messages from 2023-11-20 18:04:23 to 2023-11-30 14:06:01 UTC [more...]
[PATCH v11 bpf-next 00/17] BPF token and BPF FS-based delegation
2023-11-30 14:05 UTC (20+ messages)
` [PATCH v11 bpf-next 01/17] bpf: align CAP_NET_ADMIN checks with bpf_capable() approach
` [PATCH v11 bpf-next 02/17] bpf: add BPF token delegation mount options to BPF FS
` [PATCH v11 bpf-next 03/17] bpf: introduce BPF token object
` [PATCH v11 bpf-next 04/17] bpf: add BPF token support to BPF_MAP_CREATE command
` [PATCH v11 bpf-next 05/17] bpf: add BPF token support to BPF_BTF_LOAD command
` [PATCH v11 bpf-next 06/17] bpf: add BPF token support to BPF_PROG_LOAD command
` [PATCH v11 bpf-next 07/17] bpf: take into account BPF token when fetching helper protos
` [PATCH v11 bpf-next 08/17] bpf: consistently use BPF token throughout BPF verifier logic
` [PATCH v11 bpf-next 09/17] bpf,lsm: refactor bpf_prog_alloc/bpf_prog_free LSM hooks
` [PATCH v11 bpf-next 10/17] bpf,lsm: refactor bpf_map_alloc/bpf_map_free "
` [PATCH v11 bpf-next 11/17] bpf,lsm: add BPF token "
` [PATCH v11 bpf-next 12/17] libbpf: add bpf_token_create() API
` [PATCH v11 bpf-next 13/17] libbpf: add BPF token support to bpf_map_create() API
` [PATCH v11 bpf-next 14/17] libbpf: add BPF token support to bpf_btf_load() API
` [PATCH v11 bpf-next 15/17] libbpf: add BPF token support to bpf_prog_load() API
` [PATCH v11 bpf-next 16/17] selftests/bpf: add BPF token-enabled tests
` [PATCH v11 bpf-next 17/17] bpf,selinux: allocate bpf_security_struct per BPF token
[RFC PATCH v2 00/19] Hypervisor-Enforced Kernel Integrity
2023-11-30 11:33 UTC (12+ messages)
` [RFC PATCH v2 17/19] heki: x86: Update permissions counters during text patching
` [RFC PATCH v2 18/19] heki: x86: Protect guest kernel memory using the KVM hypervisor
[PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache
2023-11-30 11:12 UTC (11+ messages)
[PATCH v2 0/2] Extend Landlock test to improve rule's coverage
2023-11-30 9:36 UTC (3+ messages)
` [PATCH v2 1/2] selftests/landlock: Add tests to check unknown rule's access rights
` [PATCH v2 2/2] selftests/landlock: Add tests to check unhandled "
[PATCH v6 0/9] Landlock: IOCTL support
2023-11-30 9:30 UTC (13+ messages)
` [PATCH v6 1/9] landlock: Remove remaining "inline" modifiers in .c files
` [PATCH v6 2/9] selftests/landlock: Rename "permitted" to "allowed" in ftruncate tests
` [PATCH v6 3/9] landlock: Optimize the number of calls to get_access_mask slightly
` [PATCH v6 4/9] landlock: Add IOCTL access right
` [PATCH v6 5/9] selftests/landlock: Test IOCTL support
` [PATCH v6 6/9] selftests/landlock: Test IOCTL with memfds
` [PATCH v6 7/9] selftests/landlock: Test ioctl(2) and ftruncate(2) with open(O_PATH)
` [PATCH v6 8/9] samples/landlock: Add support for LANDLOCK_ACCESS_FS_IOCTL
` [PATCH v6 9/9] landlock: Document IOCTL support
[PATCH v5 0/7] Landlock: IOCTL support
2023-11-30 9:28 UTC (11+ messages)
` [PATCH v5 2/7] landlock: Add IOCTL access right
` [PATCH v5 3/7] selftests/landlock: Test IOCTL support
