[PATCH v4 00/10] Reintroduce Hornet LSM
2026-04-16 17:33 UTC (11+ messages)
` [PATCH v4 01/10] crypto: pkcs7: add flag for validated trust on a signed info block
` [PATCH v4 02/10] crypto: pkcs7: add ability to extract signed attributes by OID
` [PATCH v4 03/10] crypto: pkcs7: add tests for pkcs7_get_authattr
` [PATCH v4 04/10] lsm: framework for BPF integrity verification
` [PATCH v4 05/10] lsm: security: Add additional enum values for bpf integrity checks
` [PATCH v4 06/10] security: Hornet LSM
` [PATCH v4 07/10] hornet: Introduce gen_sig
` [PATCH v4 08/10] hornet: Add a light skeleton data extractor scripts
` [PATCH v4 09/10] selftests/hornet: Add a selftest for the Hornet LSM
` [PATCH v4 10/10] ipe: Add BPF program load policy enforcement via Hornet integration
[PATCH v3 0/4] Add support for ML-DSA signature for EVM and IMA
2026-04-16 15:40 UTC (5+ messages)
` [PATCH v3 1/4] integrity: Check for NULL returned by asymmetric_key_public_key
` [PATCH v3 2/4] integrity: Check that algo parameter is within valid range
` [PATCH v3 3/4] integrity: Refactor asymmetric_verify for reusability
` [PATCH v3 4/4] integrity: Add support for sigv3 verification using ML-DSA keys
[PATCH 00/61] treewide: Use IS_ERR_OR_NULL over manual NULL check - refactor
2026-04-16 12:30 UTC (6+ messages)
` [PATCH 01/61] Coccinelle: Prefer IS_ERR_OR_NULL over manual NULL check
` [PATCH 55/61] interconnect: "
[PATCH v4] KEYS: trusted: Debugging as a feature
2026-04-16 3:16 UTC (2+ messages)
社長のNG行動
2026-04-16 3:05 UTC
[GIT PULL] IPE update for 7.1
2026-04-15 22:37 UTC (2+ messages)
[PATCH v2 0/4] Firmware LSM hook
2026-04-15 21:40 UTC (21+ messages)
[PATCH v2] trusted-keys: move pr_fmt out of trusted-type.h
2026-04-15 20:50 UTC (2+ messages)
[PATCH v2 0/2] Add support for ML-DSA signature for EVM and IMA
2026-04-15 20:32 UTC (7+ messages)
` [PATCH v2 1/2] integrity: Refactor asymmetric_verify for reusability
` [PATCH v2 2/2] integrity: Add support for sigv3 verification using ML-DSA keys
[PATCH] ima: Use KEXEC_SIG_FORCE for rejecting unsigned kexec images
2026-04-15 19:22 UTC (2+ messages)
[syzbot] Monthly lsm report (Apr 2026)
2026-04-15 16:35 UTC (6+ messages)
[PATCH] trusted-keys: move pr_fmt out of trusted-type.h
2026-04-15 2:44 UTC (4+ messages)
[PATCH v3] KEYS: trusted: Debugging as a feature
2026-04-15 0:05 UTC (5+ messages)
[RFC PATCH v4 00/19] Support socket access-control
2026-04-14 19:45 UTC (5+ messages)
LSM: Whiteout chardev creation sidesteps mknod hook
2026-04-14 14:07 UTC (12+ messages)
[PATCH 0/3] landlock: Restrict renameat2 with RENAME_WHITEOUT
2026-04-14 13:40 UTC (5+ messages)
` [PATCH 1/3] landlock: Require LANDLOCK_ACCESS_FS_MAKE_CHAR for RENAME_WHITEOUT
` [PATCH 2/3] selftests/landlock: Add test for RENAME_WHITEOUT denial
` [PATCH 3/3] selftests/landlock: Test OverlayFS renames w/o LANDLOCK_ACCESS_FS_MAKE_CHAR
[GIT PULL] selinux/selinux-pr-20260410
2026-04-13 22:48 UTC (2+ messages)
[GIT PULL] lsm/lsm-pr-20260410
2026-04-13 22:47 UTC (3+ messages)
[GIT PULL] Landlock update for v7.1-rc1
2026-04-13 22:47 UTC (2+ messages)
landlock: Add support for chmod and chown system calls families
