messages from 2025-03-05 20:12:57 to 2025-03-12 23:33:04 UTC [more...]
[RFC PATCH 0/6] fs, lsm: mediate O_PATH fd creation in file_open hook
2025-03-12 23:12 UTC (9+ messages)
` [RFC PATCH 1/6] fs: invoke LSM file_open hook in do_dentry_open for O_PATH fds as well
` [RFC PATCH 2/6] apparmor: explicitly skip mediation of O_PATH file descriptors
` [RFC PATCH 3/6] landlock: "
` [RFC PATCH 4/6] selinux: "
` [RFC PATCH 5/6] smack: "
` [RFC PATCH 6/6] tomoyo: "
[PATCH 0/2] smack: fix two bugs in setting task label
2025-03-12 16:35 UTC (10+ messages)
` [PATCH 1/2] smack: fix bug: unprivileged task can create labels
` Re[2]: "
` [PATCH 2/2] smack: fix bug: setting task label silently ignores input garbage
` Re[6]: [PATCH 0/2] smack: fix two bugs in setting task label
[RFC PATCH 0/9] Landlock supervise: a mechanism for interactive permission requests
2025-03-12 12:26 UTC (40+ messages)
` [RFC PATCH 2/9] Refactor per-layer information in rulesets and rules
` [RFC PATCH 4/9] User-space API for creating a supervisor-fd
` [RFC PATCH 5/9] Define user structure for events and responses
` [RFC PATCH 6/9] Creating supervisor events for filesystem operations
[bug report] landlock: Add AUDIT_LANDLOCK_DOMAIN and log domain status
2025-03-12 11:32 UTC (3+ messages)
[PATCH v9 4/7] ima: kexec: define functions to copy IMA log at soft boot
2025-03-12 8:57 UTC (2+ messages)
[PATCH v9 0/7] ima: kexec: measure events between kexec load and execute
2025-03-11 23:45 UTC (8+ messages)
` [PATCH v9 1/7] ima: copy only complete measurement records across kexec
[PATCH v4 0/1] ipe: add errno field to IPE policy load auditing
2025-03-11 22:10 UTC (4+ messages)
` [RFC PATCH v4 1/1] "
` [PATCH RFC "
CVE-2025-21830: landlock: Handle weird files
2025-03-11 20:10 UTC (15+ messages)
` Unprivileged filesystem mounts
apparmor NULL pointer dereference on resume
2025-03-11 17:46 UTC (13+ messages)
` apparmor NULL pointer dereference on resume [efivarfs]
[PATCH] init/main.c: Initialize early LSMs after arch code
2025-03-11 15:14 UTC (3+ messages)
[RFC 0/2] landlock: Multithreaded policy enforcement
2025-03-11 14:32 UTC (7+ messages)
` [RFC 1/2] landlock: Multithreading support for landlock_restrict_self()
[PATCH v7 bpf-next 0/2] security: Propagate caller information in bpf hooks
2025-03-11 11:40 UTC (6+ messages)
` [PATCH v7 bpf-next 1/2] "
` [PATCH v7 bpf-next 2/2] selftests/bpf: Add a kernel flag test for LSM bpf hook
[PATCH] RDMA/uverbs: Fix CAP_NET_RAW check for flow create in user namespace
2025-03-11 11:32 UTC (8+ messages)
[PATCH] MAINTAINERS: add Serge Hallyn as maintainer for creds
2025-03-10 21:52 UTC (5+ messages)
[RFC PATCH] MAINTAINERS: add an explicit credentials entry
2025-03-10 20:29 UTC (6+ messages)
[PATCH] lsm_audit: remove old email address
2025-03-10 20:04 UTC (2+ messages)
[PATCH v6 bpf-next 0/2] security: Propagate caller information in bpf hooks
2025-03-10 18:20 UTC (9+ messages)
` [PATCH v6 bpf-next 1/2] "
` [PATCH v6 "
` [PATCH v6 bpf-next 2/2] selftests/bpf: Add a kernel flag test for LSM bpf hook
[PATCH v2 0/6] Audit: Records for multiple security contexts
2025-03-10 8:20 UTC (11+ messages)
` [PATCH v2 1/6] Audit: Create audit_stamp structure
` [PATCH v2 2/6] Audit: Allow multiple records in an audit_buffer
` [PATCH v2 3/6] LSM: security_lsmblob_to_secctx module selection
` [PATCH v2 4/6] Audit: Add record for multiple task security contexts
` [PATCH v2 5/6] Audit: multiple subject lsm values for netlabel
` [PATCH v2 6/6] Audit: Add record for multiple object contexts
[PATCH] security/commoncap: don't assume "setid" if all ids are identical
2025-03-09 15:19 UTC (3+ messages)
