messages from 2025-03-08 01:33:39 to 2025-03-18 01:05:17 UTC [more...]
[PATCH v10 0/8] ima: kexec: measure events between kexec load and execute
2025-03-18 1:04 UTC (6+ messages)
` [PATCH v10 1/8] ima: rename variable the ser_file "file" to "ima_kexec_file"
` [PATCH v10 2/8] ima: define and call ima_alloc_kexec_file_buf()
` [PATCH v10 3/8] kexec: define functions to map and unmap segments
` [PATCH v10 4/8] ima: kexec: skip IMA segment validation after kexec soft reboot
` [PATCH v10 5/8] ima: kexec: define functions to copy IMA log at soft boot
[PATCH v5 0/1] ipe: add errno field to IPE policy load auditing
2025-03-17 21:03 UTC (4+ messages)
` [PATCH v5 1/1] "
[PATCH] RDMA/uverbs: Consider capability of the process that opens the file
2025-03-17 19:31 UTC (2+ messages)
[PATCH v9 0/7] ima: kexec: measure events between kexec load and execute
2025-03-17 18:26 UTC (13+ messages)
` [PATCH v9 1/7] ima: copy only complete measurement records across kexec
` [PATCH v9 2/7] kexec: define functions to map and unmap segments
[PATCH] [v2] crypto: lib/Kconfig: hide library options
2025-03-17 12:38 UTC (5+ messages)
apparmor NULL pointer dereference on resume
2025-03-17 8:56 UTC (20+ messages)
` apparmor NULL pointer dereference on resume [efivarfs]
` [RFC 1/1] fix NULL mnt [was Re: apparmor NULL pointer dereference on resume [efivarfs]]
[PATCH v2 0/2] smack: fix two bugs in setting task label
2025-03-15 1:57 UTC (3+ messages)
` [PATCH v2 1/2] smack: fix bug: unprivileged task can create labels
` [PATCH v2 2/2] smack: fix bug: setting task label silently ignores input garbage
[PATCH v5] hwmon: (pmbus/tps53679) Add support for TPS53685
2025-03-14 17:44 UTC (2+ messages)
[RFC PATCH v1] landlock: Allow signals between threads of the same process
2025-03-14 15:42 UTC (2+ messages)
[RFC PATCH 0/6] fs, lsm: mediate O_PATH fd creation in file_open hook
2025-03-14 1:28 UTC (11+ messages)
` [RFC PATCH 1/6] fs: invoke LSM file_open hook in do_dentry_open for O_PATH fds as well
` [RFC PATCH 2/6] apparmor: explicitly skip mediation of O_PATH file descriptors
` [RFC PATCH 3/6] landlock: "
` [RFC PATCH 4/6] selinux: "
` [RFC PATCH 5/6] smack: "
` [RFC PATCH 6/6] tomoyo: "
[RFC PATCH v1 0/7] ima: get rid of hard dependency on SHA-1
2025-03-13 17:33 UTC (8+ messages)
` [RFC PATCH v1 1/7] ima: don't expose runtime_measurements for unsupported hashes
` [RFC PATCH v1 2/7] ima: always create runtime_measurements sysfs file for ima_hash
` [RFC PATCH v1 3/7] ima: move INVALID_PCR() to ima.h
` [RFC PATCH v1 4/7] ima: track the set of PCRs ever extended
` [RFC PATCH v1 5/7] tpm: enable bank selection for PCR extend
` [RFC PATCH v1 6/7] ima: invalidate unsupported PCR banks once at first use
` [RFC PATCH v1 7/7] ima: make SHA1 non-mandatory
[PATCH v2 4/6] Audit: Add record for multiple task security contexts
2025-03-13 12:29 UTC (3+ messages)
[PATCH v2 6/6] Audit: Add record for multiple object contexts
2025-03-12 23:51 UTC (5+ messages)
[PATCH v2 5/6] Audit: multiple subject lsm values for netlabel
2025-03-12 23:51 UTC (2+ messages)
[PATCH v2 3/6] LSM: security_lsmblob_to_secctx module selection
2025-03-12 23:51 UTC (3+ messages)
[PATCH v2 2/6] Audit: Allow multiple records in an audit_buffer
2025-03-12 23:51 UTC (2+ messages)
[PATCH v2 1/6] Audit: Create audit_stamp structure
2025-03-12 23:51 UTC (2+ messages)
[PATCH 0/2] smack: fix two bugs in setting task label
2025-03-12 16:35 UTC (4+ messages)
` Re[6]: "
[RFC PATCH 0/9] Landlock supervise: a mechanism for interactive permission requests
2025-03-12 12:26 UTC (40+ messages)
` [RFC PATCH 2/9] Refactor per-layer information in rulesets and rules
` [RFC PATCH 4/9] User-space API for creating a supervisor-fd
` [RFC PATCH 5/9] Define user structure for events and responses
` [RFC PATCH 6/9] Creating supervisor events for filesystem operations
[bug report] landlock: Add AUDIT_LANDLOCK_DOMAIN and log domain status
2025-03-12 11:32 UTC (3+ messages)
[PATCH v9 4/7] ima: kexec: define functions to copy IMA log at soft boot
