Show patches with: Archived = No       |   1256 patches
« 1 2 3 412 13 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
tomoyo: remove a temporary output file tomoyo: remove a temporary output file - - - --- 2023-01-09 Masahiro Yamada Handled Elsewhere
tomoyo: Fix typo in comment tomoyo: Fix typo in comment - - - --- 2022-06-24 Xiang wangx Handled Elsewhere
Subject: [PATCH 01/11] ->getprocattr(): attribute name is const char *, TYVM... Subject: [PATCH 01/11] ->getprocattr(): attribute name is const char *, TYVM... 2 - - --- 2022-08-20 Al Viro pcmoore Handled Elsewhere
smackfs: check for allocation failure of kmalloc() smackfs: check for allocation failure of kmalloc() - - - --- 2022-06-13 Li Qiong Handled Elsewhere
smackfs: Added check catlen smackfs: Added check catlen - - - --- 2023-01-24 Denis Arefev New
selinux: use GFP_ATOMIC in convert_context() selinux: use GFP_ATOMIC in convert_context() - - - --- 2022-10-18 GONG, Ruiqi Handled Elsewhere
selftests/landlock: skip ptrace_test when YAMA is enabled selftests/landlock: skip ptrace_test when YAMA is enabled - - 1 --- 2022-06-28 Jeff Xu Handled Elsewhere
selftests/landlock: skip overlayfs test when kernel not support it selftests/landlock: skip overlayfs test when kernel not support it - - - --- 2022-08-20 Jeff Xu Handled Elsewhere
selftests/landlock: Improve ptrace_test with Yama selftests/landlock: Improve ptrace_test with Yama - - - --- 2023-01-13 Mickaël Salaün Handled Elsewhere
selftests/landlock: fix broken include of linux/landlock.h selftests/landlock: fix broken include of linux/landlock.h - - - --- 2022-08-03 Guillaume Tucker Handled Elsewhere
security/keys: remove request_key_conswq and keyring_search_instkey() declarations security/keys: remove request_key_conswq and keyring_search_instkey() declarations - - - --- 2022-09-09 Gaosheng Cui Handled Elsewhere
security/keys: Remove inconsistent __user annotation security/keys: Remove inconsistent __user annotation 1 1 - --- 2022-09-07 Vincenzo Frascino pcmoore Handled Elsewhere
security:trusted_tpm2: Fix memory leak in tpm2_key_encode() security:trusted_tpm2: Fix memory leak in tpm2_key_encode() - - - --- 2022-06-07 Jianglei Nie Handled Elsewhere
security:trusted_tpm2: Fix memory leak in tpm2_key_encode() security:trusted_tpm2: Fix memory leak in tpm2_key_encode() - - - --- 2022-06-08 Jianglei Nie Handled Elsewhere
security: Restore passing final prot to ima_file_mmap() security: Restore passing final prot to ima_file_mmap() - - - --- 2022-12-21 Roberto Sassu Superseded
security: move from strlcpy with unused retval to strscpy security: move from strlcpy with unused retval to strscpy 1 - - --- 2022-08-18 Wolfram Sang Handled Elsewhere
security: keys: add __randomize_layout to keyring_search_context security: keys: add __randomize_layout to keyring_search_context - 1 - --- 2022-05-18 GONG, Ruiqi Handled Elsewhere
security: commoncap: fix potential memleak on error path from vfs_getxattr_alloc security: commoncap: fix potential memleak on error path from vfs_getxattr_alloc - - - --- 2022-10-25 Gaosheng Cui Changes Requested
samples/landlock: Document best-effort approach for LANDLOCK_ACCESS_FS_REFER samples/landlock: Document best-effort approach for LANDLOCK_ACCESS_FS_REFER - - - --- 2022-10-30 Günther Noack Handled Elsewhere
remove unnecessary type casting remove unnecessary type casting - - - --- 2022-08-10 zhoun Handled Elsewhere
public_key: Add a comment to public_key_signature struct definition public_key: Add a comment to public_key_signature struct definition - 1 - --- 2022-12-07 Roberto Sassu pcmoore Superseded
nfs: Fix automount superblock LSM init problem, preventing sb sharing nfs: Fix automount superblock LSM init problem, preventing sb sharing - - - --- 2022-08-04 David Howells Superseded
netlabel: fix typo in comment netlabel: fix typo in comment 1 - - --- 2022-08-06 Topi Miettinen Handled Elsewhere
net: fix memory leak in security_sk_alloc() net: fix memory leak in security_sk_alloc() - - - --- 2022-11-11 Wang Yufen Rejected
