Show patches with: Archived = No       |   1257 patches
« 1 2 3 412 13 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
[ima-evm-utils,v3] Add tests for MMAP_CHECK and MMAP_CHECK_REQPROT hooks [ima-evm-utils,v3] Add tests for MMAP_CHECK and MMAP_CHECK_REQPROT hooks - - - --- 2023-02-01 Roberto Sassu New
[ima-evm-utils,v2] Add tests for MMAP_CHECK and MMAP_CHECK_REQPROT hooks [ima-evm-utils,v2] Add tests for MMAP_CHECK and MMAP_CHECK_REQPROT hooks - 1 - --- 2023-01-31 Roberto Sassu New
[v4,2/2] ima: Introduce MMAP_CHECK_REQPROT hook [v4,1/2] ima: Align ima_file_mmap() parameters with mmap_file LSM hook - - - --- 2023-01-31 Roberto Sassu New
[v4,1/2] ima: Align ima_file_mmap() parameters with mmap_file LSM hook [v4,1/2] ima: Align ima_file_mmap() parameters with mmap_file LSM hook - 1 - --- 2023-01-31 Roberto Sassu New
[-next] evm: call dump_security_xattr() in all cases to remove code duplication [-next] evm: call dump_security_xattr() in all cases to remove code duplication - - - --- 2023-01-31 xiujianfeng New
[RFC,v9,16/16] documentation: add ipe documentation Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,15/16] ipe: kunit test for parser Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,14/16] scripts: add boot policy generation program Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,13/16] ipe: enable support for fs-verity as a trust provider Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,12/16] fsverity: consume builtin signature via LSM hook Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,11/16] ipe: add support for dm-verity as a trust provider Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,10/16] dm-verity: consume root hash digest and signature data via LSM hook Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,09/16] block|security: add LSM blob to block_device Integrity Policy Enforcement LSM (IPE) - 1 - --- 2023-01-30 Fan Wu New
[RFC,v9,08/16] ipe: add permissive toggle Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,07/16] uapi|audit|ipe: add ipe auditing support Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,06/16] ipe: add LSM hooks on execution and kernel read Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,05/16] ipe: add userspace interface Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,04/16] security: add new securityfs delete function Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,03/16] ipe: add evaluation loop and introduce 'boot_verified' as a trust provider Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,02/16] ipe: add policy parser Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[RFC,v9,01/16] security: add ipe lsm Integrity Policy Enforcement LSM (IPE) - - - --- 2023-01-30 Fan Wu New
[-next] evm: call dump_security_xattr() in all cases to remove code duplication [-next] evm: call dump_security_xattr() in all cases to remove code duplication - - - --- 2023-01-29 xiujianfeng New
[25/35] Documentation: security: correct spelling Documentation: correct lots of spelling errors (series 1) - 1 - --- 2023-01-27 Randy Dunlap New
[ima-evm-utils] Add tests for MMAP_CHECK and MMAP_CHECK_REQPROT hooks [ima-evm-utils] Add tests for MMAP_CHECK and MMAP_CHECK_REQPROT hooks - - - --- 2023-01-26 Roberto Sassu New
[v3,2/2] ima: Introduce MMAP_CHECK_REQPROT hook [v3,1/2] ima: Align ima_file_mmap() parameters with mmap_file LSM hook - - - --- 2023-01-26 Roberto Sassu New
[v3,1/2] ima: Align ima_file_mmap() parameters with mmap_file LSM hook [v3,1/2] ima: Align ima_file_mmap() parameters with mmap_file LSM hook - 1 - --- 2023-01-26 Roberto Sassu New
[v3,2/2] vfs: avoid duplicating creds in faccessat if possible [v3,1/2] capability: add cap_isidentical - - - --- 2023-01-25 Mateusz Guzik New
