Show patches with: none      |   12923 patches
« 1 2 3 4129 130 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
[v5] evm: Correct inode_init_security hooks behaviors [v5] evm: Correct inode_init_security hooks behaviors - - - --- 2022-11-25 Nicolas Bouchinet New
ima: Fix hash dependency to correct algorithm ima: Fix hash dependency to correct algorithm - - - --- 2022-11-25 Tianjia Zhang New
[v3,9/9] LSM: selftests for Linux Security Module infrastructure syscalls LSM: Three basic syscalls - - - --- 2022-11-23 Casey Schaufler New
[v3,8/9] LSM: wireup Linux Security Module syscalls LSM: Three basic syscalls - - - --- 2022-11-23 Casey Schaufler New
[v3,7/9] LSM: lsm_set_self_attr syscall for LSM self attributes LSM: Three basic syscalls - - - --- 2022-11-23 Casey Schaufler New
[v3,6/9] LSM: Create lsm_module_list system call LSM: Three basic syscalls - - - --- 2022-11-23 Casey Schaufler New
[v3,5/9] LSM: lsm_get_self_attr syscall for LSM self attributes LSM: Three basic syscalls - - - --- 2022-11-23 Casey Schaufler New
[v3,4/9] proc: Use lsmids instead of lsm names for attrs LSM: Three basic syscalls - - - --- 2022-11-23 Casey Schaufler New
[v3,3/9] LSM: Maintain a table of LSM attribute data LSM: Three basic syscalls - - - --- 2022-11-23 Casey Schaufler New
[v3,2/9] LSM: Identify the process attributes for each module LSM: Three basic syscalls - - - --- 2022-11-23 Casey Schaufler New
[v3,1/9] LSM: Identify modules by more than name LSM: Three basic syscalls - - - --- 2022-11-23 Casey Schaufler New
[v1,8/8] lsm: wireup syscalls lsm_self_attr and lsm_module_list [v1,1/8] LSM: Identify modules by more than name - - - --- 2022-11-23 Casey Schaufler Superseded
[v1,7/8] LSM: Create lsm_module_list system call [v1,1/8] LSM: Identify modules by more than name - - - --- 2022-11-23 Casey Schaufler Superseded
[v1,6/8] LSM: lsm_self_attr syscall for LSM self attributes [v1,1/8] LSM: Identify modules by more than name - - - --- 2022-11-23 Casey Schaufler Superseded
[v1,5/8] proc: Use lsmids instead of lsm names for attrs [v1,1/8] LSM: Identify modules by more than name - - - --- 2022-11-23 Casey Schaufler Superseded
[v1,4/8] LSM: Maintain a table of LSM attribute data [v1,1/8] LSM: Identify modules by more than name - - - --- 2022-11-23 Casey Schaufler Superseded
[v1,3/8] LSM: Identify the process attributes for each module [v1,1/8] LSM: Identify modules by more than name - - - --- 2022-11-23 Casey Schaufler Superseded
[v1,2/8] LSM: Add an LSM identifier for external use [v1,1/8] LSM: Identify modules by more than name - - - --- 2022-11-23 Casey Schaufler Superseded
[v1,1/8] LSM: Identify modules by more than name [v1,1/8] LSM: Identify modules by more than name - - - --- 2022-11-23 Casey Schaufler Superseded
[v6,6/6] evm: Support multiple LSMs providing an xattr evm: Do HMAC of multiple per LSM xattrs for new inodes - - - --- 2022-11-23 Roberto Sassu New
[v6,5/6] evm: Align evm_inode_init_security() definition with LSM infrastructure evm: Do HMAC of multiple per LSM xattrs for new inodes - - - --- 2022-11-23 Roberto Sassu New
[v6,4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook evm: Do HMAC of multiple per LSM xattrs for new inodes - - - --- 2022-11-23 Roberto Sassu New
[v6,3/6] security: Remove security_old_inode_init_security() evm: Do HMAC of multiple per LSM xattrs for new inodes - - - --- 2022-11-23 Roberto Sassu New
[v6,2/6] ocfs2: Switch to security_inode_init_security() evm: Do HMAC of multiple per LSM xattrs for new inodes - - - --- 2022-11-23 Roberto Sassu New
[v6,1/6] reiserfs: Switch to security_inode_init_security() evm: Do HMAC of multiple per LSM xattrs for new inodes - - - --- 2022-11-23 Roberto Sassu New
[v5,6/6] evm: Support multiple LSMs providing an xattr evm: Prepare for moving to the LSM infrastructure - - - --- 2022-11-23 Roberto Sassu New
[v5,5/6] evm: Align evm_inode_init_security() definition with LSM infrastructure evm: Prepare for moving to the LSM infrastructure - - - --- 2022-11-23 Roberto Sassu New
[v5,4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook evm: Prepare for moving to the LSM infrastructure - - - --- 2022-11-23 Roberto Sassu New
