Fairly minimal changes since the last set: tracefs is restricted at Steven's suggestion (but could do with a once-over, I'm very much not a vfs person), debugfs is back to Dave's original implementation. I've also fixed up a malformed patch that resulted from me getting confused during rebase, and added some further documentation to the initial patch in order to give a reference for the design goals.
- [PATCH V32 0/27] Lockdown patches for 5.2 Matthew Garrett
- [PATCH V32 11/27] x86: Lock down IO port access when ... Matthew Garrett
- Re: [PATCH V32 11/27] x86: Lock down IO port acce... Thomas Gleixner
- [PATCH V32 01/27] Add the ability to lock down access... Matthew Garrett
- [PATCH V32 02/27] Enforce module signatures if the ke... Matthew Garrett
- [PATCH V32 13/27] ACPI: Limit access to custom_method... Matthew Garrett
- [PATCH V32 12/27] x86/msr: Restrict MSR access when t... Matthew Garrett
- [PATCH V32 18/27] Lock down module params that specif... Matthew Garrett
- [PATCH V32 16/27] Prohibit PCMCIA CIS storage when th... Matthew Garrett
- [PATCH V32 19/27] x86/mmiotrace: Lock down the testmm... Matthew Garrett
- Re: [PATCH V32 19/27] x86/mmiotrace: Lock down th... Steven Rostedt
