Show patches with: State = Action Required       |   12030 patches
« 1 2 ... 96 97 98120 121 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
[v2,15/15] ima: add Documentation/security/IMA-digest-lists.txt - - - --- 2017-11-07 Roberto Sassu New
[v2,14/15] ima: add support for appraisal with digest lists - - - --- 2017-11-07 Roberto Sassu New
[v2,13/15] evm: add kernel command line option to select protected xattrs - - - --- 2017-11-07 Roberto Sassu New
[v2,12/15] ima: do not update security.ima if appraisal status is not INTEGRITY_PASS - - - --- 2017-11-07 Roberto Sassu New
[v2,11/15] ima: add policy action digest_list - - - --- 2017-11-07 Roberto Sassu New
[v2,10/15] ima: disable digest lookup if digest lists are not checked - - - --- 2017-11-07 Roberto Sassu New
[v2,09/15] ima: introduce securityfs interfaces for digest lists - - - --- 2017-11-07 Roberto Sassu New
[v2,08/15] ima: add parser of RPM package headers - - - --- 2017-11-07 Roberto Sassu New
[v2,07/15] ima: add parser of compact digest list - - - --- 2017-11-07 Roberto Sassu New
[v2,06/15] ima: add parser of digest lists metadata - - - --- 2017-11-07 Roberto Sassu New
[v2,05/15] ima: add functions to manage digest lists - - - --- 2017-11-07 Roberto Sassu New
[v2,04/15] ima: use ima_show_htable_value to show hash table data - - - --- 2017-11-07 Roberto Sassu New
[v2,03/15] ima: generalize policy file operations - - - --- 2017-11-07 Roberto Sassu New
[v2,02/15] ima: generalize ima_write_policy() - - - --- 2017-11-07 Roberto Sassu New
[v2,01/15] ima: generalize ima_read_policy() - - - --- 2017-11-07 Roberto Sassu New
[3,RESEND] tpm: use struct tpm_chip for tpm_chip_find_get() - 1 - --- 2017-11-05 Jarkko Sakkinen New
MAINTAINERS: update the IMA, EVM, trusted-keys, encrypted-keys entries - - - --- 2017-11-03 Mimi Zohar New
[07/27] kexec_file: Disable at runtime if securelevel has been set - - - --- 2017-11-02 David Howells New
[03/27] Enforce module signatures if the kernel is locked down - - - --- 2017-11-02 David Howells New
[RFC] ima: require secure_boot rules in lockdown mode - - - --- 2017-11-02 David Howells New
[3/3] KEYS: fix out-of-bounds read during ASN.1 parsing - - - --- 2017-11-02 David Howells New
[2/3] KEYS: trusted: fix writing past end of buffer in trusted_read() - 2 - --- 2017-11-02 David Howells New
[1/3] KEYS: return full count in keyring_read() if buffer is too small - 1 - --- 2017-11-02 David Howells New
KEYS: fix out-of-bounds read during ASN.1 parsing - - - --- 2017-11-01 Eric Biggers New
[RFC] xfrm: fix regression introduced by xdst pcpu cache - - 1 --- 2017-10-31 Florian Westphal New
tpm: Update MAINTAINERS for Jason Gunthorpe - 1 - --- 2017-10-31 Jason Gunthorpe New
[v2] tpm: Move Linux RNG connection to hwrng - 1 2 --- 2017-10-31 Jason Gunthorpe New
[RFC] xfrm: fix regression introduced by xdst pcpu cache - - - --- 2017-10-30 Stephen Smalley New
[RFC,v0.1] selinuxns: extend namespace support to security.selinux xattrs - - - --- 2017-10-30 James Morris New
[9/9] LSM: Full security module stacking - - - --- 2017-10-27 Casey Schaufler New
[8/9] LSM: Multiple security mount options - - - --- 2017-10-27 Casey Schaufler New
[7/9] LSM: Shared secids - - - --- 2017-10-27 Casey Schaufler New
[6/9] LSM: General stacking - - - --- 2017-10-27 Casey Schaufler New
