Security modules development

Show patches with: Archived = No | 4760 patches

« 1 2 ... 4 5 6 … 47 48 »

Patch	Series	A/R/T	S/W/F	Date	Submitter	Delegate	State
[v7,17/21] mm/mmap: Use vms accounted pages in mmap_region()	Untitled series #882317	1 3 -	---	2024-08-22	Liam R. Howlett		Handled Elsewhere
[RESEND] cred: separate the refcount from frequently read fields	[RESEND] cred: separate the refcount from frequently read fields	- - -	---	2024-08-22	Mateusz Guzik	pcmoore	New
[net-next,13/13] net: Correct spelling in net/core	net: header and core spelling corrections	- - -	---	2024-08-22	Simon Horman		Handled Elsewhere
[net-next,12/13] net: Correct spelling in headers	net: header and core spelling corrections	- - -	---	2024-08-22	Simon Horman		Handled Elsewhere
[net-next,11/13] x25: Correct spelling in x25.h	net: header and core spelling corrections	- 1 -	---	2024-08-22	Simon Horman		Handled Elsewhere
[net-next,10/13] sctp: Correct spelling in headers	net: header and core spelling corrections	1 - -	---	2024-08-22	Simon Horman		Handled Elsewhere
[net-next,09/13] net: sched: Correct spelling in headers	net: header and core spelling corrections	- - -	---	2024-08-22	Simon Horman		Handled Elsewhere
[net-next,08/13] NFC: Correct spelling in headers	net: header and core spelling corrections	- 1 -	---	2024-08-22	Simon Horman		Handled Elsewhere
[net-next,07/13] netlabel: Correct spelling in netlabel.h	net: header and core spelling corrections	- - -	---	2024-08-22	Simon Horman		Handled Elsewhere
[net-next,06/13] net: qualcomm: rmnet: Correct spelling in if_rmnet.h	net: header and core spelling corrections	- 1 -	---	2024-08-22	Simon Horman		Handled Elsewhere
[net-next,05/13] bonding: Correct spelling in headers	net: header and core spelling corrections	- - -	---	2024-08-22	Simon Horman		Handled Elsewhere
[net-next,04/13] ipv6: Correct spelling in ipv6.h	net: header and core spelling corrections	- - -	---	2024-08-22	Simon Horman		Handled Elsewhere
[net-next,03/13] ip_tunnel: Correct spelling in ip_tunnels.h	net: header and core spelling corrections	- - -	---	2024-08-22	Simon Horman		Handled Elsewhere
[net-next,02/13] s390/iucv: Correct spelling in iucv.h	net: header and core spelling corrections	- - -	---	2024-08-22	Simon Horman		Handled Elsewhere
[net-next,01/13] packet: Correct spelling in if_packet.h	net: header and core spelling corrections	1 - -	---	2024-08-22	Simon Horman		Handled Elsewhere
security: smack: Fix indentation in smack_netfilter.c	security: smack: Fix indentation in smack_netfilter.c	- - -	---	2024-08-22	GiSeong Ji		Handled Elsewhere
[-next] ipe: Remove duplicated include in ipe.c	[-next] ipe: Remove duplicated include in ipe.c	- - -	---	2024-08-22	Yang Li	pcmoore	Accepted
[7/7] keys: Add tracepoints for the keyrings facility	keys: Add tracepoints	- 1 1	---	2024-08-21	David Howells		Handled Elsewhere
[6/7] keys: Provide a key_try_get() function and use it	keys: Add tracepoints	- 1 -	---	2024-08-21	David Howells		Handled Elsewhere
[5/7] keys: Use key_get() instead of __key_get()	keys: Add tracepoints	- 1 -	---	2024-08-21	David Howells		Handled Elsewhere
[4/7] keys: Add a key_ref_get() wrapper	keys: Add tracepoints	- 1 -	---	2024-08-21	David Howells		Handled Elsewhere
[3/7] keys: Move key_get() out of line so a tracepoint can be added	keys: Add tracepoints	- 1 -	---	2024-08-21	David Howells		Handled Elsewhere
[2/7] keys: Extract struct key_user to its own header for tracing purposes	keys: Add tracepoints	- 1 -	---	2024-08-21	David Howells		Handled Elsewhere
[1/7] keys: Out of line key_is_dead() so it can have tracepoints added in	keys: Add tracepoints	- 1 -	---	2024-08-21	David Howells		Handled Elsewhere
[v3,2/2] security: Update file_set_fowner documentation	[v3,1/2] fs: Fix file_set_fowner LSM hook inconsistencies	- - -	---	2024-08-21	Mickaël Salaün	pcmoore	Accepted
[v3,1/2] fs: Fix file_set_fowner LSM hook inconsistencies	[v3,1/2] fs: Fix file_set_fowner LSM hook inconsistencies	- - -	---	2024-08-21	Mickaël Salaün	pcmoore	Accepted
[v1] security/apparmor: remove duplicate unpacking in unpack_perm function	[v1] security/apparmor: remove duplicate unpacking in unpack_perm function	- - -	---	2024-08-21	Shen Lichuan		Handled Elsewhere
[v6,17/20] mm/mmap: Use vms accounted pages in mmap_region()	Untitled series #881518	1 3 -	---	2024-08-20	Liam R. Howlett	pcmoore	Handled Elsewhere
[v10,6/6] Landlock: Document LANDLOCK_SCOPED_ABSTRACT_UNIX_SOCKET and ABI versioning	Landlock: Add abstract UNIX socket connect restriction	- - -	---	2024-08-20	Tahera Fahimi		Handled Elsewhere
[v10,5/6] sample/Landlock: Support abstract unix socket restriction	Landlock: Add abstract UNIX socket connect restriction	- - -	---	2024-08-20	Tahera Fahimi		Handled Elsewhere
[v10,4/6] selftests/Landlock: Add pathname UNIX socket tests	Landlock: Add abstract UNIX socket connect restriction	- - -	---	2024-08-20	Tahera Fahimi		Handled Elsewhere
[v10,3/6] selftests/Landlock: Abstract UNIX socket restriction tests	Landlock: Add abstract UNIX socket connect restriction	- - -	---	2024-08-20	Tahera Fahimi		Handled Elsewhere
[v10,2/6] selftests/Landlock: general scoped restriction tests	Landlock: Add abstract UNIX socket connect restriction	- - -	---	2024-08-20	Tahera Fahimi		Handled Elsewhere
[v10,1/6] Landlock: Add abstract UNIX socket connect restriction	Landlock: Add abstract UNIX socket connect restriction	- - -	---	2024-08-20	Tahera Fahimi		Handled Elsewhere
[v7,8/8] drm: Replace strcpy() with strscpy()	Improve the copy of task comm	1 - -	---	2024-08-17	Yafang Shao		Handled Elsewhere
[v7,7/8] net: Replace strcpy() with strscpy()	Improve the copy of task comm	- - -	---	2024-08-17	Yafang Shao		Handled Elsewhere
[v7,6/8] mm/util: Deduplicate code in {kstrdup,kstrndup,kmemdup_nul}	Improve the copy of task comm	- - -	---	2024-08-17	Yafang Shao		Handled Elsewhere
[v7,5/8] mm/util: Fix possible race condition in kstrdup()	Improve the copy of task comm	- - -	---	2024-08-17	Yafang Shao		Handled Elsewhere
[v7,4/8] bpftool: Ensure task comm is always NUL-terminated	Improve the copy of task comm	- 1 -	---	2024-08-17	Yafang Shao		Handled Elsewhere
[v7,3/8] security: Replace memcpy() with get_task_comm()	Improve the copy of task comm	1 - -	---	2024-08-17	Yafang Shao		Handled Elsewhere