2026-04-13 19:51 UTC (8+ messages)
` [PATCH 1/5] selftests/landlock: fix return condition on create_directory
` [PATCH 2/5] landlock: add support for chmod and chown
` [PATCH 3/5] selftests/landlock: add tests for chmod and chown restrictions
` [PATCH 4/5] samples/landlock: add support for chown and chmod
` [PATCH 5/5] landlock: Document chmod and chown support in example code
[PATCH] lsm: Fix the crash issue in xfrm_decode_session
2026-04-13 17:39 UTC (2+ messages)
[PATCH] security: remove BUG_ON in security_skb_classify_flow
2026-04-13 17:37 UTC (5+ messages)
[PATCH 0/7] lsm: Replace security_sb_mount with granular mount hooks
2026-04-13 17:18 UTC (7+ messages)
` [PATCH 1/7] lsm: Add granular mount hooks to replace security_sb_mount
` [PATCH 4/7] selinux: Convert from sb_mount to granular mount hooks
` [PATCH 7/7] lsm: Remove security_sb_mount and security_move_mount
[PATCH] evm: zero-initialize the evm_xattrs read buffer
2026-04-13 15:20 UTC (2+ messages)
[RFC PATCH 00/20] BPF interface for applying Landlock rulesets
2026-04-13 15:06 UTC (28+ messages)
` [RFC PATCH 01/20] landlock: Move operations from syscall into ruleset code
` [RFC PATCH 02/20] execve: Add set_nnp_on_point_of_no_return
` [RFC PATCH 03/20] landlock: Implement LANDLOCK_RESTRICT_SELF_NO_NEW_PRIVS
` [RFC PATCH 04/20] selftests/landlock: Cover LANDLOCK_RESTRICT_SELF_NO_NEW_PRIVS
` [RFC PATCH 05/20] landlock: Make ruleset deferred free RCU safe
` [RFC PATCH 06/20] bpf: lsm: Add Landlock kfuncs
` [RFC PATCH 07/20] bpf: arraymap: Implement Landlock ruleset map
` [RFC PATCH 08/20] bpf: Add Landlock ruleset map type
` [RFC PATCH 09/20] bpf: syscall: Handle Landlock ruleset maps
` [RFC PATCH 10/20] bpf: verifier: Add Landlock ruleset map support
` [RFC PATCH 11/20] selftests/bpf: Add Landlock kfunc declarations
` [RFC PATCH 12/20] selftests/landlock: Rename gettid wrapper for BPF reuse
` [RFC PATCH 13/20] selftests/bpf: Enable Landlock in selftests kernel
` [RFC PATCH 14/20] selftests/bpf: Add Landlock kfunc test program
` [RFC PATCH 15/20] selftests/bpf: Add Landlock kfunc test runner
` [RFC PATCH 16/20] landlock: Bump ABI version
` [RFC PATCH 17/20] tools: bpftool: Add documentation for landlock_ruleset
` [RFC PATCH 18/20] landlock: Document LANDLOCK_RESTRICT_SELF_NO_NEW_PRIVS
` [RFC PATCH 19/20] bpf: Document BPF_MAP_TYPE_LANDLOCK_RULESET
` [RFC PATCH 20/20] MAINTAINERS: update entry for the Landlock subsystem
[PATCH 6.1.y] apparmor: fix memory leak in verify_header
2026-04-13 5:48 UTC
[PATCH 5.10.y] apparmor: fix memory leak in verify_header
2026-04-13 5:49 UTC
[PATCH 5.15.y] apparmor: fix memory leak in verify_header
2026-04-13 5:49 UTC
[PATCH v7 00/10] Implement LANDLOCK_ADD_RULE_NO_INHERIT
2026-04-12 19:32 UTC (11+ messages)
` [PATCH v7 01/10] landlock: Add path walk helper
` [PATCH v7 02/10] landlock: Use landlock_walk_path_up for is_access_to_paths_allowed
` [PATCH v7 03/10] landlock: Use landlock_walk_path_up for collect_domain_accesses
` [PATCH v7 04/10] landlock: Implement LANDLOCK_ADD_RULE_NO_INHERIT userspace api
` [PATCH v7 05/10] landlock: Move find_rule definition above landlock_append_fs_rule
