messages from 2021-11-04 16:50:13 to 2021-11-24 01:56:55 UTC [more...]
[PATCH v30 00/28] LSM: Module stacking for AppArmor
2021-11-24 1:43 UTC (13+ messages)
` [PATCH v30 01/28] integrity: disassociate ima_filter_rule from security_audit_rule
` [PATCH v30 02/28] LSM: Infrastructure management of the sock security
` [PATCH v30 03/28] LSM: Add the lsmblob data structure
` [PATCH v30 04/28] LSM: provide lsm name and id slot mappings
` [PATCH v30 05/28] IMA: avoid label collisions with stacked LSMs
` [PATCH v30 06/28] LSM: Use lsmblob in security_audit_rule_match
` [PATCH v30 07/28] LSM: Use lsmblob in security_kernel_act_as
` [PATCH v30 08/28] LSM: Use lsmblob in security_secctx_to_secid
` [PATCH v30 09/28] LSM: Use lsmblob in security_secid_to_secctx
` [PATCH v30 10/28] LSM: Use lsmblob in security_ipc_getsecid
` [PATCH v30 11/28] LSM: Use lsmblob in security_task_getsecid
` [PATCH v30 12/28] LSM: Use lsmblob in security_inode_getsecid
[GIT PULL] SELinux fixes for v5.16 (#2)
2021-11-23 22:05 UTC (2+ messages)
[PATCH] lsm: security_task_getsecid_subj() -> security_current_getsecid_subj()
2021-11-23 3:14 UTC (12+ messages)
[PATCH v4 0/2] integrity: support including firmware ".platform" keys at build time
2021-11-22 15:36 UTC (4+ messages)
` [PATCH v4 1/2] certs: export load_certificate_list() to be used outside certs/
` [PATCH v4 2/2] integrity: support including firmware ".platform" keys at build time
[PATCH] binder: fix test regression due to sender_euid change
2021-11-19 23:39 UTC (4+ messages)
[PATCH v7 00/17] Enroll kernel keys thru MOK
2021-11-19 2:50 UTC (41+ messages)
` [PATCH v7 01/17] integrity: Introduce a Linux keyring called machine
` [PATCH v7 02/17] integrity: Do not allow machine keyring updates following init
` [PATCH v7 03/17] KEYS: Create static version of public_key_verify_signature
` [PATCH v7 04/17] X.509: Parse Basic Constraints for CA
` [PATCH v7 05/17] KEYS: CA link restriction
` [PATCH v7 06/17] integrity: restrict INTEGRITY_KEYRING_MACHINE to restrict_link_by_ca
` [PATCH v7 07/17] integrity: Fix warning about missing prototypes
` [PATCH v7 08/17] integrity: add new keyring handler for mok keys
` [PATCH v7 09/17] KEYS: Rename get_builtin_and_secondary_restriction
` [PATCH v7 10/17] KEYS: add a reference to machine keyring
` [PATCH v7 11/17] KEYS: Introduce link restriction for machine keys
` [PATCH v7 12/17] KEYS: integrity: change link restriction to trust the machine keyring
` [PATCH v7 13/17] KEYS: link secondary_trusted_keys to machine trusted keys
` [PATCH v7 14/17] integrity: store reference to machine keyring
` [PATCH v7 15/17] efi/mokvar: move up init order
` [PATCH v7 16/17] integrity: Trust MOK keys if MokListTrustedRT found
` [PATCH v7 17/17] integrity: Only use machine keyring when uefi_check_trust_mok_keys is true
[PATCH v19 0/4] overlayfs override_creds=off & nested get xattr fix
2021-11-18 20:32 UTC (12+ messages)
` [PATCH v19 1/4] Add flags option to get xattr method paired to __vfs_getxattr
` [PATCH v19 2/4] overlayfs: handle XATTR_NOSECURITY flag for get xattr method
` [PATCH v19 3/4] overlayfs: override_creds=off option bypass creator_cred
` [PATCH v19 4/4] overlayfs: inode_owner_or_capable called during execv
[PATCH v5 0/4] Allow guest access to EFI confidential computing secret area