[v7,2/8] auditsc: Replace memcpy() with strscpy()	Improve the copy of task comm	1 - -	---	2024-08-17	Yafang Shao		Handled Elsewhere
[v7,1/8] Get rid of __get_task_comm()	Improve the copy of task comm	- - -	---	2024-08-17	Yafang Shao		Handled Elsewhere
[v5.1,16/19] mm/mmap: Use vms accounted pages in mmap_region()	Untitled series #880406	- 3 -	---	2024-08-16	Bert Karwatzki		Handled Elsewhere
[v15,4/4] lsm: replace indirect LSM hook calls with static calls	Reduce overhead of LSMs with static calls	2 2 -	---	2024-08-16	KP Singh	pcmoore	Accepted
[v15,3/4] lsm: count the LSMs enabled at compile time	Reduce overhead of LSMs with static calls	2 3 -	---	2024-08-16	KP Singh	pcmoore	Accepted
[v15,2/4] kernel: Add helper macros for loop unrolling	Reduce overhead of LSMs with static calls	3 3 -	---	2024-08-16	KP Singh	pcmoore	Accepted
[v15,1/4] init/main.c: Initialize early LSMs after arch code, static keys and calls.	Reduce overhead of LSMs with static calls	- - -	---	2024-08-16	KP Singh	pcmoore	Accepted
[RFC,v1,4/4] selftests/landlock: Add realworld workload based on find tool	Implement performance impact measurement tool	- - -	---	2024-08-16	Mikhail Ivanov		Handled Elsewhere
[RFC,v1,3/4] selftests/landlock: Implement custom libbpf-based tracer	Implement performance impact measurement tool	- - -	---	2024-08-16	Mikhail Ivanov		Handled Elsewhere
[RFC,v1,2/4] selftests/landlock: Implement per-syscall microbenchmarks	Implement performance impact measurement tool	- - -	---	2024-08-16	Mikhail Ivanov		Handled Elsewhere
[RFC,v1,1/4] selftests/landlock: Implement performance impact measurement tool	Implement performance impact measurement tool	- - -	---	2024-08-16	Mikhail Ivanov		Handled Elsewhere
[v3,6/6] Landlock: Document LANDLOCK_SCOPED_SIGNAL	Landlock: Signal Scoping Support	- - -	---	2024-08-15	Tahera Fahimi		Handled Elsewhere
[v3,5/6] sample/Landlock: Support signal scoping restriction	Landlock: Signal Scoping Support	- - -	---	2024-08-15	Tahera Fahimi		Handled Elsewhere
[v3,4/6] selftest/Landlock: pthread_kill(3) tests	Landlock: Signal Scoping Support	- - -	---	2024-08-15	Tahera Fahimi		Handled Elsewhere
[v3,3/6] selftest/Landlock: Signal restriction tests	Landlock: Signal Scoping Support	- - -	---	2024-08-15	Tahera Fahimi		Handled Elsewhere
[v3,2/6] Landlock: Adding file_send_sigiotask signal scoping support	Landlock: Signal Scoping Support	- - -	---	2024-08-15	Tahera Fahimi		Handled Elsewhere
[v3,1/6] Landlock: Add signal control	Landlock: Signal Scoping Support	- - -	---	2024-08-15	Tahera Fahimi		Handled Elsewhere
[GIT,PULL] selinux/selinux-pr-20240814	[GIT,PULL] selinux/selinux-pr-20240814	- - -	---	2024-08-14	Paul Moore	pcmoore	Handled Elsewhere
[v9,5/5] Landlock: Document LANDLOCK_SCOPED_ABSTRACT_UNIX_SOCKET and ABI versioning	Landlock: Add abstract unix socket connect restriction	- - -	---	2024-08-14	Tahera Fahimi		Handled Elsewhere
[v9,4/5] sample/Landlock: Support abstract unix socket restriction	Landlock: Add abstract unix socket connect restriction	- - -	---	2024-08-14	Tahera Fahimi		Handled Elsewhere