[v5,3/6] security: Remove security_old_inode_init_security() evm: Prepare for moving to the LSM infrastructure - - - --- 2022-11-23 Roberto Sassu New
[v5,2/6] ocfs2: Switch to security_inode_init_security() evm: Prepare for moving to the LSM infrastructure - - - --- 2022-11-23 Roberto Sassu New
[v5,1/6] reiserfs: Switch to security_inode_init_security() evm: Prepare for moving to the LSM infrastructure - - - --- 2022-11-23 Roberto Sassu New
[RFC,v2,1/1] Use a fs callback to set security specific data RFC on how to include LSM hooks for io_uring commands - - - --- 2022-11-22 Joel Granados pcmoore New
[v3,3/3] certs: don't try to update blacklist keys certs: Prevent spurious errors on repeated blacklisting - - - --- 2022-11-18 Thomas Weißschuh Handled Elsewhere
[v3,2/3] KEYS: Add key_create() certs: Prevent spurious errors on repeated blacklisting - - - --- 2022-11-18 Thomas Weißschuh Handled Elsewhere
[v3,1/3] certs: log hash value on blacklist error certs: Prevent spurious errors on repeated blacklisting - - - --- 2022-11-18 Thomas Weißschuh Handled Elsewhere
landlock: Allow filesystem layout changes for domains without such rule type landlock: Allow filesystem layout changes for domains without such rule type - - - --- 2022-11-17 Mickaël Salaün Handled Elsewhere
[PoC] bpf: Call return value check function in the JITed code [PoC] bpf: Call return value check function in the JITed code - - - --- 2022-11-16 Roberto Sassu pcmoore Handled Elsewhere
[RFC,1/1] Use ioctl selinux callback io_uring commands that implement the ioctl op convention RFC on how to include LSM hooks for io_uring commands - - - --- 2022-11-16 Joel Granados Changes Requested
[mm-unstable,v1,20/20] mm: rename FOLL_FORCE to FOLL_PTRACE mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) - - - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,19/20] habanalabs: remove FOLL_FORCE usage mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) 1 - - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,18/20] RDMA/hw/qib/qib_user_pages: remove FOLL_FORCE usage mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) - - - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,17/20] drm/exynos: remove FOLL_FORCE usage mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) - 1 - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,16/20] mm/frame-vector: remove FOLL_FORCE usage mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) 1 1 - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,15/20] media: pci/ivtv: remove FOLL_FORCE usage mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) 1 - - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,14/20] drm/etnaviv: remove FOLL_FORCE usage mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) - 1 - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,13/20] media: videobuf-dma-sg: remove FOLL_FORCE usage mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) 1 1 - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,12/20] RDMA/siw: remove FOLL_FORCE usage mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) - 1 - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,11/20] RDMA/usnic: remove FOLL_FORCE usage mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) - 1 - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,10/20] RDMA/umem: remove FOLL_FORCE usage mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) - 1 1 --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,09/20] mm/gup: reliable R/O long-term pinning in COW mappings mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) 1 2 - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,08/20] mm: extend FAULT_FLAG_UNSHARE support to anything in a COW mapping mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) - 1 - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,07/20] mm: don't call vm_ops->huge_fault() in wp_huge_pmd()/wp_huge_pud() for priva… mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) - 1 - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,06/20] mm: rework handling in do_wp_page() based on private vs. shared mappings mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) - 1 - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,05/20] mm: add early FAULT_FLAG_WRITE consistency checks mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) - 1 - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,04/20] mm: add early FAULT_FLAG_UNSHARE consistency checks mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) - 1 - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,03/20] selftests/vm: cow: R/O long-term pinning reliability tests for non-anon pages mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) - - - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,02/20] selftests/vm: cow: basic COW tests for non-anonymous pages mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) - - - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[mm-unstable,v1,01/20] selftests/vm: anon_cow: prepare for non-anonymous COW tests mm/gup: remove FOLL_FORCE usage from drivers (reliable R/O long-term pinning) 1 - - --- 2022-11-16 David Hildenbrand Handled Elsewhere
[RFC,4/4] security: Enforce limitations on return values from LSMs security: Ensure LSMs return expected values - - - --- 2022-11-15 Roberto Sassu pcmoore Rejected
[RFC,3/4] lsm: Redefine LSM_HOOK() macro to add return value flags as argument security: Ensure LSMs return expected values - - - --- 2022-11-15 Roberto Sassu pcmoore Changes Requested
[RFC,2/4] lsm: Add missing return values doc in lsm_hooks.h and fix formatting security: Ensure LSMs return expected values - - - --- 2022-11-15 Roberto Sassu pcmoore Changes Requested
[RFC,1/4] lsm: Clarify documentation of vm_enough_memory hook security: Ensure LSMs return expected values - 1 - --- 2022-11-15 Roberto Sassu pcmoore Changes Requested
[bpf,v2] selftests/bpf: fix memory leak of lsm_cgroup [bpf,v2] selftests/bpf: fix memory leak of lsm_cgroup 1 - - --- 2022-11-15 Wang Yufen Handled Elsewhere
[RFC] SELINUX: Remove obsolete deferred inode security init list. [RFC] SELINUX: Remove obsolete deferred inode security init list. - - - --- 2022-11-14 Konstantin Meskhidze Handled Elsewhere
[bpf] selftests/bpf: fix memory leak of lsm_cgroup [bpf] selftests/bpf: fix memory leak of lsm_cgroup - - - --- 2022-11-14 Wang Yufen Handled Elsewhere
[RESEND,v2,2/2] kernel/watch_queue: NULL the dangling *pipe, and use it for clear check watch_queue: Clean up some code - - - --- 2022-11-12 Siddh Raman Pant Handled Elsewhere
[RESEND,v2,1/2] include/linux/watch_queue: Improve documentation watch_queue: Clean up some code - - - --- 2022-11-12 Siddh Raman Pant Handled Elsewhere
ima: Fix misuse of dereference of pointer in template_desc_init_fields() ima: Fix misuse of dereference of pointer in template_desc_init_fields() - 1 - --- 2022-11-12 xiujianfeng Handled Elsewhere
[v5,06/11] security: keys: trusted: Verify creation data Encrypted Hibernation - 1 - --- 2022-11-11 Evan Green Handled Elsewhere
[v5,05/11] security: keys: trusted: Allow storage of PCR values in creation data Encrypted Hibernation - 2 - --- 2022-11-11 Evan Green Handled Elsewhere
[v5,04/11] security: keys: trusted: Include TPM2 creation data Encrypted Hibernation - - - --- 2022-11-11 Evan Green Handled Elsewhere
[v2] integrity: Fix memory leakage in keyring allocation error path [v2] integrity: Fix memory leakage in keyring allocation error path - - - --- 2022-11-11 GUO Zihua Handled Elsewhere
net: fix memory leak in security_sk_alloc() net: fix memory leak in security_sk_alloc() - - - --- 2022-11-11 Wang Yufen Rejected
KEYS: trusted: tee: Make registered shm dependency explicit KEYS: trusted: tee: Make registered shm dependency explicit - 1 1 --- 2022-11-10 Sumit Garg Handled Elsewhere
[v5] vfs, security: Fix automount superblock LSM init problem, preventing NFS sb sharing [v5] vfs, security: Fix automount superblock LSM init problem, preventing NFS sb sharing 2 1 1 --- 2022-11-10 David Howells pcmoore New
[v4,5/5] evm: Support multiple LSMs providing an xattr evm: Prepare for moving to the LSM infrastructure - - - --- 2022-11-10 Roberto Sassu pcmoore New
