Security modules development

Show patches with: State = Action Required | Archived = No | 31 patches

Patch	Series	A/R/T	S/W/F	Date	Submitter	Delegate	State
[v5] vfs, security: Fix automount superblock LSM init problem, preventing NFS sb sharing	[v5] vfs, security: Fix automount superblock LSM init problem, preventing NFS sb sharing	2 1 1	---	2022-11-10	David Howells	pcmoore	New
smackfs: Added check catlen	smackfs: Added check catlen	- - -	---	2023-01-24	Denis Arefev		New
[RFC,v2,1/1] Use a fs callback to set security specific data	RFC on how to include LSM hooks for io_uring commands	- - -	---	2022-11-22	Joel Granados	pcmoore	New
[RESEND,bpf-next,4/4] bpf: Only enable BPF LSM hooks when an LSM program is attached	Reduce overhead of LSMs with static calls	- - -	---	2023-01-20	KP Singh	pcmoore	New
[RESEND,bpf-next,3/4] security: Replace indirect LSM hook calls with static calls	Reduce overhead of LSMs with static calls	- - -	---	2023-01-20	KP Singh	pcmoore	New
[RESEND,bpf-next,2/4] security: Generate a header with the count of enabled LSMs	Reduce overhead of LSMs with static calls	- - -	---	2023-01-20	KP Singh	pcmoore	New
[RESEND,bpf-next,1/4] kernel: Add helper macros for loop unrolling	Reduce overhead of LSMs with static calls	- - -	---	2023-01-20	KP Singh	pcmoore	New
[v3,2/2] vfs: avoid duplicating creds in faccessat if possible	[v3,1/2] capability: add cap_isidentical	- - -	---	2023-01-25	Mateusz Guzik		New
[v3,1/2] capability: add cap_isidentical	[v3,1/2] capability: add cap_isidentical	- 1 -	---	2023-01-25	Mateusz Guzik		New
[v2,2/2] vfs: avoid duplicating creds in faccessat if possible	[v2,1/2] capability: add cap_isidentical	- - -	---	2023-01-16	Mateusz Guzik	pcmoore	New
[v2,1/2] capability: add cap_isidentical	[v2,1/2] capability: add cap_isidentical	- 1 -	---	2023-01-16	Mateusz Guzik	pcmoore	New
[v5] evm: Correct inode_init_security hooks behaviors	[v5] evm: Correct inode_init_security hooks behaviors	- - -	---	2022-11-25	Nicolas Bouchinet		New
[25/35] Documentation: security: correct spelling	Documentation: correct lots of spelling errors (series 1)	- 1 -	---	2023-01-27	Randy Dunlap		New
[ima-evm-utils] Add tests for MMAP_CHECK and MMAP_CHECK_REQPROT hooks	[ima-evm-utils] Add tests for MMAP_CHECK and MMAP_CHECK_REQPROT hooks	- - -	---	2023-01-26	Roberto Sassu		New
[v3,2/2] ima: Introduce MMAP_CHECK_REQPROT hook	[v3,1/2] ima: Align ima_file_mmap() parameters with mmap_file LSM hook	- - -	---	2023-01-26	Roberto Sassu		New
[v3,1/2] ima: Align ima_file_mmap() parameters with mmap_file LSM hook	[v3,1/2] ima: Align ima_file_mmap() parameters with mmap_file LSM hook	- 1 -	---	2023-01-26	Roberto Sassu		New
[v2] security: Restore passing final prot to ima_file_mmap()	[v2] security: Restore passing final prot to ima_file_mmap()	- - -	---	2022-12-21	Roberto Sassu	pcmoore	New
[2/2] doc: Fix fs_context_parse_param description in mount_api.rst	[1/2] lsm: Fix description of fs_context_parse_param	- - -	---	2022-12-09	Roberto Sassu	pcmoore	Under Review
[RFC,v2,7/7] selftests/bpf: Change return value in test_libbpf_get_fd_by_id_opts.c	bpf-lsm: Check return values of security modules	- - -	---	2022-12-07	Roberto Sassu		New
[RFC,v2,6/7] selftests/bpf: Prevent positive ret values in test_lsm and verify_pkcs7_sig	bpf-lsm: Check return values of security modules	- - -	---	2022-12-07	Roberto Sassu		New
[RFC,v2,5/7] selftests/bpf: Check if return values of LSM programs are allowed	bpf-lsm: Check return values of security modules	- - -	---	2022-12-07	Roberto Sassu		New
[RFC,v2,4/7] bpf-lsm: Enforce return value limitations on security modules	bpf-lsm: Check return values of security modules	- - -	---	2022-12-07	Roberto Sassu		New
[RFC,v2,3/7] lsm: Redefine LSM_HOOK() macro to add return value flags as argument	bpf-lsm: Check return values of security modules	- - -	---	2022-12-07	Roberto Sassu		New
[RFC,v2,2/7] bpf: Mark ALU32 operations in bpf_reg_state structure	bpf-lsm: Check return values of security modules	- - -	---	2022-12-07	Roberto Sassu		New
[RFC,v2,1/7] bpf: Remove superfluous btf_id_set_contains() declaration	bpf-lsm: Check return values of security modules	- - -	---	2022-12-07	Roberto Sassu		New
[v7,6/6] evm: Support multiple LSMs providing an xattr	evm: Do HMAC of multiple per LSM xattrs for new inodes	- 1 -	---	2022-12-01	Roberto Sassu	pcmoore	New
[v7,5/6] evm: Align evm_inode_init_security() definition with LSM infrastructure	evm: Do HMAC of multiple per LSM xattrs for new inodes	- 1 -	---	2022-12-01	Roberto Sassu	pcmoore	New
[v7,4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook	evm: Do HMAC of multiple per LSM xattrs for new inodes	- 1 -	---	2022-12-01	Roberto Sassu	pcmoore	New
[v7,3/6] security: Remove security_old_inode_init_security()	evm: Do HMAC of multiple per LSM xattrs for new inodes	- 1 -	---	2022-12-01	Roberto Sassu	pcmoore	New
[v7,2/6] ocfs2: Switch to security_inode_init_security()	evm: Do HMAC of multiple per LSM xattrs for new inodes	- 1 -	---	2022-12-01	Roberto Sassu	pcmoore	New
[v7,1/6] reiserfs: Switch to security_inode_init_security()	evm: Do HMAC of multiple per LSM xattrs for new inodes	- 1 -	---	2022-12-01	Roberto Sassu	pcmoore	New