messages from 2023-12-07 22:28:11 to 2023-12-15 11:07:20 UTC [more...]
[PATCH v5 0/6] DCP as trusted keys backend
2023-12-15 11:06 UTC (7+ messages)
` [PATCH v5 1/6] crypto: mxs-dcp: Add support for hardware-bound keys
` [PATCH v5 2/6] KEYS: trusted: improve scalability of trust source config
` [PATCH v5 3/6] KEYS: trusted: Introduce NXP DCP-backed trusted keys
` [PATCH v5 4/6] MAINTAINERS: add entry for DCP-based "
` [PATCH v5 5/6] docs: document DCP-backed trusted keys kernel params
` [PATCH v5 6/6] docs: trusted-encrypted: add DCP as new trust source
[PATCH] kernel: Introduce a write lock/unlock wrapper for tasklist_lock
2023-12-15 5:52 UTC (4+ messages)
[syzbot] [net?] KASAN: slab-out-of-bounds Read in dns_resolver_preparse
2023-12-15 3:00 UTC (4+ messages)
` [PATCH next] keys/dns: datalen must greater than sizeof(*v1)
` [PATCH V2 next] keys/dns: fix slab-out-of-bounds in dns_resolver_preparse
[RFC][PATCH] overlayfs: Redirect xattr ops on security.evm to security.evm_overlayfs
2023-12-14 19:36 UTC (21+ messages)
[PATCH v8 00/24] security: Move IMA and EVM to the LSM infrastructure
2023-12-14 17:08 UTC (25+ messages)
` [PATCH v8 01/24] ima: Align ima_inode_post_setattr() definition with "
` [PATCH v8 02/24] ima: Align ima_file_mprotect() "
` [PATCH v8 03/24] ima: Align ima_inode_setxattr() "
` [PATCH v8 04/24] ima: Align ima_inode_removexattr() "
` [PATCH v8 05/24] ima: Align ima_post_read_file() "
` [PATCH v8 06/24] evm: Align evm_inode_post_setattr() "
` [PATCH v8 07/24] evm: Align evm_inode_setxattr() "
` [PATCH v8 08/24] evm: Align evm_inode_post_setxattr() "
` [PATCH v8 09/24] security: Align inode_setattr hook definition with EVM
` [PATCH v8 10/24] security: Introduce inode_post_setattr hook
` [PATCH v8 11/24] security: Introduce inode_post_removexattr hook
` [PATCH v8 12/24] security: Introduce file_post_open hook
` [PATCH v8 13/24] security: Introduce file_release hook
` [PATCH v8 14/24] security: Introduce path_post_mknod hook
` [PATCH v8 15/24] security: Introduce inode_post_create_tmpfile hook
` [PATCH v8 16/24] security: Introduce inode_post_set_acl hook
` [PATCH v8 17/24] security: Introduce inode_post_remove_acl hook
` [PATCH v8 18/24] security: Introduce key_post_create_or_update hook
` [PATCH v8 19/24] ima: Move to LSM infrastructure
` [PATCH v8 20/24] ima: Move IMA-Appraisal "
` [PATCH v8 21/24] evm: Move "
` [PATCH v8 22/24] evm: Make it independent from 'integrity' LSM
` [PATCH v8 23/24] ima: "
` [PATCH v8 24/24] integrity: Remove LSM
[PATCH v8 0/9] Landlock: IOCTL support
2023-12-14 14:28 UTC (17+ messages)
` [PATCH v8 1/9] landlock: Remove remaining "inline" modifiers in .c files
` [PATCH v8 2/9] selftests/landlock: Rename "permitted" to "allowed" in ftruncate tests
` [PATCH v8 3/9] landlock: Optimize the number of calls to get_access_mask slightly
` [PATCH v8 4/9] landlock: Add IOCTL access right
` [PATCH v8 5/9] selftests/landlock: Test IOCTL support
` [PATCH v8 6/9] selftests/landlock: Test IOCTL with memfds
` [PATCH v8 7/9] selftests/landlock: Test ioctl(2) and ftruncate(2) with open(O_PATH)
` [PATCH v8 8/9] samples/landlock: Add support for LANDLOCK_ACCESS_FS_IOCTL
` [PATCH v8 9/9] landlock: Document IOCTL support
[PATCH v5 bpf-next 0/5] mm, security, bpf: Fine-grained control over memory policy adjustments with lsm bpf
2023-12-14 12:50 UTC (6+ messages)
` [PATCH v5 bpf-next 1/5] mm, doc: Add doc for MPOL_F_NUMA_BALANCING
` [PATCH v5 bpf-next 2/5] mm: mempolicy: Revise comment regarding mempolicy mode flags
` [PATCH v5 bpf-next 3/5] mm, security: Add lsm hook for memory policy adjustment
` [PATCH v5 bpf-next 4/5] security: selinux: Implement set_mempolicy hook
` [PATCH v5 bpf-next 5/5] selftests/bpf: Add selftests for set_mempolicy with a lsm prog
[RFC PATCH v3 0/3] devguard: guard mknod for non-initial user namespace
2023-12-14 8:17 UTC (7+ messages)
` [RFC PATCH v3 1/3] bpf: cgroup: Introduce helper cgroup_bpf_current_enabled()
` [RFC PATCH v3 2/3] fs: Make vfs_mknod() to check CAP_MKNOD in user namespace of sb
` [RFC PATCH v3 3/3] devguard: added device guard for mknod in non-initial userns
[PATCH bpf-next] bpf: add small subset of SECURITY_PATH hooks to BPF sleepable_lsm_hooks list
