Show patches with: State = Action Required       |    Archived = No       |   883 patches
« 1 2 ... 3 4 58 9 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
[03/32] flex_array: Add Kunit tests Introduce flexible array struct memcpy() helpers - 1 - --- 2022-05-04 Kees Cook New
[02/32] Introduce flexible array struct memcpy() helpers Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook New
[01/32] netlink: Avoid memcpy() across flexible array boundary Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook New
fsnotify: add generic perm check for unlink/rmdir fsnotify: add generic perm check for unlink/rmdir - - - --- 2022-05-03 Guowei Du New
[RFC] getting misc stats/attributes via xattr API [RFC] getting misc stats/attributes via xattr API - - - --- 2022-05-03 Miklos Szeredi New
[v2,1/8] capability: add capable_or to test for multiple caps with exactly one audit message [v2,1/8] capability: add capable_or to test for multiple caps with exactly one audit message - - - --- 2022-05-02 Christian Göttsche New
[v2,8/8] net: use new capable_or functionality [v2,1/8] capability: add capable_or to test for multiple caps with exactly one audit message - 1 - --- 2022-05-02 Christian Göttsche New
[v2,7/8] kernel/bpf: use new capable_or functionality [v2,1/8] capability: add capable_or to test for multiple caps with exactly one audit message - - - --- 2022-05-02 Christian Göttsche New
[v2,6/8] kernel: use new capable_or functionality [v2,1/8] capability: add capable_or to test for multiple caps with exactly one audit message - - - --- 2022-05-02 Christian Göttsche New
[v2,5/8] fs: use new capable_or functionality [v2,1/8] capability: add capable_or to test for multiple caps with exactly one audit message - - - --- 2022-05-02 Christian Göttsche New
[v2,4/8] drivers: use new capable_or functionality [v2,1/8] capability: add capable_or to test for multiple caps with exactly one audit message 1 1 - --- 2022-05-02 Christian Göttsche New
[v2,3/8] block: use new capable_or functionality [v2,1/8] capability: add capable_or to test for multiple caps with exactly one audit message - - - --- 2022-05-02 Christian Göttsche New
[v2,2/8] capability: use new capable_or functionality [v2,1/8] capability: add capable_or to test for multiple caps with exactly one audit message - - - --- 2022-05-02 Christian Göttsche New
[v8,6/6] MAINTAINERS: add myself as CAAM trusted key maintainer KEYS: trusted: Introduce support for NXP CAAM-based trusted keys - 1 - --- 2022-04-28 Ahmad Fatoum New
[v8,5/6] doc: trusted-encrypted: describe new CAAM trust source KEYS: trusted: Introduce support for NXP CAAM-based trusted keys - 2 - --- 2022-04-28 Ahmad Fatoum New
[v8,4/6] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys KEYS: trusted: Introduce support for NXP CAAM-based trusted keys - 3 3 --- 2022-04-28 Ahmad Fatoum New
[v8,3/6] crypto: caam - add in-kernel interface for blob generator KEYS: trusted: Introduce support for NXP CAAM-based trusted keys - 2 3 --- 2022-04-28 Ahmad Fatoum New
[v8,2/6] KEYS: trusted: allow use of kernel RNG for key material KEYS: trusted: Introduce support for NXP CAAM-based trusted keys 2 3 1 --- 2022-04-28 Ahmad Fatoum New
[v8,1/6] KEYS: trusted: allow use of TEE as backend without TCG_TPM support KEYS: trusted: Introduce support for NXP CAAM-based trusted keys - 3 3 --- 2022-04-28 Ahmad Fatoum New
apparmor: fix reference count leak in aa_pivotroot() apparmor: fix reference count leak in aa_pivotroot() 1 - - --- 2022-04-28 Xin Xiong New
[v2,3/3] dm: verity-loadpin: Use CONFIG_SECURITY_LOADPIN_VERITY for conditional compilation LoadPin: Enable loading from trusted dm-verity devices - - - --- 2022-04-26 Matthias Kaehlcke New
[v2,2/3] LoadPin: Enable loading from trusted dm-verity devices LoadPin: Enable loading from trusted dm-verity devices - - - --- 2022-04-26 Matthias Kaehlcke New