2025-03-12 8:57 UTC (2+ messages)
[PATCH v4 0/1] ipe: add errno field to IPE policy load auditing
2025-03-11 22:10 UTC (4+ messages)
` [RFC PATCH v4 1/1] "
` [PATCH RFC "
CVE-2025-21830: landlock: Handle weird files
2025-03-11 20:10 UTC (15+ messages)
` Unprivileged filesystem mounts
[PATCH] init/main.c: Initialize early LSMs after arch code
2025-03-11 15:14 UTC (3+ messages)
[RFC 0/2] landlock: Multithreaded policy enforcement
2025-03-11 14:32 UTC (7+ messages)
` [RFC 1/2] landlock: Multithreading support for landlock_restrict_self()
[PATCH v7 bpf-next 0/2] security: Propagate caller information in bpf hooks
2025-03-11 11:40 UTC (6+ messages)
` [PATCH v7 bpf-next 1/2] "
` [PATCH v7 bpf-next 2/2] selftests/bpf: Add a kernel flag test for LSM bpf hook
[PATCH] RDMA/uverbs: Fix CAP_NET_RAW check for flow create in user namespace
2025-03-11 11:32 UTC (8+ messages)
[PATCH] MAINTAINERS: add Serge Hallyn as maintainer for creds
2025-03-10 21:52 UTC (5+ messages)
[RFC PATCH] MAINTAINERS: add an explicit credentials entry
2025-03-10 20:29 UTC (6+ messages)
[PATCH] lsm_audit: remove old email address
2025-03-10 20:04 UTC (2+ messages)
[PATCH v6 bpf-next 0/2] security: Propagate caller information in bpf hooks
2025-03-10 18:20 UTC (9+ messages)
` [PATCH v6 bpf-next 1/2] "
` [PATCH v6 "
` [PATCH v6 bpf-next 2/2] selftests/bpf: Add a kernel flag test for LSM bpf hook
[PATCH] security/commoncap: don't assume "setid" if all ids are identical
2025-03-09 15:19 UTC (2+ messages)
[PATCH v6 00/26] Landlock audit support
2025-03-09 9:41 UTC (28+ messages)
` [PATCH v6 01/26] lsm: Add audit_log_lsm_data() helper
` [PATCH v6 02/26] landlock: Add unique ID generator
` [PATCH v6 03/26] landlock: Move domain hierarchy management
` [PATCH v6 04/26] landlock: Prepare to use credential instead of domain for filesystem
` [PATCH v6 05/26] landlock: Prepare to use credential instead of domain for network
` [PATCH v6 06/26] landlock: Prepare to use credential instead of domain for scope
` [PATCH v6 07/26] landlock: Prepare to use credential instead of domain for fowner
` [PATCH v6 08/26] landlock: Identify domain execution crossing
` [PATCH v6 09/26] landlock: Add AUDIT_LANDLOCK_ACCESS and log ptrace denials
` [PATCH v6 10/26] landlock: Add AUDIT_LANDLOCK_DOMAIN and log domain status
` [PATCH v6 11/26] landlock: Log mount-related denials
` [PATCH v6 12/26] landlock: Log file-related denials
` [PATCH v6 13/26] landlock: Log truncate and IOCTL denials
` [PATCH v6 14/26] landlock: Log TCP bind and connect denials
` [PATCH v6 15/26] landlock: Log scoped denials
` [PATCH v6 16/26] landlock: Add LANDLOCK_RESTRICT_SELF_LOG_*_EXEC_* flags
` [PATCH v6 17/26] landlock: Add LANDLOCK_RESTRICT_SELF_LOG_SUBDOMAINS_OFF
` [PATCH v6 18/26] samples/landlock: Enable users to log sandbox denials
` [PATCH v6 19/26] selftests/landlock: Add test for invalid ruleset file descriptor
` [PATCH v6 20/26] selftests/landlock: Extend tests for landlock_restrict_self(2)'s flags
` [PATCH v6 21/26] selftests/landlock: Add tests for audit flags and domain IDs
` [PATCH v6 22/26] selftests/landlock: Test audit with restrict flags
` [PATCH v6 23/26] selftests/landlock: Add audit tests for ptrace
` [PATCH v6 24/26] selftests/landlock: Add audit tests for abstract unix socket scoping
` [PATCH v6 25/26] selftests/landlock: Add audit tests for filesystem
` [PATCH v6 26/26] landlock: Add audit documentation
[PATCH v5 00/24] Landlock audit support
2025-03-08 18:40 UTC (4+ messages)
` [PATCH v5 02/24] landlock: Add unique ID generator
[PATCH v2 0/2] hardening: Enable i386 FORTIFY_SOURCE on Clang 16+
2025-03-08 17:23 UTC (7+ messages)
` [PATCH v2 1/2] x86/build: Remove -ffreestanding on i386 with GCC
` [PATCH v2 2/2] hardening: Enable i386 FORTIFY_SOURCE on Clang 16+
[PATCH v2] capability: Remove unused has_capability
2025-03-08 12:29 UTC (5+ messages)
page: next (older) | prev (newer) | latest
- recent:[subjects (threaded)|topics (new)|topics (active)]
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).