Show patches with: none      |   12227 patches
« 1 2 3 4122 123 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
[v10,7/7] MAINTAINERS: add KEYS-TRUSTED-CAAM KEYS: trusted: Introduce support for NXP CAAM-based trusted keys 1 1 - --- 2022-05-13 Ahmad Fatoum Handled Elsewhere
[v5,01/15] landlock: access mask renaming Network support for Landlock - - - --- 2022-05-16 Konstantin Meskhidze (A) Handled Elsewhere
[v5,02/15] landlock: landlock_find/insert_rule refactoring Network support for Landlock - - - --- 2022-05-16 Konstantin Meskhidze (A) Handled Elsewhere
[v5,03/15] landlock: merge and inherit function refactoring Network support for Landlock - - - --- 2022-05-16 Konstantin Meskhidze (A) Handled Elsewhere
[v5,04/15] landlock: helper functions refactoring Network support for Landlock - - - --- 2022-05-16 Konstantin Meskhidze (A) Handled Elsewhere
[v5,05/15] landlock: landlock_add_rule syscall refactoring Network support for Landlock - - - --- 2022-05-16 Konstantin Meskhidze (A) Handled Elsewhere
[v5,06/15] landlock: user space API network support Network support for Landlock - - - --- 2022-05-16 Konstantin Meskhidze (A) Handled Elsewhere
[v5,07/15] landlock: add support network rules Network support for Landlock - - - --- 2022-05-16 Konstantin Meskhidze (A) Handled Elsewhere
[v5,08/15] landlock: TCP network hooks implementation Network support for Landlock - - - --- 2022-05-16 Konstantin Meskhidze (A) Handled Elsewhere
[v5,09/15] seltests/landlock: add tests for bind() hooks Network support for Landlock - - - --- 2022-05-16 Konstantin Meskhidze (A) Handled Elsewhere
[v5,10/15] seltests/landlock: add tests for connect() hooks Network support for Landlock - - - --- 2022-05-16 Konstantin Meskhidze (A) Handled Elsewhere
[v5,11/15] seltests/landlock: connect() with AF_UNSPEC tests Network support for Landlock - - - --- 2022-05-16 Konstantin Meskhidze (A) Handled Elsewhere
[v5,12/15] seltests/landlock: rules overlapping test Network support for Landlock - - - --- 2022-05-16 Konstantin Meskhidze (A) Handled Elsewhere
[v5,13/15] seltests/landlock: ruleset expanding test Network support for Landlock - - - --- 2022-05-16 Konstantin Meskhidze (A) Handled Elsewhere
[v5,14/15] seltests/landlock: invalid user input data test Network support for Landlock - - - --- 2022-05-16 Konstantin Meskhidze (A) Handled Elsewhere
[v5,15/15] samples/landlock: adds network demo Network support for Landlock - - - --- 2022-05-16 Konstantin Meskhidze (A) Handled Elsewhere
security: keys: add __randomize_layout to keyring_search_context security: keys: add __randomize_layout to keyring_search_context - 1 - --- 2022-05-18 GONG, Ruiqi Handled Elsewhere
[GIT,PULL] SELinux fixes for v5.18 (#1) [GIT,PULL] SELinux fixes for v5.18 (#1) - - - --- 2022-05-18 Paul Moore Handled Elsewhere
[GIT,PULL] SELinux patches for v5.19 [GIT,PULL] SELinux patches for v5.19 - - - --- 2022-05-23 Paul Moore Handled Elsewhere
[GIT,PULL] Landlock changes for v5.19 [GIT,PULL] Landlock changes for v5.19 - - - --- 2022-05-23 Mickaël Salaün Handled Elsewhere
[GIT,PULL] TPM DEVICE DRIVER updates for v5.19-rc1 [GIT,PULL] TPM DEVICE DRIVER updates for v5.19-rc1 - - - --- 2022-05-23 jarkko@kernel.org Handled Elsewhere
