Show patches with: none      |   9239 patches
« 1 2 3 492 93 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
[RFC,1/2] security: Remove security_add_mnt_opt() as it's unused [RFC,1/2] security: Remove security_add_mnt_opt() as it's unused - - - --- 2021-12-08 David Howells pcmoore In Next
[linux-next] selinux: remove redundant variables rc [linux-next] selinux: remove redundant variables rc - - - --- 2022-08-30 CGEL In Next
[SYSTEMD,1/7] selinux: add function name to audit data Re-add SELinux checks for unit install operations - - - --- 2021-08-05 Christian Göttsche Handled Elsewhere
[SYSTEMD,2/7] selinux: improve debug log format Re-add SELinux checks for unit install operations - - - --- 2021-08-05 Christian Göttsche Handled Elsewhere
[SYSTEMD,3/7] selinux: mark _mac_selinux_generic_access_check with leading underscore Re-add SELinux checks for unit install operations - - - --- 2021-08-05 Christian Göttsche Handled Elsewhere
[SYSTEMD,4/7] core: add support for MAC checks on unit install operations Re-add SELinux checks for unit install operations - - - --- 2021-08-05 Christian Göttsche Handled Elsewhere
[SYSTEMD,5/7] core: implement the sd-bus generic callback for SELinux Re-add SELinux checks for unit install operations - - - --- 2021-08-05 Christian Göttsche Handled Elsewhere
[SYSTEMD,6/7] core: avoid bypasses in D-BUS SELinux filter Re-add SELinux checks for unit install operations - - - --- 2021-08-05 Christian Göttsche Handled Elsewhere
[SYSTEMD,7/7] core: tweak job_type_to_access_method SELinux permissions Re-add SELinux checks for unit install operations - - - --- 2021-08-05 Christian Göttsche Handled Elsewhere
[4.4,1/2] binder: use euid from cred instead of using task [4.4,1/2] binder: use euid from cred instead of using task 1 - - --- 2021-11-10 Todd Kjos pcmoore Handled Elsewhere
[4.4,2/2] binder: use cred instead of task for selinux checks [4.4,1/2] binder: use euid from cred instead of using task 1 - - --- 2021-11-10 Todd Kjos pcmoore Handled Elsewhere
[4.9,1/2] binder: use euid from cred instead of using task [4.9,1/2] binder: use euid from cred instead of using task 1 - - --- 2021-11-10 Todd Kjos pcmoore Handled Elsewhere
[4.9,2/2] binder: use cred instead of task for selinux checks [4.9,1/2] binder: use euid from cred instead of using task 1 - - --- 2021-11-10 Todd Kjos pcmoore Handled Elsewhere
[4.14,1/2] binder: use euid from cred instead of using task [4.14,1/2] binder: use euid from cred instead of using task 1 - - --- 2021-11-10 Todd Kjos pcmoore Handled Elsewhere
[4.14,2/2] binder: use cred instead of task for selinux checks [4.14,1/2] binder: use euid from cred instead of using task 1 - - --- 2021-11-10 Todd Kjos pcmoore Handled Elsewhere
[4.19,1/2] binder: use euid from cred instead of using task [4.19,1/2] binder: use euid from cred instead of using task 1 - - --- 2021-11-10 Todd Kjos pcmoore Handled Elsewhere
[4.19,2/2] binder: use cred instead of task for selinux checks [4.19,1/2] binder: use euid from cred instead of using task 1 - - --- 2021-11-10 Todd Kjos pcmoore Handled Elsewhere
[5.4,1/3] binder: use euid from cred instead of using task [5.4,1/3] binder: use euid from cred instead of using task 1 - - --- 2021-11-10 Todd Kjos pcmoore Handled Elsewhere
[5.4,2/3] binder: use cred instead of task for selinux checks [5.4,1/3] binder: use euid from cred instead of using task 1 - - --- 2021-11-10 Todd Kjos pcmoore Handled Elsewhere
[5.4,3/3] binder: use cred instead of task for getsecid [5.4,1/3] binder: use euid from cred instead of using task 1 - - --- 2021-11-10 Todd Kjos pcmoore Handled Elsewhere
[5.10,1/3] binder: use euid from cred instead of using task [5.10,1/3] binder: use euid from cred instead of using task 1 - - --- 2021-11-10 Todd Kjos pcmoore Handled Elsewhere
[5.10,2/3] binder: use cred instead of task for selinux checks [5.10,1/3] binder: use euid from cred instead of using task 1 - - --- 2021-11-10 Todd Kjos pcmoore Handled Elsewhere
[5.10,3/3] binder: use cred instead of task for getsecid [5.10,1/3] binder: use euid from cred instead of using task 1 - - --- 2021-11-10 Todd Kjos pcmoore Handled Elsewhere
[RFC] capability: add capable_or to test for multiple caps with exactly one audit message [RFC] capability: add capable_or to test for multiple caps with exactly one audit message - - - --- 2021-11-16 Christian Göttsche pcmoore Handled Elsewhere
[RFC,2/2] capability: use new capable_or functionality [RFC,1/2] capability: add capable_or to test for multiple caps with exactly one audit message - - - --- 2022-02-17 Christian Göttsche pcmoore Handled Elsewhere
[RFC,1/2] capability: add capable_or to test for multiple caps with exactly one audit message [RFC,1/2] capability: add capable_or to test for multiple caps with exactly one audit message - - - --- 2022-02-17 Christian Göttsche pcmoore Handled Elsewhere
userfaultfd, capability: introduce CAP_USERFAULTFD userfaultfd, capability: introduce CAP_USERFAULTFD - - - --- 2022-02-24 Axel Rasmussen pcmoore Handled Elsewhere
[RESEND] xfs: don't generate selinux audit messages for capability testing [RESEND] xfs: don't generate selinux audit messages for capability testing 1 2 - --- 2022-03-01 Darrick J. Wong pcmoore Handled Elsewhere
[v4] firmware_loader: use kernel credentials when reading firmware [v4] firmware_loader: use kernel credentials when reading firmware 1 1 - --- 2022-05-02 Thiébaud Weksteen pcmoore Handled Elsewhere
[v2,RFC] sched: only perform capability check on privileged operation [v2,RFC] sched: only perform capability check on privileged operation - - - --- 2022-05-02 Christian Göttsche pcmoore Handled Elsewhere
[01/32] netlink: Avoid memcpy() across flexible array boundary Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[02/32] Introduce flexible array struct memcpy() helpers Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[03/32] flex_array: Add Kunit tests Introduce flexible array struct memcpy() helpers - 1 - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[04/32] fortify: Add run-time WARN for cross-field memcpy() Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[05/32] brcmfmac: Use mem_to_flex_dup() with struct brcmf_fweh_queue_item Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[06/32] iwlwifi: calib: Prepare to use mem_to_flex_dup() Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[07/32] iwlwifi: calib: Use mem_to_flex_dup() with struct iwl_calib_result Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[08/32] iwlwifi: mvm: Use mem_to_flex_dup() with struct ieee80211_key_conf Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[09/32] p54: Use mem_to_flex_dup() with struct p54_cal_database Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[10/32] wcn36xx: Use mem_to_flex_dup() with struct wcn36xx_hal_ind_msg Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[11/32] nl80211: Use mem_to_flex_dup() with struct cfg80211_cqm_config Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[12/32] cfg80211: Use mem_to_flex_dup() with struct cfg80211_bss_ies Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[13/32] mac80211: Use mem_to_flex_dup() with several structs Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[14/32] af_unix: Use mem_to_flex_dup() with struct unix_address Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[15/32] 802/garp: Use mem_to_flex_dup() with struct garp_attr Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[16/32] 802/mrp: Use mem_to_flex_dup() with struct mrp_attr Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[17/32] net/flow_offload: Use mem_to_flex_dup() with struct flow_action_cookie Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[18/32] firewire: Use __mem_to_flex_dup() with struct iso_interrupt_event Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[19/32] afs: Use mem_to_flex_dup() with struct afs_acl Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[20/32] ASoC: sigmadsp: Use mem_to_flex_dup() with struct sigmadsp_data Introduce flexible array struct memcpy() helpers 1 - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[21/32] soc: qcom: apr: Use mem_to_flex_dup() with struct apr_rx_buf Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[22/32] atags_proc: Use mem_to_flex_dup() with struct buffer Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[23/32] Bluetooth: Use mem_to_flex_dup() with struct hci_op_configure_data_path Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[24/32] IB/hfi1: Use mem_to_flex_dup() for struct tid_rb_node Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[25/32] Drivers: hv: utils: Use mem_to_flex_dup() with struct cn_msg Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[26/32] ima: Use mem_to_flex_dup() with struct modsig Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[27/32] KEYS: Use mem_to_flex_dup() with struct user_key_payload Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[29/32] xtensa: Use mem_to_flex_dup() with struct property Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[30/32] usb: gadget: f_fs: Use mem_to_flex_dup() with struct ffs_buffer Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[31/32] xenbus: Use mem_to_flex_dup() with struct read_buffer Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[32/32] esas2r: Use __mem_to_flex() with struct atto_ioctl Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[v2] cred: Propagate security_prepare_creds() error code [v2] cred: Propagate security_prepare_creds() error code 2 1 - --- 2022-05-25 Frederick Lawler pcmoore Handled Elsewhere
[RFC] f*xattr: allow O_PATH descriptors [RFC] f*xattr: allow O_PATH descriptors - 1 - --- 2022-06-07 Christian Göttsche pcmoore Handled Elsewhere
[v3] cred: Propagate security_prepare_creds() error code [v3] cred: Propagate security_prepare_creds() error code 2 1 - --- 2022-06-08 Frederick Lawler pcmoore Handled Elsewhere