[v9,3/5] selftests/Landlock: Adding pathname Unix socket tests	Landlock: Add abstract unix socket connect restriction	- - -	---	2024-08-14	Tahera Fahimi		Handled Elsewhere
[v9,2/5] selftests/Landlock: Abstract unix socket restriction tests	Landlock: Add abstract unix socket connect restriction	- - -	---	2024-08-14	Tahera Fahimi		Handled Elsewhere
[v9,1/5] Landlock: Add abstract unix socket connect restriction	Landlock: Add abstract unix socket connect restriction	- - -	---	2024-08-14	Tahera Fahimi		Handled Elsewhere
[-next] lockdown: Make lockdown_lsmid static	[-next] lockdown: Make lockdown_lsmid static	- 1 -	---	2024-08-14	Yue Haibing	pcmoore	Accepted
[RFC,v2,9/9] samples/landlock: Support LANDLOCK_ACCESS_NET_LISTEN	Support TCP listen access-control	- 1 -	---	2024-08-14	Mikhail Ivanov		Handled Elsewhere
[RFC,v2,8/9] selftests/landlock: Test changing socket backlog with listen(2)	Support TCP listen access-control	- - -	---	2024-08-14	Mikhail Ivanov		Handled Elsewhere
[RFC,v2,7/9] selftests/landlock: Test listen on ULP socket without clone method	Support TCP listen access-control	- - -	---	2024-08-14	Mikhail Ivanov		Handled Elsewhere
[RFC,v2,6/9] selftests/landlock: Test listening without explicit bind restriction	Support TCP listen access-control	- - -	---	2024-08-14	Mikhail Ivanov		Handled Elsewhere
[RFC,v2,5/9] selftests/landlock: Test listen on connected socket	Support TCP listen access-control	- - -	---	2024-08-14	Mikhail Ivanov		Handled Elsewhere
[RFC,v2,4/9] selftests/landlock: Test listening restriction	Support TCP listen access-control	- - -	---	2024-08-14	Mikhail Ivanov		Handled Elsewhere
[RFC,v2,3/9] selftests/landlock: Support LANDLOCK_ACCESS_NET_LISTEN_TCP	Support TCP listen access-control	- - -	---	2024-08-14	Mikhail Ivanov		Handled Elsewhere
[RFC,v2,2/9] landlock: Support TCP listen access-control	Support TCP listen access-control	- - -	---	2024-08-14	Mikhail Ivanov		Handled Elsewhere
[RFC,v2,1/9] landlock: Refactor current_check_access_socket() access right check	Support TCP listen access-control	- - -	---	2024-08-14	Mikhail Ivanov		Handled Elsewhere
[v2] fs,security: Fix file_set_fowner LSM hook inconsistencies	[v2] fs,security: Fix file_set_fowner LSM hook inconsistencies	- - -	---	2024-08-12	Mickaël Salaün	pcmoore	Superseded
fs,security: Fix file_set_fowner LSM hook inconsistencies	fs,security: Fix file_set_fowner LSM hook inconsistencies	- - -	---	2024-08-12	Mickaël Salaün	pcmoore	Changes Requested
[v6,9/9] drm: Replace strcpy() with strscpy()	Improve the copy of task comm	1 - -	---	2024-08-12	Yafang Shao	pcmoore	Handled Elsewhere
[v6,8/9] net: Replace strcpy() with strscpy()	Improve the copy of task comm	- - -	---	2024-08-12	Yafang Shao	pcmoore	Handled Elsewhere
[v6,7/9] tracing: Replace strncpy() with strscpy()	Improve the copy of task comm	1 - -	---	2024-08-12	Yafang Shao	pcmoore	Handled Elsewhere
[v6,6/9] mm/util: Deduplicate code in {kstrdup,kstrndup,kmemdup_nul}	Improve the copy of task comm	- - -	---	2024-08-12	Yafang Shao	pcmoore	Handled Elsewhere
[v6,5/9] mm/util: Fix possible race condition in kstrdup()	Improve the copy of task comm	- - -	---	2024-08-12	Yafang Shao	pcmoore	Handled Elsewhere