[PATCH v6 00/26] Landlock audit support
2025-03-09 9:41 UTC (28+ messages)
` [PATCH v6 01/26] lsm: Add audit_log_lsm_data() helper
` [PATCH v6 02/26] landlock: Add unique ID generator
` [PATCH v6 03/26] landlock: Move domain hierarchy management
` [PATCH v6 04/26] landlock: Prepare to use credential instead of domain for filesystem
` [PATCH v6 05/26] landlock: Prepare to use credential instead of domain for network
` [PATCH v6 06/26] landlock: Prepare to use credential instead of domain for scope
` [PATCH v6 07/26] landlock: Prepare to use credential instead of domain for fowner
` [PATCH v6 08/26] landlock: Identify domain execution crossing
` [PATCH v6 09/26] landlock: Add AUDIT_LANDLOCK_ACCESS and log ptrace denials
` [PATCH v6 10/26] landlock: Add AUDIT_LANDLOCK_DOMAIN and log domain status
` [PATCH v6 11/26] landlock: Log mount-related denials
` [PATCH v6 12/26] landlock: Log file-related denials
` [PATCH v6 13/26] landlock: Log truncate and IOCTL denials
` [PATCH v6 14/26] landlock: Log TCP bind and connect denials
` [PATCH v6 15/26] landlock: Log scoped denials
` [PATCH v6 16/26] landlock: Add LANDLOCK_RESTRICT_SELF_LOG_*_EXEC_* flags
` [PATCH v6 17/26] landlock: Add LANDLOCK_RESTRICT_SELF_LOG_SUBDOMAINS_OFF
` [PATCH v6 18/26] samples/landlock: Enable users to log sandbox denials
` [PATCH v6 19/26] selftests/landlock: Add test for invalid ruleset file descriptor
` [PATCH v6 20/26] selftests/landlock: Extend tests for landlock_restrict_self(2)'s flags
` [PATCH v6 21/26] selftests/landlock: Add tests for audit flags and domain IDs
` [PATCH v6 22/26] selftests/landlock: Test audit with restrict flags
` [PATCH v6 23/26] selftests/landlock: Add audit tests for ptrace
` [PATCH v6 24/26] selftests/landlock: Add audit tests for abstract unix socket scoping
` [PATCH v6 25/26] selftests/landlock: Add audit tests for filesystem
` [PATCH v6 26/26] landlock: Add audit documentation
[PATCH v5 00/24] Landlock audit support
2025-03-08 18:40 UTC (4+ messages)
` [PATCH v5 02/24] landlock: Add unique ID generator
[PATCH v2 0/2] hardening: Enable i386 FORTIFY_SOURCE on Clang 16+
2025-03-08 17:23 UTC (7+ messages)
` [PATCH v2 1/2] x86/build: Remove -ffreestanding on i386 with GCC
` [PATCH v2 2/2] hardening: Enable i386 FORTIFY_SOURCE on Clang 16+
[PATCH v2] capability: Remove unused has_capability
2025-03-08 12:29 UTC (5+ messages)
[PATCH] hardening: Enable i386 FORTIFY_SOURCE on Clang 16+
2025-03-07 23:10 UTC (5+ messages)
[PATCH v5 bpf-next 0/2] security: Propagate caller information in bpf hooks
2025-03-07 22:45 UTC (4+ messages)
` [PATCH v5 bpf-next 1/2] "
` [PATCH v5 bpf-next 2/2] selftests/bpf: Add a kernel flag test for LSM bpf hook
[PATCH v1] samples/check-exec: Fix script name
2025-03-07 3:45 UTC (2+ messages)
[RFC PATCH v3 00/13] Clavis LSM
2025-03-07 2:46 UTC (18+ messages)
The Business Loan/financing.1
2025-03-06 22:52 UTC
[RFC] Type-Partitioned vmalloc (with sample *.ko code)
2025-03-06 15:50 UTC (3+ messages)
[PATCH v2 0/6] module: Introduce hash-based integrity checking
2025-03-06 8:10 UTC (4+ messages)
` [PATCH v2 6/6] "
[PATCH v9 2/7] kexec: define functions to map and unmap segments
2025-03-06 6:35 UTC (2+ messages)
[PATCH v2] ipe: add errno field to IPE policy load auditing
2025-03-06 0:08 UTC (7+ messages)
` [PATCH v3] "
[PATCH v4 bpf-next 0/2] security: Propagate caller information in bpf hooks
2025-03-05 20:12 UTC (9+ messages)
` [PATCH v4 bpf-next 2/2] selftests/bpf: Add is_kernel parameter to LSM/bpf test programs
page: next (older) | prev (newer) | latest
- recent:[subjects (threaded)|topics (new)|topics (active)]
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).