October 2020 Archives by author
Starting: Thu Oct 1 17:02:29 UTC 2020
Ending: Sat Oct 31 17:43:29 UTC 2020
Messages: 553
- Inconsistent capability requirements for prctl_set_mm_exe_file()
Michael Kerrisk (man-pages)
- [PATCH v2] perf_event_open.2: update the man page with CAP_PERFMON related information
Michael Kerrisk (man-pages)
- [PATCH v2] perf_event_open.2: update the man page with CAP_PERFMON related information
Michael Kerrisk (man-pages)
- No subject
Liliane Abel
- [PATCH v11 2/3] arch: Wire up trusted_for(2)
Tycho Andersen
- [PATCH] xfrm: redact SA secret with lockdown confidentiality
Antony Antony
- [REGRESSION] mm: process_vm_readv testcase no longer works after compat_prcoess_vm_readv removed
Jens Axboe
- [REGRESSION] mm: process_vm_readv testcase no longer works after compat_prcoess_vm_readv removed
Jens Axboe
- GREETINGS
Ibrahim Bello
- [PATCH] tomoyo: fix clang pointer arithmetic warning
Arnd Bergmann
- [PATCH] tomoyo: fix clang pointer arithmetic warning
Arnd Bergmann
- [PATCH v18 0/4] overlayfs override_creds=off & nested get xattr fix
Eric W. Biederman
- [PATCH 00/34] fs: idmapped mounts
Eric W. Biederman
- [PATCH 00/34] fs: idmapped mounts
Eric W. Biederman
- [PATCH 00/34] fs: idmapped mounts
Eric W. Biederman
- [PATCH 00/34] fs: idmapped mounts
Eric W. Biederman
- [PATCH V2 1/3] efi: Support for MOK variable config table
Ard Biesheuvel
- [PATCH] ima: defer arch_ima_get_secureboot() call to IMA init time
Ard Biesheuvel
- [PATCH] ima: defer arch_ima_get_secureboot() call to IMA init time
Ard Biesheuvel
- [PATCH v2] ima: defer arch_ima_get_secureboot() call to IMA init time
Ard Biesheuvel
- [PATCH v2] ima: defer arch_ima_get_secureboot() call to IMA init time
Ard Biesheuvel
- [PATCH v3 1/3] efi: generalize efi_get_secureboot
Ard Biesheuvel
- [PATCH v3 2/3] ima: replace arch-specific get_sb_mode() with a common helper ima_get_efi_secureboot()
Ard Biesheuvel
- [PATCH v3 3/3] arm64/ima: add ima_arch support
Ard Biesheuvel
- [PATCH v9 1/3] Add a new LSM-supporting anonymous inode interface
Eric Biggers
- [PATCH v9 3/3] Wire UFFD up to SELinux
Eric Biggers
- [RESEND PATCH v18 0/4] overlayfs override_creds=off & nested get xattr fix
Eric Biggers
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
Eric Biggers
- Low Rate Loan.
Mr. Hashim Bin
- Low Rate Loan./mmm,
Mr. Hashim Bin
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
Segher Boessenkool
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
Segher Boessenkool
- [PATCH v3 3/3] KEYS: trusted: Reserve TPM for seal and unseal operations
James Bottomley
- [Ocfs2-devel] [RFC] treewide: cleanup unreachable breaks
James Bottomley
- [Ocfs2-devel] [RFC] treewide: cleanup unreachable breaks
James Bottomley
- [PATCH 00/34] fs: idmapped mounts
Christian Brauner
- [PATCH 01/34] namespace: take lock_mount_hash() directly when changing flags
Christian Brauner
- [PATCH 02/34] namespace: only take read lock in do_reconfigure_mnt()
Christian Brauner
- [PATCH 03/34] fs: add mount_setattr()
Christian Brauner
- [PATCH 04/34] tests: add mount_setattr() selftests
Christian Brauner
- [PATCH 05/34] fs: introduce MOUNT_ATTR_IDMAP
Christian Brauner
- [PATCH 06/34] fs: add id translation helpers
Christian Brauner
- [PATCH 07/34] capability: handle idmapped mounts
Christian Brauner
- [PATCH 08/34] namei: add idmapped mount aware permission helpers
Christian Brauner
- [PATCH 09/34] inode: add idmapped mount aware init and permission helpers
Christian Brauner
- [PATCH 10/34] attr: handle idmapped mounts
Christian Brauner
- [PATCH 11/34] acl: handle idmapped mounts
Christian Brauner
- [PATCH 12/34] xattr: handle idmapped mounts
Christian Brauner
- [PATCH 13/34] selftests: add idmapped mounts xattr selftest
Christian Brauner
- [PATCH 14/34] commoncap: handle idmapped mounts
Christian Brauner
- [PATCH 15/34] stat: add mapped_generic_fillattr()
Christian Brauner
- [PATCH 16/34] namei: handle idmapped mounts in may_*() helpers
Christian Brauner
- [PATCH 17/34] namei: introduce struct renamedata
Christian Brauner
- [PATCH 18/34] namei: prepare for idmapped mounts
Christian Brauner
- [PATCH 19/34] namei: add lookup helpers with idmapped mounts aware permission checking
Christian Brauner
- [PATCH 20/34] open: handle idmapped mounts in do_truncate()
Christian Brauner
- [PATCH 21/34] open: handle idmapped mounts
Christian Brauner
- [PATCH 22/34] af_unix: handle idmapped mounts
Christian Brauner
- [PATCH 23/34] utimes: handle idmapped mounts
Christian Brauner
- [PATCH 24/34] would_dump: handle idmapped mounts
Christian Brauner
- [PATCH 25/34] exec: handle idmapped mounts
Christian Brauner
- [PATCH 26/34] fs: add helpers for idmap mounts
Christian Brauner
- [PATCH 27/34] apparmor: handle idmapped mounts
Christian Brauner
- [PATCH 28/34] audit: handle idmapped mounts
Christian Brauner
- [PATCH 29/34] ima: handle idmapped mounts
Christian Brauner
- [PATCH 30/34] ext4: support idmapped mounts
Christian Brauner
- [PATCH 31/34] expfs: handle idmapped mounts
Christian Brauner
- [PATCH 32/34] overlayfs: handle idmapped lower directories
Christian Brauner
- [PATCH 33/34] overlayfs: handle idmapped merged mounts
