Security modules development

Show patches with: none | 9702 patches

« 1 2 3 4 … 97 98 »

Patch	Series	A/R/T	S/W/F	Date	Submitter	State
[v8,6/8] IMA: extend critical data hook to limit the measurement based on a label	IMA: support for measuring kernel integrity critical data	- 1 -	---	2020-12-11	Tushar Sugandhi	New
[v8,5/8] IMA: limit critical data measurement based on a label	IMA: support for measuring kernel integrity critical data	- - -	---	2020-12-11	Tushar Sugandhi	New
[v8,4/8] IMA: add policy rule to measure critical data	IMA: support for measuring kernel integrity critical data	- - -	---	2020-12-11	Tushar Sugandhi	New
[v8,3/8] IMA: define a hook to measure kernel integrity critical data	IMA: support for measuring kernel integrity critical data	- 1 -	---	2020-12-11	Tushar Sugandhi	New
[v8,2/8] IMA: add support to measure buffer data hash	IMA: support for measuring kernel integrity critical data	- 1 -	---	2020-12-11	Tushar Sugandhi	New
[v8,1/8] IMA: generalize keyring specific measurement constructs	IMA: support for measuring kernel integrity critical data	- 1 -	---	2020-12-11	Tushar Sugandhi	New
[v2,5/5] tools/certs: Add print-cert-tbs-hash.sh	Enable root to update the blacklist keyring	- - -	---	2020-12-11	Mickaël Salaün	New
[v2,4/5] certs: Allow root user to append signed hashes to the blacklist keyring	Enable root to update the blacklist keyring	- - -	---	2020-12-11	Mickaël Salaün	New
[v2,3/5] certs: Check that builtin blacklist hashes are valid	Enable root to update the blacklist keyring	- - -	---	2020-12-11	Mickaël Salaün	New
[v2,2/5] certs: Factor out the blacklist hash creation	Enable root to update the blacklist keyring	- - -	---	2020-12-11	Mickaël Salaün	New
[v2,1/5] certs: Make blacklist_vet_description() more strict	Enable root to update the blacklist keyring	- - -	---	2020-12-11	Mickaël Salaün	New
[SECURITY] fix namespaced fscaps when !CONFIG_SECURITY	[SECURITY] fix namespaced fscaps when !CONFIG_SECURITY	- - -	---	2020-12-10	James Morris	New
[v7,8/8] selinux: include a consumer of the new IMA critical data hook	IMA: support for measuring kernel integrity critical data	- - -	---	2020-12-09	Tushar Sugandhi	New
[v7,7/8] IMA: define a builtin critical data measurement policy	IMA: support for measuring kernel integrity critical data	- 1 -	---	2020-12-09	Tushar Sugandhi	New
[v7,6/8] IMA: extend critical data hook to limit the measurement based on a label	IMA: support for measuring kernel integrity critical data	- 1 -	---	2020-12-09	Tushar Sugandhi	New
[v7,5/8] IMA: limit critical data measurement based on a label	IMA: support for measuring kernel integrity critical data	- - -	---	2020-12-09	Tushar Sugandhi	New
[v7,4/8] IMA: add policy rule to measure critical data	IMA: support for measuring kernel integrity critical data	- - -	---	2020-12-09	Tushar Sugandhi	New
[v7,3/8] IMA: define a hook to measure kernel integrity critical data	IMA: support for measuring kernel integrity critical data	- - -	---	2020-12-09	Tushar Sugandhi	New
