Security modules development

Show patches with: State = Action Required | 12149 patches

« 1 2 ... 6 7 8 … 121 122 »

Patch	Series	A/R/T	S/W/F	Date	Submitter	State
[v2,02/12] landlock: Reduce the maximum number of layers to 16	Landlock: file linking and renaming support	- 1 -	---	2022-03-29	Mickaël Salaün	New
[v2,01/12] landlock: Define access_mask_t to enforce a consistent access mask size	Landlock: file linking and renaming support	- 1 -	---	2022-03-29	Mickaël Salaün	New
[18/18] bpf-preload/selftests: Preload a test eBPF program and check pinned objects	bpf: Secure and authenticated preloading of eBPF programs	- - -	---	2022-03-28	Roberto Sassu	New
[17/18] bpf-preload/selftests: Add test for automatic generation of preload methods	bpf: Secure and authenticated preloading of eBPF programs	- - -	---	2022-03-28	Roberto Sassu	New
[16/18] bpf-preload: Do kernel mount to ensure that pinned objects don't disappear	bpf: Secure and authenticated preloading of eBPF programs	- - -	---	2022-03-28	Roberto Sassu	New
[15/18] bpf-preload: Generate code of kernel module to preload	bpf: Secure and authenticated preloading of eBPF programs	- - -	---	2022-03-28	Roberto Sassu	New
[14/18] bpf-preload: Switch to new preload registration method	bpf: Secure and authenticated preloading of eBPF programs	- - -	---	2022-03-28	Roberto Sassu	New
[13/18] bpf-preload: Move pinned links and maps to a dedicated directory in bpffs	bpf: Secure and authenticated preloading of eBPF programs	- - -	---	2022-03-28	Roberto Sassu	New
[12/18] bpf-preload: Implement new registration method for preloading eBPF programs	bpf: Secure and authenticated preloading of eBPF programs	- - -	---	2022-03-28	Roberto Sassu	New
[11/18] bpf-preload: Store multiple bpf_preload_ops structures in a linked list	bpf: Secure and authenticated preloading of eBPF programs	- - -	---	2022-03-28	Roberto Sassu	New
[10/18] bpf-preload: Generate bpf_preload_ops	bpf: Secure and authenticated preloading of eBPF programs	- - -	---	2022-03-28	Roberto Sassu	New
[09/18] bpf-preload: Generate code to pin non-internal maps	bpf: Secure and authenticated preloading of eBPF programs	- - -	---	2022-03-28	Roberto Sassu	New
[08/18] bpf-preload: Generate load_skel()	bpf: Secure and authenticated preloading of eBPF programs	- - -	---	2022-03-28	Roberto Sassu	New
[07/18] bpf-preload: Generate preload()	bpf: Secure and authenticated preloading of eBPF programs	- - -	---	2022-03-28	Roberto Sassu	New
[06/18] bpf-preload: Generate free_objs_and_skel()	bpf: Secure and authenticated preloading of eBPF programs	- - -	---	2022-03-28	Roberto Sassu	New
[05/18] bpf-preload: Generate static variables	bpf: Secure and authenticated preloading of eBPF programs	- - -	---	2022-03-28	Roberto Sassu	New
[04/18] bpf-preload: Export and call bpf_obj_do_pin_kernel()	bpf: Secure and authenticated preloading of eBPF programs	- - -	---	2022-03-28	Roberto Sassu	New
[03/18] bpf-preload: Generalize object pinning from the kernel	bpf: Secure and authenticated preloading of eBPF programs	- - -	---	2022-03-28	Roberto Sassu	New
[02/18] bpf-preload: Move bpf_preload.h to include/linux	bpf: Secure and authenticated preloading of eBPF programs	- - -	---	2022-03-28	Roberto Sassu	New
[01/18] bpf: Export bpf_link_inc()	bpf: Secure and authenticated preloading of eBPF programs	- - -	---	2022-03-28	Roberto Sassu	New
[v2] KEYS: Improve error handling in the script	[v2] KEYS: Improve error handling in the script	- - -	---	2022-03-25	Denis Glazkov	New
[RFC] getvalues(2) prototype	[RFC] getvalues(2) prototype	- - -	---	2022-03-22	Miklos Szeredi	New
[GIT,PULL] SELinux patches for v5.18	[GIT,PULL] SELinux patches for v5.18	- - -	---	2022-03-21	Paul Moore	New
[GIT,PULL] Smack patches for v5.18	[GIT,PULL] Smack patches for v5.18	- - -	---	2022-03-21	Casey Schaufler	New
[GIT,PULL] Add trusted_for(2) (was O_MAYEXEC)	[GIT,PULL] Add trusted_for(2) (was O_MAYEXEC)	- - -	---	2022-03-21	Mickaël Salaün	New
[GIT,PULL] Landlock fixes for v5.18	[GIT,PULL] Landlock fixes for v5.18	- - -	---	2022-03-21	Mickaël Salaün	New
ima: remove template "ima" as the compiled default	ima: remove template "ima" as the compiled default	- - -	---	2022-03-21	Guozihua (Scott)	New
[net-next] netlabel: fix out-of-bounds memory accesses	[net-next] netlabel: fix out-of-bounds memory accesses	1 - -	---	2022-03-18	wangyufen	New
[-next] apparmor: Fix some kernel-doc comments	[-next] apparmor: Fix some kernel-doc comments	1 - -	---	2022-03-17	Yang Li	New
[v6,4/4] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys	KEYS: trusted: Introduce support for NXP CAAM-based trusted keys	- 2 3	---	2022-03-16	Ahmad Fatoum	New
[v6,3/4] crypto: caam - add in-kernel interface for blob generator	KEYS: trusted: Introduce support for NXP CAAM-based trusted keys	- 2 2	---	2022-03-16	Ahmad Fatoum	New
[v6,2/4] KEYS: trusted: allow use of kernel RNG for key material	KEYS: trusted: Introduce support for NXP CAAM-based trusted keys	2 3 -	---	2022-03-16	Ahmad Fatoum	New
[v6,1/4] KEYS: trusted: allow use of TEE as backend without TCG_TPM support	KEYS: trusted: Introduce support for NXP CAAM-based trusted keys	- 2 2	---	2022-03-16	Ahmad Fatoum	New
[-next] capability: Add parameter description in kernel-doc comment	[-next] capability: Add parameter description in kernel-doc comment	- - -	---	2022-03-16	Yang Li	New
[v12,4/4] integrity: support including firmware ".platform" keys at build time	integrity: support including firmware ".platform" keys at build time	- 1 -	---	2022-03-11	Nayna Jain	New
[v12,3/4] Revert "certs: move scripts/extract-cert to certs/"	integrity: support including firmware ".platform" keys at build time	- - -	---	2022-03-11	Nayna Jain	New
[v12,2/4] integrity: make integrity_keyring_from_id() non-static	integrity: support including firmware ".platform" keys at build time	- 1 -	---	2022-03-11	Nayna Jain	New
[v12,1/4] certs: export load_certificate_list() to be used outside certs/	integrity: support including firmware ".platform" keys at build time	- 1 -	---	2022-03-11	Nayna Jain	New
[v33,29/29] AppArmor: Remove the exclusive flag	LSM: Module stacking for AppArmor	2 1 -	---	2022-03-10	Casey Schaufler	New
[v33,28/29] LSM: Add /proc attr entry for full LSM context	LSM: Module stacking for AppArmor	- 1 -	---	2022-03-10	Casey Schaufler	New
[v33,27/29] Audit: Add record for multiple object security contexts	LSM: Module stacking for AppArmor	- - -	---	2022-03-10	Casey Schaufler	New
[v33,26/29] Audit: Add record for multiple task security contexts	LSM: Module stacking for AppArmor	- - -	---	2022-03-10	Casey Schaufler	New
[v33,25/29] Audit: Allow multiple records in an audit_buffer	LSM: Module stacking for AppArmor	- - -	---	2022-03-10	Casey Schaufler	New
[v33,24/29] LSM: Add a function to report multiple LSMs	LSM: Module stacking for AppArmor	- - -	---	2022-03-10	Casey Schaufler	New
[v33,23/29] Audit: Create audit_stamp structure	LSM: Module stacking for AppArmor	1 - -	---	2022-03-10	Casey Schaufler	New
[v33,22/29] Audit: Keep multiple LSM data in audit_names	LSM: Module stacking for AppArmor	1 - -	---	2022-03-10	Casey Schaufler	New
[v33,21/29] LSM: Extend security_secid_to_secctx to include module selection	LSM: Module stacking for AppArmor	- - -	---	2022-03-10	Casey Schaufler	New
[v33,20/29] binder: Pass LSM identifier for confirmation	LSM: Module stacking for AppArmor	- - -	---	2022-03-10	Casey Schaufler	New