[v3,RFC] sched: only perform capability check on privileged operation [v3,RFC] sched: only perform capability check on privileged operation - - - --- 2022-06-15 Christian Göttsche pcmoore Handled Elsewhere
[v3,2/8] capability: use new capable_any functionality [v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message - - - --- 2022-06-15 Christian Göttsche pcmoore Handled Elsewhere
[v3,3/8] block: use new capable_any functionality [v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message - 1 - --- 2022-06-15 Christian Göttsche pcmoore Handled Elsewhere
[v3,4/8] drivers: use new capable_any functionality [v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message - 1 - --- 2022-06-15 Christian Göttsche pcmoore Handled Elsewhere
[v3,5/8] fs: use new capable_any functionality [v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message - - - --- 2022-06-15 Christian Göttsche pcmoore Handled Elsewhere
[v3,6/8] kernel: use new capable_any functionality [v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message - - - --- 2022-06-15 Christian Göttsche pcmoore Handled Elsewhere
[v3,7/8] bpf: use new capable_any functionality [v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message - - - --- 2022-06-15 Christian Göttsche pcmoore Handled Elsewhere
[v3,8/8] net: use new capable_any functionality [v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message - - - --- 2022-06-15 Christian Göttsche pcmoore Handled Elsewhere
[v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message [v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message - 1 - --- 2022-06-15 Christian Göttsche pcmoore Handled Elsewhere
[v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,02/33] LSM: Infrastructure management of the sock security [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,03/33] LSM: Add the lsmblob data structure. [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - 2 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,04/33] LSM: provide lsm name and id slot mappings [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,05/33] IMA: avoid label collisions with stacked LSMs [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,06/33] LSM: Use lsmblob in security_audit_rule_match [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,07/33] LSM: Use lsmblob in security_kernel_act_as [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,08/33] LSM: Use lsmblob in security_secctx_to_secid [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,09/33] LSM: Use lsmblob in security_secid_to_secctx [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,10/33] LSM: Use lsmblob in security_ipc_getsecid [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,11/33] LSM: Use lsmblob in security_current_getsecid [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,12/33] LSM: Use lsmblob in security_inode_getsecid [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,13/33] LSM: Use lsmblob in security_cred_getsecid [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,14/33] LSM: Specify which LSM to display [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,15/33] LSM: Ensure the correct LSM context releaser [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 3 2 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,16/33] LSM: Use lsmcontext in security_secid_to_secctx [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,17/33] LSM: Use lsmcontext in security_inode_getsecctx [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 3 2 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,18/33] LSM: Use lsmcontext in security_dentry_init_security [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,19/33] LSM: security_secid_to_secctx in netlink netfilter [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 3 2 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,20/33] NET: Store LSM netlabel data in a lsmblob [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,21/33] binder: Pass LSM identifier for confirmation [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,22/33] LSM: security_secid_to_secctx module selection [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,23/33] Audit: Keep multiple LSM data in audit_names [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 - - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,24/33] Audit: Create audit_stamp structure [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 - - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,25/33] LSM: Add a function to report multiple LSMs [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,26/33] Audit: Allow multiple records in an audit_buffer [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,27/33] Audit: Add record for multiple task security contexts [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 - - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
« 1 2 3 492 93 »