` [PATCH v7 06/10] landlock: Implement LANDLOCK_ADD_RULE_NO_INHERIT
` [PATCH v7 07/10] landlock: Add documentation for LANDLOCK_ADD_RULE_NO_INHERIT
` [PATCH v7 08/10] samples/landlock: Add LANDLOCK_ADD_RULE_NO_INHERIT to landlock-sandboxer
` [PATCH v7 09/10] selftests/landlock: Implement selftests for LANDLOCK_ADD_RULE_NO_INHERIT
` [PATCH v7 10/10] landlock: Implement KUnit test "
[PATCH v2 00/17] Landlock tracepoints
2026-04-12 16:29 UTC (8+ messages)
` [PATCH v2 01/17] landlock: Prepare ruleset and domain type split
` [PATCH v2 03/17] landlock: Split struct landlock_domain from struct landlock_ruleset
` [PATCH v2 12/17] landlock: Add tracepoints for ptrace and scope denials
[PATCH 04/61] ext4: Prefer IS_ERR_OR_NULL over manual NULL check
2026-04-10 15:18 UTC (2+ messages)
[bug report] apparmor: add support loading per permission tagging
2026-04-10 10:16 UTC
[RFC PATCH v1 00/11] Landlock: Namespace and capability control
2026-04-10 9:35 UTC (14+ messages)
` [RFC PATCH v1 01/11] security: add LSM blob and hooks for namespaces
` [RFC PATCH v1 02/11] security: Add LSM_AUDIT_DATA_NS for namespace audit records
` [RFC PATCH v1 04/11] landlock: Wrap per-layer access masks in struct layer_rights
` [RFC PATCH v1 05/11] landlock: Enforce namespace entry restrictions
[PATCH v4 0/3] Fix incorrect overlayfs mmap() and mprotect() LSM access controls
2026-04-09 13:32 UTC (9+ messages)
` [PATCH v4 2/3] lsm: add backing_file LSM hooks
` [PATCH v4 3/3] selinux: fix overlayfs mmap() and mprotect() access checks
[PATCH v2] KEYS: trusted: Debugging as a feature
2026-04-09 0:41 UTC (5+ messages)
[PATCH 0/3] Add support for ML-DSA signature for EVM and IMA
2026-04-08 17:25 UTC (4+ messages)
` [PATCH 1/3] crypto: public_key: Remove check for valid hash_algo for ML-DSA keys
[PATCH v2] KEYS: trusted: Debugging as a feature
2026-04-08 8:24 UTC (3+ messages)
[PATCH v2 1/2] landlock: Fix LOG_SUBDOMAINS_OFF inheritance across fork()
2026-04-07 19:02 UTC (3+ messages)
` [PATCH v2 2/2] landlock: Allow TSYNC with LOG_SUBDOMAINS_OFF and fd=-1
[PATCH v1 1/2] landlock: Fix log_subdomains_off inheritance across fork()
2026-04-07 19:00 UTC (7+ messages)
` [PATCH v1 2/2] landlock: Allow TSYNC with LOG_SUBDOMAINS_OFF and fd=-1
[PATCH v5 0/3] Trim N entries of IMA event logs
2026-04-07 16:19 UTC (3+ messages)
` [PATCH v5 2/3] ima: trim N IMA event log records
[PATCH v8 0/9] Implement LANDLOCK_ADD_RULE_QUIET
2026-04-06 15:52 UTC (9+ messages)
` [PATCH v8 2/9] landlock: Add API support and docs for the quiet flags
` [PATCH v8 3/9] landlock: Suppress logging when quiet flag is present
` [PATCH v8 4/9] samples/landlock: Add quiet flag support to sandboxer
` [PATCH v8 5/9] selftests/landlock: Replace hard-coded 16 with a constant
` [PATCH v8 6/9] selftests/landlock: add tests for quiet flag with fs rules
` [PATCH v8 7/9] selftests/landlock: add tests for quiet flag with net rules
` [PATCH v8 8/9] selftests/landlock: Add tests for quiet flag with scope
` [PATCH v8 9/9] selftests/landlock: Add tests for invalid use of quiet flag
page: next (older)
- recent:[subjects (threaded)|topics (new)|topics (active)]
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox