Show patches with: Archived = No       |   4868 patches
« 1 2 ... 7 8 948 49 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
[bpf-next,v1,1/9] bpf, lsm: Add disabled BPF LSM hook list Add BPF LSM return value range check, BPF part - - - --- 2024-07-19 Xu Kuohai pcmoore Superseded
[v2] tpm: Add new device/vendor ID 0x50666666 [v2] tpm: Add new device/vendor ID 0x50666666 - - - --- 2024-07-18 Jett Rink Handled Elsewhere
[v7,4/4] documentation/landlock: Adding scoping mechanism documentation Landlock: Abstract Unix Socket Scoping Support - - - --- 2024-07-18 Tahera Fahimi Handled Elsewhere
[v7,3/4] samples/landlock: Support abstract unix socket restriction Landlock: Abstract Unix Socket Scoping Support - - - --- 2024-07-18 Tahera Fahimi Handled Elsewhere
[v7,2/4] selftests/landlock: Abstract unix socket restriction tests Landlock: Abstract Unix Socket Scoping Support - - - --- 2024-07-18 Tahera Fahimi Handled Elsewhere
[v7,1/4] Landlock: Add abstract unix socket connect restriction Landlock: Abstract Unix Socket Scoping Support - - - --- 2024-07-18 Tahera Fahimi Handled Elsewhere
[v5,16/21] mm/mmap: Use vms accounted pages in mmap_region() Untitled series #872064 1 3 - --- 2024-07-17 Liam R. Howlett pcmoore Handled Elsewhere
[v2,2/2] KEYS: trusted: dcp: fix leak of blob encryption key [v2,1/2] KEYS: trusted: fix DCP blob payload length assignment - - - --- 2024-07-17 David Gstir Handled Elsewhere
[v2,1/2] KEYS: trusted: fix DCP blob payload length assignment [v2,1/2] KEYS: trusted: fix DCP blob payload length assignment - - - --- 2024-07-17 David Gstir Handled Elsewhere
proc: add config to block FOLL_FORCE in mem writes proc: add config to block FOLL_FORCE in mem writes - - - --- 2024-07-17 Adrian Ratiu Changes Requested
[v3] tpm: Relocate buf->handles to appropriate place [v3] tpm: Relocate buf->handles to appropriate place - - - --- 2024-07-16 Jarkko Sakkinen Handled Elsewhere
[v2] tpm: Relocate buf->handles to appropriate place [v2] tpm: Relocate buf->handles to appropriate place - - - --- 2024-07-16 Jarkko Sakkinen Handled Elsewhere
tpm: Fix alignment of buf->handles tpm: Fix alignment of buf->handles - - - --- 2024-07-16 Jarkko Sakkinen Handled Elsewhere
[GIT,PULL] Smack patches for 6.11 [GIT,PULL] Smack patches for 6.11 - - - --- 2024-07-15 Casey Schaufler Handled Elsewhere
[GIT,PULL] lsm/lsm-pr-20240715 [GIT,PULL] lsm/lsm-pr-20240715 - - - --- 2024-07-15 Paul Moore pcmoore Accepted
[GIT,PULL] selinux/selinux-pr-20240715 [GIT,PULL] selinux/selinux-pr-20240715 - - - --- 2024-07-15 Paul Moore pcmoore Accepted
landlock: Various documentation improvements landlock: Various documentation improvements - - - --- 2024-07-15 Günther Noack Handled Elsewhere
[v2,2/2] landlock: Mention -1 return code on failure [v2,1/2] Unify error wording - 1 - --- 2024-07-12 Petr Vorel Handled Elsewhere
[v2,1/2] Unify error wording [v2,1/2] Unify error wording - - - --- 2024-07-12 Petr Vorel Handled Elsewhere
[1/1] landlock: Mention -1 return code on failure [1/1] landlock: Mention -1 return code on failure - 1 - --- 2024-07-12 Petr Vorel Handled Elsewhere
[v2] landlock: Clarify documentation for struct landlock_ruleset_attr [v2] landlock: Clarify documentation for struct landlock_ruleset_attr - - - --- 2024-07-11 Günther Noack Handled Elsewhere
[bpf-next,v4,20/20] selftests/bpf: Add verifier tests for bpf lsm Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Changes Requested
[bpf-next,v4,19/20] selftests/bpf: Add test for lsm tail call Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Changes Requested
[bpf-next,v4,18/20] selftests/bpf: Add return value checks for failed tests Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Changes Requested
[bpf-next,v4,17/20] selftests/bpf: Avoid load failure for token_lsm.c Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Changes Requested