[v7,2/8] IMA: add support to measure buffer data hash	IMA: support for measuring kernel integrity critical data	- - -	---	2020-12-09	Tushar Sugandhi	New
[v7,1/8] IMA: generalize keyring specific measurement constructs	IMA: support for measuring kernel integrity critical data	- 1 -	---	2020-12-09	Tushar Sugandhi	New
[v26,12/12] landlock: Add user and kernel documentation	Landlock LSM	- 2 -	---	2020-12-09	Mickaël Salaün	New
[v26,11/12] samples/landlock: Add a sandbox manager example	Landlock LSM	- 1 -	---	2020-12-09	Mickaël Salaün	New
[v26,10/12] selftests/landlock: Add user space tests	Landlock LSM	- 1 -	---	2020-12-09	Mickaël Salaün	New
[v26,09/12] arch: Wire up Landlock syscalls	Landlock LSM	- - -	---	2020-12-09	Mickaël Salaün	New
[v26,08/12] landlock: Add syscall implementations	Landlock LSM	- 1 -	---	2020-12-09	Mickaël Salaün	New
[v26,07/12] landlock: Support filesystem access-control	Landlock LSM	- - -	---	2020-12-09	Mickaël Salaün	New
[v26,06/12] fs,security: Add sb_delete hook	Landlock LSM	- 1 -	---	2020-12-09	Mickaël Salaün	New
[v26,05/12] LSM: Infrastructure management of the superblock	Landlock LSM	- 1 -	---	2020-12-09	Mickaël Salaün	New
[v26,04/12] landlock: Add ptrace restrictions	Landlock LSM	- 1 -	---	2020-12-09	Mickaël Salaün	New
[v26,03/12] landlock: Set up the security framework and manage credentials	Landlock LSM	- 1 -	---	2020-12-09	Mickaël Salaün	New
[v26,02/12] landlock: Add ruleset and domain management	Landlock LSM	- 1 -	---	2020-12-09	Mickaël Salaün	New
[v26,01/12] landlock: Add object management	Landlock LSM	- 1 -	---	2020-12-09	Mickaël Salaün	New
[06/18] security: keys: delete repeated words in comments	keys: Miscellaneous fixes	- 1 -	---	2020-12-09	David Howells	New
[v1] apparmor: Remove duplicate macro list_entry_is_head()	[v1] apparmor: Remove duplicate macro list_entry_is_head()	1 - -	---	2020-12-08	Andy Shevchenko	New
[v2,10/10] ovl: unprivieged mounts	allow unprivileged overlay mounts	- - -	---	2020-12-07	Miklos Szeredi	New
[v2,09/10] ovl: do not get metacopy for userxattr	allow unprivileged overlay mounts	- - -	---	2020-12-07	Miklos Szeredi	New
[v2,08/10] ovl: do not fail because of O_NOATIME	allow unprivileged overlay mounts	- - -	---	2020-12-07	Miklos Szeredi	New
[v2,07/10] ovl: do not fail when setting origin xattr	allow unprivileged overlay mounts	- - -	---	2020-12-07	Miklos Szeredi	New
[v2,06/10] ovl: user xattr	allow unprivileged overlay mounts	- 1 -	---	2020-12-07	Miklos Szeredi	New
[v2,05/10] ovl: simplify file splice	allow unprivileged overlay mounts	- - -	---	2020-12-07	Miklos Szeredi	New
[v2,04/10] ovl: make ioctl() safe	allow unprivileged overlay mounts	- 1 -	---	2020-12-07	Miklos Szeredi	New
[v2,03/10] ovl: check privs before decoding file handle	allow unprivileged overlay mounts	- - -	---	2020-12-07	Miklos Szeredi	New
[v2,02/10] vfs: verify source area in vfs_dedupe_file_range_one()	allow unprivileged overlay mounts	- - -	---	2020-12-07	Miklos Szeredi	New
[v2,01/10] vfs: move cap_convert_nscap() call into vfs_setxattr()	allow unprivileged overlay mounts	1 - -	---	2020-12-07	Miklos Szeredi	New