[v2,1/3] dm: Add verity helpers for LoadPin LoadPin: Enable loading from trusted dm-verity devices - - - --- 2022-04-26 Matthias Kaehlcke New
[v2] Carry forward IMA measurement log on kexec on x86_64 [v2] Carry forward IMA measurement log on kexec on x86_64 - - - --- 2022-04-26 Jonathan McDowell New
integrity: Allow ima_appraise bootparam to be set when SB is enabled integrity: Allow ima_appraise bootparam to be set when SB is enabled - - - --- 2022-04-25 Eric Snowberg New
[1/2] clk-bcm2835: use subsys_initcall for the clock driver when IMA is enabled [1/2] clk-bcm2835: use subsys_initcall for the clock driver when IMA is enabled - - - --- 2022-04-23 Alberto Solavagione New
[v7,RESEND] efi: Do not import certificates from UEFI Secure Boot for T2 Macs [v7,RESEND] efi: Do not import certificates from UEFI Secure Boot for T2 Macs - 1 - --- 2022-04-22 Aditya Garg New
Carry forward IMA measurement log on kexec on x86_64 Carry forward IMA measurement log on kexec on x86_64 - - - --- 2022-04-22 Jonathan McDowell New
[v12,26/26] ima: Enable IMA namespaces ima: Namespace IMA with audit support in IMA-ns - - - --- 2022-04-20 Stefan Berger New
[v12,25/26] ima: Restrict informational audit messages to init_ima_ns ima: Namespace IMA with audit support in IMA-ns - - - --- 2022-04-20 Stefan Berger New
[v12,24/26] ima: Limit number of policy rules in non-init_ima_ns ima: Namespace IMA with audit support in IMA-ns - - - --- 2022-04-20 Stefan Berger New
[v12,23/26] ima: Show owning user namespace's uid and gid when displaying policy ima: Namespace IMA with audit support in IMA-ns - 2 - --- 2022-04-20 Stefan Berger New
[v12,22/26] ima: Introduce securityfs file to activate an IMA namespace ima: Namespace IMA with audit support in IMA-ns - - - --- 2022-04-20 Stefan Berger New
[v12,21/26] ima: Setup securityfs for IMA namespace ima: Namespace IMA with audit support in IMA-ns 2 1 - --- 2022-04-20 Stefan Berger New
[v12,20/26] ima: Remove unused iints from the integrity_iint_cache ima: Namespace IMA with audit support in IMA-ns - - - --- 2022-04-20 Stefan Berger New
[v12,19/26] ima: Namespace audit status flags ima: Namespace IMA with audit support in IMA-ns - - - --- 2022-04-20 Stefan Berger New
[v12,18/26] integrity: Add optional callback function to integrity_inode_free() ima: Namespace IMA with audit support in IMA-ns - - - --- 2022-04-20 Stefan Berger New
[v12,17/26] integrity/ima: Define ns_status for storing namespaced iint data ima: Namespace IMA with audit support in IMA-ns - - - --- 2022-04-20 Stefan Berger New
[v12,16/26] ima: Add functions for creating and freeing of an ima_namespace ima: Namespace IMA with audit support in IMA-ns 2 1 - --- 2022-04-20 Stefan Berger New
[v12,15/26] ima: Implement ima_free_policy_rules() for freeing of an ima_namespace ima: Namespace IMA with audit support in IMA-ns - 2 - --- 2022-04-20 Stefan Berger New
[v12,14/26] ima: Implement hierarchical processing of file accesses ima: Namespace IMA with audit support in IMA-ns - 2 - --- 2022-04-20 Stefan Berger New
[v12,13/26] userns: Add pointer to ima_namespace to user_namespace ima: Namespace IMA with audit support in IMA-ns 1 1 - --- 2022-04-20 Stefan Berger New
[v12,12/26] ima: Only accept AUDIT rules for non-init_ima_ns namespaces for now ima: Namespace IMA with audit support in IMA-ns 1 1 - --- 2022-04-20 Stefan Berger New
[v12,11/26] ima: Define mac_admin_ns_capable() as a wrapper for ns_capable() ima: Namespace IMA with audit support in IMA-ns - - - --- 2022-04-20 Stefan Berger New
[v12,10/26] ima: Switch to lazy lsm policy updates for better performance ima: Namespace IMA with audit support in IMA-ns 1 - - --- 2022-04-20 Stefan Berger New
[v12,09/26] ima: Move ima_lsm_policy_notifier into ima_namespace ima: Namespace IMA with audit support in IMA-ns 1 1 - --- 2022-04-20 Stefan Berger New
[v12,08/26] ima: Move IMA securityfs files into ima_namespace or onto stack ima: Namespace IMA with audit support in IMA-ns 2 1 - --- 2022-04-20 Stefan Berger New