[v3,1/2] capability: add cap_isidentical [v3,1/2] capability: add cap_isidentical - 1 - --- 2023-01-25 Mateusz Guzik New
smackfs: Added check catlen smackfs: Added check catlen - - - --- 2023-01-24 Denis Arefev New
[RESEND,bpf-next,4/4] bpf: Only enable BPF LSM hooks when an LSM program is attached Reduce overhead of LSMs with static calls - - - --- 2023-01-20 KP Singh pcmoore New
[RESEND,bpf-next,3/4] security: Replace indirect LSM hook calls with static calls Reduce overhead of LSMs with static calls - - - --- 2023-01-20 KP Singh pcmoore New
[RESEND,bpf-next,2/4] security: Generate a header with the count of enabled LSMs Reduce overhead of LSMs with static calls - - - --- 2023-01-20 KP Singh pcmoore New
[RESEND,bpf-next,1/4] kernel: Add helper macros for loop unrolling Reduce overhead of LSMs with static calls - - - --- 2023-01-20 KP Singh pcmoore New
[v2,2/2] vfs: avoid duplicating creds in faccessat if possible [v2,1/2] capability: add cap_isidentical - - - --- 2023-01-16 Mateusz Guzik pcmoore New
[v2,1/2] capability: add cap_isidentical [v2,1/2] capability: add cap_isidentical - 1 - --- 2023-01-16 Mateusz Guzik pcmoore New
[v2] security: Restore passing final prot to ima_file_mmap() [v2] security: Restore passing final prot to ima_file_mmap() - - - --- 2022-12-21 Roberto Sassu pcmoore New
[RFC,v2,7/7] selftests/bpf: Change return value in test_libbpf_get_fd_by_id_opts.c bpf-lsm: Check return values of security modules - - - --- 2022-12-07 Roberto Sassu New
[RFC,v2,6/7] selftests/bpf: Prevent positive ret values in test_lsm and verify_pkcs7_sig bpf-lsm: Check return values of security modules - - - --- 2022-12-07 Roberto Sassu New
[RFC,v2,5/7] selftests/bpf: Check if return values of LSM programs are allowed bpf-lsm: Check return values of security modules - - - --- 2022-12-07 Roberto Sassu New
[RFC,v2,4/7] bpf-lsm: Enforce return value limitations on security modules bpf-lsm: Check return values of security modules - - - --- 2022-12-07 Roberto Sassu New
[RFC,v2,3/7] lsm: Redefine LSM_HOOK() macro to add return value flags as argument bpf-lsm: Check return values of security modules - - - --- 2022-12-07 Roberto Sassu New
[RFC,v2,2/7] bpf: Mark ALU32 operations in bpf_reg_state structure bpf-lsm: Check return values of security modules - - - --- 2022-12-07 Roberto Sassu New
[RFC,v2,1/7] bpf: Remove superfluous btf_id_set_contains() declaration bpf-lsm: Check return values of security modules - - - --- 2022-12-07 Roberto Sassu New
[v7,6/6] evm: Support multiple LSMs providing an xattr evm: Do HMAC of multiple per LSM xattrs for new inodes - 1 - --- 2022-12-01 Roberto Sassu pcmoore New
[v7,5/6] evm: Align evm_inode_init_security() definition with LSM infrastructure evm: Do HMAC of multiple per LSM xattrs for new inodes - 1 - --- 2022-12-01 Roberto Sassu pcmoore New
[v7,4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook evm: Do HMAC of multiple per LSM xattrs for new inodes - 1 - --- 2022-12-01 Roberto Sassu pcmoore New
[v7,3/6] security: Remove security_old_inode_init_security() evm: Do HMAC of multiple per LSM xattrs for new inodes - 1 - --- 2022-12-01 Roberto Sassu pcmoore New
[v7,2/6] ocfs2: Switch to security_inode_init_security() evm: Do HMAC of multiple per LSM xattrs for new inodes - 1 - --- 2022-12-01 Roberto Sassu pcmoore New
[v7,1/6] reiserfs: Switch to security_inode_init_security() evm: Do HMAC of multiple per LSM xattrs for new inodes - 1 - --- 2022-12-01 Roberto Sassu pcmoore New
[v5] evm: Correct inode_init_security hooks behaviors [v5] evm: Correct inode_init_security hooks behaviors - - - --- 2022-11-25 Nicolas Bouchinet New
[RFC,v2,1/1] Use a fs callback to set security specific data RFC on how to include LSM hooks for io_uring commands - - - --- 2022-11-22 Joel Granados pcmoore New