Christian Brauner
- [PATCH 34/34] fat: handle idmapped mounts
Christian Brauner
- [PATCH 00/34] fs: idmapped mounts
Christian Brauner
- [PATCH 00/34] fs: idmapped mounts
Christian Brauner
- [PATCH v1 0/2] doc/admin-guide: update perf-security.rst with CAP_PERFMON usage flows
Alexey Budankov
- [PATCH v1 0/2] doc/admin-guide: update perf-security.rst with CAP_PERFMON usage flows
Alexey Budankov
- [PATCH v1 1/2] doc/admin-guide: note credentials consolidation under CAP_PERFMON
Alexey Budankov
- [PATCH v1 2/2] doc/admin-guide: document creation of CAP_PERFMON privileged shell
Alexey Budankov
- [PATCH v2] perf_event_open.2: update the man page with CAP_PERFMON related information
Alexey Budankov
- [PATCH v2] perf_event_open.2: update the man page with CAP_PERFMON related information
Alexey Budankov
- [PATCH V2 1/3] efi: Support for MOK variable config table
Nathan Chancellor
- [PATCH V2 1/3] efi: Support for MOK variable config table
Nathan Chancellor
- [PATCH 00/34] fs: idmapped mounts
Dave Chinner
- Investment opportunity
Ying Chongan
- [PATCH v38 15/24] x86/sgx: Enable provisioning for remote attestation
Sean Christopherson
- [PATCH v38 11/24] x86/sgx: Add SGX enclave driver
Sean Christopherson
- [PATCH v5 00/16] Introduce partial kernel_read_file() support
Kees Cook
- [PATCH v5 01/16] fs/kernel_read_file: Remove FIRMWARE_PREALLOC_BUFFER enum
Kees Cook
- [PATCH v5 02/16] fs/kernel_read_file: Remove FIRMWARE_EFI_EMBEDDED enum
Kees Cook
- [PATCH v5 03/16] fs/kernel_read_file: Split into separate include file
Kees Cook
- [PATCH v5 04/16] fs/kernel_read_file: Split into separate source file
Kees Cook
- [PATCH v5 05/16] fs/kernel_read_file: Remove redundant size argument
Kees Cook
- [PATCH v5 06/16] fs/kernel_read_file: Switch buffer size arg to size_t
Kees Cook
- [PATCH v5 07/16] fs/kernel_read_file: Add file_size output argument
Kees Cook
- [PATCH v5 08/16] LSM: Introduce kernel_post_load_data() hook
Kees Cook
- [PATCH v5 09/16] firmware_loader: Use security_post_load_data()
Kees Cook
- [PATCH v5 10/16] module: Call security_kernel_post_load_data()
Kees Cook
- [PATCH v5 11/16] LSM: Add "contents" flag to kernel_read_file hook
Kees Cook
- [PATCH v5 12/16] IMA: Add support for file reads without contents
Kees Cook
- [PATCH v5 13/16] fs/kernel_file_read: Add "offset" arg for partial reads
Kees Cook
- [PATCH v5 14/16] firmware: Store opt_flags in fw_priv
Kees Cook
- [PATCH v5 15/16] firmware: Add request_partial_firmware_into_buf()
Kees Cook
- [PATCH v5 16/16] test_firmware: Test partial read support
Kees Cook
- [RFC] treewide: cleanup unreachable breaks
Nick Desaulniers
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
Nick Desaulniers
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
Nick Desaulniers
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
Nick Desaulniers
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
Nick Desaulniers
- [PATCH 00/34] fs: idmapped mounts
Sargun Dhillon
- [PATCH 00/34] fs: idmapped mounts
Sargun Dhillon
- [PATCH 00/34] fs: idmapped mounts
Seth Forshee
- Hello/Hallo
Mr. John Galvan
- [PATCH v7 0/4] Introduce TEE based Trusted Keys support
Sumit Garg
- [PATCH v7 1/4] KEYS: trusted: Add generic trusted keys framework
Sumit Garg
- [PATCH v7 2/4] KEYS: trusted: Introduce TEE based Trusted Keys
Sumit Garg
- [PATCH v7 3/4] doc: trusted-encrypted: updates with TEE as a new trust source
Sumit Garg
- [PATCH v7 4/4] MAINTAINERS: Add entry for TEE based Trusted Keys
Sumit Garg
- [PATCH v7 1/4] KEYS: trusted: Add generic trusted keys framework
Sumit Garg
- [PATCH v7 2/4] KEYS: trusted: Introduce TEE based Trusted Keys
Sumit Garg
- [PATCH v7 4/4] MAINTAINERS: Add entry for TEE based Trusted Keys
Sumit Garg
- [PATCH v7 1/4] KEYS: trusted: Add generic trusted keys framework
Sumit Garg
- [PATCH v7 4/4] MAINTAINERS: Add entry for TEE based Trusted Keys
Sumit Garg
- [PATCH v7 1/4] KEYS: trusted: Add generic trusted keys framework
Sumit Garg
- [PATCH v7 1/4] KEYS: trusted: Add generic trusted keys framework
Sumit Garg
- [PATCH v9 0/3] SELinux support for anonymous inodes and UFFD
Lokesh Gidra
- [PATCH v10 0/3] SELinux support for anonymous inodes and UFFD
Lokesh Gidra
- [PATCH v10 1/3] Add a new LSM-supporting anonymous inode interface
Lokesh Gidra
- [PATCH v10 2/3] Teach SELinux about anonymous inodes
Lokesh Gidra
- [PATCH v10 3/3] Use secure anon inodes for userfaultfd
Lokesh Gidra
- [PATCH v10 0/3] SELinux support for anonymous inodes and UFFD
Lokesh Gidra
- [RFC] treewide: cleanup unreachable breaks
Hans de Goede
- [PATCH v16 3/4] overlayfs: override_creds=off option bypass creator_cred
Amir Goldstein
- [PATCH 33/34] overlayfs: handle idmapped merged mounts
Amir Goldstein
- Inconsistent capability requirements for prctl_set_mm_exe_file()
Cyrill Gorcunov
- Inconsistent capability requirements for prctl_set_mm_exe_file()
Cyrill Gorcunov
- [PATCH 00/34] fs: idmapped mounts
Stéphane Graber
- [RFC PATCH 00/30] ima: Introduce IMA namespace
Dr. Greg
- [PATCH v39 15/24] x86/sgx: Add SGX_IOC_ENCLAVE_PROVISION
Dr. Greg
- [RFC] treewide: cleanup unreachable breaks
Jason Gunthorpe
- PLEASE TAKE NOTE!