[GIT,PULL] Smack patches for v5.19 [GIT,PULL] Smack patches for v5.19 - - - --- 2022-05-23 Casey Schaufler Handled Elsewhere
[v6,1/3] dm: Add verity helpers for LoadPin LoadPin: Enable loading from trusted dm-verity devices 1 - - --- 2022-05-23 Matthias Kaehlcke Handled Elsewhere
[v6,2/3] LoadPin: Enable loading from trusted dm-verity devices LoadPin: Enable loading from trusted dm-verity devices 1 - - --- 2022-05-23 Matthias Kaehlcke Handled Elsewhere
[v6,3/3] dm: verity-loadpin: Use CONFIG_SECURITY_LOADPIN_VERITY for conditional compilation LoadPin: Enable loading from trusted dm-verity devices 1 - - --- 2022-05-23 Matthias Kaehlcke Handled Elsewhere
[-next] Revert "evm: Fix memleak in init_desc" [-next] Revert "evm: Fix memleak in init_desc" - - - --- 2022-05-27 xiujianfeng Handled Elsewhere
[-next] evm: Use IS_ENABLED to initialize .enabled [-next] evm: Use IS_ENABLED to initialize .enabled - 1 - --- 2022-06-06 xiujianfeng Handled Elsewhere
security:trusted_tpm2: Fix memory leak in tpm2_key_encode() security:trusted_tpm2: Fix memory leak in tpm2_key_encode() - - - --- 2022-06-07 Jianglei Nie Handled Elsewhere
[RESEND] smack: Replace kzalloc + strncpy with kstrndup [RESEND] smack: Replace kzalloc + strncpy with kstrndup - 1 - --- 2022-06-07 GONG, Ruiqi Handled Elsewhere
[v2] KEYS: trusted: tpm2: Fix migratable logic [v2] KEYS: trusted: tpm2: Fix migratable logic - 2 - --- 2022-06-07 david.safford@gmail.com Handled Elsewhere
security:trusted_tpm2: Fix memory leak in tpm2_key_encode() security:trusted_tpm2: Fix memory leak in tpm2_key_encode() - - - --- 2022-06-08 Jianglei Nie Handled Elsewhere
[GIT,PULL] tpmdd updates for v5.19-rc2 [GIT,PULL] tpmdd updates for v5.19-rc2 - - - --- 2022-06-08 jarkko@kernel.org Handled Elsewhere
[GIT,PULL] tpmdd updates for v5.19-rc2-v2 [GIT,PULL] tpmdd updates for v5.19-rc2-v2 - - - --- 2022-06-08 jarkko@kernel.org Handled Elsewhere
[v2] KEYS: trusted: Fix memory leak in tpm2_key_encode() [v2] KEYS: trusted: Fix memory leak in tpm2_key_encode() - - - --- 2022-06-08 Jianglei Nie Handled Elsewhere
[v2] KEYS: trusted: Fix memory leak in tpm2_key_encode() [v2] KEYS: trusted: Fix memory leak in tpm2_key_encode() - - - --- 2022-06-08 Jianglei Nie Handled Elsewhere
[-next] ima: Use if/else statement in init_ima() [-next] ima: Use if/else statement in init_ima() - - - --- 2022-06-09 xiujianfeng Handled Elsewhere
[-next] smack: Remove the redundant lsm_inode_alloc [-next] smack: Remove the redundant lsm_inode_alloc - - - --- 2022-06-10 xiujianfeng Handled Elsewhere
smackfs: check for allocation failure of kmalloc() smackfs: check for allocation failure of kmalloc() - - - --- 2022-06-13 Li Qiong Handled Elsewhere
[v5] x86/kexec: Carry forward IMA measurement log on kexec [v5] x86/kexec: Carry forward IMA measurement log on kexec - 2 - --- 2022-06-13 Jonathan McDowell Handled Elsewhere
[2/2] LSM: SafeSetID: Add setgroups() security policy handling [1/2] security: Add LSM hook to setgroups() syscall - - - --- 2022-06-13 Micah Morton Handled Elsewhere