MAINTAINERS: update the LSM maintainer info MAINTAINERS: update the LSM maintainer info 3 - - --- 2022-07-08 Paul Moore pcmoore Accepted
MAINTAINERS: git://github -> https://github.com for cschaufler MAINTAINERS: git://github -> https://github.com for cschaufler - 2 - --- 2022-10-13 Palmer Dabbelt Handled Elsewhere
lsm: make security_socket_getpeersec_stream() sockptr_t safe lsm: make security_socket_getpeersec_stream() sockptr_t safe 2 - - --- 2022-10-10 Paul Moore pcmoore Accepted
LSM: Better reporting of actual LSMs at boot LSM: Better reporting of actual LSMs at boot - - - --- 2022-10-18 Kees Cook pcmoore Changes Requested
lsm,io_uring: add LSM hooks to for the new uring_cmd file op lsm,io_uring: add LSM hooks to for the new uring_cmd file op - - - --- 2022-07-14 Luis Chamberlain pcmoore Superseded
lockdown: ratelimit denial messages lockdown: ratelimit denial messages - - - --- 2022-09-08 Nathan Lynch pcmoore Accepted
lockdown: Fix kexec lockdown bypass with ima policy lockdown: Fix kexec lockdown bypass with ima policy 1 1 - --- 2022-07-19 Eric Snowberg Handled Elsewhere
LoadPin: Require file with verity root digests to have a header LoadPin: Require file with verity root digests to have a header - - - --- 2022-09-07 Matthias Kaehlcke Handled Elsewhere
LoadPin: Ignore the "contents" argument of the LSM hooks LoadPin: Ignore the "contents" argument of the LSM hooks 1 - - --- 2022-12-09 Kees Cook pcmoore Handled Elsewhere
LoadPin: Fix Kconfig doc about format of file with verity digests LoadPin: Fix Kconfig doc about format of file with verity digests - - - --- 2022-08-30 Matthias Kaehlcke pcmoore Handled Elsewhere
lib/mpi: Fix buffer overrun when SG is too long lib/mpi: Fix buffer overrun when SG is too long - - - --- 2022-12-20 Herbert Xu Handled Elsewhere
landlock: Remove unnecessary conditionals landlock: Remove unnecessary conditionals - - - --- 2022-09-08 Jingyu Wang Handled Elsewhere
landlock: Allow filesystem layout changes for domains without such rule type landlock: Allow filesystem layout changes for domains without such rule type - - - --- 2022-11-17 Mickaël Salaün Handled Elsewhere
kselftests: Enable the echo command to print newlines in Makefile kselftests: Enable the echo command to print newlines in Makefile - - - --- 2022-06-25 Gautam Menghani Handled Elsewhere
keys/keyring: Fix typo in string keys/keyring: Fix typo in string - 1 - --- 2022-07-04 Li zeming Handled Elsewhere
keys/keyctl: Use kfree_rcu instead of kfree keys/keyctl: Use kfree_rcu instead of kfree - - - --- 2022-07-23 Siddh Raman Pant Handled Elsewhere
keys/keyctl: Fix typo in string keys/keyctl: Fix typo in string - - - --- 2022-07-04 Li zeming Handled Elsewhere
KEYS: Variable type completion KEYS: Variable type completion - - - --- 2022-08-16 Xin Gao Handled Elsewhere
keys: Variable type completion keys: Variable type completion - - - --- 2022-08-16 Xin Gao Handled Elsewhere
KEYS: trusted: tpm2: use correct function name in kernel-doc KEYS: trusted: tpm2: use correct function name in kernel-doc - 1 - --- 2023-01-02 Randy Dunlap Handled Elsewhere
KEYS: trusted: tee: Make registered shm dependency explicit KEYS: trusted: tee: Make registered shm dependency explicit - 1 1 --- 2022-11-10 Sumit Garg Handled Elsewhere
KEYS: encrypted: fix key instantiation with user-provided data KEYS: encrypted: fix key instantiation with user-provided data - - - --- 2022-09-16 Nikolaus Voss Handled Elsewhere
KEYS: asymmetric: Make a copy of sig and digest in vmalloced stack KEYS: asymmetric: Make a copy of sig and digest in vmalloced stack - - - --- 2022-12-08 Roberto Sassu Handled Elsewhere
kernel/watch_queue: Make pipe NULL while clearing watch_queue kernel/watch_queue: Make pipe NULL while clearing watch_queue - - - --- 2022-07-23 Siddh Raman Pant Handled Elsewhere
integrity: iint: Remove unnecessary (void*) conversions integrity: iint: Remove unnecessary (void*) conversions - - - --- 2022-11-07 Li zeming Handled Elsewhere
