Show patches with: State = Action Required       |    Archived = No       |   108 patches
« 1 2 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
[2/2] doc: Fix fs_context_parse_param description in mount_api.rst [1/2] lsm: Fix description of fs_context_parse_param - - - --- 2022-12-09 Roberto Sassu pcmoore Under Review
[v4,1/9] capability: introduce new capable flag NODENYAUDIT [v4,1/9] capability: introduce new capable flag NODENYAUDIT - 1 - --- 2023-05-11 Christian Göttsche pcmoore Under Review
[v4,2/9] capability: add any wrapper to test for multiple caps with exactly one audit message [v4,1/9] capability: introduce new capable flag NODENYAUDIT - - - --- 2023-05-11 Christian Göttsche pcmoore Under Review
[v4,3/9] capability: use new capable_any functionality [v4,1/9] capability: introduce new capable flag NODENYAUDIT 1 - - --- 2023-05-11 Christian Göttsche pcmoore Under Review
[01/13] Update MAINTAINERS file. Implement Trusted Security Event Modeling. - - - --- 2023-07-10 Dr. Greg pcmoore New
[02/13] Add TSEM specific documentation. Implement Trusted Security Event Modeling. - - - --- 2023-07-10 Dr. Greg pcmoore New
[03/13] Implement CAP_TRUST capability. Implement Trusted Security Event Modeling. - - - --- 2023-07-10 Dr. Greg pcmoore New
[04/13] Add TSEM master header file. Implement Trusted Security Event Modeling. - - - --- 2023-07-10 Dr. Greg pcmoore New
[05/13] Add primary TSEM implementation file. Implement Trusted Security Event Modeling. - - - --- 2023-07-10 Dr. Greg pcmoore New
[06/13] Add root domain trust implementation. Implement Trusted Security Event Modeling. - - - --- 2023-07-10 Dr. Greg pcmoore New
[07/13] Implement TSEM control plane. Implement Trusted Security Event Modeling. - - - --- 2023-07-10 Dr. Greg pcmoore New
[08/13] Add namespace implementation. Implement Trusted Security Event Modeling. - - - --- 2023-07-10 Dr. Greg pcmoore New
[09/13] Add security event description export facility. Implement Trusted Security Event Modeling. - - - --- 2023-07-10 Dr. Greg pcmoore New
[10/13] Add event description implementation. Implement Trusted Security Event Modeling. - - - --- 2023-07-10 Dr. Greg pcmoore New
[11/13] Implement security event mapping. Implement Trusted Security Event Modeling. - - - --- 2023-07-10 Dr. Greg pcmoore New
[12/13] Implement an internal Trusted Modeling Agent. Implement Trusted Security Event Modeling. - - - --- 2023-07-10 Dr. Greg pcmoore New
[13/13] Activate the configuration and build of the TSEM LSM. Implement Trusted Security Event Modeling. - - - --- 2023-07-10 Dr. Greg pcmoore New
KEYS: encrypted: Add check for strsep KEYS: encrypted: Add check for strsep - - - --- 2023-11-08 Chen Ni New
[v10,bpf-next,01/17] bpf: align CAP_NET_ADMIN checks with bpf_capable() approach BPF token and BPF FS-based delegation 1 - - --- 2023-11-10 Andrii Nakryiko pcmoore Under Review
[v10,bpf-next,02/17] bpf: add BPF token delegation mount options to BPF FS BPF token and BPF FS-based delegation - - - --- 2023-11-10 Andrii Nakryiko pcmoore Under Review
[v10,bpf-next,03/17] bpf: introduce BPF token object BPF token and BPF FS-based delegation - - - --- 2023-11-10 Andrii Nakryiko pcmoore Under Review
[v10,bpf-next,04/17] bpf: add BPF token support to BPF_MAP_CREATE command BPF token and BPF FS-based delegation - - - --- 2023-11-10 Andrii Nakryiko pcmoore Under Review
[v10,bpf-next,05/17] bpf: add BPF token support to BPF_BTF_LOAD command BPF token and BPF FS-based delegation - - - --- 2023-11-10 Andrii Nakryiko pcmoore Under Review
[v10,bpf-next,06/17] bpf: add BPF token support to BPF_PROG_LOAD command BPF token and BPF FS-based delegation - - - --- 2023-11-10 Andrii Nakryiko pcmoore Under Review
[v10,bpf-next,07/17] bpf: take into account BPF token when fetching helper protos BPF token and BPF FS-based delegation - - - --- 2023-11-10 Andrii Nakryiko pcmoore Under Review
