Show patches with: Archived = No       |   1683 patches
« 1 2 ... 3 4 516 17 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
[02/28] ima: Align ima_post_path_mknod() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore New
[01/28] ima: Align ima_inode_post_setattr() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore New
[-next] AppArmor: Fix some kernel-doc comments [-next] AppArmor: Fix some kernel-doc comments 1 - - --- 2023-03-03 Yang Li Handled Elsewhere
[11/11] proc_sysctl: deprecate register_sysctl_paths() sysctl: deprecate register_sysctl_paths() - - - --- 2023-03-02 Luis Chamberlain Handled Elsewhere
[10/11] csky: simplify alignment sysctl registration sysctl: deprecate register_sysctl_paths() - - - --- 2023-03-02 Luis Chamberlain Handled Elsewhere
[09/11] fs-verity: simplify sysctls with register_sysctl() sysctl: deprecate register_sysctl_paths() - - - --- 2023-03-02 Luis Chamberlain Handled Elsewhere
[08/11] kernel: pid_namespace: simplify sysctls with register_sysctl() sysctl: deprecate register_sysctl_paths() 1 - - --- 2023-03-02 Luis Chamberlain Handled Elsewhere
[07/11] seccomp: simplify sysctls with register_sysctl_init() sysctl: deprecate register_sysctl_paths() 1 - - --- 2023-03-02 Luis Chamberlain Handled Elsewhere
[06/11] yama: simplfy sysctls with register_sysctl() sysctl: deprecate register_sysctl_paths() 1 - - --- 2023-03-02 Luis Chamberlain Handled Elsewhere
[05/11] loadpin: simplify sysctls use with register_sysctl() sysctl: deprecate register_sysctl_paths() 1 1 - --- 2023-03-02 Luis Chamberlain Handled Elsewhere
[04/11] apparmor: simplify sysctls with register_sysctl_init() sysctl: deprecate register_sysctl_paths() 1 1 - --- 2023-03-02 Luis Chamberlain Handled Elsewhere
[03/11] sysctl: clarify register_sysctl_init() base directory order sysctl: deprecate register_sysctl_paths() - - - --- 2023-03-02 Luis Chamberlain Handled Elsewhere
[02/11] proc_sysctl: move helper which creates required subdirectories sysctl: deprecate register_sysctl_paths() - 1 - --- 2023-03-02 Luis Chamberlain Handled Elsewhere
[01/11] proc_sysctl: update docs for __register_sysctl_table() sysctl: deprecate register_sysctl_paths() - - - --- 2023-03-02 Luis Chamberlain Handled Elsewhere
[1/1] lsm: adds process attribute getter for Landlock process attribute support for Landlock - - - --- 2023-03-02 Shervin Oloumi Handled Elsewhere
[v5,6/6] integrity: machine keyring CA configuration Add CA enforcement keyring restrictions 1 - - --- 2023-03-02 Eric Snowberg Handled Elsewhere
[v5,5/6] KEYS: CA link restriction Add CA enforcement keyring restrictions - 1 - --- 2023-03-02 Eric Snowberg Handled Elsewhere
[v5,4/6] KEYS: X.509: Parse Key Usage Add CA enforcement keyring restrictions - 2 - --- 2023-03-02 Eric Snowberg Handled Elsewhere
[v5,3/6] KEYS: X.509: Parse Basic Constraints for CA Add CA enforcement keyring restrictions - 2 - --- 2023-03-02 Eric Snowberg Handled Elsewhere
[v5,2/6] KEYS: Add missing function documentation Add CA enforcement keyring restrictions - 4 - --- 2023-03-02 Eric Snowberg Handled Elsewhere
[v5,1/6] KEYS: Create static version of public_key_verify_signature Add CA enforcement keyring restrictions - 3 - --- 2023-03-02 Eric Snowberg Handled Elsewhere
tomoyo: replace tomoyo_round2() with kmalloc_size_roundup() tomoyo: replace tomoyo_round2() with kmalloc_size_roundup() - - - --- 2023-02-28 Vlastimil Babka Handled Elsewhere
[4.19,v3,6/6] ima: Handle -ESTALE returned by ima_filter_rule_match() Backport handling -ESTALE policy update failure to 4.19 - 1 - --- 2023-02-28 Guozihua (Scott) Handled Elsewhere
[4.19,v3,5/6] ima: Evaluate error in init_ima() Backport handling -ESTALE policy update failure to 4.19 - 1 - --- 2023-02-28 Guozihua (Scott) Handled Elsewhere
[4.19,v3,4/6] ima: ima/lsm policy rule loading logic bug fixes Backport handling -ESTALE policy update failure to 4.19 - - - --- 2023-02-28 Guozihua (Scott) Handled Elsewhere