[v33,19/29] NET: Store LSM netlabel data in a lsmblob	LSM: Module stacking for AppArmor	2 2 -	---	2022-03-10	Casey Schaufler	New
[v33,18/29] LSM: security_secid_to_secctx in netlink netfilter	LSM: Module stacking for AppArmor	3 2 -	---	2022-03-10	Casey Schaufler	New
[v33,17/29] LSM: Use lsmcontext in security_inode_getsecctx	LSM: Module stacking for AppArmor	3 2 -	---	2022-03-10	Casey Schaufler	New
[v33,16/29] LSM: Use lsmcontext in security_secid_to_secctx	LSM: Module stacking for AppArmor	- - -	---	2022-03-10	Casey Schaufler	New
[v33,15/29] LSM: Ensure the correct LSM context releaser	LSM: Module stacking for AppArmor	3 2 -	---	2022-03-10	Casey Schaufler	New
[v33,14/29] LSM: Specify which LSM to display	LSM: Module stacking for AppArmor	- - -	---	2022-03-10	Casey Schaufler	New
[v33,13/29] LSM: Use lsmblob in security_cred_getsecid	LSM: Module stacking for AppArmor	2 2 -	---	2022-03-10	Casey Schaufler	New
[v33,12/29] LSM: Use lsmblob in security_inode_getsecid	LSM: Module stacking for AppArmor	2 2 -	---	2022-03-10	Casey Schaufler	New
[v33,11/29] LSM: Use lsmblob in security_current_getsecid	LSM: Module stacking for AppArmor	2 2 -	---	2022-03-10	Casey Schaufler	New
[v33,10/29] LSM: Use lsmblob in security_ipc_getsecid	LSM: Module stacking for AppArmor	2 2 -	---	2022-03-10	Casey Schaufler	New
[v33,09/29] LSM: Use lsmblob in security_secid_to_secctx	LSM: Module stacking for AppArmor	1 1 -	---	2022-03-10	Casey Schaufler	New
[v33,08/29] LSM: Use lsmblob in security_secctx_to_secid	LSM: Module stacking for AppArmor	1 1 -	---	2022-03-10	Casey Schaufler	New
[v33,07/29] LSM: Use lsmblob in security_kernel_act_as	LSM: Module stacking for AppArmor	2 2 -	---	2022-03-10	Casey Schaufler	New
[v33,06/29] LSM: Use lsmblob in security_audit_rule_match	LSM: Module stacking for AppArmor	1 - -	---	2022-03-10	Casey Schaufler	New
[v33,05/29] IMA: avoid label collisions with stacked LSMs	LSM: Module stacking for AppArmor	- - -	---	2022-03-10	Casey Schaufler	New
[v33,04/29] LSM: provide lsm name and id slot mappings	LSM: Module stacking for AppArmor	1 1 -	---	2022-03-10	Casey Schaufler	New
[v33,03/29] LSM: Add the lsmblob data structure.	LSM: Module stacking for AppArmor	- 1 -	---	2022-03-10	Casey Schaufler	New
[v33,02/29] LSM: Infrastructure management of the sock security	LSM: Module stacking for AppArmor	2 2 -	---	2022-03-10	Casey Schaufler	New
[v33,01/29] integrity: disassociate ima_filter_rule from security_audit_rule	LSM: Module stacking for AppArmor	1 - -	---	2022-03-10	Casey Schaufler	New
[v11,4/4] integrity: support including firmware ".platform" keys at build time	integrity: support including firmware ".platform" keys at build time	- 1 -	---	2022-03-10	Nayna Jain	New
[v11,3/4] certs: conditionally build extract-cert if platform keyring is enabled	integrity: support including firmware ".platform" keys at build time	- - -	---	2022-03-10	Nayna Jain	New
[v11,2/4] integrity: make integrity_keyring_from_id() non-static	integrity: support including firmware ".platform" keys at build time	- 1 -	---	2022-03-10	Nayna Jain	New
[v11,1/4] certs: export load_certificate_list() to be used outside certs/	integrity: support including firmware ".platform" keys at build time	- 1 -	---	2022-03-10	Nayna Jain	New
[RFC,v4,15/15] seltest/landlock: invalid user input data test	Landlock LSM	- - -	---	2022-03-09	Konstantin Meskhidze (A)	New
[RFC,v4,14/15] seltest/landlock: ruleset expanding test	Landlock LSM	- - -	---	2022-03-09	Konstantin Meskhidze (A)	New
[RFC,v4,13/15] seltest/landlock: rules overlapping test	Landlock LSM	- - -	---	2022-03-09	Konstantin Meskhidze (A)	New
