Show patches with: State = Action Required       |    Archived = No       |   131 patches
« 1 2 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
[2/2] doc: Fix fs_context_parse_param description in mount_api.rst [1/2] lsm: Fix description of fs_context_parse_param - - - --- 2022-12-09 Roberto Sassu pcmoore Under Review
[for,6.8] tomoyo: fix UAF write bug in tomoyo_write_control() [for,6.8] tomoyo: fix UAF write bug in tomoyo_write_control() - - - --- 2024-03-01 Tetsuo Handa New
[GIT,PULL] Landlock fixes for v6.8-rc7 [GIT,PULL] Landlock fixes for v6.8-rc7 - - - --- 2024-02-29 Mickaël Salaün New
[GIT,PULL] lsm/lsm-pr-20240227 [GIT,PULL] lsm/lsm-pr-20240227 - - - --- 2024-02-27 Paul Moore New
[net-next] netlabel: remove impossible return value in netlbl_bitmap_walk [net-next] netlabel: remove impossible return value in netlbl_bitmap_walk 1 1 - --- 2024-02-27 Zhengchao Shao pcmoore Under Review
[RFC,v13,01/20] security: add ipe lsm Integrity Policy Enforcement LSM (IPE) - - - --- 2024-02-29 Fan Wu New
[RFC,v13,02/20] ipe: add policy parser Integrity Policy Enforcement LSM (IPE) - - - --- 2024-02-29 Fan Wu New
[RFC,v13,03/20] ipe: add evaluation loop Integrity Policy Enforcement LSM (IPE) - - - --- 2024-02-29 Fan Wu New
[RFC,v13,04/20] ipe: add LSM hooks on execution and kernel read Integrity Policy Enforcement LSM (IPE) - - - --- 2024-02-29 Fan Wu New
[RFC,v13,05/20] initramfs|security: Add a security hook to do_populate_rootfs() Integrity Policy Enforcement LSM (IPE) - - - --- 2024-02-29 Fan Wu New
[RFC,v13,06/20] ipe: introduce 'boot_verified' as a trust provider Integrity Policy Enforcement LSM (IPE) - - - --- 2024-02-29 Fan Wu New
[RFC,v13,07/20] security: add new securityfs delete function Integrity Policy Enforcement LSM (IPE) - - - --- 2024-02-29 Fan Wu New
[RFC,v13,08/20] ipe: add userspace interface Integrity Policy Enforcement LSM (IPE) - - - --- 2024-02-29 Fan Wu New
[RFC,v13,09/20] uapi|audit|ipe: add ipe auditing support Integrity Policy Enforcement LSM (IPE) - - - --- 2024-02-29 Fan Wu New
[RFC,v13,10/20] ipe: add permissive toggle Integrity Policy Enforcement LSM (IPE) - - - --- 2024-02-29 Fan Wu New
[RFC,v13,11/20] block|security: add LSM blob to block_device Integrity Policy Enforcement LSM (IPE) - 1 - --- 2024-02-29 Fan Wu New
[RFC,v13,12/20] dm verity: set DM_TARGET_SINGLETON feature flag Integrity Policy Enforcement LSM (IPE) - - - --- 2024-02-29 Fan Wu New
[RFC,v13,13/20] dm: add finalize hook to target_type Integrity Policy Enforcement LSM (IPE) - - - --- 2024-02-29 Fan Wu New
[RFC,v13,14/20] dm verity: consume root hash digest and signature data via LSM hook Integrity Policy Enforcement LSM (IPE) - - - --- 2024-02-29 Fan Wu New
[RFC,v13,15/20] ipe: add support for dm-verity as a trust provider Integrity Policy Enforcement LSM (IPE) - - - --- 2024-02-29 Fan Wu New
[RFC,v13,16/20] fsverity: consume builtin signature via LSM hook Integrity Policy Enforcement LSM (IPE) - - - --- 2024-02-29 Fan Wu New
[RFC,v13,17/20] ipe: enable support for fs-verity as a trust provider Integrity Policy Enforcement LSM (IPE) - - - --- 2024-02-29 Fan Wu New
[RFC,v13,18/20] scripts: add boot policy generation program Integrity Policy Enforcement LSM (IPE) - - - --- 2024-02-29 Fan Wu New
[RFC,v13,19/20] ipe: kunit test for parser Integrity Policy Enforcement LSM (IPE) - - - --- 2024-02-29 Fan Wu New
