messages from 2025-03-04 01:20:04 to 2025-03-10 16:31:36 UTC [more...]
[PATCH v6 bpf-next 0/2] security: Propagate caller information in bpf hooks
2025-03-10 16:31 UTC (4+ messages)
` [PATCH v6 bpf-next 1/2] "
` [PATCH v6 "
` [PATCH v6 bpf-next 2/2] selftests/bpf: Add a kernel flag test for LSM bpf hook
[PATCH] RDMA/uverbs: Fix CAP_NET_RAW check for flow create in user namespace
2025-03-10 14:47 UTC (3+ messages)
CVE-2025-21830: landlock: Handle weird files
2025-03-10 14:36 UTC (3+ messages)
[PATCH] lsm_audit: remove old email address
2025-03-10 14:24 UTC
[RFC 0/2] landlock: Multithreaded policy enforcement
2025-03-10 13:04 UTC (6+ messages)
` [RFC 1/2] landlock: Multithreading support for landlock_restrict_self()
[PATCH v2 0/6] Audit: Records for multiple security contexts
2025-03-10 8:20 UTC (11+ messages)
` [PATCH v2 1/6] Audit: Create audit_stamp structure
` [PATCH v2 2/6] Audit: Allow multiple records in an audit_buffer
` [PATCH v2 3/6] LSM: security_lsmblob_to_secctx module selection
` [PATCH v2 4/6] Audit: Add record for multiple task security contexts
` [PATCH v2 5/6] Audit: multiple subject lsm values for netlabel
` [PATCH v2 6/6] Audit: Add record for multiple object contexts
[RFC PATCH 0/9] Landlock supervise: a mechanism for interactive permission requests
2025-03-10 0:41 UTC (28+ messages)
` [RFC PATCH 2/9] Refactor per-layer information in rulesets and rules
` [RFC PATCH 4/9] User-space API for creating a supervisor-fd
` [RFC PATCH 5/9] Define user structure for events and responses
` [RFC PATCH 6/9] Creating supervisor events for filesystem operations
` [RFC PATCH 7/9] Implement fdinfo for ruleset and supervisor fd
` [RFC PATCH 8/9] Implement fops for supervisor-fd
` [RFC PATCH 9/9] Enhance the sandboxer example to support landlock-supervise
[PATCH] security/commoncap: don't assume "setid" if all ids are identical
2025-03-09 15:19 UTC (3+ messages)
[PATCH] MAINTAINERS: add Serge Hallyn as maintainer for creds
2025-03-09 13:08 UTC
[RFC PATCH] MAINTAINERS: add an explicit credentials entry
2025-03-09 11:12 UTC (5+ messages)
[PATCH v6 00/26] Landlock audit support
2025-03-09 9:41 UTC (28+ messages)
` [PATCH v6 01/26] lsm: Add audit_log_lsm_data() helper
` [PATCH v6 02/26] landlock: Add unique ID generator
` [PATCH v6 03/26] landlock: Move domain hierarchy management
` [PATCH v6 04/26] landlock: Prepare to use credential instead of domain for filesystem
` [PATCH v6 05/26] landlock: Prepare to use credential instead of domain for network
` [PATCH v6 06/26] landlock: Prepare to use credential instead of domain for scope
` [PATCH v6 07/26] landlock: Prepare to use credential instead of domain for fowner
` [PATCH v6 08/26] landlock: Identify domain execution crossing
` [PATCH v6 09/26] landlock: Add AUDIT_LANDLOCK_ACCESS and log ptrace denials
` [PATCH v6 10/26] landlock: Add AUDIT_LANDLOCK_DOMAIN and log domain status
` [PATCH v6 11/26] landlock: Log mount-related denials
` [PATCH v6 12/26] landlock: Log file-related denials
` [PATCH v6 13/26] landlock: Log truncate and IOCTL denials
` [PATCH v6 14/26] landlock: Log TCP bind and connect denials
` [PATCH v6 15/26] landlock: Log scoped denials
` [PATCH v6 16/26] landlock: Add LANDLOCK_RESTRICT_SELF_LOG_*_EXEC_* flags
` [PATCH v6 17/26] landlock: Add LANDLOCK_RESTRICT_SELF_LOG_SUBDOMAINS_OFF
` [PATCH v6 18/26] samples/landlock: Enable users to log sandbox denials
` [PATCH v6 19/26] selftests/landlock: Add test for invalid ruleset file descriptor
` [PATCH v6 20/26] selftests/landlock: Extend tests for landlock_restrict_self(2)'s flags
` [PATCH v6 21/26] selftests/landlock: Add tests for audit flags and domain IDs
` [PATCH v6 22/26] selftests/landlock: Test audit with restrict flags
` [PATCH v6 23/26] selftests/landlock: Add audit tests for ptrace
` [PATCH v6 24/26] selftests/landlock: Add audit tests for abstract unix socket scoping