[5/9] LSM: Manage remaining security blobs - - - --- 2017-10-27 Casey Schaufler New
[4/9] LSM: Manage task security blobs - - - --- 2017-10-27 Casey Schaufler New
[3/9] LSM: Manage file security blobs - - - --- 2017-10-27 Casey Schaufler New
[2/9] LSM: Manage credential security blobs - - - --- 2017-10-27 Casey Schaufler New
[1/9] procfs: add smack subdir to attrs - - - --- 2017-10-27 Casey Schaufler New
[RFC] xfrm: fix regression introduced by xdst pcpu cache - - - --- 2017-10-27 Stephen Smalley New
MAINTAINERS: remove David Safford as maintainer for encrypted+trusted keys - - - --- 2017-10-27 Eric Biggers New
KEYS: trusted: fix writing past end of buffer in trusted_read() - 2 - --- 2017-10-26 Eric Biggers New
[v3] tpm: use struct tpm_chip for tpm_chip_find_get() - 1 1 --- 2017-10-26 Jarkko Sakkinen New
[V3,2/2] IMA: Support using new creds in appraisal policy - 1 - --- 2017-10-26 Matthew Garrett New
[V3,1/2] security: Add a cred_getsecid hook 2 - - --- 2017-10-26 Matthew Garrett New
[07/27] kexec_file: Disable at runtime if securelevel has been set - - - --- 2017-10-26 joeyli New
[v2] tpm: use struct tpm_chip for tpm_chip_find_get() - 1 - --- 2017-10-25 Jarkko Sakkinen New
Audit: remove unused audit_log_secctx function - 1 - --- 2017-10-25 Casey Schaufler New
tpm: Move Linux RNG connection to hwrng - - - --- 2017-10-24 Jason Gunthorpe New
tpm: Move Linux RNG connection to hwrng - 1 - --- 2017-10-24 Jason Gunthorpe New
[v3,2/2] ima: check signature enforcement against cmdline param instead of CONFIG - - - --- 2017-10-24 Bruno E. O. Meneguele New
[v3,1/2] module: export module signature enforcement status - - - --- 2017-10-24 Bruno E. O. Meneguele New
[v2,2/2] ima: check signature enforcement against cmdline param instead of CONFIG - - - --- 2017-10-23 Bruno E. O. Meneguele New
[v2,1/2] module: export module signature enforcement status - - - --- 2017-10-23 Bruno E. O. Meneguele New
[RFC] ima: require secure_boot rules in lockdown mode - - - --- 2017-10-23 Mimi Zohar New
[12/27] x86/msr: Restrict MSR access when the kernel is locked down - - - --- 2017-10-23 David Howells New
[04/27] Restrict /dev/mem and /dev/kmem when the kernel is locked down - - - --- 2017-10-23 David Howells New
tpm: remove chip_num parameter from in-kernel API - - - --- 2017-10-23 Jarkko Sakkinen New
tpm: remove a misleading error message from tpm_get_timeouts() - - - --- 2017-10-23 Jarkko Sakkinen New
[RFC,2/2] fs: Grant CAP_TRUSTED rw access to trusted xattrs - - - --- 2017-10-21 Nicolas Belouin New
[RFC,1/2] security, capabilities: create CAP_TRUSTED - - - --- 2017-10-21 Nicolas Belouin New
[RFC,2/2] fs: add the possibility to use CAP_SYS_MOUNT to (u)mount a fs - - - --- 2017-10-21 Nicolas Belouin New
[RFC,1/2] security, capabilities: Add CAP_SYS_MOUNT - - - --- 2017-10-21 Nicolas Belouin New
[2/2] ima: check signature enforcement against cmdline param instead of CONFIG - - - --- 2017-10-20 Bruno E. O. Meneguele New
[1/2] module: export module signature enforcement status - - - --- 2017-10-20 Bruno E. O. Meneguele New
ima: fix hash algorithm initialization - - - --- 2017-10-20 Wang Boshi New
[2/2] IMA: Support using new creds in appraisal policy - - - --- 2017-10-19 Matthew Garrett New
[1/2] security: Add a cred_getsecid hook - - - --- 2017-10-19 Matthew Garrett New
[27/27] efi: Lock down the kernel if booted in secure boot mode 1 - - --- 2017-10-19 David Howells New