[RFC,v13,20/20] documentation: add ipe documentation Integrity Policy Enforcement LSM (IPE) - - - --- 2024-02-29 Fan Wu New
[v1,1/8] kunit: Run tests when the kernel is fully setup Run KUnit tests late and handle faults - - - --- 2024-02-29 Mickaël Salaün New
[v1,2/8] kunit: Handle thread creation error Run KUnit tests late and handle faults - 1 - --- 2024-02-29 Mickaël Salaün New
[v1,3/8] kunit: Fix kthread reference Run KUnit tests late and handle faults - 1 - --- 2024-02-29 Mickaël Salaün New
[v1,4/8] kunit: Fix timeout message Run KUnit tests late and handle faults - 1 - --- 2024-02-29 Mickaël Salaün New
[v1,5/8] kunit: Handle test faults Run KUnit tests late and handle faults - 1 - --- 2024-02-29 Mickaël Salaün New
[v1,6/8] kunit: Fix KUNIT_SUCCESS() calls in iov_iter tests Run KUnit tests late and handle faults - 1 - --- 2024-02-29 Mickaël Salaün New
[v1,7/8] kunit: Print last test location on fault Run KUnit tests late and handle faults - 1 - --- 2024-02-29 Mickaël Salaün New
[v1,8/8] kunit: Add tests for faults Run KUnit tests late and handle faults - - - --- 2024-02-29 Mickaël Salaün New
[v2,1/7] kunit: Handle thread creation error Handle faults in KUnit tests - 1 - --- 2024-03-01 Mickaël Salaün New
[v2,2/7] kunit: Fix kthread reference Handle faults in KUnit tests - 1 - --- 2024-03-01 Mickaël Salaün New
[v2,3/7] kunit: Fix timeout message Handle faults in KUnit tests - 1 - --- 2024-03-01 Mickaël Salaün New
[v2,4/7] kunit: Handle test faults Handle faults in KUnit tests - 1 - --- 2024-03-01 Mickaël Salaün New
[v2,5/7] kunit: Fix KUNIT_SUCCESS() calls in iov_iter tests Handle faults in KUnit tests - 1 - --- 2024-03-01 Mickaël Salaün New
[v2,6/7] kunit: Print last test location on fault Handle faults in KUnit tests - 1 - --- 2024-03-01 Mickaël Salaün New
[v2,7/7] kunit: Add tests for fault Handle faults in KUnit tests - - - --- 2024-03-01 Mickaël Salaün New
[v2] proc: allow restricting /proc/pid/mem writes [v2] proc: allow restricting /proc/pid/mem writes - - - --- 2024-03-01 Adrian Ratiu New
[v3,01/10] ima: Rename backing_inode to real_inode evm: Support signatures on stacked filesystem 1 - - --- 2024-02-23 Stefan Berger pcmoore New
[v3,01/13] lib: Add TLV parser security: digest_cache LSM - - - --- 2024-02-09 Roberto Sassu pcmoore New
[v3,02/10] security: allow finer granularity in permitting copy-up of security xattrs evm: Support signatures on stacked filesystem 1 - - --- 2024-02-23 Stefan Berger pcmoore New
[v3,02/13] security: Introduce the digest_cache LSM security: digest_cache LSM - - - --- 2024-02-09 Roberto Sassu pcmoore New
[v3,03/10] evm: Implement per signature type decision in security_inode_copy_up_xattr evm: Support signatures on stacked filesystem - - - --- 2024-02-23 Stefan Berger pcmoore New
[v3,03/13] digest_cache: Add securityfs interface security: digest_cache LSM - - - --- 2024-02-09 Roberto Sassu pcmoore New
[v3,04/10] evm: Use the metadata inode to calculate metadata hash evm: Support signatures on stacked filesystem 1 - - --- 2024-02-23 Stefan Berger pcmoore New
[v3,04/13] digest_cache: Add hash tables and operations security: digest_cache LSM - - - --- 2024-02-09 Roberto Sassu pcmoore New
[v3,05/10] ima: Move file-change detection variables into new structure evm: Support signatures on stacked filesystem - - - --- 2024-02-23 Stefan Berger pcmoore New
[v3,05/13] digest_cache: Populate the digest cache from a digest list security: digest_cache LSM - - - --- 2024-02-09 Roberto Sassu pcmoore New