[bpf-next,v4,16/20] bpf: Add a special case for bitwise AND on range [-1, 0] Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Changes Requested
[bpf-next,v4,15/20] bpf: Fix compare error in function retval_range_within Add return value range check for BPF LSM 1 - - --- 2024-07-11 Xu Kuohai pcmoore Changes Requested
[bpf-next,v4,14/20] bpf: Prevent tail call between progs attached to different hooks Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Changes Requested
[bpf-next,v4,13/20] bpf, lsm: Add check for BPF LSM return value Add return value range check for BPF LSM 1 - - --- 2024-07-11 Xu Kuohai pcmoore Changes Requested
[bpf-next,v4,12/20] bpf, lsm: Enable BPF LSM prog to read/write return value parameters Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Changes Requested
[bpf-next,v4,11/20] bpf, lsm: Add disabled BPF LSM hook list Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Changes Requested
[bpf-next,v4,10/20] lsm: Refactor return value of LSM hook audit_rule_match Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Changes Requested
[bpf-next,v4,09/20] lsm: Refactor return value of LSM hook key_getsecurity Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Changes Requested
[bpf-next,v4,08/20] lsm: Refactor return value of LSM hook getprocattr Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Changes Requested
[bpf-next,v4,07/20] lsm: Refactor return value of LSM hook setprocattr Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Changes Requested
[bpf-next,v4,06/20] lsm: Refactor return value of LSM hook getselfattr Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Changes Requested
[bpf-next,v4,05/20] lsm: Refactor return value of LSM hook inode_copy_up_xattr Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Changes Requested
[bpf-next,v4,04/20] lsm: Refactor return value of LSM hook inode_listsecurity Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Changes Requested
[bpf-next,v4,03/20] lsm: Refactor return value of LSM hook inode_getsecurity Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Changes Requested
[bpf-next,v4,02/20] lsm: Refactor return value of LSM hook inode_need_killpriv Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Changes Requested
[bpf-next,v4,01/20] lsm: Refactor return value of LSM hook vm_enough_memory Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Changes Requested
[v2,6/6] LSM: Infrastructure management of the perf_event security blob LSM: Infrastructure blob allocation - 1 - --- 2024-07-10 Casey Schaufler pcmoore Accepted
[v2,5/6] LSM: Infrastructure management of the infiniband blob LSM: Infrastructure blob allocation - 1 - --- 2024-07-10 Casey Schaufler pcmoore Accepted
[v2,4/6] LSM: Infrastructure management of the dev_tun blob LSM: Infrastructure blob allocation - 1 - --- 2024-07-10 Casey Schaufler pcmoore Accepted
[v2,3/6] LSM: Add helper for blob allocations LSM: Infrastructure blob allocation - 1 - --- 2024-07-10 Casey Schaufler pcmoore Accepted
[v2,2/6] LSM: Infrastructure management of the key security blob LSM: Infrastructure blob allocation - 1 - --- 2024-07-10 Casey Schaufler pcmoore Accepted
[v2,1/6] LSM: Infrastructure management of the sock security LSM: Infrastructure blob allocation 2 2 - --- 2024-07-10 Casey Schaufler pcmoore Accepted
[v4,16/21] mm/mmap: Use vms accounted pages in mmap_region() Untitled series #870217 - 3 - --- 2024-07-10 Liam R. Howlett pcmoore Handled Elsewhere
landlock: Clarify documentation for struct landlock_ruleset_attr landlock: Clarify documentation for struct landlock_ruleset_attr - 1 - --- 2024-07-10 Günther Noack Handled Elsewhere
[RFC] lsm: add the inode_free_security_rcu() LSM implementation hook [RFC] lsm: add the inode_free_security_rcu() LSM implementation hook - - - --- 2024-07-10 Paul Moore RFC