Mariacarmen Gutierrez
- [PATCH 3/3] selinux: Add SELinux GTP support
Richard Haines
- [RFC PATCH 3/3] selinux: Add SELinux GTP support
Richard Haines
- [PATCH 2/3] gtp: Add LSM hooks to GPRS Tunneling Protocol (GTP)
Richard Haines
- [RFC PATCH 1/3] security: Add GPRS Tunneling Protocol (GTP) security hooks
Richard Haines
- [PATCH 1/3] security: Add GPRS Tunneling Protocol (GTP) security hooks
Richard Haines
- [RFC PATCH 1/1] selinux-testsuite: Add GTP tests
Richard Haines
- [PATCH 0/3] Add LSM/SELinux support for GPRS Tunneling Protocol (GTP)
Richard Haines
- [PATCH 3/3] selinux: Add SELinux GTP support
Richard Haines
- [RFC PATCH 0/3] Add LSM/SELinux support for GPRS Tunneling Protocol (GTP)
Richard Haines
- [RFC PATCH 1/1] security: add fault injection capability
Serge E. Hallyn
- [PATCH 00/34] fs: idmapped mounts
Serge E. Hallyn
- [PATCH 00/34] fs: idmapped mounts
Serge E. Hallyn
- [PATCH 00/34] fs: idmapped mounts
Serge E. Hallyn
- [PATCH 00/34] fs: idmapped mounts
Serge E. Hallyn
- [PATCH] tomoyo: fix clang pointer arithmetic warning
Tetsuo Handa
- [PATCH] tomoyo: fix clang pointer arithmetic warning
Tetsuo Handa
- [PATCH v39 11/24] x86/sgx: Add SGX enclave driver
Dave Hansen
- [PATCH v39 11/24] x86/sgx: Add SGX enclave driver
Dave Hansen
- [PATCH v39 15/24] x86/sgx: Add SGX_IOC_ENCLAVE_PROVISION
Dave Hansen
- [PATCH v39 15/24] x86/sgx: Add SGX_IOC_ENCLAVE_PROVISION
Dave Hansen
- [PATCH v39 15/24] x86/sgx: Add SGX_IOC_ENCLAVE_PROVISION
Dave Hansen
- [PATCH v33 11/21] x86/sgx: Linux Enclave Driver
Dave Hansen
- [PATCH v33 11/21] x86/sgx: Linux Enclave Driver
Dave Hansen
- [PATCH v39 11/24] x86/sgx: Add SGX enclave driver
Christoph Hellwig
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
Christoph Hellwig
- [PATCH] mm, hugetlb: Avoid double clearing for hugetlb pages
David Hildenbrand
- [PATCH] mm, hugetlb: Avoid double clearing for hugetlb pages
David Hildenbrand
- [PATCH] mm, hugetlb: Avoid double clearing for hugetlb pages
David Hildenbrand
- [PATCH] mm, hugetlb: Avoid double clearing for hugetlb pages
David Hildenbrand
- [PATCH] mm, hugetlb: Avoid double clearing for hugetlb pages
David Hildenbrand
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
David Hildenbrand
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
David Hildenbrand
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
David Hildenbrand
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
David Hildenbrand
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
David Hildenbrand
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
David Hildenbrand
- [PATCH] mm, hugetlb: Avoid double clearing for hugetlb pages
David Hildenbrand
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
David Hildenbrand
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
David Hildenbrand
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
David Hildenbrand
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
David Hildenbrand
- [PATCH] mm, hugetlb: Avoid double clearing for hugetlb pages
Michal Hocko
- [PATCH] mm, hugetlb: Avoid double clearing for hugetlb pages
Michal Hocko
- [PATCH] mm, hugetlb: Avoid double clearing for hugetlb pages
Michal Hocko
- [PATCH] mm, hugetlb: Avoid double clearing for hugetlb pages
Michal Hocko
- [PATCH] mm, hugetlb: Avoid double clearing for hugetlb pages
Michal Hocko
- From Mrs. Roonie Holbrook !!
Mrs. Roonie Holbrook
- Inconsistent capability requirements for prctl_set_mm_exe_file()
Jann Horn
- [PATCH v22 00/12] Landlock LSM
Jann Horn
- [PATCH v22 01/12] landlock: Add object management
Jann Horn
- [PATCH v22 02/12] landlock: Add ruleset and domain management
Jann Horn
- [PATCH v22 03/12] landlock: Set up the security framework and manage credentials
Jann Horn
- [PATCH v22 04/12] landlock: Add ptrace restrictions
Jann Horn
- [PATCH v22 06/12] fs,security: Add sb_delete hook
Jann Horn
- [PATCH v22 07/12] landlock: Support filesystem access-control
Jann Horn
- [PATCH v22 08/12] landlock: Add syscall implementations
Jann Horn
- [PATCH v22 12/12] landlock: Add user and kernel documentation
Jann Horn
- [PATCH v22 01/12] landlock: Add object management
Jann Horn
- [PATCH v22 08/12] landlock: Add syscall implementations
Jann Horn
- [PATCH v39 11/24] x86/sgx: Add SGX enclave driver
Haitao Huang
- [REGRESSION] mm: process_vm_readv testcase no longer works after compat_prcoess_vm_readv removed
Kyle Huey
- From Calyd Jens,
Calyd Jens
- [PATCH v21 00/23] LSM: Module stacking for AppArmor
John Johansen
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
'Greg KH'
- [PATCH v39 11/24] x86/sgx: Add SGX enclave driver
Greg KH
- [PATCH v39 11/24] x86/sgx: Add SGX enclave driver
Greg KH
- [PATCH v39 11/24] x86/sgx: Add SGX enclave driver
Greg KH
- [PATCH v39 11/24] x86/sgx: Add SGX enclave driver
Greg KH
- [PATCH v39 11/24] x86/sgx: Add SGX enclave driver
Greg KH
- [PATCH v39 11/24] x86/sgx: Add SGX enclave driver
Greg KH
- [RFC] treewide: cleanup unreachable breaks
Greg KH
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
Greg KH
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
Greg KH
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
