After chatting with James in person, I'm resending the full set with the fixes merged in in order to avoid any bisect issues. There should be no functional changes other than avoiding build failures with some configs, and fixing the oops in tracefs.
- [PATCH V40 00/29] Add kernel lockdown functionality Matthew Garrett
- [PATCH V40 01/29] security: Support early LSMs Matthew Garrett
- [PATCH V40 04/29] lockdown: Enforce module signatures... Matthew Garrett
- [PATCH V40 06/29] kexec_load: Disable at runtime if t... Matthew Garrett
- [PATCH V40 05/29] lockdown: Restrict /dev/{mem,kmem,p... Matthew Garrett
- [PATCH V40 12/29] x86: Lock down IO port access when ... Matthew Garrett
- [PATCH V40 13/29] x86/msr: Restrict MSR access when t... Matthew Garrett
- [PATCH V40 11/29] PCI: Lock down BAR access when the ... Matthew Garrett
- Re: [PATCH V40 11/29] PCI: Lock down BAR access w... Bjorn Helgaas
- Re: [PATCH V40 11/29] PCI: Lock down BAR acce... Matthew Garrett
- [PATCH V40 18/29] lockdown: Lock down TIOCSSERIAL Matthew Garrett