[v5] vfs, security: Fix automount superblock LSM init problem, preventing NFS sb sharing [v5] vfs, security: Fix automount superblock LSM init problem, preventing NFS sb sharing 2 1 1 --- 2022-11-10 David Howells pcmoore New
[2/2] doc: Fix fs_context_parse_param description in mount_api.rst [1/2] lsm: Fix description of fs_context_parse_param - - - --- 2022-12-09 Roberto Sassu pcmoore Under Review
[GIT,PULL] LSM patches for v6.2 [GIT,PULL] LSM patches for v6.2 - - - --- 2022-12-13 Paul Moore pcmoore Accepted
[1/2] lsm: Fix description of fs_context_parse_param [1/2] lsm: Fix description of fs_context_parse_param - - - --- 2022-12-09 Roberto Sassu pcmoore Accepted
[v2,2/2] lsm: Add/fix return values in lsm_hooks.h and fix formatting lsm: Improve LSM hooks documentation - - - --- 2022-11-28 Roberto Sassu Accepted
[v2,1/2] lsm: Clarify documentation of vm_enough_memory hook lsm: Improve LSM hooks documentation - - - --- 2022-11-28 Roberto Sassu pcmoore Accepted
[v4,1/5] reiserfs: Add missing calls to reiserfs_security_free() evm: Prepare for moving to the LSM infrastructure - 1 - --- 2022-11-10 Roberto Sassu pcmoore Accepted
[RFC] lsm,fs: fix vfs_getxattr_alloc() return type and caller error paths [RFC] lsm,fs: fix vfs_getxattr_alloc() return type and caller error paths - 2 - --- 2022-11-10 Paul Moore pcmoore Accepted
[GIT,PULL] LSM fixes for v6.1 (#2) [GIT,PULL] LSM fixes for v6.1 (#2) - - - --- 2022-11-07 Paul Moore pcmoore Accepted
[v2] LSM: Better reporting of actual LSMs at boot [v2] LSM: Better reporting of actual LSMs at boot 2 - - --- 2022-11-02 Kees Cook pcmoore Accepted
capabilities: fix undefined behavior in bit shift for CAP_TO_MASK capabilities: fix undefined behavior in bit shift for CAP_TO_MASK 1 1 - --- 2022-10-31 Gaosheng Cui pcmoore Accepted
[GIT,PULL] LSM fixes for v6.1 (#1) [GIT,PULL] LSM fixes for v6.1 (#1) - - - --- 2022-10-31 Paul Moore pcmoore Accepted
[v2] audit: Fix some kernel-doc warnings [v2] audit: Fix some kernel-doc warnings - - - --- 2022-10-26 Bo Liu pcmoore Accepted
[v2] security: commoncap: fix potential memleak on error path from vfs_getxattr_alloc [v2] security: commoncap: fix potential memleak on error path from vfs_getxattr_alloc 1 - - --- 2022-10-25 Gaosheng Cui pcmoore Accepted
device_cgroup: Roll back to original exceptions after copy failure device_cgroup: Roll back to original exceptions after copy failure - 1 - --- 2022-10-25 wangweiyang pcmoore Accepted
fs: edit a comment made in bad taste fs: edit a comment made in bad taste - - - --- 2022-10-17 Paul Moore Accepted
lsm: make security_socket_getpeersec_stream() sockptr_t safe lsm: make security_socket_getpeersec_stream() sockptr_t safe 2 - - --- 2022-10-10 Paul Moore pcmoore Accepted
[GIT,PULL] LSM patches for v6.1 [GIT,PULL] LSM patches for v6.1 - - - --- 2022-10-03 Paul Moore pcmoore Accepted
lockdown: ratelimit denial messages lockdown: ratelimit denial messages - - - --- 2022-09-08 Nathan Lynch pcmoore Accepted
[GIT,PULL] LSM fixes for v6.0 (#1) [GIT,PULL] LSM fixes for v6.0 (#1) - - - --- 2022-08-29 Paul Moore pcmoore Accepted
[3/3] /dev/null: add IORING_OP_URING_CMD support LSM hooks for IORING_OP_URING_CMD 1 - - --- 2022-08-22 Paul Moore pcmoore Accepted
[2/3] selinux: implement the security_uring_cmd() LSM hook LSM hooks for IORING_OP_URING_CMD - - - --- 2022-08-22 Paul Moore pcmoore Accepted
[1/3] lsm,io_uring: add LSM hooks for the new uring_cmd file op LSM hooks for IORING_OP_URING_CMD 1 - - --- 2022-08-22 Paul Moore pcmoore Accepted
[v5,4/4] selinux: Implement userns_create hook Introduce security_create_user_ns() - - - --- 2022-08-15 Frederick Lawler pcmoore Accepted
[v5,3/4] selftests/bpf: Add tests verifying bpf lsm userns_create hook Introduce security_create_user_ns() 1 - - --- 2022-08-15 Frederick Lawler pcmoore Accepted
