Show patches with: none      |   16829 patches
« 1 2 3 4168 169 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
[v22,8/8] ima: instantiate the bprm_creds_for_exec() hook Script execution control (was O_MAYEXEC) - 1 - --- 2024-12-05 Mickaël Salaün New
[v22,7/8] samples/check-exec: Add an enlighten "inc" interpreter and 28 tests Script execution control (was O_MAYEXEC) - - - --- 2024-12-05 Mickaël Salaün New
[v22,6/8] selftests: ktap_helpers: Fix uninitialized variable Script execution control (was O_MAYEXEC) - - - --- 2024-12-05 Mickaël Salaün New
[v22,5/8] samples/check-exec: Add set-exec Script execution control (was O_MAYEXEC) - - - --- 2024-12-05 Mickaël Salaün New
[v22,4/8] selftests/landlock: Add tests for execveat + AT_EXECVE_CHECK Script execution control (was O_MAYEXEC) - - - --- 2024-12-05 Mickaël Salaün New
[v22,3/8] selftests/exec: Add 32 tests for AT_EXECVE_CHECK and exec securebits Script execution control (was O_MAYEXEC) - - - --- 2024-12-05 Mickaël Salaün New
[v22,2/8] security: Add EXEC_RESTRICT_FILE and EXEC_DENY_INTERACTIVE securebits Script execution control (was O_MAYEXEC) - 1 - --- 2024-12-05 Mickaël Salaün New
[v22,1/8] exec: Add a new AT_EXECVE_CHECK flag to execveat(2) Script execution control (was O_MAYEXEC) 1 1 - --- 2024-12-05 Mickaël Salaün New
[v2] ima: instantiate the bprm_creds_for_exec() hook [v2] ima: instantiate the bprm_creds_for_exec() hook - - - --- 2024-12-04 Mimi Zohar New
[v9] security: add trace event for cap_capable [v9] security: add trace event for cap_capable - - - --- 2024-12-04 Jordan Rome New
[v2] ima: instantiate the bprm_creds_for_exec() hook [v2] ima: instantiate the bprm_creds_for_exec() hook - - 1 --- 2024-12-03 Mimi Zohar New
[v8] security: add trace event for cap_capable [v8] security: add trace event for cap_capable - 2 - --- 2024-11-28 Jordan Rome New
[v7] security: add trace event for cap_capable [v7] security: add trace event for cap_capable - - - --- 2024-11-28 Jordan Rome New
[v6] security: add trace event for cap_capable [v6] security: add trace event for cap_capable - - - --- 2024-11-28 Jordan Rome New
[v2,7/7] ima: Reset IMA_NONACTION_RULE_FLAGS after post_setattr ima: Remove unnecessary inode locks - - - --- 2024-11-28 Roberto Sassu New
[v2,6/7] ima: Discard files opened with O_PATH ima: Remove unnecessary inode locks - - - --- 2024-11-28 Roberto Sassu New
[v2,5/7] ima: Set security.ima on file close when ima_appraise=fix ima: Remove unnecessary inode locks - - - --- 2024-11-28 Roberto Sassu New
[v2,4/7] ima: Mark concurrent accesses to the iint pointer in the inode security blob ima: Remove unnecessary inode locks - - - --- 2024-11-28 Roberto Sassu New
[v2,3/7] ima: Ensure lock is held when setting iint pointer in inode security blob ima: Remove unnecessary inode locks - - - --- 2024-11-28 Roberto Sassu New
[v2,2/7] ima: Remove inode lock ima: Remove unnecessary inode locks - 1 - --- 2024-11-28 Roberto Sassu New
[v2,1/7] fs: ima: Remove S_IMA and IS_IMA() ima: Remove unnecessary inode locks 1 1 - --- 2024-11-28 Roberto Sassu New
[v2] samples/landlock: Fix possible NULL dereference in parse_path() [v2] samples/landlock: Fix possible NULL dereference in parse_path() - - - --- 2024-11-28 Gax-c New
ima: instantiate the bprm_creds_for_exec() hook ima: instantiate the bprm_creds_for_exec() hook - - - --- 2024-11-27 Mimi Zohar New
[GIT,PULL] AppArmor updates for 6.13 [GIT,PULL] AppArmor updates for 6.13 - - - --- 2024-11-27 John Johansen New
[v1] selftests: ktap_helpers: Fix uninitialized variable [v1] selftests: ktap_helpers: Fix uninitialized variable - - - --- 2024-11-27 Mickaël Salaün New
[RFC] ima: instantiate the bprm_creds_for_exec() hook [RFC] ima: instantiate the bprm_creds_for_exec() hook - - - --- 2024-11-27 Mimi Zohar New
