messages from 2023-12-06 16:37:37 to 2023-12-14 01:00:24 UTC [more...]
[PATCH bpf-next] bpf: add small subset of SECURITY_PATH hooks to BPF sleepable_lsm_hooks list
2023-12-14 1:00 UTC (3+ messages)
[PATCH] kernel: Introduce a write lock/unlock wrapper for tasklist_lock
2023-12-13 18:27 UTC (3+ messages)
[RFC PATCH v3 0/3] devguard: guard mknod for non-initial user namespace
2023-12-13 18:35 UTC (6+ messages)
` [RFC PATCH v3 1/3] bpf: cgroup: Introduce helper cgroup_bpf_current_enabled()
` [RFC PATCH v3 2/3] fs: Make vfs_mknod() to check CAP_MKNOD in user namespace of sb
` [RFC PATCH v3 3/3] devguard: added device guard for mknod in non-initial userns
[PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache
2023-12-13 18:08 UTC (14+ messages)
[PATCH RFC bpf-next 0/3] BPF FS mount options parsing follow ups
2023-12-13 17:26 UTC (9+ messages)
` [PATCH RFC bpf-next 1/3] bpf: add mapper macro for bpf_cmd enum
` [PATCH RFC bpf-next 2/3] bpf: extend parsing logic for BPF FS delegate_cmds mount option
` [PATCH RFC bpf-next 3/3] selftests/bpf: utilize string values for delegate_xxx mount options
[PATCH v8 0/9] Landlock: IOCTL support
2023-12-13 11:25 UTC (14+ messages)
` [PATCH v8 1/9] landlock: Remove remaining "inline" modifiers in .c files
` [PATCH v8 2/9] selftests/landlock: Rename "permitted" to "allowed" in ftruncate tests
` [PATCH v8 3/9] landlock: Optimize the number of calls to get_access_mask slightly
` [PATCH v8 4/9] landlock: Add IOCTL access right
` [PATCH v8 5/9] selftests/landlock: Test IOCTL support
` [PATCH v8 6/9] selftests/landlock: Test IOCTL with memfds
` [PATCH v8 7/9] selftests/landlock: Test ioctl(2) and ftruncate(2) with open(O_PATH)
` [PATCH v8 8/9] samples/landlock: Add support for LANDLOCK_ACCESS_FS_IOCTL
` [PATCH v8 9/9] landlock: Document IOCTL support
[PATCH v5 0/4] vduse: add support for networking devices
2023-12-13 11:23 UTC (10+ messages)
` [PATCH v5 1/4] vduse: validate block features only with block devices
` [PATCH v5 2/4] vduse: Temporarily disable control queue features
` [PATCH v5 3/4] vduse: enable Virtio-net device type
` [PATCH v5 4/4] vduse: Add LSM hook to check Virtio "
[PATCH] MAINTAINERS: Add Eric Snowberg as a reviewer to IMA
2023-12-13 7:50 UTC (4+ messages)
` [PATCH] MAINTAINERS: Add Roberto Sassu as co-maintainer to IMA and EVM
[PATCH v4 0/5] mm, security, bpf: Fine-grained control over memory policy adjustments with lsm bpf
2023-12-13 3:08 UTC (10+ messages)
` [PATCH v4 1/5] mm, doc: Add doc for MPOL_F_NUMA_BALANCING
` [PATCH v4 2/5] mm: mempolicy: Revise comment regarding mempolicy mode flags
` [PATCH v4 3/5] mm, security: Add lsm hook for memory policy adjustment
` [PATCH v4 4/5] security: selinux: Implement set_mempolicy hook
` [PATCH v4 5/5] selftests/bpf: Add selftests for set_mempolicy with a lsm prog
[RFC][PATCH] overlayfs: Redirect xattr ops on security.evm to security.evm_overlayfs
2023-12-12 16:20 UTC (16+ messages)
[PATCH bpf-next 0/8] BPF token support in libbpf's BPF object
2023-12-12 0:26 UTC (26+ messages)
` [PATCH bpf-next 1/8] bpf: fail BPF_TOKEN_CREATE if no delegation option was set on BPF FS
` [PATCH bpf-next 2/8] libbpf: split feature detectors definitions from cached results
` [PATCH bpf-next 3/8] libbpf: further decouple feature checking logic from bpf_object
` [PATCH bpf-next 4/8] libbpf: move feature detection code into its own file
` [PATCH bpf-next 5/8] libbpf: wire up token_fd into feature probing logic