[v2] proc: Allow pid_revalidate() during LOOKUP_RCU	[v2] proc: Allow pid_revalidate() during LOOKUP_RCU	- - -	---	2020-12-04	Stephen Brennan	New
[v4,39/40] tests: extend mount_setattr tests	idmapped mounts	- - -	---	2020-12-03	Christian Brauner	New
[v4,38/40] fs: introduce MOUNT_ATTR_IDMAP	idmapped mounts	- - -	---	2020-12-03	Christian Brauner	New
[v4,37/40] overlayfs: do not mount on top of idmapped mounts	idmapped mounts	- - -	---	2020-12-03	Christian Brauner	New
[v4,36/40] ecryptfs: do not mount on top of idmapped mounts	idmapped mounts	- - -	---	2020-12-03	Christian Brauner	New
[v4,35/40] ext4: support idmapped mounts	idmapped mounts	- - -	---	2020-12-03	Christian Brauner	New
[v4,34/40] fat: handle idmapped mounts	idmapped mounts	- - -	---	2020-12-03	Christian Brauner	New
[v4,33/40] ima: handle idmapped mounts	idmapped mounts	- - -	---	2020-12-03	Christian Brauner	New
[v4,32/40] apparmor: handle idmapped mounts	idmapped mounts	- - -	---	2020-12-03	Christian Brauner	New
[v4,30/40] exec: handle idmapped mounts	idmapped mounts	- - -	---	2020-12-03	Christian Brauner	New
[v4,29/40] would_dump: handle idmapped mounts	idmapped mounts	- - -	---	2020-12-03	Christian Brauner	New
[v4,28/40] ioctl: handle idmapped mounts	idmapped mounts	- - -	---	2020-12-03	Christian Brauner	New
[v4,27/40] init: handle idmapped mounts	idmapped mounts	- - -	---	2020-12-03	Christian Brauner	New
[v4,26/40] notify: handle idmapped mounts	idmapped mounts	- - -	---	2020-12-03	Christian Brauner	New
[v4,25/40] fcntl: handle idmapped mounts	idmapped mounts	- - -	---	2020-12-03	Christian Brauner	New
[v4,24/40] utimes: handle idmapped mounts	idmapped mounts	- - -	---	2020-12-03	Christian Brauner	New
[v4,23/40] af_unix: handle idmapped mounts	idmapped mounts	- - -	---	2020-12-03	Christian Brauner	New
[v4,22/40] open: handle idmapped mounts	idmapped mounts	- - -	---	2020-12-03	Christian Brauner	New
[v4,21/40] open: handle idmapped mounts in do_truncate()	idmapped mounts	- - -	---	2020-12-03	Christian Brauner	New
[v4,20/40] namei: prepare for idmapped mounts	idmapped mounts	- - -	---	2020-12-03	Christian Brauner	New
[v4,19/40] namei: introduce struct renamedata	idmapped mounts	- - -	---	2020-12-03	Christian Brauner	New
[v4,18/40] namei: handle idmapped mounts in may_*() helpers	idmapped mounts	- - -	---	2020-12-03	Christian Brauner	New
[v4,17/40] stat: handle idmapped mounts	idmapped mounts	- - -	---	2020-12-03	Christian Brauner	New
[v4,16/40] commoncap: handle idmapped mounts	idmapped mounts	- - -	---	2020-12-03	Christian Brauner	New
[v4,15/40] xattr: handle idmapped mounts	idmapped mounts	- - -	---	2020-12-03	Christian Brauner	New
[v4,14/40] acl: handle idmapped mounts	idmapped mounts	- - -	---	2020-12-03	Christian Brauner	New
[v4,13/40] attr: handle idmapped mounts	idmapped mounts	- - -	---	2020-12-03	Christian Brauner	New
[v4,12/40] inode: make init and permission helpers idmapped mount aware	idmapped mounts	- - -	---	2020-12-03	Christian Brauner	New
[v4,11/40] namei: make permission helpers idmapped mount aware	idmapped mounts	1 - -	---	2020-12-03	Christian Brauner	New