integrity: iint: Optimize integrity_iintcache_init and integrity_inode_free function integrity: iint: Optimize integrity_iintcache_init and integrity_inode_free function - - - --- 2022-10-18 Li zeming Handled Elsewhere
integrity: Free key restriction when keyring allocation fails integrity: Free key restriction when keyring allocation fails - - - --- 2022-11-09 Guozihua (Scott) Handled Elsewhere
ima/evm: Fix potential memory leak in ima_init_crypto() ima/evm: Fix potential memory leak in ima_init_crypto() - - - --- 2022-07-04 Jianglei Nie Handled Elsewhere
ima/evm: Fix potential memory leak in ima_init_crypto() ima/evm: Fix potential memory leak in ima_init_crypto() - - - --- 2022-07-11 Jianglei Nie Handled Elsewhere
ima: Make a copy of sig and digest in asymmetric_verify() ima: Make a copy of sig and digest in asymmetric_verify() - - - --- 2022-11-04 Roberto Sassu Handled Elsewhere
ima: force signature verification when CONFIG_KEXEC_SIG is configured ima: force signature verification when CONFIG_KEXEC_SIG is configured - - - --- 2022-07-12 Coiby Xu Handled Elsewhere
ima: Fix misuse of dereference of pointer in template_desc_init_fields() ima: Fix misuse of dereference of pointer in template_desc_init_fields() - 1 - --- 2022-11-12 xiujianfeng Handled Elsewhere
ima: Fix memory leak in __ima_inode_hash() ima: Fix memory leak in __ima_inode_hash() - 1 - --- 2022-11-02 Roberto Sassu Handled Elsewhere
ima: fix ima_delete_rules() kernel-doc warning ima: fix ima_delete_rules() kernel-doc warning - 1 - --- 2023-01-02 Randy Dunlap Handled Elsewhere
ima: Fix hash dependency to correct algorithm ima: Fix hash dependency to correct algorithm - - - --- 2022-11-25 Tianjia Zhang Handled Elsewhere
ima: fix a possible null pointer dereference ima: fix a possible null pointer dereference - - - --- 2022-10-25 Gaosheng Cui Handled Elsewhere
fs: edit a comment made in bad taste fs: edit a comment made in bad taste - - - --- 2022-10-17 Paul Moore Accepted
evm: Correct inode_init_security hooks behaviors evm: Correct inode_init_security hooks behaviors - - - --- 2022-10-20 Nicolas Bouchinet pcmoore Superseded
efi: Add iMac Pro 2017 to uefi skip cert quirk efi: Add iMac Pro 2017 to uefi skip cert quirk - - - --- 2022-10-27 Aditya Garg Handled Elsewhere
efi: Add iMac Pro 2017 to uefi skip cert quirk efi: Add iMac Pro 2017 to uefi skip cert quirk - - - --- 2022-10-27 Aditya Garg Handled Elsewhere
dm: verity-loadpin: Only trust verity targets with enforcement dm: verity-loadpin: Only trust verity targets with enforcement - 1 - --- 2022-09-07 Matthias Kaehlcke Handled Elsewhere
dm: verity-loadpin: Drop use of dm_table_get_num_targets() dm: verity-loadpin: Drop use of dm_table_get_num_targets() - 1 - --- 2022-07-28 Matthias Kaehlcke Handled Elsewhere
device_cgroup: Roll back to original exceptions after copy failure device_cgroup: Roll back to original exceptions after copy failure - 1 - --- 2022-10-25 wangweiyang pcmoore Accepted
device_cgroup: Fix a spelling mistake device_cgroup: Fix a spelling mistake - - - --- 2022-06-28 Zhang Jiaming Handled Elsewhere
cred: Propagate security_prepare_creds() error code cred: Propagate security_prepare_creds() error code - 1 - --- 2022-05-20 Frederick Lawler Changes Requested
commoncap: check return value to avoid null pointer dereference commoncap: check return value to avoid null pointer dereference - - - --- 2022-05-16 刘永志 pcmoore Rejected
capabilities: fix undefined behavior in bit shift for CAP_TO_MASK capabilities: fix undefined behavior in bit shift for CAP_TO_MASK 1 1 - --- 2022-10-31 Gaosheng Cui pcmoore Accepted
audit: Fix some kernel-doc warnings audit: Fix some kernel-doc warnings 1 - - --- 2022-10-25 Bo Liu pcmoore Changes Requested
apparmor: Use pointer to struct aa_label for lbs_cred apparmor: Use pointer to struct aa_label for lbs_cred - - - --- 2022-10-20 xiujianfeng Handled Elsewhere
apparmor: store return value of unpack_perms_table() to signed variable apparmor: store return value of unpack_perms_table() to signed variable 1 - - --- 2022-10-04 Muhammad Usama Anjum Handled Elsewhere