[RFC,v4,12/15] seltest/landlock: connect() with AF_UNSPEC tests	Landlock LSM	- - -	---	2022-03-09	Konstantin Meskhidze (A)	New
[RFC,v4,11/15] seltest/landlock: add tests for connect() hooks	Landlock LSM	- - -	---	2022-03-09	Konstantin Meskhidze (A)	New
[RFC,v4,10/15] seltest/landlock: add tests for bind() hooks	Landlock LSM	- - -	---	2022-03-09	Konstantin Meskhidze (A)	New
[RFC,v4,09/15] landlock: TCP network hooks implementation	Landlock LSM	- - -	---	2022-03-09	Konstantin Meskhidze (A)	New
[RFC,v4,08/15] landlock: add support network rules	Landlock LSM	- - -	---	2022-03-09	Konstantin Meskhidze (A)	New
[RFC,v4,07/15] landlock: user space API network support	Landlock LSM	- - -	---	2022-03-09	Konstantin Meskhidze (A)	New
[RFC,v4,06/15] landlock: landlock_add_rule syscall refactoring	Landlock LSM	- - -	---	2022-03-09	Konstantin Meskhidze (A)	New
[RFC,v4,05/15] landlock: unmask_layers() function refactoring	Landlock LSM	- - -	---	2022-03-09	Konstantin Meskhidze (A)	New
[RFC,v4,04/15] landlock: merge and inherit function refactoring	Landlock LSM	- - -	---	2022-03-09	Konstantin Meskhidze (A)	New
[RFC,v4,03/15] landlock: landlock_find/insert_rule refactoring	Landlock LSM	- - -	---	2022-03-09	Konstantin Meskhidze (A)	New
[RFC,v4,02/15] landlock: filesystem access mask helpers	Landlock LSM	- - -	---	2022-03-09	Konstantin Meskhidze (A)	New
[RFC,v4,01/15] landlock: access mask renaming	Landlock LSM	- - -	---	2022-03-09	Konstantin Meskhidze (A)	New
[v2] selinux: log anon inode class name	[v2] selinux: log anon inode class name	- - -	---	2022-03-08	Christian Göttsche	New
[v10,3/3] integrity: support including firmware ".platform" keys at build time	integrity: support including firmware ".platform" keys at build time	- 1 -	---	2022-03-06	Nayna Jain	New
[v10,2/3] integrity: make integrity_keyring_from_id() non-static	integrity: support including firmware ".platform" keys at build time	- 1 -	---	2022-03-06	Nayna Jain	New
[v10,1/3] certs: export load_certificate_list() to be used outside certs/	integrity: support including firmware ".platform" keys at build time	- 1 -	---	2022-03-06	Nayna Jain	New
[v9,3/3] integrity: support including firmware ".platform" keys at build time	integrity: support including firmware ".platform" keys at build time	- 1 -	---	2022-03-04	Nayna Jain	New
[v9,2/3] integrity: make integrity_keyring_from_id() non-static	integrity: support including firmware ".platform" keys at build time	- 1 -	---	2022-03-04	Nayna Jain	New
[v9,1/3] certs: export load_certificate_list() to be used outside certs/	integrity: support including firmware ".platform" keys at build time	- 1 -	---	2022-03-04	Nayna Jain	New
[v2] KEYS: fix memory leaks when reading certificate	[v2] KEYS: fix memory leaks when reading certificate	- - -	---	2022-03-03	Denis Glazkov	New
[5/5] loadpin: stop using bdevname	[1/5] block: stop using bdevname in bdev_write_inode	1 1 -	---	2022-03-03	Christoph Hellwig	New
[4/5] pktcdvd: stop using bdevname	[1/5] block: stop using bdevname in bdev_write_inode	- 1 -	---	2022-03-03	Christoph Hellwig	New
[3/5] block: stop using bdevname in drbd_report_io_error	[1/5] block: stop using bdevname in bdev_write_inode	- 1 -	---	2022-03-03	Christoph Hellwig	New
[2/5] block: stop using bdevname in __blkdev_issue_discard	[1/5] block: stop using bdevname in bdev_write_inode	- 1 -	---	2022-03-03	Christoph Hellwig	New
[1/5] block: stop using bdevname in bdev_write_inode	[1/5] block: stop using bdevname in bdev_write_inode	- 1 -	---	2022-03-03	Christoph Hellwig	New
KEYS: fix memory leak when reading certificate fails	KEYS: fix memory leak when reading certificate fails	- - -	---	2022-03-03	Denis Glazkov	New

« 1 2 ... 6 7 8 … 121 122 »