[v4,10/40] capability: handle idmapped mounts	idmapped mounts	1 - -	---	2020-12-03	Christian Brauner	New
[v4,09/40] mount: attach mappings to mounts	idmapped mounts	- - -	---	2020-12-03	Christian Brauner	New
[v4,08/40] fs: add id translation helpers	idmapped mounts	- 1 -	---	2020-12-03	Christian Brauner	New
[v4,07/40] tests: add mount_setattr() selftests	idmapped mounts	- - -	---	2020-12-03	Christian Brauner	New
[v4,06/40] fs: add mount_setattr()	idmapped mounts	- 1 -	---	2020-12-03	Christian Brauner	New
[v4,05/40] fs: add attr_flags_to_mnt_flags helper	idmapped mounts	- 1 -	---	2020-12-03	Christian Brauner	New
[v4,04/40] fs: split out functions to hold writers	idmapped mounts	- 1 -	---	2020-12-03	Christian Brauner	New
[v4,03/40] namespace: only take read lock in do_reconfigure_mnt()	idmapped mounts	- 1 -	---	2020-12-03	Christian Brauner	New
[v4,02/40] mount: make {lock,unlock}_mount_hash() static	idmapped mounts	- 1 -	---	2020-12-03	Christian Brauner	New
[v4,01/40] namespace: take lock_mount_hash() directly when changing flags	idmapped mounts	- 1 -	---	2020-12-03	Christian Brauner	New
[v12,3/3] selftest/interpreter: Add tests for trusted_for(2) policies	Add trusted_for(2) (was O_MAYEXEC)	- 1 -	---	2020-12-03	Mickaël Salaün	New
[v12,2/3] arch: Wire up trusted_for(2)	Add trusted_for(2) (was O_MAYEXEC)	1 1 -	---	2020-12-03	Mickaël Salaün	New
[v12,1/3] fs: Add trusted_for(2) syscall implementation and related sysctl	Add trusted_for(2) (was O_MAYEXEC)	- - -	---	2020-12-03	Mickaël Salaün	New
[v25,12/12] landlock: Add user and kernel documentation	Landlock LSM	- 2 -	---	2020-12-01	Mickaël Salaün	New
[v25,11/12] samples/landlock: Add a sandbox manager example	Landlock LSM	- - -	---	2020-12-01	Mickaël Salaün	New
[v25,10/12] selftests/landlock: Add user space tests	Landlock LSM	- 1 -	---	2020-12-01	Mickaël Salaün	New
[v25,09/12] arch: Wire up Landlock syscalls	Landlock LSM	- - -	---	2020-12-01	Mickaël Salaün	New
[v25,08/12] landlock: Add syscall implementations	Landlock LSM	- 1 -	---	2020-12-01	Mickaël Salaün	New
[v25,07/12] landlock: Support filesystem access-control	Landlock LSM	- - -	---	2020-12-01	Mickaël Salaün	New
[v25,06/12] fs,security: Add sb_delete hook	Landlock LSM	- 1 -	---	2020-12-01	Mickaël Salaün	New
[v25,05/12] LSM: Infrastructure management of the superblock	Landlock LSM	- 1 -	---	2020-12-01	Mickaël Salaün	New
[v25,04/12] landlock: Add ptrace restrictions	Landlock LSM	- 1 -	---	2020-12-01	Mickaël Salaün	New
[v25,03/12] landlock: Set up the security framework and manage credentials	Landlock LSM	- 1 -	---	2020-12-01	Mickaël Salaün	New
[v25,02/12] landlock: Add ruleset and domain management	Landlock LSM	- - -	---	2020-12-01	Mickaël Salaün	New
[v25,01/12] landlock: Add object management	Landlock LSM	- 1 -	---	2020-12-01	Mickaël Salaün	New
proc: Allow pid_revalidate() during LOOKUP_RCU	proc: Allow pid_revalidate() during LOOKUP_RCU	- - -	---	2020-11-30	Stephen Brennan	New
[net-next,3/3] mptcp: emit tcp reset when a join request fails	mptcp: reject invalid mp_join requests right away	- 1 -	---	2020-11-30	Florian Westphal	New

« 1 2 3 4 … 97 98 »