2023-12-14 1:00 UTC (3+ messages)
[PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache
2023-12-13 18:08 UTC (4+ messages)
[PATCH RFC bpf-next 0/3] BPF FS mount options parsing follow ups
2023-12-13 17:26 UTC (9+ messages)
` [PATCH RFC bpf-next 1/3] bpf: add mapper macro for bpf_cmd enum
` [PATCH RFC bpf-next 2/3] bpf: extend parsing logic for BPF FS delegate_cmds mount option
` [PATCH RFC bpf-next 3/3] selftests/bpf: utilize string values for delegate_xxx mount options
[PATCH v5 0/4] vduse: add support for networking devices
2023-12-13 11:23 UTC (10+ messages)
` [PATCH v5 1/4] vduse: validate block features only with block devices
` [PATCH v5 2/4] vduse: Temporarily disable control queue features
` [PATCH v5 3/4] vduse: enable Virtio-net device type
` [PATCH v5 4/4] vduse: Add LSM hook to check Virtio "
[PATCH] MAINTAINERS: Add Eric Snowberg as a reviewer to IMA
2023-12-13 7:50 UTC (4+ messages)
` [PATCH] MAINTAINERS: Add Roberto Sassu as co-maintainer to IMA and EVM
[PATCH v4 0/5] mm, security, bpf: Fine-grained control over memory policy adjustments with lsm bpf
2023-12-13 3:08 UTC (10+ messages)
` [PATCH v4 1/5] mm, doc: Add doc for MPOL_F_NUMA_BALANCING
` [PATCH v4 2/5] mm: mempolicy: Revise comment regarding mempolicy mode flags
` [PATCH v4 3/5] mm, security: Add lsm hook for memory policy adjustment
` [PATCH v4 4/5] security: selinux: Implement set_mempolicy hook
` [PATCH v4 5/5] selftests/bpf: Add selftests for set_mempolicy with a lsm prog
[PATCH bpf-next 0/8] BPF token support in libbpf's BPF object
2023-12-12 0:26 UTC (26+ messages)
` [PATCH bpf-next 1/8] bpf: fail BPF_TOKEN_CREATE if no delegation option was set on BPF FS
` [PATCH bpf-next 2/8] libbpf: split feature detectors definitions from cached results
` [PATCH bpf-next 3/8] libbpf: further decouple feature checking logic from bpf_object
` [PATCH bpf-next 4/8] libbpf: move feature detection code into its own file
` [PATCH bpf-next 5/8] libbpf: wire up token_fd into feature probing logic
` [PATCH bpf-next 6/8] libbpf: wire up BPF token support at BPF object level
` [PATCH bpf-next 7/8] selftests/bpf: add BPF object loading tests with explicit token passing
` [PATCH bpf-next 8/8] selftests/bpf: add tests for BPF object load with implicit token
Fw: [PATCH] proc: Update inode upon changing task security attribute
2023-12-11 19:49 UTC (17+ messages)
[PATCH v12 bpf-next 00/17] BPF token and BPF FS-based delegation
2023-12-11 10:03 UTC (5+ messages)
` [PATCH v12 bpf-next 03/17] bpf: introduce BPF token object
[PATCH v2 0/2] Extend Landlock test to improve rule's coverage
2023-12-11 8:56 UTC (6+ messages)
` [PATCH v2 1/2] selftests/landlock: Add tests to check unknown rule's access rights
` [PATCH v2 2/2] selftests/landlock: Add tests to check unhandled "
[PATCH 15/16] commoncap: use vfs fscaps interfaces for killpriv checks
2023-12-11 7:57 UTC (2+ messages)
[PATCH 00/16] fs: use type-safe uid representation for filesystem capabilities
2023-12-10 16:41 UTC (6+ messages)
` [PATCH 09/16] fs: add vfs_set_fscaps()
[RFC PATCH v3] LSM: Officially support appending LSM hooks after boot
2023-12-09 8:28 UTC
[PATCH v8 0/5] Reduce overhead of LSMs with static calls
2023-12-08 23:27 UTC (15+ messages)
` [PATCH v8 5/5] security: Add CONFIG_SECURITY_HOOK_LIKELY
[PATCH v7 0/9] Landlock: IOCTL support
2023-12-08 21:58 UTC (9+ messages)
` [PATCH v7 4/9] landlock: Add IOCTL access right
` [PATCH v7 9/9] landlock: Document IOCTL support
[RFC PATCH v2 00/19] Hypervisor-Enforced Kernel Integrity
2023-12-08 18:41 UTC (10+ messages)
` [RFC PATCH v2 17/19] heki: x86: Update permissions counters during text patching
[PATCH v4 0/7] Landlock: IOCTL support
2023-12-08 14:39 UTC (7+ messages)
[PATCH 0/4] listmount changes
2023-12-08 13:07 UTC (5+ messages)
` [PATCH 3/4] listmount: small changes in semantics
[PATCH v4 4/4] vduse: Add LSM hooks to check Virtio device type
2023-12-08 12:59 UTC (7+ messages)
BPF LSM prevent program unload
2023-12-08 5:17 UTC (4+ messages)
page: next (older) | prev (newer) | latest
- recent:[subjects (threaded)|topics (new)|topics (active)]
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).