` [PATCH v6 25/26] selftests/landlock: Add audit tests for filesystem
` [PATCH v6 26/26] landlock: Add audit documentation
[PATCH v5 00/24] Landlock audit support
2025-03-08 18:40 UTC (4+ messages)
` [PATCH v5 02/24] landlock: Add unique ID generator
[PATCH v2 0/2] hardening: Enable i386 FORTIFY_SOURCE on Clang 16+
2025-03-08 17:23 UTC (7+ messages)
` [PATCH v2 1/2] x86/build: Remove -ffreestanding on i386 with GCC
` [PATCH v2 2/2] hardening: Enable i386 FORTIFY_SOURCE on Clang 16+
[PATCH v2] capability: Remove unused has_capability
2025-03-08 12:29 UTC (5+ messages)
[PATCH] hardening: Enable i386 FORTIFY_SOURCE on Clang 16+
2025-03-07 23:10 UTC (6+ messages)
[PATCH v5 bpf-next 0/2] security: Propagate caller information in bpf hooks
2025-03-07 22:45 UTC (4+ messages)
` [PATCH v5 bpf-next 1/2] "
` [PATCH v5 bpf-next 2/2] selftests/bpf: Add a kernel flag test for LSM bpf hook
[PATCH 0/2] smack: fix two bugs in setting task label
2025-03-07 22:26 UTC (7+ messages)
` [PATCH 1/2] smack: fix bug: unprivileged task can create labels
` Re[2]: "
` [PATCH 2/2] smack: fix bug: setting task label silently ignores input garbage
[PATCH v4 0/1] ipe: add errno field to IPE policy load auditing
2025-03-07 22:03 UTC (2+ messages)
` [RFC PATCH v4 1/1] "
[PATCH v1] samples/check-exec: Fix script name
2025-03-07 3:45 UTC (2+ messages)
[PATCH v9 0/7] ima: kexec: measure events between kexec load and execute
2025-03-07 2:51 UTC (21+ messages)
` [PATCH v9 1/7] ima: copy only complete measurement records across kexec
` [PATCH v9 2/7] kexec: define functions to map and unmap segments
` [PATCH v9 3/7] ima: kexec: skip IMA segment validation after kexec soft reboot
` [PATCH v9 4/7] ima: kexec: define functions to copy IMA log at soft boot
` [PATCH v9 5/7] ima: kexec: move IMA log copy from kexec load to execute
` [PATCH v9 6/7] ima: make the kexec extra memory configurable
` [PATCH v9 7/7] ima: measure kexec load and exec events as critical data
[RFC PATCH v3 00/13] Clavis LSM
2025-03-07 2:46 UTC (29+ messages)
The Business Loan/financing.1
2025-03-06 22:52 UTC
[RFC] Type-Partitioned vmalloc (with sample *.ko code)
2025-03-06 15:50 UTC (3+ messages)
[PATCH v2 0/6] module: Introduce hash-based integrity checking
2025-03-06 8:10 UTC (4+ messages)
` [PATCH v2 6/6] "
[PATCH v2] ipe: add errno field to IPE policy load auditing
2025-03-06 0:08 UTC (8+ messages)
` [PATCH v3] "
apparmor NULL pointer dereference on resume
2025-03-05 21:47 UTC (3+ messages)
[PATCH v4 bpf-next 0/2] security: Propagate caller information in bpf hooks
2025-03-05 20:12 UTC (15+ messages)
` [PATCH v4 bpf-next 1/2] "
` [PATCH v4 bpf-next 2/2] selftests/bpf: Add is_kernel parameter to LSM/bpf test programs
[PATCH v3 0/1] landlock: Clarify IPC scoping documentation
2025-03-05 18:35 UTC (6+ messages)
` [PATCH v3 1/1] "
` [PATCH man v3 1/2] landlock.7: Copy introductory description of Landlock rules
[PATCH] yama: don't abuse rcu_read_lock/get_task_struct in yama_task_prctl()
2025-03-04 23:53 UTC (2+ messages)
[PATCH] lsm: rust: mark SecurityCtx methods inline
2025-03-04 23:16 UTC (7+ messages)
[PATCH v2] cred: rust: mark Credential methods inline
2025-03-04 22:07 UTC (2+ messages)
[PATCH] lsm: rust: reword "destroy" -> "release" in SecurityCtx
2025-03-04 20:44 UTC (4+ messages)
[PATCH v2] lsm: rust: mark SecurityCtx methods inline
2025-03-04 20:42 UTC (3+ messages)
[PATCH v8 0/7] ima: kexec: measure events between kexec load and execute
2025-03-04 16:15 UTC (6+ messages)
` [PATCH v8 2/7] kexec: define functions to map and unmap segments
[PATCH v2 02/11] quota: reorder capability check last
2025-03-04 14:06 UTC (5+ messages)
` [PATCH v2 03/11] ext4: "
` [PATCH v2 10/11] skbuff: "
[PATCH] cred: rust: mark Credential methods inline
2025-03-04 9:31 UTC (2+ messages)
page: next (older) | prev (newer) | latest
- recent:[subjects (threaded)|topics (new)|topics (active)]
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).