Changes in Makefile

c17ee635fd3a482b2ad2bf5e269755c2eae5f25e - Merge drm/drm-fixes into drm-misc-fixes

Mon, 23 Feb 2026 10:09:45 +0100

Merge drm/drm-fixes into drm-misc-fixes7.0-rc1 was just released, let's merge it to kick the new release cycle.Signed-off-by: Maxime Ripard List of files: /linux/security/landlock/Makefile

c22e26bd0906e9c8325462993f01adb16b8ea2c0 - Merge tag 'landlock-7.0-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/mic/linux

Thu, 12 Feb 2026 00:57:08 +0100

Merge tag 'landlock-7.0-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/mic/linuxPull landlock updates from Mickaël Salaün: - extend Landlock to enforce restrictions on a whole process, similarly to the seccomp's TSYNC flag - refactor data structures to simplify code and improve performance - add documentation to cover missing parts* tag 'landlock-7.0-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/mic/linux: mailmap: Add entry for Mickaël Salaün landlock: Transpose the layer masks data structure landlock: Add access_mask_subset() helper selftests/landlock: Add filesystem access benchmark landlock: Document audit blocker field format landlock: Add errata documentation section landlock: Add backwards compatibility for restrict flags landlock: Refactor TCP socket type check landlock: Minor reword of docs for TCP access rights landlock: Document LANDLOCK_RESTRICT_SELF_TSYNC selftests/landlock: Add LANDLOCK_RESTRICT_SELF_TSYNC tests landlock: Multithreading support for landlock_restrict_self() List of files: /linux/security/landlock/Makefile

42fc7e6543f6d17d2cf9ed3e5021f103a3d11182 - landlock: Multithreading support for landlock_restrict_self()

Thu, 27 Nov 2025 12:51:34 +0100

landlock: Multithreading support for landlock_restrict_self()Introduce the LANDLOCK_RESTRICT_SELF_TSYNC flag. With this flag, agiven Landlock ruleset is applied to all threads of the callingprocess, instead of only the current one.Without this flag, multithreaded userspace programs currently resortto using the nptl(7)/libpsx hack for multithreaded policy enforcement,which is also used by libcap and for setuid(2). Using thisuserspace-based scheme, the threads of a process enforce the sameLandlock policy, but the resulting Landlock domains are stillseparate. The domains being separate causes multiple problems:* When using Landlock's "scoped" access rights, the domain identity is used to determine whether an operation is permitted. As a result, when using LANLDOCK_SCOPE_SIGNAL, signaling between sibling threads stops working. This is a problem for programming languages and frameworks which are inherently multithreaded (e.g. Go).* In audit logging, the domains of separate threads in a process will get logged with different domain IDs, even when they are based on the same ruleset FD, which might confuse users.Cc: Andrew G. Morgan Cc: John Johansen Cc: Paul Moore Suggested-by: Jann Horn Signed-off-by: Günther Noack Link: https://lore.kernel.org/r/20251127115136.3064948-2-gnoack@google.com[mic: Fix restrict_self_flags test, clean up Makefile, allign comments,reduce local variable scope, add missing includes]Closes: https://github.com/landlock-lsm/linux/issues/2Signed-off-by: Mickaël Salaün List of files: /linux/security/landlock/Makefile

bbfd5594756011167b8f8de9a00e0c946afda1e6 - Merge drm/drm-next into drm-intel-gt-next

Wed, 28 May 2025 09:20:17 +0200

Merge drm/drm-next into drm-intel-gt-nextNeed to pull in a67221b5eb8d ("drm/i915/dp: Return min bpc supported by source instead of 0")in order to fix build breakage on GCC 9.4.0 (from Ubuntu 20.04).Signed-off-by: Joonas Lahtinen List of files: /linux/security/landlock/Makefile

db5302ae571beec635c1a96e7f72926a4e65195e - Merge drm/drm-next into drm-intel-next

Fri, 16 May 2025 09:22:36 +0200

Merge drm/drm-next into drm-intel-nextBackmerge to sync with v6.15-rc, xe, and specifically async flip changesin drm-misc.Signed-off-by: Jani Nikula List of files: /linux/security/landlock/Makefile

4f9786035f9e519db41375818e1d0b5f20da2f10 - Merge branch 'next' into for-linus

Mon, 02 Jun 2025 06:41:07 +0200

Merge branch 'next' into for-linusPrepare input updates for 6.16 merge window. List of files: /linux/security/landlock/Makefile

d51b9d81f7883f526b26e3ab903e646274aebeb1 - Merge tag 'v6.15-rc6' into next

Fri, 16 May 2025 01:20:39 +0200

Merge tag 'v6.15-rc6' into nextSync up with mainline to bring in xpad controller changes. List of files: /linux/security/landlock/Makefile

844e31bbaef7c8a6ff2c0fbac45c0c85b5484482 - Merge remote-tracking branch 'drm-misc/drm-misc-next' into msm-next

