 Mickaël Salaün New
[v5,04/24] landlock: Prepare to use credential instead of domain for filesystem Landlock audit support - - - --- 2025-01-31 Mickaël Salaün New
[v5,03/24] landlock: Move domain hierarchy management Landlock audit support - - - --- 2025-01-31 Mickaël Salaün New
[v5,02/24] landlock: Add unique ID generator Landlock audit support - - - --- 2025-01-31 Mickaël Salaün New
[v5,01/24] lsm: Add audit_log_lsm_data() helper Landlock audit support 1 - - --- 2025-01-31 Mickaël Salaün New
tomoyo: use better patterns for procfs in learning mode tomoyo: use better patterns for procfs in learning mode - - - --- 2025-01-31 Tetsuo Handa New
[v12,bpf-next,5/5] selftests/bpf: Test kfuncs that set and remove xattr from BPF programs Enable writing xattr from BPF programs - - - --- 2025-01-30 Song Liu New
[v12,bpf-next,4/5] bpf: fs/xattr: Add BPF kfuncs to set and remove xattrs Enable writing xattr from BPF programs 1 1 - --- 2025-01-30 Song Liu New
[v12,bpf-next,3/5] bpf: lsm: Add two more sleepable hooks Enable writing xattr from BPF programs - 1 - --- 2025-01-30 Song Liu New
[v12,bpf-next,2/5] selftests/bpf: Extend test fs_kfuncs to cover security.bpf. xattr names Enable writing xattr from BPF programs - - - --- 2025-01-30 Song Liu New
[v12,bpf-next,1/5] fs/xattr: bpf: Introduce security.bpf. xattr name prefix Enable writing xattr from BPF programs 1 2 - --- 2025-01-30 Song Liu New
[v11,bpf-next,7/7] selftests/bpf: Test kfuncs that set and remove xattr from BPF programs Enable writing xattr from BPF programs - - - --- 2025-01-29 Song Liu New
[v11,bpf-next,6/7] bpf: fs/xattr: Add BPF kfuncs to set and remove xattrs Enable writing xattr from BPF programs 1 - - --- 2025-01-29 Song Liu New
[v11,bpf-next,5/7] bpf: Use btf_kfunc_id_set.remap logic for bpf_dynptr_from_skb Enable writing xattr from BPF programs - - - --- 2025-01-29 Song Liu New
[v11,bpf-next,4/7] bpf: Extend btf_kfunc_id_set to handle kfunc polymorphism Enable writing xattr from BPF programs - - - --- 2025-01-29 Song Liu New
[v11,bpf-next,3/7] bpf: lsm: Add two more sleepable hooks Enable writing xattr from BPF programs - - - --- 2025-01-29 Song Liu New
[v11,bpf-next,2/7] selftests/bpf: Extend test fs_kfuncs to cover security.bpf. xattr names Enable writing xattr from BPF programs - - - --- 2025-01-29 Song Liu New
[v11,bpf-next,1/7] fs/xattr: bpf: Introduce security.bpf. xattr name prefix Enable writing xattr from BPF programs 1 2 - --- 2025-01-29 Song Liu New
[RFC,v2,2/2] ipe: add 'anonymous_memory' property for policy decisions ipe support for anonymous memory and memfd - - - --- 2025-01-29 Fan Wu New
[RFC,v2,1/2] memfd,lsm: add a security hook to memfd_create() ipe support for anonymous memory and memfd - - - --- 2025-01-29 Fan Wu New
[v5,3/3] vfs: add notifications for mount attach and detach mount notification - - - --- 2025-01-29 Miklos Szeredi New
[v5,2/3] fanotify: notify on mount attach and detach mount notification - - - --- 2025-01-29 Miklos Szeredi New
[v5,1/3] fsnotify: add mount notification infrastructure mount notification - - - --- 2025-01-29 Miklos Szeredi New
[V3] audit: Initialize lsmctx to avoid memory allocation error [V3] audit: Initialize lsmctx to avoid memory allocation error - - - --- 2025-01-29 Huacai Chen New
apparmor: use the condition in AA_BUG_FMT even with debug disabled apparmor: use the condition in AA_BUG_FMT even with debug disabled 1 - - --- 2025-01-27 Mateusz Guzik New
[v3,2/2] lsm,io_uring: add LSM hooks for io_uring_setup() [v3,1/2] io_uring: refactor io_uring_allowed() - - - --- 2025-01-27 Hamza Mahfooz New
[v3,1/2] io_uring: refactor io_uring_allowed() [v3,1/2] io_uring: refactor io_uring_allowed() - - - --- 2025-01-27 Hamza Mahfooz New