[v10,bpf-next,08/17] bpf: consistently use BPF token throughout BPF verifier logic BPF token and BPF FS-based delegation - - - --- 2023-11-10 Andrii Nakryiko pcmoore Under Review
[v10,bpf-next,09/17] bpf,lsm: refactor bpf_prog_alloc/bpf_prog_free LSM hooks BPF token and BPF FS-based delegation 1 - - --- 2023-11-10 Andrii Nakryiko pcmoore Under Review
[v10,bpf-next,10/17] bpf,lsm: refactor bpf_map_alloc/bpf_map_free LSM hooks BPF token and BPF FS-based delegation 1 - - --- 2023-11-10 Andrii Nakryiko pcmoore Under Review
[v10,bpf-next,11/17] bpf,lsm: add BPF token LSM hooks BPF token and BPF FS-based delegation 1 - - --- 2023-11-10 Andrii Nakryiko pcmoore Under Review
[v10,bpf-next,12/17] libbpf: add bpf_token_create() API BPF token and BPF FS-based delegation - - - --- 2023-11-10 Andrii Nakryiko pcmoore Under Review
[v10,bpf-next,13/17] libbpf: add BPF token support to bpf_map_create() API BPF token and BPF FS-based delegation - - - --- 2023-11-10 Andrii Nakryiko pcmoore Under Review
[v10,bpf-next,14/17] libbpf: add BPF token support to bpf_btf_load() API BPF token and BPF FS-based delegation - - - --- 2023-11-10 Andrii Nakryiko pcmoore Under Review
[v10,bpf-next,15/17] libbpf: add BPF token support to bpf_prog_load() API BPF token and BPF FS-based delegation - - - --- 2023-11-10 Andrii Nakryiko pcmoore Under Review
[v10,bpf-next,16/17] selftests/bpf: add BPF token-enabled tests BPF token and BPF FS-based delegation - - - --- 2023-11-10 Andrii Nakryiko pcmoore Under Review
[v10,bpf-next,17/17] bpf,selinux: allocate bpf_security_struct per BPF token BPF token and BPF FS-based delegation - - - --- 2023-11-10 Andrii Nakryiko pcmoore Under Review
[v8,1/5] kernel: Add helper macros for loop unrolling Reduce overhead of LSMs with static calls 1 2 - --- 2023-11-10 KP Singh pcmoore New
[v8,2/5] security: Count the LSMs enabled at compile time Reduce overhead of LSMs with static calls 1 1 - --- 2023-11-10 KP Singh pcmoore New
[v8,3/5] security: Replace indirect LSM hook calls with static calls Reduce overhead of LSMs with static calls 1 2 - --- 2023-11-10 KP Singh pcmoore New
[v8,4/5] bpf: Only enable BPF LSM hooks when an LSM program is attached Reduce overhead of LSMs with static calls 2 2 - --- 2023-11-10 KP Singh pcmoore New
[v8,5/5] security: Add CONFIG_SECURITY_HOOK_LIKELY Reduce overhead of LSMs with static calls 1 1 - --- 2023-11-10 KP Singh pcmoore New
[v6,01/25] ima: Align ima_inode_post_setattr() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 3 - --- 2023-11-20 Roberto Sassu pcmoore New
[v6,02/25] ima: Align ima_file_mprotect() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 3 - --- 2023-11-20 Roberto Sassu pcmoore New
[v6,03/25] ima: Align ima_inode_setxattr() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 3 - --- 2023-11-20 Roberto Sassu pcmoore New
[v6,04/25] ima: Align ima_inode_removexattr() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 3 - --- 2023-11-20 Roberto Sassu pcmoore New
[v6,05/25] ima: Align ima_post_read_file() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 3 - --- 2023-11-20 Roberto Sassu pcmoore New
[v6,06/25] evm: Align evm_inode_post_setattr() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 3 - --- 2023-11-20 Roberto Sassu pcmoore New
[v6,07/25] evm: Align evm_inode_setxattr() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 3 - --- 2023-11-20 Roberto Sassu pcmoore New
[v6,08/25] evm: Align evm_inode_post_setxattr() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 3 - --- 2023-11-20 Roberto Sassu pcmoore New
[v6,09/25] security: Align inode_setattr hook definition with EVM security: Move IMA and EVM to the LSM infrastructure 1 2 - --- 2023-11-20 Roberto Sassu pcmoore New