[v6,4/9] bpftool: Ensure task comm is always NUL-terminated	Improve the copy of task comm	- 1 -	---	2024-08-12	Yafang Shao	pcmoore	Handled Elsewhere
[v6,3/9] security: Replace memcpy() with get_task_comm()	Improve the copy of task comm	1 - -	---	2024-08-12	Yafang Shao	pcmoore	Handled Elsewhere
[v6,2/9] auditsc: Replace memcpy() with strscpy()	Improve the copy of task comm	1 - -	---	2024-08-12	Yafang Shao	pcmoore	Handled Elsewhere
[v6,1/9] Get rid of __get_task_comm()	Improve the copy of task comm	- - -	---	2024-08-12	Yafang Shao	pcmoore	Handled Elsewhere
[2/2] selinux: move genheaders to security/selinux/	selinux: Do not include <linux/*.h> from host programs (+ extra clean-up)	- - -	---	2024-08-09	Masahiro Yamada	pcmoore	Handled Elsewhere
[1/2] selinux: do not include <linux/*.h> headers from host programs	selinux: Do not include <linux/*.h> from host programs (+ extra clean-up)	- - -	---	2024-08-09	Masahiro Yamada	pcmoore	Handled Elsewhere
[next] integrity: Use static_assert() to check struct sizes	[next] integrity: Use static_assert() to check struct sizes	- 1 1	---	2024-08-08	Gustavo A. R. Silva		Handled Elsewhere
apparmor: fix policy_unpack_test on big endian systems	apparmor: fix policy_unpack_test on big endian systems	1 1 -	---	2024-08-08	Guenter Roeck		Handled Elsewhere
drivers/perf: arm_spe: Use perf_allow_kernel() for permissions	drivers/perf: arm_spe: Use perf_allow_kernel() for permissions	- - -	---	2024-08-07	James Clark		Handled Elsewhere
[v2,4/4] Landlock: Document LANDLOCK_SCOPED_SIGNAL	Landlock: Signal Scoping Support	- - -	---	2024-08-06	Tahera Fahimi		Handled Elsewhere
[v2,3/4] sample/Landlock: Support signal scoping restriction	Landlock: Signal Scoping Support	- - -	---	2024-08-06	Tahera Fahimi		Handled Elsewhere
[v2,2/4] selftest/Landlock: Signal restriction tests	Landlock: Signal Scoping Support	- - -	---	2024-08-06	Tahera Fahimi		Handled Elsewhere
[v2,1/4] Landlock: Add signal control	Landlock: Signal Scoping Support	- - -	---	2024-08-06	Tahera Fahimi		Handled Elsewhere
[v5] tpm: Add new device/vendor ID 0x50666666	[v5] tpm: Add new device/vendor ID 0x50666666	- - -	---	2024-08-06	Jett Rink		Handled Elsewhere
evm: stop avoidably reading i_writecount in evm_file_release	evm: stop avoidably reading i_writecount in evm_file_release	- 1 -	---	2024-08-06	Mateusz Guzik		Handled Elsewhere
[v2,2/2] security: remove unused cred_alloc_blank/cred_transfer helpers	get rid of cred_transfer	- - -	---	2024-08-05	Jann Horn	pcmoore	Under Review
[v2,1/2] KEYS: use synchronous task work for changing parent credentials	get rid of cred_transfer	- - -	---	2024-08-05	Jann Horn	pcmoore	Under Review
[v5,9/9] drm: Replace strcpy() with __get_task_comm()	Improve the copy of task comm	1 - -	---	2024-08-04	Yafang Shao		Handled Elsewhere
[v5,8/9] net: Replace strcpy() with __get_task_comm()	Improve the copy of task comm	- - -	---	2024-08-04	Yafang Shao		Handled Elsewhere
[v5,7/9] tracing: Replace strncpy() with __get_task_comm()	Improve the copy of task comm	1 - -	---	2024-08-04	Yafang Shao		Handled Elsewhere

« 1 2 ... 4 5 6 … 47 48 »