[v3,06/10] evm: Store and detect metadata inode attributes changes evm: Support signatures on stacked filesystem - - - --- 2024-02-23 Stefan Berger pcmoore New
[v3,06/13] digest_cache: Parse tlv digest lists security: digest_cache LSM - - - --- 2024-02-09 Roberto Sassu pcmoore New
[v3,07/10] ima: re-evaluate file integrity on file metadata change evm: Support signatures on stacked filesystem - - - --- 2024-02-23 Stefan Berger pcmoore New
[v3,07/13] digest_cache: Parse rpm digest lists security: digest_cache LSM - - - --- 2024-02-09 Roberto Sassu pcmoore New
[v3,08/10] evm: Enforce signatures on unsupported filesystem for EVM_INIT_X509 evm: Support signatures on stacked filesystem - - - --- 2024-02-23 Stefan Berger pcmoore New
[v3,08/13] digest_cache: Add management of verification data security: digest_cache LSM - - - --- 2024-02-09 Roberto Sassu pcmoore New
[v3,09/10] fs: Rename SB_I_EVM_UNSUPPORTED to SB_I_EVM_HMAC_UNSUPPORTED evm: Support signatures on stacked filesystem 1 - - --- 2024-02-23 Stefan Berger pcmoore New
[v3,09/13] digest_cache: Add support for directories security: digest_cache LSM - - - --- 2024-02-09 Roberto Sassu pcmoore New
[v3,1/3] LSM: add security_execve_abort() hook fs/exec: remove current->in_execve flag 1 - - --- 2024-02-06 Tetsuo Handa pcmoore Under Review
[v3,10/10] evm: Rename is_unsupported_fs to is_unsupported_hmac_fs evm: Support signatures on stacked filesystem - - - --- 2024-02-23 Stefan Berger pcmoore New
[v3,10/13] digest cache: Prefetch digest lists if requested security: digest_cache LSM - - - --- 2024-02-09 Roberto Sassu pcmoore New
[v3,11/13] digest_cache: Reset digest cache on file/directory change security: digest_cache LSM - - - --- 2024-02-09 Roberto Sassu pcmoore New
[v3,12/13] selftests/digest_cache: Add selftests for digest_cache LSM security: digest_cache LSM - - - --- 2024-02-09 Roberto Sassu pcmoore New
[v3,13/13] docs: Add documentation of the digest_cache LSM security: digest_cache LSM - - - --- 2024-02-09 Roberto Sassu pcmoore New
[v3,2/3] tomoyo: replace current->in_execve flag with security_execve_abort() hook fs/exec: remove current->in_execve flag 1 - - --- 2024-02-06 Tetsuo Handa pcmoore Under Review
[v3,3/3] fs/exec: remove current->in_execve flag fs/exec: remove current->in_execve flag 1 - - --- 2024-02-06 Tetsuo Handa pcmoore Under Review
[v39,01/42] integrity: disassociate ima_filter_rule from security_audit_rule LSM: General module stacking 1 1 - --- 2023-12-15 Casey Schaufler pcmoore New
[v39,02/42] SM: Infrastructure management of the sock security LSM: General module stacking 2 2 - --- 2023-12-15 Casey Schaufler pcmoore New
[v39,03/42] LSM: Add the lsmblob data structure. LSM: General module stacking - - - --- 2023-12-15 Casey Schaufler pcmoore New
[v39,04/42] IMA: avoid label collisions with stacked LSMs LSM: General module stacking - - - --- 2023-12-15 Casey Schaufler pcmoore New
[v39,05/42] LSM: Use lsmblob in security_audit_rule_match LSM: General module stacking 1 1 - --- 2023-12-15 Casey Schaufler pcmoore New
[v39,06/42] LSM: Add lsmblob_to_secctx hook LSM: General module stacking - - - --- 2023-12-15 Casey Schaufler pcmoore New
[v39,07/42] Audit: maintain an lsmblob in audit_context LSM: General module stacking - - - --- 2023-12-15 Casey Schaufler pcmoore New
[v39,08/42] LSM: Use lsmblob in security_ipc_getsecid LSM: General module stacking 2 2 - --- 2023-12-15 Casey Schaufler pcmoore New