[PATCH v4 0/7] Landlock: IOCTL support
2023-11-30 9:26 UTC (6+ messages)
[PATCH v1 0/2] Extend Landlock test to improve rule's coverage
2023-11-30 9:18 UTC (9+ messages)
` [PATCH v1 1/2] selftests/landlock: Add tests to check undefined rule's access rights
` [PATCH v1 2/2] selftests/landlock: Add tests to check unhandled "
[PATCH 00/16] fs: use type-safe uid representation for filesystem capabilities
2023-11-30 8:01 UTC (22+ messages)
` [PATCH 01/16] mnt_idmapping: split out core vfs[ug]id_t definitions into vfsid.h
` [PATCH 02/16] mnt_idmapping: include cred.h
` [PATCH 03/16] capability: rename cpu_vfs_cap_data to vfs_caps
` [PATCH 04/16] capability: use vfsuid_t for vfs_caps rootids
` [PATCH 05/16] capability: provide helpers for converting between xattrs and vfs_caps
` [PATCH 06/16] capability: provide a helper for converting vfs_caps to xattr for userspace
` [PATCH 07/16] fs: add inode operations to get/set/remove fscaps
` [PATCH 08/16] fs: add vfs_get_fscaps()
` [PATCH 09/16] fs: add vfs_set_fscaps()
` [PATCH 10/16] fs: add vfs_remove_fscaps()
` [PATCH 11/16] ovl: add fscaps handlers
` [PATCH 12/16] ovl: use vfs_{get,set}_fscaps() for copy-up
` [PATCH 13/16] fs: use vfs interfaces for capabilities xattrs
` [PATCH 14/16] commoncap: remove cap_inode_getsecurity()
` [PATCH 15/16] commoncap: use vfs fscaps interfaces for killpriv checks
` [PATCH 16/16] vfs: return -EOPNOTSUPP for fscaps from vfs_*xattr()
[PATCH v14 bpf-next 0/6] bpf: File verification with LSM and fsverity
2023-11-30 4:02 UTC (14+ messages)
` [PATCH v14 bpf-next 1/6] bpf: Add kfunc bpf_get_file_xattr
` [PATCH v14 bpf-next 2/6] bpf, fsverity: Add kfunc bpf_get_fsverity_digest
` [PATCH v14 bpf-next 3/6] Documentation/bpf: Add documentation for filesystem kfuncs
` [PATCH v14 bpf-next 4/6] selftests/bpf: Sort config in alphabetic order
` [PATCH v14 bpf-next 5/6] selftests/bpf: Add tests for filesystem kfuncs
` [PATCH v14 bpf-next 6/6] selftests/bpf: Add test that uses fsverity and xattr to sign a file
[PATCH] proc: Update inode upon changing task security attribute
2023-11-30 3:07 UTC (3+ messages)
[PATCH v15 bpf-next 0/6] bpf: File verification with LSM and fsverity
2023-11-29 23:44 UTC (7+ messages)
` [PATCH v15 bpf-next 1/6] bpf: Add kfunc bpf_get_file_xattr
` [PATCH v15 bpf-next 2/6] bpf, fsverity: Add kfunc bpf_get_fsverity_digest
` [PATCH v15 bpf-next 3/6] Documentation/bpf: Add documentation for filesystem kfuncs
` [PATCH v15 bpf-next 4/6] selftests/bpf: Sort config in alphabetic order
` [PATCH v15 bpf-next 5/6] selftests/bpf: Add tests for filesystem kfuncs
` [PATCH v15 bpf-next 6/6] selftests/bpf: Add test that uses fsverity and xattr to sign a file
[ANNOUNCE] CFP: Linux Security Summit North America 2024
2023-11-29 21:19 UTC
[PATCH 0/4] listmount changes
2023-11-29 10:40 UTC (8+ messages)
` [PATCH 1/4] listmount: rip out flags
` [PATCH 2/4] listmount: list mounts in ID order
` [PATCH 3/4] listmount: small changes in semantics
` [PATCH 4/4] listmount: allow continuing