[4.19,v3,3/6] ima: use the lsm policy update notifier Backport handling -ESTALE policy update failure to 4.19 - - - --- 2023-02-28 Guozihua (Scott) Handled Elsewhere
[4.19,v3,2/6] LSM: switch to blocking policy update notifiers Backport handling -ESTALE policy update failure to 4.19 2 - - --- 2023-02-28 Guozihua (Scott) Handled Elsewhere
[4.19,v3,1/6] IB/core: Don't register each MAD agent for LSM notifier Backport handling -ESTALE policy update failure to 4.19 1 1 - --- 2023-02-28 Guozihua (Scott) Handled Elsewhere
[v6,11/11] LSM: selftests for Linux Security Module syscalls LSM: Three basic syscalls - - - --- 2023-02-22 Casey Schaufler pcmoore Superseded
[v6,10/11] SELinux: Add selfattr hooks LSM: Three basic syscalls - - - --- 2023-02-22 Casey Schaufler pcmoore Superseded
[v6,09/11] AppArmor: Add selfattr hooks LSM: Three basic syscalls - - - --- 2023-02-22 Casey Schaufler pcmoore Superseded
[v6,08/11] Smack: implement setselfattr and getselfattr hooks LSM: Three basic syscalls - - - --- 2023-02-22 Casey Schaufler pcmoore Superseded
[v6,07/11] LSM: Helpers for attribute names and filling an lsm_ctx LSM: Three basic syscalls - - - --- 2023-02-22 Casey Schaufler pcmoore Superseded
[v6,06/11] LSM: wireup Linux Security Module syscalls LSM: Three basic syscalls 2 - - --- 2023-02-22 Casey Schaufler pcmoore Superseded
[v6,05/11] LSM: Create lsm_module_list system call LSM: Three basic syscalls - - - --- 2023-02-22 Casey Schaufler pcmoore Superseded
[v6,04/11] LSM: syscalls for current process attributes LSM: Three basic syscalls - - - --- 2023-02-22 Casey Schaufler pcmoore Superseded
[v6,03/11] proc: Use lsmids instead of lsm names for attrs LSM: Three basic syscalls - - - --- 2023-02-22 Casey Schaufler pcmoore Superseded
[v6,02/11] LSM: Maintain a table of LSM attribute data LSM: Three basic syscalls - - - --- 2023-02-22 Casey Schaufler pcmoore Superseded
[v6,01/11] LSM: Identify modules by more than name LSM: Three basic syscalls - - - --- 2023-02-22 Casey Schaufler pcmoore Superseded
[GIT,PULL] Smack patches for v6.3 [GIT,PULL] Smack patches for v6.3 - - - --- 2023-02-21 Casey Schaufler Handled Elsewhere
[v4] landlock: Clarify documentation for the LANDLOCK_ACCESS_FS_REFER right [v4] landlock: Clarify documentation for the LANDLOCK_ACCESS_FS_REFER right - - - --- 2023-02-21 Günther Noack Handled Elsewhere
[GIT,PULL] Landlock updates for v6.3 [GIT,PULL] Landlock updates for v6.3 - - - --- 2023-02-20 Mickaël Salaün Handled Elsewhere
[v2] kernel/sys.c: fix and improve control flow in __sys_setres[ug]id() [v2] kernel/sys.c: fix and improve control flow in __sys_setres[ug]id() - - - --- 2023-02-17 Ondrej Mosnacek pcmoore Handled Elsewhere
[22/22] lsm: styling fixes to security/security.c Move LSM hook comments into security/security.c - - - --- 2023-02-17 Paul Moore pcmoore Accepted
[21/22] lsm: move the remaining LSM hook comments to security/security.c Move LSM hook comments into security/security.c - - - --- 2023-02-17 Paul Moore pcmoore Accepted
[20/22] lsm: move the io_uring hook comments to security/security.c Move LSM hook comments into security/security.c - - - --- 2023-02-17 Paul Moore pcmoore Accepted
[19/22] lsm: move the perf hook comments to security/security.c Move LSM hook comments into security/security.c - - - --- 2023-02-17 Paul Moore pcmoore Accepted
[18/22] lsm: move the bpf hook comments to security/security.c Move LSM hook comments into security/security.c - - - --- 2023-02-17 Paul Moore pcmoore Accepted
[17/22] lsm: move the audit hook comments to security/security.c Move LSM hook comments into security/security.c - - - --- 2023-02-17 Paul Moore pcmoore Accepted
[16/22] lsm: move the binder hook comments to security/security.c Move LSM hook comments into security/security.c - - - --- 2023-02-17 Paul Moore pcmoore Accepted
[15/22] lsm: move the sysv hook comments to security/security.c Move LSM hook comments into security/security.c - - - --- 2023-02-17 Paul Moore pcmoore Accepted