smack: ipv4/ipv6: tcp/dccp/sctp: fix incorrect child socket label smack: ipv4/ipv6: tcp/dccp/sctp: fix incorrect child socket label - - - --- 2025-01-26 Konstantin Andreev New
[V2] audit: Initialize lsmctx to avoid memory allocation error [V2] audit: Initialize lsmctx to avoid memory allocation error - - - --- 2025-01-25 Huacai Chen New
[7/7] ima: measure kexec load and exec events as critical data ima: kexec: measure events between kexec load and excute - 1 - --- 2025-01-24 steven chen New
[v6,6/7] ima: make the kexec extra memory configurable ima: kexec: measure events between kexec load and excute - 1 - --- 2025-01-24 steven chen New
[v6,5/7] ima: kexec: move IMA log copy from kexec load to execute ima: kexec: measure events between kexec load and excute - 1 - --- 2025-01-24 steven chen New
[v6,4/7] ima: kexec: define functions to copy IMA log at soft boot ima: kexec: measure events between kexec load and excute - 2 - --- 2025-01-24 steven chen New
[v6,3/7] ima: kexec: skip IMA segment validation after kexec soft reboot ima: kexec: measure events between kexec load and excute - 1 - --- 2025-01-24 steven chen New
[v6,2/7] kexec: define functions to map and unmap segments ima: kexec: measure events between kexec load and excute - 2 - --- 2025-01-24 steven chen New
[v6,1/7] ima: define and call ima_alloc_kexec_file_buf ima: kexec: measure events between kexec load and excute - 1 - --- 2025-01-24 steven chen New
[7/7] ima: measure kexec load and exec events as critical data *** SUBJECT HERE *** - 1 - --- 2025-01-24 steven chen New
[v6,6/7] ima: make the kexec extra memory configurable *** SUBJECT HERE *** - - - --- 2025-01-24 steven chen New
[v6,5/7] ima: kexec: move IMA log copy from kexec load to execute *** SUBJECT HERE *** - 1 - --- 2025-01-24 steven chen New
[v6,4/7] ima: kexec: define functions to copy IMA log at soft boot *** SUBJECT HERE *** - 2 - --- 2025-01-24 steven chen New
[v6,3/7] ima: kexec: skip IMA segment validation after kexec soft reboot *** SUBJECT HERE *** - - - --- 2025-01-24 steven chen New
[v6,2/7] kexec: define functions to map and unmap segments *** SUBJECT HERE *** - 2 - --- 2025-01-24 steven chen New
[v6,1/7] ima: define and call ima_alloc_kexec_file_buf *** SUBJECT HERE *** - 1 - --- 2025-01-24 steven chen New
[v10,bpf-next,7/7] selftests/bpf: Test kfuncs that set and remove xattr from BPF programs Enable writing xattr from BPF programs - - - --- 2025-01-24 Song Liu New
[v10,bpf-next,6/7] bpf: fs/xattr: Add BPF kfuncs to set and remove xattrs Enable writing xattr from BPF programs 1 - - --- 2025-01-24 Song Liu New
[v10,bpf-next,5/7] bpf: Use btf_kfunc_id_set.remap logic for bpf_dynptr_from_skb Enable writing xattr from BPF programs - - - --- 2025-01-24 Song Liu New
[v10,bpf-next,4/7] bpf: Extend btf_kfunc_id_set to handle kfunc polymorphism Enable writing xattr from BPF programs - - - --- 2025-01-24 Song Liu New
[v10,bpf-next,3/7] bpf: lsm: Add two more sleepable hooks Enable writing xattr from BPF programs - - - --- 2025-01-24 Song Liu New
[v10,bpf-next,2/7] selftests/bpf: Extend test fs_kfuncs to cover security.bpf. xattr names Enable writing xattr from BPF programs - - - --- 2025-01-24 Song Liu New
[v10,bpf-next,1/7] fs/xattr: bpf: Introduce security.bpf. xattr name prefix Enable writing xattr from BPF programs 1 1 - --- 2025-01-24 Song Liu New
[man,3/3] landlock.7: Update wording in line with kernel side proposal [1/2] landlock: Minor typo and grammar fixes in IPC scoping documentation - - - --- 2025-01-24 Günther Noack Handled Elsewhere
[man,2/3] landlock.7: Move over documentation for ABI version 6 Untitled series #928192 - - - --- 2025-01-24 Günther Noack Handled Elsewhere
« 1 2 3 4173 174 »