2021-11-18 12:43 UTC (6+ messages)
` [PATCH v5 1/4] efi: Save location of EFI confidential computing area
` [PATCH v5 2/4] efi/libstub: Reserve confidential computing secret area
` [PATCH v5 3/4] virt: Add efi_secret module to expose confidential computing secrets
` [PATCH v5 4/4] docs: security: Add coco/efi_secret documentation
[PATCH -next] apparmor: Fix kernel-doc
2021-11-17 7:37 UTC
SMACK: access is granted while smack-utils report that it shouldn't be
2021-11-17 1:52 UTC (2+ messages)
[PATCH] block: Check ADMIN before NICE for IOPRIO_CLASS_RT
2021-11-16 13:36 UTC (11+ messages)
Fotowoltaika dla firm
2021-11-16 8:41 UTC
[PATCH v2] block: Check ADMIN before NICE for IOPRIO_CLASS_RT
2021-11-15 21:37 UTC (4+ messages)
[PATCH v17 0/3] Add trusted_for(2) (was O_MAYEXEC)
2021-11-15 18:53 UTC (4+ messages)
` [PATCH v17 1/3] fs: Add trusted_for(2) syscall implementation and related sysctl
` [PATCH v17 2/3] arch: Wire up trusted_for(2)
` [PATCH v17 3/3] selftest/interpreter: Add tests for trusted_for(2) policies
[PATCH v16 0/3] Add trusted_for(2) (was O_MAYEXEC)
2021-11-14 15:45 UTC (10+ messages)
` [PATCH v16 1/3] fs: Add trusted_for(2) syscall implementation and related sysctl
` [PATCH v16 2/3] arch: Wire up trusted_for(2)
` [PATCH v16 3/3] selftest/interpreter: Add tests for trusted_for(2) policies
[PATCH AUTOSEL 4.19 09/47] smackfs: Fix use-after-free in netlbl_catmap_walk()
2021-11-14 14:13 UTC (5+ messages)
` [PATCH AUTOSEL 4.19 10/47] NET: IPV4: fix error "do not initialise globals to 0"
` [PATCH AUTOSEL 4.19 37/47] smackfs: use __GFP_NOFAIL for smk_cipso_doi()
[PATCH] net,lsm,selinux: revert the security_sctp_assoc_established() hook
2021-11-14 12:30 UTC (2+ messages)
[GIT PULL] SELinux fix / revert for v5.16 (#1)
2021-11-13 19:15 UTC (2+ messages)
[PATCH 4.4 1/2] binder: use euid from cred instead of using task
2021-11-12 16:14 UTC (4+ messages)
` [PATCH 4.4 2/2] binder: use cred instead of task for selinux checks
[PATCH v15 1/3] fs: Add trusted_for(2) syscall implementation and related sysctl
2021-11-12 12:25 UTC (6+ messages)
` [fs] a0918006f9: netperf.Throughput_tps -11.6% regression
kernel BUG at assoc_array.c:LINE! while adding key to keyring
2021-11-12 2:07 UTC
[PATCH apparmor] apparmor: remove unneeded one-line hook wrappers
2021-11-12 1:26 UTC (2+ messages)
[PATCH] apparmor: remove duplicated 'Returns:' comments
2021-11-12 1:25 UTC (2+ messages)
[GIT PULL] apparmor changes for 5.16
2021-11-11 23:09 UTC (2+ messages)
[PATCH v3 0/1] fuse: Send file/inode security context during creation
2021-11-11 14:32 UTC (4+ messages)
` [PATCH v3 1/1] fuse: Send security context of inode on file creation
[PATCH 5.10 1/3] binder: use euid from cred instead of using task
2021-11-10 23:00 UTC (3+ messages)
` [PATCH 5.10 2/3] binder: use cred instead of task for selinux checks
` [PATCH 5.10 3/3] binder: use cred instead of task for getsecid
[PATCH 5.4 1/3] binder: use euid from cred instead of using task
2021-11-10 23:00 UTC (3+ messages)
` [PATCH 5.4 2/3] binder: use cred instead of task for selinux checks
` [PATCH 5.4 3/3] binder: use cred instead of task for getsecid
[PATCH 4.19 1/2] binder: use euid from cred instead of using task
2021-11-10 23:00 UTC (2+ messages)
` [PATCH 4.19 2/2] binder: use cred instead of task for selinux checks