[14/22] lsm: move the key hook comments to security/security.c Move LSM hook comments into security/security.c - - - --- 2023-02-17 Paul Moore pcmoore Accepted
[13/22] lsm: move the xfrm hook comments to security/security.c Move LSM hook comments into security/security.c - - - --- 2023-02-17 Paul Moore pcmoore Accepted
[12/22] lsm: move the Infiniband hook comments to security/security.c Move LSM hook comments into security/security.c - - - --- 2023-02-17 Paul Moore pcmoore Accepted
[11/22] lsm: move the SCTP hook comments to security/security.c Move LSM hook comments into security/security.c - - - --- 2023-02-17 Paul Moore pcmoore Accepted
[10/22] lsm: move the socket hook comments to security/security.c Move LSM hook comments into security/security.c - - - --- 2023-02-17 Paul Moore pcmoore Accepted
[09/22] lsm: move the AF_UNIX hook comments to security/security.c Move LSM hook comments into security/security.c - - - --- 2023-02-17 Paul Moore pcmoore Accepted
[08/22] lsm: move the netlink hook comments to security/security.c Move LSM hook comments into security/security.c - - - --- 2023-02-17 Paul Moore pcmoore Accepted
[07/22] lsm: move the task hook comments to security/security.c Move LSM hook comments into security/security.c - - - --- 2023-02-17 Paul Moore pcmoore Accepted
[06/22] lsm: move the file hook comments to security/security.c Move LSM hook comments into security/security.c - - - --- 2023-02-17 Paul Moore pcmoore Accepted
[05/22] lsm: move the kernfs hook comments to security/security.c Move LSM hook comments into security/security.c - - - --- 2023-02-17 Paul Moore pcmoore Accepted
[04/22] lsm: move the inode hook comments to security/security.c Move LSM hook comments into security/security.c - - - --- 2023-02-17 Paul Moore pcmoore Accepted
[03/22] lsm: move the filesystem hook comments to security/security.c Move LSM hook comments into security/security.c - - - --- 2023-02-17 Paul Moore pcmoore Accepted
[02/22] lsm: move the fs_context hook comments to security/security.c Move LSM hook comments into security/security.c - - - --- 2023-02-17 Paul Moore pcmoore Accepted
[01/22] lsm: move the program execution hook comments to security/security.c Move LSM hook comments into security/security.c - - - --- 2023-02-17 Paul Moore pcmoore Accepted
[v3] apparmor: global buffers spin lock may get contended [v3] apparmor: global buffers spin lock may get contended - - - --- 2023-02-17 John Johansen Handled Elsewhere
[1/1] apparmor: cache buffers on percpu list if there is lock contention Cover letter - - - --- 2023-02-16 Anil Altinay Handled Elsewhere
[v3] landlock: Clarify documentation for the LANDLOCK_ACCESS_FS_REFER right [v3] landlock: Clarify documentation for the LANDLOCK_ACCESS_FS_REFER right - - - --- 2023-02-16 Günther Noack Handled Elsewhere
[4.19,v2,5/5] ima: Handle -ESTALE returned by ima_filter_rule_match() Backport handling -ESTALE policy update failure to 4.19 - 1 - --- 2023-02-16 Guozihua (Scott) Handled Elsewhere
[4.19,v2,4/5] ima: Evaluate error in init_ima() Backport handling -ESTALE policy update failure to 4.19 - 1 - --- 2023-02-16 Guozihua (Scott) Handled Elsewhere
[4.19,v2,3/5] ima: use the lsm policy update notifier Backport handling -ESTALE policy update failure to 4.19 - - - --- 2023-02-16 Guozihua (Scott) Handled Elsewhere
[4.19,v2,2/5] LSM: switch to blocking policy update notifiers Backport handling -ESTALE policy update failure to 4.19 2 - - --- 2023-02-16 Guozihua (Scott) Handled Elsewhere
[4.19,v2,1/5] IB/core: Don't register each MAD agent for LSM notifier Backport handling -ESTALE policy update failure to 4.19 1 1 - --- 2023-02-16 Guozihua (Scott) Handled Elsewhere
[GIT,PULL] apparmor fix for v6.2 [GIT,PULL] apparmor fix for v6.2 - - - --- 2023-02-15 John Johansen Handled Elsewhere
kernel/sys.c: fix and improve control flow in __sys_setres[ug]id() kernel/sys.c: fix and improve control flow in __sys_setres[ug]id() - - - --- 2023-02-15 Ondrej Mosnacek Superseded