samples/landlock: Fix possible NULL dereference in parse_path() samples/landlock: Fix possible NULL dereference in parse_path() - - - --- 2024-11-26 Gax-c Handled Elsewhere
trace: constify string literal data member trace: constify string literal data member - - - --- 2024-11-25 Christian Göttsche Handled Elsewhere
[v3,fanotify,2/2] samples/fanotify: Add a sample fanotify fiter Fanotify in kernel filter - - - --- 2024-11-22 Song Liu Handled Elsewhere
[v3,fanotify,1/2] fanotify: Introduce fanotify filter Fanotify in kernel filter - - - --- 2024-11-22 Song Liu Handled Elsewhere
[v2] ima: kexec: silence RCU list traversal warning [v2] ima: kexec: silence RCU list traversal warning - - - --- 2024-11-21 Breno Leitao Handled Elsewhere
perf test: remove duplicate word perf test: remove duplicate word - - - --- 2024-11-20 Ruffalo Lavoisier Handled Elsewhere
[GIT,PULL] IPE update for 6.13 [GIT,PULL] IPE update for 6.13 - - - --- 2024-11-19 Fan Wu Handled Elsewhere
[RFC,v4,9/9] ima: Use digest caches for appraisal ima: Integrate with Integrity Digest Cache - - - --- 2024-11-19 Roberto Sassu Handled Elsewhere
[RFC,v4,8/9] ima: Use digest caches for measurement ima: Integrate with Integrity Digest Cache - - - --- 2024-11-19 Roberto Sassu Handled Elsewhere
[RFC,v4,7/9] ima: Load verified usage from digest cache found from query ima: Integrate with Integrity Digest Cache - - - --- 2024-11-19 Roberto Sassu Handled Elsewhere
[RFC,v4,6/9] ima: Store verified usage in digest cache based on integrity metadata flags ima: Integrate with Integrity Digest Cache - - - --- 2024-11-19 Roberto Sassu Handled Elsewhere
[RFC,v4,5/9] ima: Retrieve digest cache and check if changed ima: Integrate with Integrity Digest Cache - - - --- 2024-11-19 Roberto Sassu Handled Elsewhere
[RFC,v4,4/9] ima: Modify existing boot-time built-in policies with digest cache policies ima: Integrate with Integrity Digest Cache - - - --- 2024-11-19 Roberto Sassu Handled Elsewhere
[RFC,v4,3/9] ima: Add digest_cache_measure/appraise boot-time built-in policies ima: Integrate with Integrity Digest Cache - - - --- 2024-11-19 Roberto Sassu Handled Elsewhere
[RFC,v4,2/9] ima: Add digest_cache policy keyword ima: Integrate with Integrity Digest Cache - - - --- 2024-11-19 Roberto Sassu Handled Elsewhere
[RFC,v4,1/9] ima: Introduce hook DIGEST_LIST_CHECK ima: Integrate with Integrity Digest Cache - - - --- 2024-11-19 Roberto Sassu Handled Elsewhere
[v6,15/15] docs: Add documentation of the Integrity Digest Cache integrity: Introduce the Integrity Digest Cache - - - --- 2024-11-19 Roberto Sassu Handled Elsewhere
[v6,14/15] selftests/digest_cache: Add selftests for the Integrity Digest Cache integrity: Introduce the Integrity Digest Cache - - - --- 2024-11-19 Roberto Sassu Handled Elsewhere
[v6,13/15] digest_cache: Reset digest cache on file/directory change integrity: Introduce the Integrity Digest Cache - - - --- 2024-11-19 Roberto Sassu Handled Elsewhere
[v6,12/15] digest cache: Prefetch digest lists if requested integrity: Introduce the Integrity Digest Cache - - - --- 2024-11-19 Roberto Sassu Handled Elsewhere
[v6,11/15] digest_cache: Add support for directories integrity: Introduce the Integrity Digest Cache - - - --- 2024-11-19 Roberto Sassu Handled Elsewhere
[v6,10/15] digest_cache: Add management of verification data integrity: Introduce the Integrity Digest Cache - - - --- 2024-11-19 Roberto Sassu Handled Elsewhere
[v6,09/15] digest_cache: Populate the digest cache from a digest list integrity: Introduce the Integrity Digest Cache - - - --- 2024-11-19 Roberto Sassu Handled Elsewhere
[v6,08/15] digest_cache: Parse tlv digest lists integrity: Introduce the Integrity Digest Cache - - - --- 2024-11-19 Roberto Sassu Handled Elsewhere
[v6,07/15] digest_cache: Allow registration of digest list parsers integrity: Introduce the Integrity Digest Cache - - - --- 2024-11-19 Roberto Sassu Handled Elsewhere