Greg KH
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
Greg KH
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
Greg KH
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
Greg KH
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
Greg KH
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
Greg KH
- [PATCH 0/5] net: use semicolons rather than commas to separate statements
Jakub Kicinski
- [PATCH] vsock: use ns_capable_noaudit() on socket create
Jakub Kicinski
- [PATCH] ima: Fix sizeof mismatches
Colin King
- [PATCH][V2] ima: Fix sizeof mismatches
Colin King
- [PATCH] ima: Fix sizeof mismatches
Colin Ian King
- [PATCH] ima: Fix sizeof mismatches
Colin Ian King
- [PATCH] xfrm: redact SA secret with lockdown confidentiality
Steffen Klassert
- selinux: how to query if selinux is enabled
Olga Kornievskaia
- selinux: how to query if selinux is enabled
Olga Kornievskaia
- selinux: how to query if selinux is enabled
Olga Kornievskaia
- selinux: how to query if selinux is enabled
Olga Kornievskaia
- selinux: how to query if selinux is enabled
Olga Kornievskaia
- selinux: how to query if selinux is enabled
Olga Kornievskaia
- selinux: how to query if selinux is enabled
Olga Kornievskaia
- selinux: how to query if selinux is enabled
Olga Kornievskaia
- [PATCH] mm, hugetlb: Avoid double clearing for hugetlb pages
Mike Kravetz
- [PATCH] mm, hugetlb: Avoid double clearing for hugetlb pages
Mike Kravetz
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
David Laight
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
David Laight
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
David Laight
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
David Laight
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
David Laight
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
David Laight
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
David Laight
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
David Laight
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
David Laight
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
David Laight
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
David Laight
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
David Laight
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
David Laight
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
David Laight
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
David Laight
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
David Laight
- [PATCH 0/5] net: use semicolons rather than commas to separate statements
Julia Lawall
- [PATCH 4/5] net/ipv6: use semicolons rather than commas to separate statements
Julia Lawall
- [Cocci] [RFC] treewide: cleanup unreachable breaks
Julia Lawall
- Greeting! !!
Kim Leang
- selinux: how to query if selinux is enabled
Chuck Lever
- [PATCH v2] ima: defer arch_ima_get_secureboot() call to IMA init time
Chester Lin
- [PATCH v2] ima: defer arch_ima_get_secureboot() call to IMA init time
Chester Lin
- [PATCH v3 0/3] add ima_arch support for ARM64
Chester Lin
- [PATCH v3 1/3] efi: generalize efi_get_secureboot
Chester Lin
- [PATCH v3 2/3] ima: replace arch-specific get_sb_mode() with a common helper ima_get_efi_secureboot()
Chester Lin
- [PATCH v3 3/3] arm64/ima: add ima_arch support
Chester Lin
- [PATCH v39 15/24] x86/sgx: Add SGX_IOC_ENCLAVE_PROVISION
Andy Lutomirski
- [PATCH 00/34] fs: idmapped mounts
Andy Lutomirski
- [PATCH 00/34] fs: idmapped mounts
Andy Lutomirski
- VERY CONFIDENTIAL.
Kuban Manfi
- wir bieten 2% Kredite
Thomas Mark
- [PATCH v1 0/2] doc/admin-guide: update perf-security.rst with CAP_PERFMON usage flows
Arnaldo Carvalho de Melo
- [RFC PATCH v2 2/2] docs: add fail_lsm_hooks info to fault-injection.rst
Akinobu Mita
- selinux: how to query if selinux is enabled
Paul Moore
- selinux: how to query if selinux is enabled
Paul Moore
- [PATCH 4/5] net/ipv6: use semicolons rather than commas to separate statements
Paul Moore
- [PATCH 3/3] selinux: Add SELinux GTP support
Paul Moore
- [GIT PULL] SELinux patches for v5.10
Paul Moore
- [PATCH 3/3] selinux: Add SELinux GTP support
Paul Moore
- selinux: how to query if selinux is enabled
Paul Moore
- selinux: how to query if selinux is enabled
Paul Moore
- [PATCH v17 0/4] overlayfs override_creds=off & nested get xattr fix
Paul Moore
- [PATCH v17 1/4] Add flags option to get xattr method paired to __vfs_getxattr
Paul Moore
- [PATCH v17 1/4] Add flags option to get xattr method paired to __vfs_getxattr
Paul Moore
- [PATCH ghak120 V5] audit: trigger accompanying records when no rules present
Paul Moore
- [RFC PATCH] lsm,selinux: pass the family information along with xfrm flow
Paul Moore
- [PATCH v5 01/16] fs/kernel_read_file: Remove FIRMWARE_PREALLOC_BUFFER enum
James Morris
- [PATCH v5 04/16] fs/kernel_read_file: Split into separate source file
James Morris
- [PATCH v5 11/16] LSM: Add "contents" flag to kernel_read_file hook
James Morris
- [PATCH v5 10/16] module: Call security_kernel_post_load_data()
James Morris
- [PATCH v9 0/3] SELinux support for anonymous inodes and UFFD
James Morris