[RFC V2] IMA Log Snapshotting Design Proposal
2023-11-29 2:07 UTC (18+ messages)
[PATCH v13 bpf-next 0/6] bpf: File verification with LSM and fsverity
2023-11-28 15:10 UTC (19+ messages)
` [PATCH v13 bpf-next 1/6] bpf: Add kfunc bpf_get_file_xattr
` [PATCH v13 bpf-next 2/6] bpf, fsverity: Add kfunc bpf_get_fsverity_digest
` [PATCH v13 bpf-next 3/6] Documentation/bpf: Add documentation for filesystem kfuncs
` [PATCH v13 bpf-next 4/6] selftests/bpf: Sort config in alphabetic order
` [PATCH v13 bpf-next 5/6] selftests/bpf: Add tests for filesystem kfuncs
` [PATCH v13 bpf-next 6/6] selftests/bpf: Add test that uses fsverity and xattr to sign a file
[PATCH] apparmor: free the allocated pdb objects
2023-11-28 14:29 UTC (2+ messages)
[PATCH v10 bpf-next 00/17] BPF token and BPF FS-based delegation
2023-11-27 18:18 UTC (6+ messages)
` [PATCH v10 bpf-next 03/17] bpf: introduce BPF token object
[PATCH] selftests: remove the LSM_ID_IMA check in lsm/lsm_list_modules_test
2023-11-27 17:07 UTC (3+ messages)
[RFC PATCH v2 0/4] LSM: Officially support appending LSM hooks after boot
2023-11-26 4:37 UTC (5+ messages)
[PATCH net v2] calipso: Fix memory leak in netlbl_calipso_add_pass()
2023-11-25 14:47 UTC (2+ messages)
[RFC PATCH v2 0/6] mm, security, bpf: Fine-grained control over memory policy adjustments with lsm bpf
2023-11-23 12:21 UTC (10+ messages)
` [RFC PATCH v2 1/6] mm, doc: Add doc for MPOL_F_NUMA_BALANCING
` [RFC PATCH v2 2/6] mm: mempolicy: Revise comment regarding mempolicy mode flags
` [RFC PATCH v2 3/6] mm, security: Fix missed security_task_movememory() in mbind(2)
` [RFC PATCH v2 4/6] mm, security: Add lsm hook for memory policy adjustment
` [RFC PATCH v2 5/6] security: selinux: Implement set_mempolicy hook
` [RFC PATCH v2 6/6] selftests/bpf: Add selftests for set_mempolicy with a lsm prog
[PATCH net] calipso: Fix memory leak in netlbl_calipso_add_pass()
2023-11-23 7:55 UTC (3+ messages)
[PATCH] apparmor: make stack_msg static
2023-11-22 11:56 UTC
[PATCH RFC] Add a lockdown_hibernate parameter
2023-11-22 6:52 UTC (5+ messages)
[PATCH] MAINTAINERS: add an entry for the lockdown LSM
2023-11-21 23:52 UTC (3+ messages)
[PATCH v6 00/25] security: Move IMA and EVM to the LSM infrastructure
2023-11-21 8:02 UTC (6+ messages)
` [PATCH v6 19/25] ima: Move to "
` [PATCH v6 25/25] security: Enforce ordering of 'ima' and 'evm' LSMs
PSA: this list has moved to new vger infra (no action required)
2023-11-21 1:05 UTC
[PATCH 4/4] LSM: Add a LSM module which handles dynamically appendable LSM hooks
2023-11-20 23:36 UTC (4+ messages)
[PATCH v5 00/23] security: Move IMA and EVM to the LSM infrastructure
2023-11-20 20:55 UTC (6+ messages)
` [PATCH v5 11/23] security: Introduce inode_post_removexattr hook
[RFC PATCH 1/2] Modules: Introduce boot-time module signature flexibility
2023-11-20 19:43 UTC
page: next (older) | prev (newer) | latest
- recent:[subjects (threaded)|topics (new)|topics (active)]
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).