[v12,07/26] ima: Move some IMA policy and filesystem related variables into ima_namespace ima: Namespace IMA with audit support in IMA-ns 2 1 - --- 2022-04-20 Stefan Berger New
[v12,06/26] ima: Move measurement list related variables into ima_namespace ima: Namespace IMA with audit support in IMA-ns - 2 - --- 2022-04-20 Stefan Berger New
[v12,05/26] ima: Move ima_htable into ima_namespace ima: Namespace IMA with audit support in IMA-ns 1 2 - --- 2022-04-20 Stefan Berger New
[v12,04/26] ima: Move arch_policy_entry into ima_namespace ima: Namespace IMA with audit support in IMA-ns 1 2 - --- 2022-04-20 Stefan Berger New
[v12,03/26] ima: Define ima_namespace struct and start moving variables into it ima: Namespace IMA with audit support in IMA-ns 1 1 - --- 2022-04-20 Stefan Berger New
[v12,02/26] securityfs: Extend securityfs with namespacing support ima: Namespace IMA with audit support in IMA-ns 1 - - --- 2022-04-20 Stefan Berger New
[v12,01/26] securityfs: rework dentry creation ima: Namespace IMA with audit support in IMA-ns - 2 - --- 2022-04-20 Stefan Berger New
[v1] RISC-V: defconfigs: Add syzkaller's config as a defconfig [v1] RISC-V: defconfigs: Add syzkaller's config as a defconfig - - - --- 2022-04-19 Palmer Dabbelt New
[3/3] dm: verity-loadpin: Use CONFIG_SECURITY_LOADPIN_VERITY for conditional compilation LoadPin: Enable loading from trusted dm-verity devices - - - --- 2022-04-18 Matthias Kaehlcke New
[2/3] LoadPin: Enable loading from trusted dm-verity devices LoadPin: Enable loading from trusted dm-verity devices - - - --- 2022-04-18 Matthias Kaehlcke New
[1/3] dm: Add verity helpers for LoadPin LoadPin: Enable loading from trusted dm-verity devices - - - --- 2022-04-18 Matthias Kaehlcke New
[v35,29/29] AppArmor: Remove the exclusive flag [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule 2 1 - --- 2022-04-18 Casey Schaufler New
[v35,28/29] LSM: Add /proc attr entry for full LSM context [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-04-18 Casey Schaufler New
[v35,27/29] Audit: Add record for multiple object contexts [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule 1 - - --- 2022-04-18 Casey Schaufler New
[v35,26/29] Audit: Add record for multiple task security contexts [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-04-18 Casey Schaufler New
[v35,25/29] Audit: Allow multiple records in an audit_buffer [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule 1 - - --- 2022-04-18 Casey Schaufler New
[v35,24/29] LSM: Add a function to report multiple LSMs [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-04-18 Casey Schaufler New
[v35,23/29] Audit: Create audit_stamp structure [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule 1 - - --- 2022-04-18 Casey Schaufler New
[v35,22/29] Audit: Keep multiple LSM data in audit_names [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule 1 - - --- 2022-04-18 Casey Schaufler New
[v35,21/29] LSM: Extend security_secid_to_secctx to include module selection [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-04-18 Casey Schaufler New
[v35,20/29] binder: Pass LSM identifier for confirmation [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-04-18 Casey Schaufler New
[v35,19/29] NET: Store LSM netlabel data in a lsmblob [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-04-18 Casey Schaufler New
[v35,18/29] LSM: security_secid_to_secctx in netlink netfilter [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule 3 2 - --- 2022-04-18 Casey Schaufler New
[v35,17/29] LSM: Use lsmcontext in security_inode_getsecctx [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule 3 2 - --- 2022-04-18 Casey Schaufler New
[v35,16/29] LSM: Use lsmcontext in security_secid_to_secctx [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-04-18 Casey Schaufler New