[26/27] efi: Add an EFI_SECURE_BOOT flag to indicate secure boot mode - 1 - --- 2017-10-19 David Howells New
[25/27] Lock down /proc/kcore - 1 - --- 2017-10-19 David Howells New
[24/27] debugfs: Disallow use of debugfs files when the kernel is locked down - - - --- 2017-10-19 David Howells New
[23/27] x86/mmiotrace: Lock down the testmmiotrace module - - - --- 2017-10-19 David Howells New
[22/27] Lock down module params that specify hardware parameters (eg. ioport) - - - --- 2017-10-19 David Howells New
[21/27] Lock down TIOCSSERIAL - - - --- 2017-10-19 David Howells New
[20/27] Prohibit PCMCIA CIS storage when the kernel is locked down - - - --- 2017-10-19 David Howells New
[19/27] scsi: Lock down the eata driver - - - --- 2017-10-19 David Howells New
[18/27] bpf: Restrict kernel image access functions when the kernel is locked down - - - --- 2017-10-19 David Howells New
[17/27] acpi: Disable APEI error injection if the kernel is locked down - 1 - --- 2017-10-19 David Howells New
[16/27] acpi: Disable ACPI table override if the kernel is locked down - 1 - --- 2017-10-19 David Howells New
[15/27] acpi: Ignore acpi_rsdp kernel param when the kernel has been locked down - 1 - --- 2017-10-19 David Howells New
[14/27] ACPI: Limit access to custom_method when the kernel is locked down - 1 - --- 2017-10-19 David Howells New
[13/27] asus-wmi: Restrict debugfs interface when the kernel is locked down - 1 - --- 2017-10-19 David Howells New
[12/27] x86/msr: Restrict MSR access when the kernel is locked down 1 2 - --- 2017-10-19 David Howells New
[11/27] x86: Lock down IO port access when the kernel is locked down - 2 - --- 2017-10-19 David Howells New
[10/27] PCI: Lock down BAR access when the kernel is locked down 1 1 - --- 2017-10-19 David Howells New
[09/27] uswsusp: Disable when the kernel is locked down - 2 - --- 2017-10-19 David Howells New
[08/27] hibernate: Disable when the kernel is locked down - 1 - --- 2017-10-19 David Howells New
[07/27] kexec_file: Disable at runtime if securelevel has been set - 1 - --- 2017-10-19 David Howells New
[06/27] Copy secure_boot flag in boot params across kexec reboot - 1 - --- 2017-10-19 David Howells New
[05/27] kexec: Disable at runtime if the kernel is locked down 1 2 - --- 2017-10-19 David Howells New
[04/27] Restrict /dev/mem and /dev/kmem when the kernel is locked down - 2 - --- 2017-10-19 David Howells New
[03/27] Enforce module signatures if the kernel is locked down - 2 - --- 2017-10-19 David Howells New
[02/27] Add a SysRq option to lift kernel lockdown - - - --- 2017-10-19 David Howells New
[01/27] Add the ability to lock down access to the running kernel image 1 - - --- 2017-10-19 David Howells New
[v2] tomoyo: fix timestamping for y2038 1 - - --- 2017-10-19 Arnd Bergmann New
tomoyo: fix timestamping for y2038 1 - - --- 2017-10-19 Tetsuo Handa New
tomoyo: fix timestamping for y2038 - - - --- 2017-10-19 Arnd Bergmann New
[net-next,v7,5/5] selinux: bpf: Add addtional check for bpf object file receive 2 1 - --- 2017-10-18 Chenbo Feng New
[net-next,v7,4/5] selinux: bpf: Add selinux check for eBPF syscall operations 2 1 - --- 2017-10-18 Chenbo Feng New
[net-next,v7,3/5] security: bpf: Add LSM hooks for bpf object related syscall 1 - - --- 2017-10-18 Chenbo Feng New
« 1 2 ... 96 97 98120 121 »