[v39,09/42] Audit: Update shutdown LSM data LSM: General module stacking - - - --- 2023-12-15 Casey Schaufler pcmoore New
[v39,10/42] LSM: Use lsmblob in security_current_getsecid LSM: General module stacking 2 2 - --- 2023-12-15 Casey Schaufler pcmoore New
[v39,11/42] LSM: Use lsmblob in security_inode_getsecid LSM: General module stacking 2 2 - --- 2023-12-15 Casey Schaufler pcmoore New
[v39,12/42] Audit: use an lsmblob in audit_names LSM: General module stacking - - - --- 2023-12-15 Casey Schaufler pcmoore New
[v39,13/42] LSM: Create new security_cred_getlsmblob LSM hook LSM: General module stacking 2 2 - --- 2023-12-15 Casey Schaufler pcmoore New
[v39,14/42] Audit: Change context data from secid to lsmblob LSM: General module stacking - - - --- 2023-12-15 Casey Schaufler pcmoore New
[v39,15/42] Netlabel: Use lsmblob for audit data LSM: General module stacking - - - --- 2023-12-15 Casey Schaufler pcmoore New
[v39,16/42] LSM: Ensure the correct LSM context releaser LSM: General module stacking 3 2 - --- 2023-12-15 Casey Schaufler pcmoore New
[v39,17/42] LSM: Use lsmcontext in security_secid_to_secctx LSM: General module stacking - - - --- 2023-12-15 Casey Schaufler pcmoore New
[v39,18/42] LSM: Use lsmcontext in security_lsmblob_to_secctx LSM: General module stacking - - - --- 2023-12-15 Casey Schaufler pcmoore New
[v39,19/42] LSM: Use lsmcontext in security_inode_getsecctx LSM: General module stacking 3 2 - --- 2023-12-15 Casey Schaufler pcmoore New
[v39,20/42] LSM: Use lsmcontext in security_dentry_init_security LSM: General module stacking - - - --- 2023-12-15 Casey Schaufler pcmoore New
[v39,21/42] LSM: security_lsmblob_to_secctx module selection LSM: General module stacking - - - --- 2023-12-15 Casey Schaufler pcmoore New
[v39,22/42] Audit: Create audit_stamp structure LSM: General module stacking 1 - - --- 2023-12-15 Casey Schaufler pcmoore New
[v39,23/42] Audit: Allow multiple records in an audit_buffer LSM: General module stacking - - - --- 2023-12-15 Casey Schaufler pcmoore New
[v39,24/42] Audit: Add record for multiple task security contexts LSM: General module stacking 1 - - --- 2023-12-15 Casey Schaufler pcmoore New
[v39,25/42] audit: multiple subject lsm values for netlabel LSM: General module stacking 1 - - --- 2023-12-15 Casey Schaufler pcmoore New
[v39,26/42] Audit: Add record for multiple object contexts LSM: General module stacking 1 - - --- 2023-12-15 Casey Schaufler pcmoore New
[v39,27/42] LSM: Remove unused lsmcontext_init() LSM: General module stacking - - - --- 2023-12-15 Casey Schaufler pcmoore New
[v39,28/42] LSM: Improve logic in security_getprocattr LSM: General module stacking - - - --- 2023-12-15 Casey Schaufler pcmoore New
[v39,29/42] LSM: secctx provider check on release LSM: General module stacking - - - --- 2023-12-15 Casey Schaufler pcmoore New
[v39,30/42] LSM: Single calls in socket_getpeersec hooks LSM: General module stacking - - - --- 2023-12-15 Casey Schaufler pcmoore New
[v39,31/42] LSM: Exclusive secmark usage LSM: General module stacking - - - --- 2023-12-15 Casey Schaufler pcmoore New
[v39,32/42] LSM: Identify which LSM handles the context string LSM: General module stacking - - - --- 2023-12-15 Casey Schaufler pcmoore New
[v39,33/42] AppArmor: Remove the exclusive flag LSM: General module stacking 2 1 - --- 2023-12-15 Casey Schaufler pcmoore New
« 1 2 »