[v6,06/15] digest_cache: Add hash tables and operations integrity: Introduce the Integrity Digest Cache - - - --- 2024-11-19 Roberto Sassu Handled Elsewhere
[v6,05/15] digest_cache: Add securityfs interface integrity: Introduce the Integrity Digest Cache - - - --- 2024-11-19 Roberto Sassu Handled Elsewhere
[v6,04/15] digest_cache: Initialize digest caches integrity: Introduce the Integrity Digest Cache - - - --- 2024-11-19 Roberto Sassu Handled Elsewhere
[v6,03/15] integrity: Introduce the Integrity Digest Cache integrity: Introduce the Integrity Digest Cache - - - --- 2024-11-19 Roberto Sassu Handled Elsewhere
[v6,02/15] module: Introduce ksys_finit_module() integrity: Introduce the Integrity Digest Cache - - - --- 2024-11-19 Roberto Sassu Handled Elsewhere
[v6,01/15] lib: Add TLV parser integrity: Introduce the Integrity Digest Cache - - - --- 2024-11-19 Roberto Sassu Handled Elsewhere
[v3] ima: Suspend PCR extends and log appends when rebooting [v3] ima: Suspend PCR extends and log appends when rebooting - - - --- 2024-11-18 Stefan Berger Handled Elsewhere
[11/11] fs: fix potential soft lockup when 'sb->s_inodes' has large number of inodes fix hungtask due to repeated traversal of inodes list - - - --- 2024-11-18 Ye Bin Handled Elsewhere
[10/11] fs: fix hungtask due to repeated traversal of inodes list fix hungtask due to repeated traversal of inodes list - - - --- 2024-11-18 Ye Bin Handled Elsewhere
[09/11] landlock: use sb_for_each_inodes API fix hungtask due to repeated traversal of inodes list - - - --- 2024-11-18 Ye Bin Handled Elsewhere
[08/11] fs/super.c: use sb_for_each_inodes API fix hungtask due to repeated traversal of inodes list - - - --- 2024-11-18 Ye Bin Handled Elsewhere
[07/11] quota: use sb_for_each_inodes API fix hungtask due to repeated traversal of inodes list - - - --- 2024-11-18 Ye Bin Handled Elsewhere
[06/11] fsnotify: use sb_for_each_inodes API fix hungtask due to repeated traversal of inodes list - - - --- 2024-11-18 Ye Bin Handled Elsewhere
[05/11] fs: use sb_for_each_inodes_safe API fix hungtask due to repeated traversal of inodes list - - - --- 2024-11-18 Ye Bin Handled Elsewhere
[04/11] gfs2: use sb_for_each_inodes API fix hungtask due to repeated traversal of inodes list - - - --- 2024-11-18 Ye Bin Handled Elsewhere
[03/11] fs: use sb_for_each_inodes API fix hungtask due to repeated traversal of inodes list - - - --- 2024-11-18 Ye Bin Handled Elsewhere
[02/11] block: use sb_for_each_inodes API fix hungtask due to repeated traversal of inodes list - - - --- 2024-11-18 Ye Bin Handled Elsewhere
[01/11] fs: introduce I_CURSOR flag for inode fix hungtask due to repeated traversal of inodes list - - - --- 2024-11-18 Ye Bin Handled Elsewhere
landlock: ptrace_test: remove unused macros landlock: ptrace_test: remove unused macros - - - --- 2024-11-18 Ba Jing Handled Elsewhere
apparmor: Use str_yes_no() helper function apparmor: Use str_yes_no() helper function - - - --- 2024-11-15 Thorsten Blum Handled Elsewhere
[RFC/PATCH,v2,bpf-next,fanotify,7/7] selftests/bpf: Add test for BPF based fanotify fastpath handler Fanotify fastpath handler - - - --- 2024-11-14 Song Liu Handled Elsewhere
[RFC/PATCH,v2,bpf-next,fanotify,6/7] fanotify: Enable bpf based fanotify fastpath handler Fanotify fastpath handler - - - --- 2024-11-14 Song Liu Handled Elsewhere
[RFC/PATCH,v2,bpf-next,fanotify,5/7] bpf: Allow bpf map hold reference on dentry Fanotify fastpath handler - - - --- 2024-11-14 Song Liu Handled Elsewhere
[RFC/PATCH,v2,bpf-next,fanotify,4/7] bpf: fs: Add three kfuncs Fanotify fastpath handler - - - --- 2024-11-14 Song Liu Handled Elsewhere
[RFC/PATCH,v2,bpf-next,fanotify,3/7] bpf: Make bpf inode storage available to tracing programs Fanotify fastpath handler - - - --- 2024-11-14 Song Liu Handled Elsewhere