[-next] apparmor: Fix memleak in aa_simple_write_to_buffer() [-next] apparmor: Fix memleak in aa_simple_write_to_buffer() 1 - - --- 2022-06-14 xiujianfeng Handled Elsewhere
[1/3] LSM: SafeSetID: fix userns bug in selftest [1/3] LSM: SafeSetID: fix userns bug in selftest - - - --- 2022-06-15 Micah Morton Handled Elsewhere
[2/3] LSM: SafeSetID: selftest cleanup and prepare for GIDs [1/3] LSM: SafeSetID: fix userns bug in selftest - - - --- 2022-06-15 Micah Morton Handled Elsewhere
[3/3] LSM: SafeSetID: add GID testing to selftest [1/3] LSM: SafeSetID: fix userns bug in selftest - - - --- 2022-06-15 Micah Morton Handled Elsewhere
[v6,01/17] landlock: renames access mask Network support for Landlock - - - --- 2022-06-21 Konstantin Meskhidze (A) Handled Elsewhere
[v6,02/17] landlock: refactors landlock_find/insert_rule Network support for Landlock - - - --- 2022-06-21 Konstantin Meskhidze (A) Handled Elsewhere
[v6,03/17] landlock: refactors merge and inherit functions Network support for Landlock - - - --- 2022-06-21 Konstantin Meskhidze (A) Handled Elsewhere
[v6,04/17] landlock: moves helper functions Network support for Landlock - - - --- 2022-06-21 Konstantin Meskhidze (A) Handled Elsewhere
[v6,05/17] landlock: refactors helper functions Network support for Landlock - - - --- 2022-06-21 Konstantin Meskhidze (A) Handled Elsewhere
[v6,06/17] landlock: refactors landlock_add_rule syscall Network support for Landlock - - - --- 2022-06-21 Konstantin Meskhidze (A) Handled Elsewhere
[v6,07/17] landlock: user space API network support Network support for Landlock - - - --- 2022-06-21 Konstantin Meskhidze (A) Handled Elsewhere
[v6,08/17] landlock: adds support network rules Network support for Landlock - - - --- 2022-06-21 Konstantin Meskhidze (A) Handled Elsewhere
[v6,09/17] landlock: implements TCP network hooks Network support for Landlock - - - --- 2022-06-21 Konstantin Meskhidze (A) Handled Elsewhere
[v6,10/17] seltests/landlock: moves helper function Network support for Landlock - - - --- 2022-06-21 Konstantin Meskhidze (A) Handled Elsewhere
[v6,11/17] seltests/landlock: adds tests for bind() hooks Network support for Landlock - - - --- 2022-06-21 Konstantin Meskhidze (A) Handled Elsewhere
[v6,12/17] seltests/landlock: adds tests for connect() hooks Network support for Landlock - - - --- 2022-06-21 Konstantin Meskhidze (A) Handled Elsewhere
[v6,13/17] seltests/landlock: adds AF_UNSPEC family test Network support for Landlock - - - --- 2022-06-21 Konstantin Meskhidze (A) Handled Elsewhere
[v6,14/17] seltests/landlock: adds rules overlapping test Network support for Landlock - - - --- 2022-06-21 Konstantin Meskhidze (A) Handled Elsewhere
[v6,15/17] seltests/landlock: adds ruleset expanding test Network support for Landlock - - - --- 2022-06-21 Konstantin Meskhidze (A) Handled Elsewhere
[v6,16/17] seltests/landlock: adds invalid input data test Network support for Landlock - - - --- 2022-06-21 Konstantin Meskhidze (A) Handled Elsewhere
[v6,17/17] samples/landlock: adds network demo Network support for Landlock - - - --- 2022-06-21 Konstantin Meskhidze (A) Handled Elsewhere
[v7,1/3] dm: Add verity helpers for LoadPin LoadPin: Enable loading from trusted dm-verity devices 2 - - --- 2022-06-27 Matthias Kaehlcke Handled Elsewhere