[v6,10/25] security: Introduce inode_post_setattr hook security: Move IMA and EVM to the LSM infrastructure 1 2 - --- 2023-11-20 Roberto Sassu pcmoore New
[v6,11/25] security: Introduce inode_post_removexattr hook security: Move IMA and EVM to the LSM infrastructure - 2 - --- 2023-11-20 Roberto Sassu pcmoore New
[v6,12/25] security: Introduce file_post_open hook security: Move IMA and EVM to the LSM infrastructure 1 2 - --- 2023-11-20 Roberto Sassu pcmoore New
[v6,13/25] security: Introduce file_release hook security: Move IMA and EVM to the LSM infrastructure - - - --- 2023-11-20 Roberto Sassu pcmoore New
[v6,14/25] security: Introduce path_post_mknod hook security: Move IMA and EVM to the LSM infrastructure 1 - - --- 2023-11-20 Roberto Sassu pcmoore New
[v6,15/25] security: Introduce inode_post_create_tmpfile hook security: Move IMA and EVM to the LSM infrastructure 1 1 - --- 2023-11-20 Roberto Sassu pcmoore New
[v6,16/25] security: Introduce inode_post_set_acl hook security: Move IMA and EVM to the LSM infrastructure 1 2 - --- 2023-11-20 Roberto Sassu pcmoore New
[v6,17/25] security: Introduce inode_post_remove_acl hook security: Move IMA and EVM to the LSM infrastructure 1 2 - --- 2023-11-20 Roberto Sassu pcmoore New
[v6,18/25] security: Introduce key_post_create_or_update hook security: Move IMA and EVM to the LSM infrastructure 1 2 - --- 2023-11-20 Roberto Sassu pcmoore New
[v6,19/25] ima: Move to LSM infrastructure security: Move IMA and EVM to the LSM infrastructure 1 - - --- 2023-11-20 Roberto Sassu pcmoore New
[v6,20/25] ima: Move IMA-Appraisal to LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - - - --- 2023-11-20 Roberto Sassu pcmoore New
[v6,21/25] evm: Move to LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - - - --- 2023-11-20 Roberto Sassu pcmoore New
[v6,22/25] ima: Remove dependency on 'integrity' LSM security: Move IMA and EVM to the LSM infrastructure - - - --- 2023-11-20 Roberto Sassu pcmoore New
[v6,23/25] evm: Remove dependency on 'integrity' LSM security: Move IMA and EVM to the LSM infrastructure - - - --- 2023-11-20 Roberto Sassu pcmoore New
[v6,24/25] integrity: Remove LSM security: Move IMA and EVM to the LSM infrastructure - - - --- 2023-11-20 Roberto Sassu pcmoore New
[v6,25/25] security: Enforce ordering of 'ima' and 'evm' LSMs security: Move IMA and EVM to the LSM infrastructure - - - --- 2023-11-20 Roberto Sassu pcmoore New
apparmor: make stack_msg static apparmor: make stack_msg static - - - --- 2023-11-22 Ben Dooks New
[net] calipso: Fix memory leak in netlbl_calipso_add_pass() [net] calipso: Fix memory leak in netlbl_calipso_add_pass() - - - --- 2023-11-22 Gavrilov Ilia New
[RFC,v2,1/6] mm, doc: Add doc for MPOL_F_NUMA_BALANCING mm, security, bpf: Fine-grained control over memory policy adjustments with lsm bpf - 1 - --- 2023-11-22 Yafang Shao New
[RFC,v2,2/6] mm: mempolicy: Revise comment regarding mempolicy mode flags mm, security, bpf: Fine-grained control over memory policy adjustments with lsm bpf - 1 - --- 2023-11-22 Yafang Shao New
[RFC,v2,3/6] mm, security: Fix missed security_task_movememory() in mbind(2) mm, security, bpf: Fine-grained control over memory policy adjustments with lsm bpf - - - --- 2023-11-22 Yafang Shao New
[RFC,v2,4/6] mm, security: Add lsm hook for memory policy adjustment mm, security, bpf: Fine-grained control over memory policy adjustments with lsm bpf - - - --- 2023-11-22 Yafang Shao New
[RFC,v2,5/6] security: selinux: Implement set_mempolicy hook mm, security, bpf: Fine-grained control over memory policy adjustments with lsm bpf - - - --- 2023-11-22 Yafang Shao New
[RFC,v2,6/6] selftests/bpf: Add selftests for set_mempolicy with a lsm prog mm, security, bpf: Fine-grained control over memory policy adjustments with lsm bpf - - - --- 2023-11-22 Yafang Shao New