Tue, 29 Apr 2025 22:42:29 +0200

Merge remote-tracking branch 'drm-misc/drm-misc-next' into msm-nextMerge drm-misc-next to get commit Fixes: fec450ca15af ("drm/display:hdmi: provide central data authority for ACR params").Signed-off-by: Rob Clark List of files: /linux/security/landlock/Makefile

3ab7ae8e07f888f223027f0ef84d33e43919ad55 - Merge drm/drm-next into drm-xe-next

Thu, 24 Apr 2025 13:34:55 +0200

Merge drm/drm-next into drm-xe-nextBackmerge to bring in linux 6.15-rc.Signed-off-by: Thomas Hellström List of files: /linux/security/landlock/Makefile

1afba39f9305fe4061a4e70baa6ebab9d41459da - Merge drm/drm-next into drm-misc-next

Mon, 07 Apr 2025 13:47:40 +0200

Merge drm/drm-next into drm-misc-nextBackmerging to get v6.15-rc1 into drm-misc-next. Also fixes abuild issue when enabling CONFIG_DRM_SCHED_KUNIT_TEST.Signed-off-by: Thomas Zimmermann List of files: /linux/security/landlock/Makefile

9f13acb2406a3aed90c6738b3a2f1c0e43118cbd - Merge tag 'v6.15-rc1' into x86/cpu, to refresh the branch with upstream changes

Fri, 11 Apr 2025 11:13:27 +0200

Merge tag 'v6.15-rc1' into x86/cpu, to refresh the branch with upstream changesSigned-off-by: Ingo Molnar List of files: /linux/security/landlock/Makefile

6ce0fdaae043803bb324d915ce0fe43316bf1e81 - Merge tag 'v6.15-rc1' into x86/asm, to refresh the branch

Wed, 09 Apr 2025 21:39:43 +0200

Merge tag 'v6.15-rc1' into x86/asm, to refresh the branchSigned-off-by: Ingo Molnar List of files: /linux/security/landlock/Makefile

1260ed77798502de9c98020040d2995008de10cc - Merge drm/drm-fixes into drm-misc-fixes

Tue, 08 Apr 2025 10:15:47 +0200

Merge drm/drm-fixes into drm-misc-fixesBackmerging to get updates from v6.15-rc1.Signed-off-by: Thomas Zimmermann List of files: /linux/security/landlock/Makefile

72885116069abdd05c245707c3989fc605632970 - Merge tag 'landlock-6.15-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/mic/linux

Fri, 28 Mar 2025 20:37:13 +0100

Merge tag 'landlock-6.15-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/mic/linuxPull landlock updates from Mickaël Salaün: "This brings two main changes to Landlock: - A signal scoping fix with a new interface for user space to know if it is compatible with the running kernel. - Audit support to give visibility on why access requests are denied, including the origin of the security policy, missing access rights, and description of object(s). This was designed to limit log spam as much as possible while still alerting about unexpected blocked access. With these changes come new and improved documentation, and a lot of new tests"* tag 'landlock-6.15-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/mic/linux: (36 commits) landlock: Add audit documentation selftests/landlock: Add audit tests for network selftests/landlock: Add audit tests for filesystem selftests/landlock: Add audit tests for abstract UNIX socket scoping selftests/landlock: Add audit tests for ptrace selftests/landlock: Test audit with restrict flags selftests/landlock: Add tests for audit flags and domain IDs selftests/landlock: Extend tests for landlock_restrict_self(2)'s flags selftests/landlock: Add test for invalid ruleset file descriptor samples/landlock: Enable users to log sandbox denials landlock: Add LANDLOCK_RESTRICT_SELF_LOG_SUBDOMAINS_OFF landlock: Add LANDLOCK_RESTRICT_SELF_LOG_*_EXEC_* flags landlock: Log scoped denials landlock: Log TCP bind and connect denials landlock: Log truncate and IOCTL denials landlock: Factor out IOCTL hooks landlock: Log file-related denials landlock: Log mount-related denials landlock: Add AUDIT_LANDLOCK_DOMAIN and log domain status landlock: Add AUDIT_LANDLOCK_ACCESS and log ptrace denials ... List of files: /linux/security/landlock/Makefile

33e65b0d3add6bdc731e9298995cbbc979349f51 - landlock: Add AUDIT_LANDLOCK_ACCESS and log ptrace denials