[v14,3/3] security: Replace indirect LSM hook calls with static calls Reduce overhead of LSMs with static calls 2 2 - --- 2024-07-10 KP Singh pcmoore Accepted
[v14,2/3] security: Count the LSMs enabled at compile time Reduce overhead of LSMs with static calls 2 2 - --- 2024-07-10 KP Singh pcmoore Accepted
[v14,1/3] kernel: Add helper macros for loop unrolling Reduce overhead of LSMs with static calls 2 2 - --- 2024-07-10 KP Singh pcmoore Accepted
apparmor: domain: clean up duplicated parts of handle_onexec() apparmor: domain: clean up duplicated parts of handle_onexec() 1 - - --- 2024-07-09 Leesoo Ahn Handled Elsewhere
[6/6] LSM: Infrastructure management of the perf_event security blob LSM: Infrastructure blob allocation - - - --- 2024-07-08 Casey Schaufler pcmoore Changes Requested
[5/6] LSM: Infrastructure management of the infiniband blob LSM: Infrastructure blob allocation - - - --- 2024-07-08 Casey Schaufler pcmoore Changes Requested
[4/6] LSM: Infrastructure management of the dev_tun blob LSM: Infrastructure blob allocation - - - --- 2024-07-08 Casey Schaufler pcmoore Changes Requested
[3/6] LSM: Add helper for blob allocations LSM: Infrastructure blob allocation - 1 - --- 2024-07-08 Casey Schaufler pcmoore Changes Requested
[2/6] LSM: Infrastructure management of the key security blob LSM: Infrastructure blob allocation - - - --- 2024-07-08 Casey Schaufler pcmoore Changes Requested
[1/6] LSM: Infrastructure management of the sock security LSM: Infrastructure blob allocation 2 2 - --- 2024-07-08 Casey Schaufler pcmoore Accepted
binfmt_elf: Fail execution of shared objects with ELIBEXEC (was: Re: [RFC PATCH v19 1/5] exec: Add … binfmt_elf: Fail execution of shared objects with ELIBEXEC (was: Re: [RFC PATCH v19 1/5] exec: Add … - - - --- 2024-07-08 Florian Weimer Handled Elsewhere
tpm: validate object type in tpm2_handle_mso() tpm: validate object type in tpm2_handle_mso() - - - --- 2024-07-07 Jarkko Sakkinen Handled Elsewhere
[v1,2/2] Landlock: Signal scoping tests [v1,1/2] Landlock: Add signal control - - - --- 2024-07-05 Tahera Fahimi Handled Elsewhere
[v1,1/2] Landlock: Add signal control [v1,1/2] Landlock: Add signal control - - - --- 2024-07-05 Tahera Fahimi Handled Elsewhere
[0/2] Landlock: Add abstract unix socket connect reastriction - - - --- 2024-07-05 Tahera Fahimi Handled Elsewhere
[RFC,v19,5/5] samples/should-exec: Add set-should-exec Script execution control (was O_MAYEXEC) - - - --- 2024-07-04 Mickaël Salaün pcmoore Superseded
[RFC,v19,4/5] selftests/landlock: Add tests for execveat + AT_CHECK Script execution control (was O_MAYEXEC) - - - --- 2024-07-04 Mickaël Salaün pcmoore Superseded
[RFC,v19,3/5] selftests/exec: Add tests for AT_CHECK and related securebits Script execution control (was O_MAYEXEC) - - - --- 2024-07-04 Mickaël Salaün pcmoore Superseded
[RFC,v19,2/5] security: Add new SHOULD_EXEC_CHECK and SHOULD_EXEC_RESTRICT securebits Script execution control (was O_MAYEXEC) - - - --- 2024-07-04 Mickaël Salaün pcmoore Superseded
[RFC,v19,1/5] exec: Add a new AT_CHECK flag to execveat(2) Script execution control (was O_MAYEXEC) - - - --- 2024-07-04 Mickaël Salaün pcmoore Superseded
[v4,3/3] tpm: Address !chip->auth in tpm_buf_append_hmac_session*() Address !chip->auth - - 1 --- 2024-07-04 Jarkko Sakkinen Handled Elsewhere
[v4,2/3] tpm: Address !chip->auth in tpm_buf_append_name() Address !chip->auth - - 1 --- 2024-07-04 Jarkko Sakkinen Handled Elsewhere
[v4,1/3] tpm: Address !chip->auth in tpm2_*_auth_session() Address !chip->auth - - 1 --- 2024-07-04 Jarkko Sakkinen Handled Elsewhere
[v2] dm verity: add support for signature verification with platform keyring [v2] dm verity: add support for signature verification with platform keyring - - - --- 2024-07-04 Luca Boccassi pcmoore Handled Elsewhere
[v3,3/3] tpm: Address !chip->auth in tpm_buf_append_hmac_session*() Address !chip->auth - - - --- 2024-07-04 Jarkko Sakkinen Handled Elsewhere