[v2] landlock: Clarify documentation for the LANDLOCK_ACCESS_FS_REFER right [v2] landlock: Clarify documentation for the LANDLOCK_ACCESS_FS_REFER right - - - --- 2023-02-13 Günther Noack Handled Elsewhere
MAINTAINERS: Update Landlock repository MAINTAINERS: Update Landlock repository - 1 - --- 2023-02-09 Mickaël Salaün Handled Elsewhere
[17/24] Documentation: security: correct spelling Documentation: correct lots of spelling errors (series 1) 2 1 - --- 2023-02-09 Randy Dunlap Handled Elsewhere
[v4,6/6] integrity: machine keyring CA configuration Add CA enforcement keyring restrictions - - - --- 2023-02-07 Eric Snowberg Handled Elsewhere
[v4,5/6] KEYS: CA link restriction Add CA enforcement keyring restrictions - 1 - --- 2023-02-07 Eric Snowberg Handled Elsewhere
[v4,4/6] KEYS: X.509: Parse Key Usage Add CA enforcement keyring restrictions - 1 - --- 2023-02-07 Eric Snowberg Handled Elsewhere
[v4,3/6] KEYS: X.509: Parse Basic Constraints for CA Add CA enforcement keyring restrictions - 2 - --- 2023-02-07 Eric Snowberg Handled Elsewhere
[v4,2/6] KEYS: Add missing function documentation Add CA enforcement keyring restrictions - 3 - --- 2023-02-07 Eric Snowberg Handled Elsewhere
[v4,1/6] KEYS: Create static version of public_key_verify_signature Add CA enforcement keyring restrictions - 2 - --- 2023-02-07 Eric Snowberg Handled Elsewhere
[v15,26/26] ima: Enable IMA namespaces ima: Namespace IMA with audit support in IMA-ns - - - --- 2023-02-06 Stefan Berger pcmoore RFC
[v15,25/26] ima: Restrict informational audit messages to init_ima_ns ima: Namespace IMA with audit support in IMA-ns - - - --- 2023-02-06 Stefan Berger pcmoore RFC
[v15,24/26] ima: Limit number of policy rules in non-init_ima_ns ima: Namespace IMA with audit support in IMA-ns - - - --- 2023-02-06 Stefan Berger pcmoore RFC
[v15,23/26] ima: Show owning user namespace's uid and gid when displaying policy ima: Namespace IMA with audit support in IMA-ns - 2 - --- 2023-02-06 Stefan Berger pcmoore RFC
[v15,22/26] ima: Introduce securityfs file to activate an IMA namespace ima: Namespace IMA with audit support in IMA-ns - - - --- 2023-02-06 Stefan Berger pcmoore RFC
[v15,21/26] ima: Setup securityfs for IMA namespace ima: Namespace IMA with audit support in IMA-ns 2 1 - --- 2023-02-06 Stefan Berger pcmoore RFC
[v15,20/26] ima: Remove unused iints from the integrity_iint_cache ima: Namespace IMA with audit support in IMA-ns - - - --- 2023-02-06 Stefan Berger pcmoore RFC
[v15,19/26] ima: Namespace audit status flags ima: Namespace IMA with audit support in IMA-ns - - - --- 2023-02-06 Stefan Berger pcmoore RFC
[v15,18/26] integrity: Add optional callback function to integrity_inode_free() ima: Namespace IMA with audit support in IMA-ns - - - --- 2023-02-06 Stefan Berger pcmoore RFC
[v15,17/26] integrity/ima: Define ns_status for storing namespaced iint data ima: Namespace IMA with audit support in IMA-ns - - - --- 2023-02-06 Stefan Berger pcmoore RFC
[v15,16/26] ima: Add functions for creating and freeing of an ima_namespace ima: Namespace IMA with audit support in IMA-ns 2 1 - --- 2023-02-06 Stefan Berger pcmoore RFC
[v15,15/26] ima: Implement ima_free_policy_rules() for freeing of an ima_namespace ima: Namespace IMA with audit support in IMA-ns - 2 - --- 2023-02-06 Stefan Berger pcmoore RFC
[v15,14/26] ima: Implement hierarchical processing of file accesses ima: Namespace IMA with audit support in IMA-ns - 2 - --- 2023-02-06 Stefan Berger pcmoore RFC
[v15,13/26] userns: Add pointer to ima_namespace to user_namespace ima: Namespace IMA with audit support in IMA-ns 1 1 - --- 2023-02-06 Stefan Berger pcmoore RFC
[v15,12/26] ima: Only accept AUDIT rules for non-init_ima_ns namespaces for now ima: Namespace IMA with audit support in IMA-ns 1 1 - --- 2023-02-06 Stefan Berger pcmoore RFC
[v15,11/26] ima: Define mac_admin_ns_capable() as a wrapper for ns_capable() ima: Namespace IMA with audit support in IMA-ns - - - --- 2023-02-06 Stefan Berger pcmoore RFC
« 1 2 ... 3 4 516 17 »