[RFC/PATCH,v2,bpf-next,fanotify,2/7] samples/fanotify: Add a sample fanotify fastpath handler Fanotify fastpath handler - - - --- 2024-11-14 Song Liu Handled Elsewhere
[RFC/PATCH,v2,bpf-next,fanotify,1/7] fanotify: Introduce fanotify fastpath handler Fanotify fastpath handler - - - --- 2024-11-14 Song Liu Handled Elsewhere
KEYS: trusted: dcp: fix improper sg use with CONFIG_VMAP_STACK=y KEYS: trusted: dcp: fix improper sg use with CONFIG_VMAP_STACK=y - - - --- 2024-11-13 David Gstir Handled Elsewhere
tpm: Disable TPM on tpm2_create_primary() failure tpm: Disable TPM on tpm2_create_primary() failure - - - --- 2024-11-13 Jarkko Sakkinen Handled Elsewhere
[v3] tpm: Opt-in in disable PCR integrity protection [v3] tpm: Opt-in in disable PCR integrity protection - - 1 --- 2024-11-13 Jarkko Sakkinen Handled Elsewhere
[v2] ima: Suspend PCR extends and log appends when rebooting [v2] ima: Suspend PCR extends and log appends when rebooting - 1 - --- 2024-11-12 Stefan Berger Handled Elsewhere
[RFC] selinux: Fix SCTP error inconsistency in selinux_socket_bind() [RFC] selinux: Fix SCTP error inconsistency in selinux_socket_bind() - - - --- 2024-11-12 Mikhail Ivanov Handled Elsewhere
[v2,bpf-next,4/4] selftest/bpf: Test inode local storage recursion prevention Make inode storage available to tracing prog - - - --- 2024-11-12 Song Liu Handled Elsewhere
[v2,bpf-next,3/4] bpf: Add recursion prevention logic for inode storage Make inode storage available to tracing prog - - - --- 2024-11-12 Song Liu Handled Elsewhere
[v2,bpf-next,2/4] bpf: Make bpf inode storage available to tracing program Make inode storage available to tracing prog - - - --- 2024-11-12 Song Liu Handled Elsewhere
[v2,bpf-next,1/4] bpf: lsm: Remove hook to bpf_task_storage_free Make inode storage available to tracing prog - - - --- 2024-11-12 Song Liu Handled Elsewhere
[bpf-next,4/4] selftest/bpf: Test inode local storage recursion prevention Untitled series #908730 - - - --- 2024-11-12 Song Liu Handled Elsewhere
[bpf-next,4/4] selftest/bpf: Add test for inode local storage recursion Make inode storage available to tracing prog - - - --- 2024-11-12 Song Liu Handled Elsewhere
[bpf-next,3/4] bpf: Add recursion prevention logic for inode storage Untitled series #908729 - - - --- 2024-11-12 Song Liu Handled Elsewhere
[bpf-next,3/4] bpf: Add recursion avoid logic for inode storage Make inode storage available to tracing prog - - - --- 2024-11-12 Song Liu Handled Elsewhere
[bpf-next,2/4] bpf: Make bpf inode storage available to tracing program Make inode storage available to tracing prog - - - --- 2024-11-12 Song Liu Handled Elsewhere
[bpf-next,1/4] bpf: lsm: Remove hook to bpf_task_storage_free Make inode storage available to tracing prog - - - --- 2024-11-12 Song Liu Handled Elsewhere
apparmor: Add empty statement between label and declaration in profile_transition(() apparmor: Add empty statement between label and declaration in profile_transition(() - - - --- 2024-11-11 Nathan Chancellor Handled Elsewhere
[GIT,PULL] Landlock fix for v6.12-rc7 #2 [GIT,PULL] Landlock fix for v6.12-rc7 #2 - - - --- 2024-11-10 Mickaël Salaün Handled Elsewhere
[GIT,PULL] Landlock fix for v6.12-rc7 [GIT,PULL] Landlock fix for v6.12-rc7 - - - --- 2024-11-09 Mickaël Salaün Handled Elsewhere
[v4,3/3] landlock: Optimize scope enforcement Refactor Landlock access mask management - 1 - --- 2024-11-09 Mickaël Salaün Handled Elsewhere
[v4,2/3] landlock: Refactor network access mask management Refactor Landlock access mask management - 1 - --- 2024-11-09 Mickaël Salaün Handled Elsewhere
[v4,1/3] landlock: Refactor filesystem access mask management Refactor Landlock access mask management - 1 - --- 2024-11-09 Mickaël Salaün Handled Elsewhere
[RESEND] apparmor: Remove unnecessary NULL check before kvfree() [RESEND] apparmor: Remove unnecessary NULL check before kvfree() 1 - - --- 2024-11-07 Thorsten Blum Handled Elsewhere
« 1 2 3 4168 169 »