selftests: remove the LSM_ID_IMA check in lsm/lsm_list_modules_test selftests: remove the LSM_ID_IMA check in lsm/lsm_list_modules_test 1 - - --- 2023-11-22 Paul Moore New
[net,v2] calipso: Fix memory leak in netlbl_calipso_add_pass() [net,v2] calipso: Fix memory leak in netlbl_calipso_add_pass() 1 - - --- 2023-11-23 Gavrilov Ilia New
[v13,bpf-next,1/6] bpf: Add kfunc bpf_get_file_xattr bpf: File verification with LSM and fsverity - - - --- 2023-11-23 Song Liu New
[v13,bpf-next,2/6] bpf, fsverity: Add kfunc bpf_get_fsverity_digest bpf: File verification with LSM and fsverity 1 - - --- 2023-11-23 Song Liu New
[v13,bpf-next,3/6] Documentation/bpf: Add documentation for filesystem kfuncs bpf: File verification with LSM and fsverity - - - --- 2023-11-23 Song Liu New
[v13,bpf-next,4/6] selftests/bpf: Sort config in alphabetic order bpf: File verification with LSM and fsverity - - - --- 2023-11-23 Song Liu New
[v13,bpf-next,5/6] selftests/bpf: Add tests for filesystem kfuncs bpf: File verification with LSM and fsverity - - - --- 2023-11-23 Song Liu New
[v13,bpf-next,6/6] selftests/bpf: Add test that uses fsverity and xattr to sign a file bpf: File verification with LSM and fsverity - - - --- 2023-11-23 Song Liu New
[v6,1/9] landlock: Remove remaining "inline" modifiers in .c files Landlock: IOCTL support - - - --- 2023-11-24 Günther Noack New
[v6,2/9] selftests/landlock: Rename "permitted" to "allowed" in ftruncate tests Landlock: IOCTL support - - - --- 2023-11-24 Günther Noack New
[v6,3/9] landlock: Optimize the number of calls to get_access_mask slightly Landlock: IOCTL support - - - --- 2023-11-24 Günther Noack New
[v6,4/9] landlock: Add IOCTL access right Landlock: IOCTL support - - - --- 2023-11-24 Günther Noack New
[v6,5/9] selftests/landlock: Test IOCTL support Landlock: IOCTL support - - - --- 2023-11-24 Günther Noack New
[v6,6/9] selftests/landlock: Test IOCTL with memfds Landlock: IOCTL support - - - --- 2023-11-24 Günther Noack New
[v6,7/9] selftests/landlock: Test ioctl(2) and ftruncate(2) with open(O_PATH) Landlock: IOCTL support - - - --- 2023-11-24 Günther Noack New
[v6,8/9] samples/landlock: Add support for LANDLOCK_ACCESS_FS_IOCTL Landlock: IOCTL support - - - --- 2023-11-24 Günther Noack New
[v6,9/9] landlock: Document IOCTL support Landlock: IOCTL support - - - --- 2023-11-24 Günther Noack New
apparmor: free the allocated pdb objects apparmor: free the allocated pdb objects 1 - - --- 2023-11-27 Fedor Pchelkin New
[v11,bpf-next,01/17] bpf: align CAP_NET_ADMIN checks with bpf_capable() approach BPF token and BPF FS-based delegation 1 - - --- 2023-11-27 Andrii Nakryiko New
[v11,bpf-next,02/17] bpf: add BPF token delegation mount options to BPF FS BPF token and BPF FS-based delegation - - - --- 2023-11-27 Andrii Nakryiko New
[v11,bpf-next,03/17] bpf: introduce BPF token object BPF token and BPF FS-based delegation - - - --- 2023-11-27 Andrii Nakryiko New
[v11,bpf-next,04/17] bpf: add BPF token support to BPF_MAP_CREATE command BPF token and BPF FS-based delegation - - - --- 2023-11-27 Andrii Nakryiko New
[v11,bpf-next,05/17] bpf: add BPF token support to BPF_BTF_LOAD command BPF token and BPF FS-based delegation - - - --- 2023-11-27 Andrii Nakryiko New
[v11,bpf-next,06/17] bpf: add BPF token support to BPF_PROG_LOAD command BPF token and BPF FS-based delegation - - - --- 2023-11-27 Andrii Nakryiko New
[v11,bpf-next,07/17] bpf: take into account BPF token when fetching helper protos BPF token and BPF FS-based delegation - - - --- 2023-11-27 Andrii Nakryiko New
[v11,bpf-next,08/17] bpf: consistently use BPF token throughout BPF verifier logic BPF token and BPF FS-based delegation - - - --- 2023-11-27 Andrii Nakryiko New
[v11,bpf-next,09/17] bpf,lsm: refactor bpf_prog_alloc/bpf_prog_free LSM hooks BPF token and BPF FS-based delegation 1 - - --- 2023-11-27 Andrii Nakryiko New
« 1 2 »