[v4,4/5] evm: Align evm_inode_init_security() definition with LSM infrastructure evm: Prepare for moving to the LSM infrastructure - - - --- 2022-11-10 Roberto Sassu pcmoore New
[v4,3/5] security: Allow all LSMs to provide xattrs for inode_init_security hook evm: Prepare for moving to the LSM infrastructure - - - --- 2022-11-10 Roberto Sassu pcmoore New
[v4,2/5] security: Rewrite security_old_inode_init_security() evm: Prepare for moving to the LSM infrastructure - - - --- 2022-11-10 Roberto Sassu pcmoore New
[v4,1/5] reiserfs: Add missing calls to reiserfs_security_free() evm: Prepare for moving to the LSM infrastructure - 1 - --- 2022-11-10 Roberto Sassu pcmoore Accepted
[RFC] lsm,fs: fix vfs_getxattr_alloc() return type and caller error paths [RFC] lsm,fs: fix vfs_getxattr_alloc() return type and caller error paths - 2 - --- 2022-11-10 Paul Moore pcmoore Accepted
integrity: Free key restriction when keyring allocation fails integrity: Free key restriction when keyring allocation fails - - - --- 2022-11-09 GUO Zihua Handled Elsewhere
[v2,3/3] certs: don't try to update blacklist keys certs: Prevent spurious errors on repeated blacklisting - - - --- 2022-11-09 Thomas Weißschuh Handled Elsewhere
[v2,2/3] KEYS: Add key_create() certs: Prevent spurious errors on repeated blacklisting - - - --- 2022-11-09 Thomas Weißschuh Handled Elsewhere
[v2,1/3] certs: log more information on blacklist error certs: Prevent spurious errors on repeated blacklisting - - - --- 2022-11-09 Thomas Weißschuh Handled Elsewhere
[GIT,PULL] LSM fixes for v6.1 (#2) [GIT,PULL] LSM fixes for v6.1 (#2) - - - --- 2022-11-07 Paul Moore pcmoore Accepted
[v1,1/2] lsm,io_uring: add LSM hook for io_uring_setup Add LSM access controls for io_uring_setup - - - --- 2022-11-07 Gil Cukierman pcmoore Handled Elsewhere
[v3] samples/landlock: Document best-effort approach for LANDLOCK_ACCESS_FS_REFER [v3] samples/landlock: Document best-effort approach for LANDLOCK_ACCESS_FS_REFER - - - --- 2022-11-07 Günther Noack Handled Elsewhere
integrity: iint: Remove unnecessary (void*) conversions integrity: iint: Remove unnecessary (void*) conversions - - - --- 2022-11-07 Li zeming Handled Elsewhere
[4/4] powerpc/pseries: expose authenticated variables stored in LPAR PKS powerpc/pseries: expose firmware security variables via filesystem - - - --- 2022-11-06 Nayna Jain pcmoore Rejected
[3/4] powerpc/pseries: initialize fwsecurityfs with plpks arch-specific structure powerpc/pseries: expose firmware security variables via filesystem - - - --- 2022-11-06 Nayna Jain pcmoore Rejected
[2/4] fs: define a firmware security filesystem named fwsecurityfs powerpc/pseries: expose firmware security variables via filesystem - - - --- 2022-11-06 Nayna Jain pcmoore Rejected
[1/4] powerpc/pseries: Add new functions to PLPKS driver powerpc/pseries: expose firmware security variables via filesystem - - - --- 2022-11-06 Nayna Jain pcmoore Rejected
[GIT,PULL] Landlock fix for v6.1 #2 [GIT,PULL] Landlock fix for v6.1 #2 - - - --- 2022-11-04 Mickaël Salaün Handled Elsewhere
[v2] samples/landlock: Document best-effort approach for LANDLOCK_ACCESS_FS_REFER [v2] samples/landlock: Document best-effort approach for LANDLOCK_ACCESS_FS_REFER - - - --- 2022-11-04 Günther Noack Handled Elsewhere
ima: Make a copy of sig and digest in asymmetric_verify() ima: Make a copy of sig and digest in asymmetric_verify() - - - --- 2022-11-04 Roberto Sassu Handled Elsewhere
[v4,06/11] security: keys: trusted: Verify creation data Encrypted Hibernation - 1 - --- 2022-11-03 Evan Green Handled Elsewhere
[v4,05/11] security: keys: trusted: Allow storage of PCR values in creation data Encrypted Hibernation - 2 - --- 2022-11-03 Evan Green Handled Elsewhere
[v4,04/11] security: keys: trusted: Include TPM2 creation data Encrypted Hibernation - 1 - --- 2022-11-03 Evan Green Handled Elsewhere
[v2] fs: don't audit the capability check in simple_xattr_list() [v2] fs: don't audit the capability check in simple_xattr_list() - 2 - --- 2022-11-03 Ondrej Mosnacek pcmoore Handled Elsewhere
« 1 2 3 4129 130 »