Thu, 20 Mar 2025 20:06:58 +0100

landlock: Add AUDIT_LANDLOCK_ACCESS and log ptrace denialsAdd a new AUDIT_LANDLOCK_ACCESS record type dedicated to an accessrequest denied by a Landlock domain. AUDIT_LANDLOCK_ACCESS indicatesthat something unexpected happened.For now, only denied access are logged, which means that anyAUDIT_LANDLOCK_ACCESS record is always followed by a SYSCALL record with"success=no". However, log parsers should check this syscall propertybecause this is the only sign that a request was denied. Indeed, wecould have "success=yes" if Landlock would support a "permissive" mode.We could also add a new field to AUDIT_LANDLOCK_DOMAIN for this mode(see following commit).By default, the only logged access requests are those coming from thesame executed program that enforced the Landlock restriction on itself.In other words, no audit record are created for a task after it calledexecve(2). This is required to avoid log spam because programs may onlybe aware of their own restrictions, but not the inherited ones.Following commits will allow to conditionally generateAUDIT_LANDLOCK_ACCESS records according to dedicatedlandlock_restrict_self(2)'s flags.The AUDIT_LANDLOCK_ACCESS message contains:- the "domain" ID restricting the action on an object,- the "blockers" that are missing to allow the requested access,- a set of fields identifying the related object (e.g. task identified with "opid" and "ocomm").The blockers are implicit restrictions (e.g. ptrace), or explicit accessrights (e.g. filesystem), or explicit scopes (e.g. signal). This fieldcontains a list of at least one element, each separated with a comma.The initial blocker is "ptrace", which describe all implicit Landlockrestrictions related to ptrace (e.g. deny tracing of tasks outside asandbox).Add audit support to ptrace_access_check and ptrace_traceme hooks. Forthe ptrace_access_check case, we log the current/parent domain and thechild task. For the ptrace_traceme case, we log the parent domain andthe current/child task. Indeed, the requester and the target are thecurrent task, but the action would be performed by the parent task.Audit event sample: type=LANDLOCK_ACCESS msg=audit(1729738800.349:44): domain=195ba459b blockers=ptrace opid=1 ocomm="systemd" type=SYSCALL msg=audit(1729738800.349:44): arch=c000003e syscall=101 success=no [...] pid=300 auid=0A following commit adds user documentation.Add KUnit tests to check reading of domain ID relative to layer level.The quick return for non-landlocked tasks is moved from task_ptrace() toeach LSM hooks.It is not useful to inline the audit_enabled check because othercomputation are performed by landlock_log_denial().Use scoped guards for RCU read-side critical sections.Cc: Günther Noack Acked-by: Paul Moore Link: https://lore.kernel.org/r/20250320190717.2287696-10-mic@digikod.netSigned-off-by: Mickaël Salaün List of files: /linux/security/landlock/Makefile

d9d2a68ed44bbae598a81cb95e0746fa6b13b57f - landlock: Add unique ID generator

Thu, 20 Mar 2025 20:06:51 +0100

landlock: Add unique ID generatorLandlock IDs can be generated to uniquely identify Landlock objects.For now, only Landlock domains get an ID at creation time. These IDsmap to immutable domain hierarchies.Landlock IDs have important properties:- They are unique during the lifetime of the running system thanks to the 64-bit values: at worse, 2^60 - 2*2^32 useful IDs.- They are always greater than 2^32 and must then be stored in 64-bit integer types.- The initial ID (at boot time) is randomly picked between 2^32 and 2^33, which limits collisions in logs across different boots.- IDs are sequential, which enables users to order them.- IDs may not be consecutive but increase with a random 2^4 step, which limits side channels.Such IDs can be exposed to unprivileged processes, even if it is not thecase with this audit patch series. The domain IDs will be useful foruser space to identify sandboxes and get their properties.These Landlock IDs are more secure that other absolute kernel IDs suchas pipe's inodes which rely on a shared global counter.For checkpoint/restore features (i.e. CRIU), we could easily implement aprivileged interface (e.g. sysfs) to set the next ID counter.IDR/IDA are not used because we only need a bijection from Landlockobjects to Landlock IDs, and we must not recycle IDs. This enables usto identify all Landlock objects during the lifetime of the system (e.g.in logs), but not to access an object from an ID nor know if an ID isassigned. Using a counter is simpler, it scales (i.e. avoids growingmemory footprint), and it does not require locking. We'll use properfile descriptors (with IDs used as inode numbers) to access Landlockobjects.Cc: Günther Noack Cc: Paul Moore Link: https://lore.kernel.org/r/20250320190717.2287696-3-mic@digikod.netSigned-off-by: Mickaël Salaün List of files: /linux/security/landlock/Makefile

a23e1966932464e1c5226cb9ac4ce1d5fc10ba22 - Merge branch 'next' into for-linus

Mon, 15 Jul 2024 23:03:44 +0200

Merge branch 'next' into for-linusPrepare input updates for 6.11 merge window. List of files: /linux/security/landlock/Makefile

6f47c7ae8c7afaf9ad291d39f0d3974f191a7946 - Merge tag 'v6.9' into next

Tue, 28 May 2024 06:37:18 +0200

Merge tag 'v6.9' into nextSync up with the mainline to bring in the new cleanup API. List of files: /linux/security/landlock/Makefile

60a2f25de7b8b785baee2932db932ae9a5b8c86d - Merge drm/drm-next into drm-intel-gt-next

Thu, 16 May 2024 09:33:01 +0200

Merge drm/drm-next into drm-intel-gt-nextSome display refactoring patches are needed in order to allow conflict-less merging.Signed-off-by: Tvrtko Ursulin List of files: /linux/security/landlock/Makefile

594ce0b8a998aa4d05827cd7c0d0dcec9a1e3ae2 - Merge topic branches 'clkdev' and 'fixes' into for-linus

Mon, 10 Jun 2024 13:03:21 +0200

Merge topic branches 'clkdev' and 'fixes' into for-linus List of files: /linux/security/landlock/Makefile