- [PATCH v21 07/12] landlock: Support filesystem access-control
James Morris
- [PATCH v21 07/12] landlock: Support filesystem access-control
James Morris
- [PATCH] security: remove unneeded break
James Morris
- [PATCH] vsock: use ns_capable_noaudit() on socket create
James Morris
- [RFC PATCH] lsm,selinux: pass the family information along with xfrm flow
James Morris
- [PATCH v22 05/12] LSM: Infrastructure management of the superblock
James Morris
- [PATCH v22 06/12] fs,security: Add sb_delete hook
James Morris
- [PATCH v22 09/12] arch: Wire up Landlock syscalls
James Morris
- [GIT PULL] SafeSetID changes for v5.10
Micah Morton
- [GIT PULL] SafeSetID changes for v5.10
Micah Morton
- [GIT PULL] SafeSetID changes for v5.10
Micah Morton
- [GIT PULL] SafeSetID changes for v5.10
Micah Morton
- selinux: how to query if selinux is enabled
Ondrej Mosnacek
- selinux_file_permission() on pipes/pseudo-files - performance issue
Ondrej Mosnacek
- DARLEHEN
Obrist Nicolas
- [RFC PATCH 0/1] security: add fault injection to LSM hooks
Aleksandr Nogikh
- [RFC PATCH 1/1] security: add fault injection capability
Aleksandr Nogikh
- [RFC PATCH 1/1] security: add fault injection capability
Aleksandr Nogikh
- [RFC PATCH v2 0/2] security: add fault injection to LSM hooks
Aleksandr Nogikh
- [RFC PATCH v2 1/2] security: add fault injection capability
Aleksandr Nogikh
- [RFC PATCH v2 2/2] docs: add fail_lsm_hooks info to fault-injection.rst
Aleksandr Nogikh
- [RFC PATCH v2 1/2] security: add fault injection capability
Aleksandr Nogikh
- [RFC PATCH v2 2/2] docs: add fail_lsm_hooks info to fault-injection.rst
Aleksandr Nogikh
- [PATCH v3 0/2] security: add fault injection to LSM hooks
Aleksandr Nogikh
- [PATCH v3 1/2] security: add fault injection capability
Aleksandr Nogikh
- [PATCH v3 2/2] docs: add fail_lsm_hooks info to fault-injection.rst
Aleksandr Nogikh
- November Equity Investment 20-20
JOHN PHIL
- [PATCH] ima: Fix sizeof mismatches
Joe Perches
- [PATCH] ima: Fix sizeof mismatches
Joe Perches
- [RFC] treewide: cleanup unreachable breaks
Joe Perches
- [Cocci] [RFC] treewide: cleanup unreachable breaks
Joe Perches
- [Ocfs2-devel] [RFC] treewide: cleanup unreachable breaks
Joe Perches
- [RFC] treewide: cleanup unreachable breaks
Joe Perches
- [PATCH v33 11/21] x86/sgx: Linux Enclave Driver
Borislav Petkov
- [PATCH v33 11/21] x86/sgx: Linux Enclave Driver
Borislav Petkov
- [PATCH] mm, hugetlb: Avoid double clearing for hugetlb pages
Guilherme Piccoli
- [PATCH] mm, hugetlb: Avoid double clearing for hugetlb pages
Guilherme G. Piccoli
- [PATCH] mm, hugetlb: Avoid double clearing for hugetlb pages
Guilherme G. Piccoli
- [PATCH 00/34] fs: idmapped mounts
Lennart Poettering
- [RFC] treewide: cleanup unreachable breaks
Tom Rix
- [RFC] treewide: cleanup unreachable breaks
Tom Rix
- Најмила кај господарот
Marilyn Robert
- [PATCH v38 11/24] x86/sgx: Add SGX enclave driver
Jarkko Sakkinen
- [PATCH v39 11/24] x86/sgx: Add SGX enclave driver
Jarkko Sakkinen
- [PATCH v39 15/24] x86/sgx: Add SGX_IOC_ENCLAVE_PROVISION
Jarkko Sakkinen
- [PATCH v39 11/24] x86/sgx: Add SGX enclave driver
Jarkko Sakkinen
- [PATCH v39 11/24] x86/sgx: Add SGX enclave driver
Jarkko Sakkinen
- [PATCH v39 11/24] x86/sgx: Add SGX enclave driver
Jarkko Sakkinen
- [PATCH v39 11/24] x86/sgx: Add SGX enclave driver
Jarkko Sakkinen
- [PATCH v39 11/24] x86/sgx: Add SGX enclave driver
Jarkko Sakkinen
- [PATCH 1/3] KEYS: trusted: Fix incorrect handling of tpm_get_random()
Jarkko Sakkinen
- [PATCH 2/3] KEYS: trusted: Reserve TPM for seal and unseal operations
Jarkko Sakkinen
- [PATCH 3/3] KEYS: trusted: Fix migratable=1 failing
Jarkko Sakkinen
- [PATCH v39 11/24] x86/sgx: Add SGX enclave driver
Jarkko Sakkinen
- [PATCH v2 1/3] KEYS: trusted: Fix incorrect handling of tpm_get_random()
Jarkko Sakkinen
- [PATCH v2 2/3] KEYS: trusted: Reserve TPM for seal and unseal operations
Jarkko Sakkinen
- [PATCH v2 3/3] KEYS: trusted: Fix migratable=1 failing
Jarkko Sakkinen
- [PATCH v39 11/24] x86/sgx: Add SGX enclave driver
Jarkko Sakkinen
- [PATCH v39 11/24] x86/sgx: Add SGX enclave driver
Jarkko Sakkinen
- [PATCH v39 11/24] x86/sgx: Add SGX enclave driver
Jarkko Sakkinen
- [PATCH v39 11/24] x86/sgx: Add SGX enclave driver
Jarkko Sakkinen
- [PATCH] ima: Fix sizeof mismatches
Jarkko Sakkinen
- [PATCH v39 11/24] x86/sgx: Add SGX enclave driver
Jarkko Sakkinen
- [PATCH v3 1/3] KEYS: trusted: Fix incorrect handling of tpm_get_random()
Jarkko Sakkinen
- [PATCH v3 2/3] KEYS: trusted: Fix migratable=1 failing
Jarkko Sakkinen
- [PATCH v3 3/3] KEYS: trusted: Reserve TPM for seal and unseal operations
Jarkko Sakkinen
- [PATCH v7 1/4] KEYS: trusted: Add generic trusted keys framework
Jarkko Sakkinen
- [PATCH v7 2/4] KEYS: trusted: Introduce TEE based Trusted Keys
Jarkko Sakkinen
- [PATCH v7 4/4] MAINTAINERS: Add entry for TEE based Trusted Keys
Jarkko Sakkinen
- [PATCH v3 3/3] KEYS: trusted: Reserve TPM for seal and unseal operations
Jarkko Sakkinen
- [PATCH v4 1/3] KEYS: trusted: Fix incorrect handling of tpm_get_random()
Jarkko Sakkinen
- [PATCH v4 2/3] KEYS: trusted: Fix migratable=1 failing
Jarkko Sakkinen
- [PATCH v4 3/3] KEYS: trusted: Reserve TPM for seal and unseal operations
Jarkko Sakkinen
- [PATCH v7 1/4] KEYS: trusted: Add generic trusted keys framework
Jarkko Sakkinen
- [PATCH v7 4/4] MAINTAINERS: Add entry for TEE based Trusted Keys
Jarkko Sakkinen
- [PATCH v39 15/24] x86/sgx: Add SGX_IOC_ENCLAVE_PROVISION
Jarkko Sakkinen
- [PATCH v39 15/24] x86/sgx: Add SGX_IOC_ENCLAVE_PROVISION
Jarkko Sakkinen
- [PATCH v39 15/24] x86/sgx: Add SGX_IOC_ENCLAVE_PROVISION
Jarkko Sakkinen
- [PATCH v39 15/24] x86/sgx: Add SGX_IOC_ENCLAVE_PROVISION
Jarkko Sakkinen
- [PATCH v39 15/24] x86/sgx: Add SGX_IOC_ENCLAVE_PROVISION
Jarkko Sakkinen
- [PATCH] security: remove unneeded break
Jarkko Sakkinen
- [PATCH v33 11/21] x86/sgx: Linux Enclave Driver
Jarkko Sakkinen
- [PATCH v4 1/3,RESEND] KEYS: trusted: Fix incorrect handling of tpm_get_random()
Jarkko Sakkinen
- [PATCH v4 2/3,RESEND] KEYS: trusted: Fix migratable=1 failing
Jarkko Sakkinen
- [PATCH v4 3/3, RESEND] KEYS: trusted: Reserve TPM for seal and unseal operations
Jarkko Sakkinen
- [PATCH v11 0/3] Add trusted_for(2) (was O_MAYEXEC)
Mickaël Salaün
- [PATCH v11 1/3] fs: Add trusted_for(2) syscall implementation and related sysctl
Mickaël Salaün
- [PATCH v11 2/3] arch: Wire up trusted_for(2)
Mickaël Salaün
- [PATCH v11 3/3] selftest/interpreter: Add tests for trusted_for(2) policies
Mickaël Salaün
- [PATCH v11 2/3] arch: Wire up trusted_for(2)
Mickaël Salaün
- [PATCH v21 00/12] Landlock LSM
Mickaël Salaün
- [PATCH v21 01/12] landlock: Add object management
Mickaël Salaün
- [PATCH v21 02/12] landlock: Add ruleset and domain management
Mickaël Salaün
- [PATCH v21 03/12] landlock: Set up the security framework and manage credentials
Mickaël Salaün
- [PATCH v21 04/12] landlock: Add ptrace restrictions
Mickaël Salaün
- [PATCH v21 05/12] LSM: Infrastructure management of the superblock
Mickaël Salaün
- [PATCH v21 06/12] fs,security: Add sb_delete hook
Mickaël Salaün
- [PATCH v21 07/12] landlock: Support filesystem access-control
Mickaël Salaün
- [PATCH v21 08/12] landlock: Add syscall implementations
Mickaël Salaün
- [PATCH v21 09/12] arch: Wire up Landlock syscalls
Mickaël Salaün
- [PATCH v21 10/12] selftests/landlock: Add initial tests
Mickaël Salaün
- [PATCH v21 11/12] samples/landlock: Add a sandbox manager example
Mickaël Salaün
- [PATCH v21 12/12] landlock: Add user and kernel documentation
Mickaël Salaün
- [PATCH v21 07/12] landlock: Support filesystem access-control
Mickaël Salaün
- [PATCH v21 07/12] landlock: Support filesystem access-control
Mickaël Salaün
- [PATCH v21 12/12] landlock: Add user and kernel documentation
Mickaël Salaün
- [RESEND PATCH v11 0/3] Add trusted_for(2) (was O_MAYEXEC)
Mickaël Salaün
- [RESEND PATCH v11 1/3] fs: Add trusted_for(2) syscall implementation and related sysctl
Mickaël Salaün
- [RESEND PATCH v11 2/3] arch: Wire up trusted_for(2)
Mickaël Salaün
- [RESEND PATCH v11 3/3] selftest/interpreter: Add tests for trusted_for(2) policies
Mickaël Salaün
- [RESEND PATCH v11 0/3] Add trusted_for(2) (was O_MAYEXEC)
Mickaël Salaün
- [PATCH v22 00/12] Landlock LSM
Mickaël Salaün
- [PATCH v22 01/12] landlock: Add object management
Mickaël Salaün
- [PATCH v22 02/12] landlock: Add ruleset and domain management
Mickaël Salaün
- [PATCH v22 03/12] landlock: Set up the security framework and manage credentials
Mickaël Salaün
- [PATCH v22 04/12] landlock: Add ptrace restrictions
Mickaël Salaün
- [PATCH v22 05/12] LSM: Infrastructure management of the superblock
Mickaël Salaün
- [PATCH v22 06/12] fs,security: Add sb_delete hook
Mickaël Salaün
- [PATCH v22 07/12] landlock: Support filesystem access-control
Mickaël Salaün
- [PATCH v22 08/12] landlock: Add syscall implementations
Mickaël Salaün
- [PATCH v22 09/12] arch: Wire up Landlock syscalls
Mickaël Salaün
- [PATCH v22 10/12] selftests/landlock: Add user space tests
Mickaël Salaün
- [PATCH v22 11/12] samples/landlock: Add a sandbox manager example
Mickaël Salaün
- [PATCH v22 12/12] landlock: Add user and kernel documentation
Mickaël Salaün
- [PATCH v22 01/12] landlock: Add object management
Mickaël Salaün
- [PATCH v22 02/12] landlock: Add ruleset and domain management
Mickaël Salaün
- [PATCH v22 07/12] landlock: Support filesystem access-control
Mickaël Salaün
- [PATCH v22 08/12] landlock: Add syscall implementations
Mickaël Salaün
- [PATCH v22 12/12] landlock: Add user and kernel documentation
Mickaël Salaün
- [PATCH v22 00/12] Landlock LSM
Mickaël Salaün
- [PATCH v22 08/12] landlock: Add syscall implementations
Mickaël Salaün
- [PATCH v15 0/4] overlayfs override_creds=off & nested get xattr fix
Mark Salyzyn
- [PATCH v16 1/4] Add flags option to get xattr method paired to __vfs_getxattr
Mark Salyzyn
- [PATCH v16 2/4] overlayfs: handle XATTR_NOSECURITY flag for get xattr method
Mark Salyzyn
- [PATCH v16 3/4] overlayfs: override_creds=off option bypass creator_cred
Mark Salyzyn
- [PATCH v16 4/4] overlayfs: inode_owner_or_capable called during execv
Mark Salyzyn
- [PATCH v17 0/4] overlayfs override_creds=off & nested get xattr fix
Mark Salyzyn
- [PATCH v17 1/4] Add flags option to get xattr method paired to __vfs_getxattr
Mark Salyzyn
- [PATCH v17 2/4] overlayfs: handle XATTR_NOSECURITY flag for get xattr method
Mark Salyzyn
- [PATCH v17 3/4] overlayfs: override_creds=off option bypass creator_cred
Mark Salyzyn
- [PATCH v17 4/4] overlayfs: inode_owner_or_capable called during execv
Mark Salyzyn
- [PATCH v17 1/4] Add flags option to get xattr method paired to __vfs_getxattr
Mark Salyzyn
- [PATCH v17 2/4] overlayfs: handle XATTR_NOSECURITY flag for get xattr method
Mark Salyzyn
- [PATCH v18 0/4] overlayfs override_creds=off & nested get xattr fix
Mark Salyzyn
- [PATCH v18 1/4] Add flags option to get xattr method paired to __vfs_getxattr
Mark Salyzyn
- [PATCH v18 2/4] overlayfs: handle XATTR_NOSECURITY flag for get xattr method
Mark Salyzyn
- [PATCH v18 3/4] overlayfs: override_creds=off option bypass creator_cred
Mark Salyzyn
- [PATCH v18 4/4] overlayfs: inode_owner_or_capable called during execv
Mark Salyzyn
- [PATCH v18 0/4] overlayfs override_creds=off & nested get xattr fix
Mark Salyzyn
- [RESEND PATCH v18 0/4] overlayfs override_creds=off & nested get xattr fix
Mark Salyzyn
- [RESEND PATCH v18 1/4] Add flags option to get xattr method paired to __vfs_getxattr
Mark Salyzyn
- [RESEND PATCH v18 2/4] overlayfs: handle XATTR_NOSECURITY flag for get xattr method
Mark Salyzyn
- [RESEND PATCH v18 3/4] overlayfs: override_creds=off option bypass creator_cred
Mark Salyzyn
- [RESEND PATCH v18 4/4] overlayfs: inode_owner_or_capable called during execv
Mark Salyzyn
- [RESEND PATCH v18 4/4] overlayfs: inode_owner_or_capable called during execv
Mark Salyzyn
- [RESEND PATCH v18 0/4] overlayfs override_creds=off & nested get xattr fix
Mark Salyzyn
- [RESEND PATCH v18 2/4] overlayfs: handle XATTR_NOSECURITY flag for get xattr method
Mark Salyzyn
- [PATCH] ima: Fix sizeof mismatches
Roberto Sassu
- selinux: how to query if selinux is enabled
Casey Schaufler
- selinux: how to query if selinux is enabled
Casey Schaufler
- selinux: how to query if selinux is enabled
Casey Schaufler
- selinux: how to query if selinux is enabled
Casey Schaufler
- [GIT PULL] Smack patches for v5.10
Casey Schaufler
- [PATCH v21 00/23] LSM: Module stacking for AppArmor
Casey Schaufler
- [PATCH v21 01/23] LSM: Infrastructure management of the sock security
Casey Schaufler
- [PATCH v21 02/23] LSM: Create and manage the lsmblob data structure.
Casey Schaufler
- [PATCH v21 03/23] LSM: Use lsmblob in security_audit_rule_match
Casey Schaufler
- [PATCH v21 04/23] LSM: Use lsmblob in security_kernel_act_as
Casey Schaufler
- [PATCH v21 05/23] LSM: Use lsmblob in security_secctx_to_secid
Casey Schaufler
- [PATCH v21 06/23] LSM: Use lsmblob in security_secid_to_secctx
Casey Schaufler
- [PATCH v21 07/23] LSM: Use lsmblob in security_ipc_getsecid
Casey Schaufler
- [PATCH v21 08/23] LSM: Use lsmblob in security_task_getsecid
Casey Schaufler
- [PATCH v21 09/23] LSM: Use lsmblob in security_inode_getsecid
Casey Schaufler
- [PATCH v21 10/23] LSM: Use lsmblob in security_cred_getsecid
Casey Schaufler
- [PATCH v21 11/23] IMA: Change internal interfaces to use lsmblobs
Casey Schaufler
- [PATCH v21 12/23] LSM: Specify which LSM to display
Casey Schaufler
- [PATCH v21 13/23] LSM: Ensure the correct LSM context releaser
Casey Schaufler
- [PATCH v21 14/23] LSM: Use lsmcontext in security_secid_to_secctx
Casey Schaufler
- [PATCH v21 15/23] LSM: Use lsmcontext in security_inode_getsecctx
Casey Schaufler
- [PATCH v21 16/23] LSM: security_secid_to_secctx in netlink netfilter
Casey Schaufler
- [PATCH v21 17/23] NET: Store LSM netlabel data in a lsmblob
Casey Schaufler
- [PATCH v21 18/23] LSM: Verify LSM display sanity in binder
Casey Schaufler
- [PATCH v21 19/23] audit: add support for non-syscall auxiliary records
Casey Schaufler
- [PATCH v21 20/23] Audit: Add new record for multiple process LSM attributes
Casey Schaufler
- [PATCH v21 21/23] Audit: Add a new record for multiple object LSM attributes
Casey Schaufler
- [PATCH v21 22/23] LSM: Add /proc attr entry for full LSM context
Casey Schaufler
- [PATCH v21 23/23] AppArmor: Remove the exclusive flag
Casey Schaufler
- selinux: how to query if selinux is enabled
Casey Schaufler
- [RFC PATCH v2 1/2] security: add fault injection capability
Casey Schaufler
- [RFC PATCH v2 1/2] security: add fault injection capability
Casey Schaufler
- [PATCH v1] efi: Don't use knowledge about efi_guid_t internals
Andy Shevchenko
- selinux: how to query if selinux is enabled
Stephen Smalley
- selinux_file_permission() on pipes/pseudo-files - performance issue
Stephen Smalley
- [PATCH] vsock: use ns_capable_noaudit() on socket create
Jeff Vander Stoep
- [RFC PATCH 00/30] ima: Introduce IMA namespace
Krzysztof Struczynski
- [PATCH v4 1/6] IMA: generalize keyring specific measurement constructs
Tushar Sugandhi
- [PATCH v4 2/6] IMA: conditionally allow empty rule data
Tushar Sugandhi
- [PATCH v4 4/6] IMA: add policy to measure critical data from kernel components
Tushar Sugandhi
- [PATCH v4 5/6] IMA: add hook to measure critical data from kernel components
Tushar Sugandhi
- [PATCH v4 0/6] IMA: Infrastructure for measurement of critical kernel data
Tushar Sugandhi
- general protection fault in security_inode_getattr
Miklos Szeredi
- [RESEND PATCH v18 2/4] overlayfs: handle XATTR_NOSECURITY flag for get xattr method
Miklos Szeredi
- general protection fault in security_inode_getattr
Miklos Szeredi
- Inconsistent capability requirements for prctl_set_mm_exe_file()
Kirill Tkhai
- [GIT PULL] SafeSetID changes for v5.10
Linus Torvalds
- [GIT PULL] SafeSetID changes for v5.10
Linus Torvalds
- [GIT PULL] SafeSetID changes for v5.10
Linus Torvalds
- [RESEND PATCH v11 2/3] arch: Wire up trusted_for(2)
Geert Uytterhoeven
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
Al Viro
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
Al Viro
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
Al Viro
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
Al Viro
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
Al Viro
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
Al Viro
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
Al Viro
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
Al Viro
- [REGRESSION] mm: process_vm_readv testcase no longer works after compat_prcoess_vm_readv removed
Al Viro
- [RFC PATCH v2 2/2] docs: add fail_lsm_hooks info to fault-injection.rst
Dmitry Vyukov
- general protection fault in security_inode_getattr
Dmitry Vyukov
- general protection fault in security_inode_getattr
Dmitry Vyukov
- Re
Mr. J. Ward
- [PATCH 3/3] selinux: Add SELinux GTP support
Harald Welte
- [PATCH 3/3] selinux: Add SELinux GTP support
Harald Welte
- [PATCH v39 11/24] x86/sgx: Add SGX enclave driver
Matthew Wilcox
- [PATCH v39 11/24] x86/sgx: Add SGX enclave driver
Matthew Wilcox
- [PATCH v39 11/24] x86/sgx: Add SGX enclave driver
Matthew Wilcox
- [Ocfs2-devel] [RFC] treewide: cleanup unreachable breaks
Matthew Wilcox
- [Ocfs2-devel] [RFC] treewide: cleanup unreachable breaks
Matthew Wilcox
- Buggy commit tracked to: "Re: [PATCH 2/9] iov_iter: move rw_copy_check_uvector() into lib/iov_iter.c"
Matthew Wilcox
- [RFC] treewide: cleanup unreachable breaks
Dan Williams
- [RFC PATCH 3/6] security/fbfam: Use the api to manage statistics
John Wood
- [PATCH v2 0/8] Fork brute force attack mitigation
John Wood
- [PATCH v2 1/8] security: Add LSM hook at the point where a task gets a fatal signal
John Wood
- [PATCH v2 2/8] security/brute: Define a LSM and manage statistical data
John Wood
- [PATCH v2 3/8] security/brute: Add sysctl attributes to allow detection fine tuning
John Wood
- [PATCH v2 4/8] security/brute: Detect a fork brute force attack
John Wood
- [PATCH v2 5/8] security/brute: Mitigate a fork brute force attack
John Wood
- [PATCH v2 6/8] security/brute: Add prctls to enable/disable the fork attack detection
John Wood
- [PATCH v2 7/8] Documentation: Add documentation for the Brute LSM
John Wood
- [PATCH v2 8/8] MAINTAINERS: Add a new entry for the Brute LSM
John Wood
- [PATCH] ima: Fix sizeof mismatches
Mimi Zohar
- [PATCH] ima: defer arch_ima_get_secureboot() call to IMA init time
Mimi Zohar
- [PATCH] ima: Fix sizeof mismatches
Mimi Zohar
- [PATCH v2] ima: defer arch_ima_get_secureboot() call to IMA init time
Mimi Zohar
- [PATCH v2] ima: defer arch_ima_get_secureboot() call to IMA init time
Mimi Zohar
- [PATCH v2] ima: defer arch_ima_get_secureboot() call to IMA init time
Mimi Zohar
- [PATCH] security: remove unneeded break
Mimi Zohar
- [PATCH v7 1/4] KEYS: trusted: Add generic trusted keys framework
Mimi Zohar
- [PATCH v7 1/4] KEYS: trusted: Add generic trusted keys framework
Mimi Zohar
- [PATCH v4 1/6] IMA: generalize keyring specific measurement constructs
Mimi Zohar
- [PATCH v4 2/6] IMA: conditionally allow empty rule data
Mimi Zohar
- [PATCH v4 4/6] IMA: add policy to measure critical data from kernel components
Mimi Zohar
- [PATCH v4 5/6] IMA: add hook to measure critical data from kernel components
Mimi Zohar
- [PATCH v4 0/6] IMA: Infrastructure for measurement of critical kernel data
Mimi Zohar
- Does selinux rule needed for .ima keyring access - integrity: Request for unknown key 'id:87deb3bf' err -13
rishi gupta
- [PATCH RFC PKS/Trusted keys 0/2] trusted keys: Add PKS protection to trusted keys
ira.weiny at intel.com
- [PATCH RFC PKS/Trusted keys 1/2] vmalloc: Add vmalloc_pks() call
ira.weiny at intel.com
- [PATCH RFC PKS/Trusted keys 2/2] keys/trusted: protect trusted keys using PKS
ira.weiny at intel.com
- [GIT PULL] SELinux patches for v5.10
pr-tracker-bot at kernel.org
- [GIT PULL] Smack patches for v5.10
pr-tracker-bot at kernel.org
- [GIT PULL] SafeSetID changes for v5.10
pr-tracker-bot at kernel.org
- [PATCH] apparmor: fix error check
trix at redhat.com
- [RFC] treewide: cleanup unreachable breaks
trix at redhat.com
- [PATCH] security: remove unneeded break
trix at redhat.com
- [PATCH v16 2/4] overlayfs: handle XATTR_NOSECURITY flag for get xattr method
kernel test robot
- [PATCH v16 2/4] overlayfs: handle XATTR_NOSECURITY flag for get xattr method
kernel test robot
- [PATCH v17 2/4] overlayfs: handle XATTR_NOSECURITY flag for get xattr method
kernel test robot
Last message date:
Sat Oct 31 17:43:29 UTC 2020
Archived on: Sat Oct 31 17:43:53 UTC 2020
This archive was generated by
Pipermail 0.09 (Mailman edition).