[v35,15/29] LSM: Ensure the correct LSM context releaser [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule 3 2 - --- 2022-04-18 Casey Schaufler New
[v35,14/29] LSM: Specify which LSM to display [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-04-18 Casey Schaufler New
[v35,13/29] LSM: Use lsmblob in security_cred_getsecid [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-04-18 Casey Schaufler New
[v35,12/29] LSM: Use lsmblob in security_inode_getsecid [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-04-18 Casey Schaufler New
[v35,11/29] LSM: Use lsmblob in security_current_getsecid [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-04-18 Casey Schaufler New
[v35,10/29] LSM: Use lsmblob in security_ipc_getsecid [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-04-18 Casey Schaufler New
[v35,09/29] LSM: Use lsmblob in security_secid_to_secctx [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-04-18 Casey Schaufler New
[v35,08/29] LSM: Use lsmblob in security_secctx_to_secid [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule 1 2 - --- 2022-04-18 Casey Schaufler New
[v35,07/29] LSM: Use lsmblob in security_kernel_act_as [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-04-18 Casey Schaufler New
[v35,06/29] LSM: Use lsmblob in security_audit_rule_match [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-04-18 Casey Schaufler New
[v35,05/29] IMA: avoid label collisions with stacked LSMs [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule - 1 - --- 2022-04-18 Casey Schaufler New
[v35,04/29] LSM: provide lsm name and id slot mappings [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule 1 2 - --- 2022-04-18 Casey Schaufler New
[v35,03/29] LSM: Add the lsmblob data structure. [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule - 1 - --- 2022-04-18 Casey Schaufler New
[v35,02/29] LSM: Infrastructure management of the sock security [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-04-18 Casey Schaufler New
[v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-04-18 Casey Schaufler New
[RFC,7/7] SELINUXNS: Fixing concurrency issues SELinux-namespace - - - --- 2022-04-18 Alexander Kozhevnikov New
[RFC,6/7] SELINUXNS: Fixing superblock security structure memory leakage SELinux-namespace - - - --- 2022-04-18 Alexander Kozhevnikov New
[RFC,5/7] SELINUXNS: Migrate all open files and all vma to new namespace SELinux-namespace - - - --- 2022-04-18 Alexander Kozhevnikov New
[RFC,4/7] SELINUXNS: Namespacing for xattrs SELinux-namespace - - - --- 2022-04-18 Alexander Kozhevnikov New
[RFC,3/7] SELINUXNS: Fix initilization of the superblock security under spinlock SELinux-namespace - - - --- 2022-04-18 Alexander Kozhevnikov New
[RFC,2/7] selinux: support per-namespace superblock security structures SELinux-namespace - - - --- 2022-04-18 Alexander Kozhevnikov New
[RFC,1/7] LSM: Infrastructure management of the superblock SELinux-namespace 1 2 - --- 2022-04-18 Alexander Kozhevnikov New
[v34,29/29] AppArmor: Remove the exclusive flag [v34,01/29] integrity: disassociate ima_filter_rule from security_audit_rule 2 1 - --- 2022-04-15 Casey Schaufler New
[v34,28/29] LSM: Add /proc attr entry for full LSM context [v34,01/29] integrity: disassociate ima_filter_rule from security_audit_rule - 1 - --- 2022-04-15 Casey Schaufler New
[v34,27/29] Audit: Add record for multiple object contexts [v34,01/29] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-04-15 Casey Schaufler New
[v34,26/29] Audit: Add record for multiple task security contexts [v34,01/29] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-04-15 Casey Schaufler New
[v34,25/29] Audit: Allow multiple records in an audit_buffer [v34,01/29] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-04-15 Casey Schaufler New
[v34,24/29] LSM: Add a function to report multiple LSMs [v34,01/29] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-04-15 Casey Schaufler New
« 1 2 ... 3 4 58 9 »