[PATCH 4.14 1/2] binder: use euid from cred instead of using task
2021-11-10 23:00 UTC (2+ messages)
` [PATCH 4.14 2/2] binder: use cred instead of task for selinux checks
[PATCH 4.9 1/2] binder: use euid from cred instead of using task
2021-11-10 22:59 UTC (2+ messages)
` [PATCH 4.9 2/2] binder: use cred instead of task for selinux checks
[PATCH v3] integrity: support including firmware ".platform" keys at build time
2021-11-10 19:15 UTC (3+ messages)
[PATCH AUTOSEL 4.4 06/30] smackfs: Fix use-after-free in netlbl_catmap_walk()
2021-11-09 1:09 UTC (3+ messages)
` [PATCH AUTOSEL 4.4 07/30] NET: IPV4: fix error "do not initialise globals to 0"
` [PATCH AUTOSEL 4.4 26/30] smackfs: use __GFP_NOFAIL for smk_cipso_doi()
[PATCH AUTOSEL 4.9 07/33] smackfs: Fix use-after-free in netlbl_catmap_walk()
2021-11-09 1:08 UTC (3+ messages)
` [PATCH AUTOSEL 4.9 08/33] NET: IPV4: fix error "do not initialise globals to 0"
` [PATCH AUTOSEL 4.9 28/33] smackfs: use __GFP_NOFAIL for smk_cipso_doi()
[PATCH AUTOSEL 4.14 07/39] smackfs: Fix use-after-free in netlbl_catmap_walk()
2021-11-09 1:06 UTC (3+ messages)
` [PATCH AUTOSEL 4.14 08/39] NET: IPV4: fix error "do not initialise globals to 0"
` [PATCH AUTOSEL 4.14 32/39] smackfs: use __GFP_NOFAIL for smk_cipso_doi()
[PATCH AUTOSEL 5.4 13/74] smackfs: Fix use-after-free in netlbl_catmap_walk()
2021-11-08 17:48 UTC (2+ messages)
` [PATCH AUTOSEL 5.4 14/74] NET: IPV4: fix error "do not initialise globals to 0"
[PATCH AUTOSEL 5.10 015/101] smackfs: Fix use-after-free in netlbl_catmap_walk()
2021-11-08 17:47 UTC (2+ messages)
` [PATCH AUTOSEL 5.10 017/101] NET: IPV4: fix error "do not initialise globals to 0"
[PATCH AUTOSEL 5.14 016/138] smackfs: Fix use-after-free in netlbl_catmap_walk()
2021-11-08 17:44 UTC (2+ messages)
` [PATCH AUTOSEL 5.14 019/138] NET: IPV4: fix error "do not initialise globals to 0"
[PATCH AUTOSEL 5.15 018/146] smackfs: Fix use-after-free in netlbl_catmap_walk()
2021-11-08 17:42 UTC (2+ messages)
` [PATCH AUTOSEL 5.15 021/146] NET: IPV4: fix error "do not initialise globals to 0"
[PATCH] landlock: Initialize kernel stack variables properly
2021-11-05 16:58 UTC (4+ messages)
[PATCH 0/2] Additional appended signature cleanup
2021-11-05 9:55 UTC (3+ messages)
` [PATCH 1/2] module: Use key_being_used_for for log messages in verify_appended_signature
` [PATCH 2/2] module: Move duplicate mod_check_sig users code to mod_parse_sig
[PATCH RFC] integrity: disassociate ima_filter_rule from security_audit_rule
2021-11-04 21:46 UTC (2+ messages)
[PATCHv2 net 0/4] security: fixups for the security hooks in sctp
2021-11-04 20:07 UTC (14+ messages)
` [PATCHv2 net 4/4] security: implement sctp_assoc_established hook in selinux
Disassociating ima_filter_rule* from security_audit_rule*
2021-11-04 18:57 UTC (2+ messages)
[RFC PATCH v7 00/16] Integrity Policy Enforcement (IPE)
2021-11-04 17:12 UTC (17+ messages)
` [RFC PATCH v7 04/16] ipe: add userspace interface
` [RFC PATCH v7 12/16] fsverity|security: add security hooks to fsverity digest and signature
` [RFC PATCH v7 14/16] scripts: add boot policy generation program
` [RFC PATCH v7 07/16] ipe: add auditing support
page: next (older) | prev (newer) | latest
- recent:[subjects (threaded)|topics (new)|topics (active)]
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).