` [PATCH bpf-next 6/8] libbpf: wire up BPF token support at BPF object level
` [PATCH bpf-next 7/8] selftests/bpf: add BPF object loading tests with explicit token passing
` [PATCH bpf-next 8/8] selftests/bpf: add tests for BPF object load with implicit token
Fw: [PATCH] proc: Update inode upon changing task security attribute
2023-12-11 19:49 UTC (17+ messages)
[PATCH v12 bpf-next 00/17] BPF token and BPF FS-based delegation
2023-12-11 10:03 UTC (8+ messages)
` [PATCH v12 bpf-next 03/17] bpf: introduce BPF token object
[PATCH v2 0/2] Extend Landlock test to improve rule's coverage
2023-12-11 8:56 UTC (6+ messages)
` [PATCH v2 1/2] selftests/landlock: Add tests to check unknown rule's access rights
` [PATCH v2 2/2] selftests/landlock: Add tests to check unhandled "
[PATCH 15/16] commoncap: use vfs fscaps interfaces for killpriv checks
2023-12-11 7:57 UTC (2+ messages)
[PATCH 00/16] fs: use type-safe uid representation for filesystem capabilities
2023-12-10 16:41 UTC (6+ messages)
` [PATCH 09/16] fs: add vfs_set_fscaps()
[RFC PATCH v3] LSM: Officially support appending LSM hooks after boot
2023-12-09 8:28 UTC
[PATCH v8 0/5] Reduce overhead of LSMs with static calls
2023-12-08 23:27 UTC (15+ messages)
` [PATCH v8 5/5] security: Add CONFIG_SECURITY_HOOK_LIKELY
[PATCH v7 0/9] Landlock: IOCTL support
2023-12-08 21:58 UTC (9+ messages)
` [PATCH v7 4/9] landlock: Add IOCTL access right
` [PATCH v7 9/9] landlock: Document IOCTL support
[RFC PATCH v2 00/19] Hypervisor-Enforced Kernel Integrity
2023-12-08 18:41 UTC (12+ messages)
` [RFC PATCH v2 17/19] heki: x86: Update permissions counters during text patching
[PATCH v4 0/7] Landlock: IOCTL support
2023-12-08 14:39 UTC (7+ messages)
[PATCH 0/4] listmount changes
2023-12-08 13:07 UTC (5+ messages)
` [PATCH 3/4] listmount: small changes in semantics
[PATCH v4 4/4] vduse: Add LSM hooks to check Virtio device type
2023-12-08 12:59 UTC (7+ messages)
BPF LSM prevent program unload
2023-12-08 5:17 UTC (8+ messages)
[PATCH net v2] calipso: Fix memory leak in netlbl_calipso_add_pass()
2023-12-07 20:07 UTC (5+ messages)
[PATCH 1/2] iouring: one capable call per iouring instance
2023-12-07 17:48 UTC (10+ messages)
[PATCH 0/11] vfs: inode cache scalability improvements
2023-12-07 17:08 UTC (33+ messages)
` [PATCH 01/11] lib/dlock-list: Distributed and lock-protected lists
` [PATCH 02/11] vfs: Remove unnecessary list_for_each_entry_safe() variants
` [PATCH 03/11] vfs: Use dlock list for superblock's inode list
` [PATCH 04/11] lib/dlock-list: Make sibling CPUs share the same linked list
` [PATCH 05/11] selinux: use dlist for isec inode list
` [PATCH 06/11] vfs: factor out inode hash head calculation
` [PATCH 07/11] hlist-bl: add hlist_bl_fake()
` [PATCH 08/11] vfs: inode cache conversion to hash-bl
` [PATCH 09/11] hash-bl: explicitly initialise hash-bl heads
` [PATCH 10/11] list_bl: don't use bit locks for PREEMPT_RT or lockdep
[PATCH 0/3] arch/x86: Remove unnecessary dependencies on bootparam.h
2023-12-07 15:38 UTC (7+ messages)
` [PATCH 1/3] arch/x86: Move struct pci_setup_rom into pci_setup.h
` [PATCH 2/3] arch/x86: Add <asm/ima-efi.h> for arch_ima_efi_boot_mode
` [PATCH 3/3] arch/x86: Do not include <asm/bootparam.h> in several header files
Apparmor move_mount mediation breaks mount tool in containers
2023-12-06 19:21 UTC (6+ messages)
page: next (older) | prev (newer) | latest
- recent:[subjects (threaded)|topics (new)|topics (active)]
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).