[v7,2/3] LoadPin: Enable loading from trusted dm-verity devices LoadPin: Enable loading from trusted dm-verity devices 2 - - --- 2022-06-27 Matthias Kaehlcke Handled Elsewhere
[v7,3/3] dm: verity-loadpin: Use CONFIG_SECURITY_LOADPIN_VERITY for conditional compilation LoadPin: Enable loading from trusted dm-verity devices 2 - - --- 2022-06-27 Matthias Kaehlcke Handled Elsewhere
device_cgroup: Fix a spelling mistake device_cgroup: Fix a spelling mistake - - - --- 2022-06-28 Zhang Jiaming Handled Elsewhere
selftests/landlock: skip ptrace_test when YAMA is enabled selftests/landlock: skip ptrace_test when YAMA is enabled - - 1 --- 2022-06-28 Jeff Xu Handled Elsewhere
keys/keyctl: Fix typo in string keys/keyctl: Fix typo in string - - - --- 2022-07-04 Li zeming Handled Elsewhere
keys/keyring: Fix typo in string keys/keyring: Fix typo in string - 1 - --- 2022-07-04 Li zeming Handled Elsewhere
[v13,01/26] securityfs: rework dentry creation ima: Namespace IMA with audit support in IMA-ns - 2 - --- 2022-07-07 Stefan Berger Handled Elsewhere
[v13,02/26] securityfs: Extend securityfs with namespacing support ima: Namespace IMA with audit support in IMA-ns 1 - - --- 2022-07-07 Stefan Berger Handled Elsewhere
[v13,03/26] ima: Define ima_namespace struct and start moving variables into it ima: Namespace IMA with audit support in IMA-ns 1 1 - --- 2022-07-07 Stefan Berger Handled Elsewhere
[v13,04/26] ima: Move arch_policy_entry into ima_namespace ima: Namespace IMA with audit support in IMA-ns 1 2 - --- 2022-07-07 Stefan Berger Handled Elsewhere
[v13,05/26] ima: Move ima_htable into ima_namespace ima: Namespace IMA with audit support in IMA-ns 1 2 - --- 2022-07-07 Stefan Berger Handled Elsewhere
[v13,06/26] ima: Move measurement list related variables into ima_namespace ima: Namespace IMA with audit support in IMA-ns - 2 - --- 2022-07-07 Stefan Berger Handled Elsewhere
[v13,07/26] ima: Move some IMA policy and filesystem related variables into ima_namespace ima: Namespace IMA with audit support in IMA-ns 2 1 - --- 2022-07-07 Stefan Berger Handled Elsewhere
[v13,08/26] ima: Move IMA securityfs files into ima_namespace or onto stack ima: Namespace IMA with audit support in IMA-ns 2 1 - --- 2022-07-07 Stefan Berger Handled Elsewhere
[v13,09/26] ima: Move ima_lsm_policy_notifier into ima_namespace ima: Namespace IMA with audit support in IMA-ns 1 1 - --- 2022-07-07 Stefan Berger Handled Elsewhere
[v13,10/26] ima: Switch to lazy lsm policy updates for better performance ima: Namespace IMA with audit support in IMA-ns 1 - - --- 2022-07-07 Stefan Berger Handled Elsewhere
[v13,11/26] ima: Define mac_admin_ns_capable() as a wrapper for ns_capable() ima: Namespace IMA with audit support in IMA-ns - - - --- 2022-07-07 Stefan Berger Handled Elsewhere
[v13,12/26] ima: Only accept AUDIT rules for non-init_ima_ns namespaces for now ima: Namespace IMA with audit support in IMA-ns 1 1 - --- 2022-07-07 Stefan Berger Handled Elsewhere
[v13,13/26] userns: Add pointer to ima_namespace to user_namespace ima: Namespace IMA with audit support in IMA-ns 1 1 - --- 2022-07-07 Stefan Berger Handled Elsewhere
[v13,14/26] ima: Implement hierarchical processing of file accesses ima: Namespace IMA with audit support in IMA-ns - 2 - --- 2022-07-07 Stefan Berger Handled Elsewhere
[v13,15/26] ima: Implement ima_free_policy_rules() for freeing of an ima_namespace ima: Namespace IMA with audit support in IMA-ns - 2 - --- 2022-07-07 Stefan Berger Handled Elsewhere
[v13,16/26] ima: Add functions for creating and freeing of an ima_namespace ima: Namespace IMA with audit support in IMA-ns 2 1 - --- 2022-07-07 Stefan Berger Handled Elsewhere
[v13,17/26] integrity/ima: Define ns_status for storing namespaced iint data ima: Namespace IMA with audit support in IMA-ns - - - --- 2022-07-07 Stefan Berger Handled Elsewhere
[v13,18/26] integrity: Add optional callback function to integrity_inode_free() ima: Namespace IMA with audit support in IMA-ns - - - --- 2022-07-07 Stefan Berger Handled Elsewhere
[v13,19/26] ima: Namespace audit status flags ima: Namespace IMA with audit support in IMA-ns - - - --- 2022-07-07 Stefan Berger Handled Elsewhere
[v13,20/26] ima: Remove unused iints from the integrity_iint_cache ima: Namespace IMA with audit support in IMA-ns - - - --- 2022-07-07 Stefan Berger Handled Elsewhere
[v13,21/26] ima: Setup securityfs for IMA namespace ima: Namespace IMA with audit support in IMA-ns 2 1 - --- 2022-07-07 Stefan Berger Handled Elsewhere
[v13,22/26] ima: Introduce securityfs file to activate an IMA namespace ima: Namespace IMA with audit support in IMA-ns - - - --- 2022-07-07 Stefan Berger Handled Elsewhere
[v13,23/26] ima: Show owning user namespace's uid and gid when displaying policy ima: Namespace IMA with audit support in IMA-ns - 2 - --- 2022-07-07 Stefan Berger Handled Elsewhere
[v13,24/26] ima: Limit number of policy rules in non-init_ima_ns ima: Namespace IMA with audit support in IMA-ns - - - --- 2022-07-07 Stefan Berger Handled Elsewhere
[v13,25/26] ima: Restrict informational audit messages to init_ima_ns ima: Namespace IMA with audit support in IMA-ns - - - --- 2022-07-07 Stefan Berger Handled Elsewhere
[v13,26/26] ima: Enable IMA namespaces ima: Namespace IMA with audit support in IMA-ns - - - --- 2022-07-07 Stefan Berger Handled Elsewhere
[1/2] landlock: Support truncate(2). landlock: truncate(2) support - - - --- 2022-07-07 Günther Noack Handled Elsewhere
[2/2] landlock: Selftests for truncate(2) support. landlock: truncate(2) support - - - --- 2022-07-07 Günther Noack Handled Elsewhere
[RFC,1/7] initramfs: Move cpio handling routines into lib/ ima: Support measurement of kexec initramfs components - - - --- 2022-07-08 Jonathan McDowell Handled Elsewhere
[RFC,2/7] lib/cpio: Improve error handling ima: Support measurement of kexec initramfs components - - - --- 2022-07-08 Jonathan McDowell Handled Elsewhere
[RFC,3/7] lib/cpio: use non __init filesystem related functions ima: Support measurement of kexec initramfs components - - - --- 2022-07-08 Jonathan McDowell Handled Elsewhere
[RFC,4/7] lib/cpio: Allow use outside of initramfs creation ima: Support measurement of kexec initramfs components - - - --- 2022-07-08 Jonathan McDowell Handled Elsewhere
« 1 2 3 4122 123 »