[v5,2/4] bpf-lsm: Make bpf_lsm_userns_create() sleepable Introduce security_create_user_ns() 3 - - --- 2022-08-15 Frederick Lawler pcmoore Accepted
[v5,1/4] security, lsm: Introduce security_create_user_ns() Introduce security_create_user_ns() - 2 - --- 2022-08-15 Frederick Lawler pcmoore Accepted
[RESEND,-next] lsm_audit: Clean up redundant NULL pointer check [RESEND,-next] lsm_audit: Clean up redundant NULL pointer check - - - --- 2022-07-14 xiujianfeng pcmoore Accepted
MAINTAINERS: update the LSM maintainer info MAINTAINERS: update the LSM maintainer info 3 - - --- 2022-07-08 Paul Moore pcmoore Accepted
[RFC,RESEND] userfaultfd: open userfaultfds with O_RDONLY [RFC,RESEND] userfaultfd: open userfaultfds with O_RDONLY 2 - - --- 2022-07-08 Ondrej Mosnacek pcmoore Accepted
[RFC,4/4] security: Enforce limitations on return values from LSMs security: Ensure LSMs return expected values - - - --- 2022-11-15 Roberto Sassu pcmoore Rejected
net: fix memory leak in security_sk_alloc() net: fix memory leak in security_sk_alloc() - - - --- 2022-11-11 Wang Yufen Rejected
[4/4] powerpc/pseries: expose authenticated variables stored in LPAR PKS powerpc/pseries: expose firmware security variables via filesystem - - - --- 2022-11-06 Nayna Jain pcmoore Rejected
[3/4] powerpc/pseries: initialize fwsecurityfs with plpks arch-specific structure powerpc/pseries: expose firmware security variables via filesystem - - - --- 2022-11-06 Nayna Jain pcmoore Rejected
[2/4] fs: define a firmware security filesystem named fwsecurityfs powerpc/pseries: expose firmware security variables via filesystem - - - --- 2022-11-06 Nayna Jain pcmoore Rejected
[1/4] powerpc/pseries: Add new functions to PLPKS driver powerpc/pseries: expose firmware security variables via filesystem - - - --- 2022-11-06 Nayna Jain pcmoore Rejected
[6b/10] CaitSith: Add policy management functions. [6b/10] CaitSith: Add policy management functions. - - - --- 2022-11-02 Tetsuo Handa pcmoore Rejected
[6a/10] CaitSith: Add policy management functions. [6a/10] CaitSith: Add policy management functions. - - - --- 2022-11-02 Tetsuo Handa pcmoore Rejected
[10/10] CaitSith: Add Kconfig and Makefile files. [01/10] security: Export security_hook_heads - - - --- 2022-11-02 Tetsuo Handa pcmoore Rejected
[09/10] CaitSith: Add garbage collector functions. [01/10] security: Export security_hook_heads - - - --- 2022-11-02 Tetsuo Handa pcmoore Rejected
[08/10] CaitSith: Add pathname calculation functions. [01/10] security: Export security_hook_heads - - - --- 2022-11-02 Tetsuo Handa pcmoore Rejected
[07/10] CaitSith: Add permission checking functions. [01/10] security: Export security_hook_heads - - - --- 2022-11-02 Tetsuo Handa pcmoore Rejected
[05/10] CaitSith: Add LSM interface management file. [01/10] security: Export security_hook_heads - - - --- 2022-11-02 Tetsuo Handa pcmoore Rejected
[04/10] CaitSith: Add header file. [01/10] security: Export security_hook_heads - - - --- 2022-11-02 Tetsuo Handa pcmoore Rejected
[03/10] fs,kernel: Export d_absolute_path()/find_task_by_pid_ns()/find_task_by_vpid() [01/10] security: Export security_hook_heads - - - --- 2022-11-02 Tetsuo Handa pcmoore Rejected
[02/10] mm: Export copy_to_kernel_nofault() [01/10] security: Export security_hook_heads - - - --- 2022-11-02 Tetsuo Handa pcmoore Rejected
[01/10] security: Export security_hook_heads [01/10] security: Export security_hook_heads - - - --- 2022-11-02 Tetsuo Handa pcmoore Rejected
[RFC,v4,2/2] security/inode.c: Add capabilities file. Add capabilities file to securityfs 1 - - --- 2022-07-25 Francis Laniel pcmoore Rejected
[RFC,v4,1/2] capability: Add cap_string. Add capabilities file to securityfs 1 - - --- 2022-07-25 Francis Laniel pcmoore Rejected
« 1 2 3 412 13 »