apparmor: Simply obtain the newest label on a cred apparmor: Simply obtain the newest label on a cred 1 - - --- 2022-09-22 Gaosheng Cui Handled Elsewhere
apparmor: remove useless static inline functions apparmor: remove useless static inline functions 1 - - --- 2022-09-26 Gaosheng Cui Handled Elsewhere
apparmor: Mark alloc_unconfined() as static apparmor: Mark alloc_unconfined() as static 1 - - --- 2022-07-19 Souptick Joarder Handled Elsewhere
apparmor: make aa_set_current_onexec return void apparmor: make aa_set_current_onexec return void 1 - - --- 2023-01-14 Quanfa Fu Handled Elsewhere
apparmor: make __aa_path_perm() static apparmor: make __aa_path_perm() static 1 - - --- 2022-09-14 xiujianfeng Handled Elsewhere
apparmor: fix obsoleted comments for aa_getprocattr() and audit_resource() apparmor: fix obsoleted comments for aa_getprocattr() and audit_resource() 1 - - --- 2022-09-26 Gaosheng Cui Handled Elsewhere
apparmor: Fix memleak issue in unpack_profile() apparmor: Fix memleak issue in unpack_profile() 1 - - --- 2022-10-21 xiujianfeng Handled Elsewhere
apparmor: Fix memleak in alloc_ns() apparmor: Fix memleak in alloc_ns() 1 - - --- 2022-10-28 xiujianfeng Handled Elsewhere
apparmor: fix kernel-doc complaints apparmor: fix kernel-doc complaints 1 - - --- 2023-01-02 Randy Dunlap Handled Elsewhere
apparmor: fix a memleak in multi_transaction_new() apparmor: fix a memleak in multi_transaction_new() 1 - - --- 2022-08-23 Gaosheng Cui Handled Elsewhere
apparmor: correct config reference to intended one apparmor: correct config reference to intended one 1 - - --- 2022-07-20 Lukas Bulwahn Handled Elsewhere
apparmor: Add __init annotation to aa_{setup/teardown}_dfa_engine() apparmor: Add __init annotation to aa_{setup/teardown}_dfa_engine() 1 - - --- 2022-10-29 xiujianfeng Handled Elsewhere
[v9,4/4] kexec, KEYS, s390: Make use of built-in and secondary keyring for signature verification Untitled series #656160 1 1 - --- 2022-07-04 Coiby Xu Handled Elsewhere
[v9,3/4] arm64: kexec_file: use more system keyrings to verify kernel image signature Untitled series #656160 2 - - --- 2022-07-04 Coiby Xu Handled Elsewhere
[v9,2/4] kexec, KEYS: make the code in bzImage64_verify_sig generic Untitled series #656160 - 1 - --- 2022-07-04 Coiby Xu Handled Elsewhere
[v9,12/12] landlock: Document Landlock's network support Network support for Landlock - - - --- 2023-01-16 Konstantin Meskhidze (A) Handled Elsewhere
[v9,11/12] samples/landlock: Add network demo Network support for Landlock - - - --- 2023-01-16 Konstantin Meskhidze (A) Handled Elsewhere
[v9,11/11] landlock: Document Landlock's file truncation support Untitled series #683915 - - - --- 2022-10-08 Günther Noack Handled Elsewhere
[v9,11/11] landlock: Document Landlock's file truncation support landlock: truncate support - - - --- 2022-10-08 Günther Noack Handled Elsewhere
[v9,10/12] selftests/landlock: Add 10 new test suites dedicated to network Network support for Landlock - - - --- 2023-01-16 Konstantin Meskhidze (A) Handled Elsewhere
[v9,10/11] samples/landlock: Extend sample tool to support LANDLOCK_ACCESS_FS_TRUNCATE Untitled series #683915 - - - --- 2022-10-08 Günther Noack Handled Elsewhere
[v9,10/11] samples/landlock: Extend sample tool to support LANDLOCK_ACCESS_FS_TRUNCATE landlock: truncate support - - - --- 2022-10-08 Günther Noack Handled Elsewhere
[v9,10/10] selftests/bpf: Add test for bpf_verify_pkcs7_signature() kfunc bpf: Add kfuncs for PKCS#7 signature verification - - - --- 2022-08-09 Roberto Sassu Handled Elsewhere
[v9,09/12] selftests/landlock: Share enforce_ruleset() Network support for Landlock - - - --- 2023-01-16 Konstantin Meskhidze (A) Handled Elsewhere
[v9,09/11] selftests/landlock: Test ftruncate on FDs created by memfd_create(2) landlock: truncate support - - - --- 2022-10-08 Günther Noack Handled Elsewhere
[v9,09/10] selftests/bpf: Add additional tests for bpf_lookup_*_key() bpf: Add kfuncs for PKCS#7 signature verification - - - --- 2022-08-09 Roberto Sassu Handled Elsewhere
« 1 2 3 412 13 »