[v3,2/3] tpm: Address !chip->auth in tpm_buf_append_name() Address !chip->auth - - - --- 2024-07-04 Jarkko Sakkinen Handled Elsewhere
[v3,1/3] tpm: Address !chip->auth in tpm2_*_auth_session() Address !chip->auth - - - --- 2024-07-04 Jarkko Sakkinen Handled Elsewhere
selinux,smack: remove the capability checks in the removexattr hooks selinux,smack: remove the capability checks in the removexattr hooks 1 - - --- 2024-07-03 Paul Moore pcmoore Accepted
dm-verity: fix dm_is_verity_target() when dm-verity is builtin dm-verity: fix dm_is_verity_target() when dm-verity is builtin - 1 - --- 2024-07-03 Eric Biggers Handled Elsewhere
[v2,3/3] tpm: Address !chip->auth in tpm_buf_append_hmac_session*() Address !chip->auth - - - --- 2024-07-03 Jarkko Sakkinen Handled Elsewhere
[v2,2/3] tpm: Address !chip->auth in tpm_buf_append_name() Address !chip->auth - - - --- 2024-07-03 Jarkko Sakkinen Handled Elsewhere
[v2,1/3] tpm: Address !chip->auth in tpm2_*_auth_session() Address !chip->auth - - - --- 2024-07-03 Jarkko Sakkinen Handled Elsewhere
[3/3] tpm: Address !chip->auth in tpm_buf_append_hmac_session*() Address !chip->auth - - - --- 2024-07-03 Jarkko Sakkinen Handled Elsewhere
[2/3] tpm: Address !chip->auth in tpm_buf_append_name() Address !chip->auth - - - --- 2024-07-03 Jarkko Sakkinen Handled Elsewhere
[1/3] tpm: Address !chip->auth in tpm2_*_auth_session() Address !chip->auth - - - --- 2024-07-03 Jarkko Sakkinen Handled Elsewhere
[2/2] KEYS: trusted: dcp: fix leak of blob encryption key [1/2] KEYS: trusted: fix DCP blob payload length assignment - - - --- 2024-07-03 David Gstir Handled Elsewhere
[1/2] KEYS: trusted: fix DCP blob payload length assignment [1/2] KEYS: trusted: fix DCP blob payload length assignment - - - --- 2024-07-03 David Gstir Handled Elsewhere
tpm: Limit TCG_TPM2_HMAC to known good drivers tpm: Limit TCG_TPM2_HMAC to known good drivers - - - --- 2024-07-03 Jarkko Sakkinen Handled Elsewhere
tpm: Check non-nullity of chip->auth tpm: Check non-nullity of chip->auth - 1 - --- 2024-07-01 Jarkko Sakkinen Handled Elsewhere
[RFC] integrity: wait for completion of i2c initialization using late_initcall_sync() [RFC] integrity: wait for completion of i2c initialization using late_initcall_sync() - - - --- 2024-07-01 Romain Naour Handled Elsewhere
[v13,5/5] bpf: Only enable BPF LSM hooks when an LSM program is attached Reduce overhead of LSMs with static calls 1 1 - --- 2024-06-29 KP Singh pcmoore Changes Requested
[v13,4/5] security: Update non standard hooks to use static calls Reduce overhead of LSMs with static calls - 2 - --- 2024-06-29 KP Singh pcmoore Changes Requested
[v13,3/5] security: Replace indirect LSM hook calls with static calls Reduce overhead of LSMs with static calls 2 2 - --- 2024-06-29 KP Singh pcmoore Changes Requested
[v13,2/5] security: Count the LSMs enabled at compile time Reduce overhead of LSMs with static calls 2 2 - --- 2024-06-29 KP Singh pcmoore Changes Requested
[v13,1/5] kernel: Add helper macros for loop unrolling Reduce overhead of LSMs with static calls 2 2 - --- 2024-06-29 KP Singh pcmoore Changes Requested
[v4,11/11] drm: Replace strcpy() with __get_task_comm() Improve the copy of task comm 1 - - --- 2024-06-28 Yafang Shao Handled Elsewhere
[v4,10/11] net: Replace strcpy() with __get_task_comm() Improve the copy of task comm - - - --- 2024-06-28 Yafang Shao Handled Elsewhere
[v4,09/11] tracing: Replace strncpy() with __get_task_comm() Improve the copy of task comm 1 - - --- 2024-06-28 Yafang Shao Handled Elsewhere
[v4,08/11] tsacct: Replace strncpy() with __get_task_comm() Improve the copy of task comm - - - --- 2024-06-28 Yafang Shao Handled Elsewhere
[v4,07/11] mm/kmemleak: Replace strncpy() with __get_task_comm() Improve the copy of task comm 1 - - --- 2024-06-28 Yafang Shao Handled Elsewhere
« 1 2 ... 7 8 948 49 »