messages from 2025-03-10 16:31:36 to 2025-03-20 12:12:06 UTC [more...]
[PATCH] Revert "integrity: Do not load MOK and MOKx when secure boot be disabled"
2025-03-20 12:02 UTC
[PATCH] KEYS: trusted: dcp: Use kfree_sensitive() to fix Coccinelle warnings
2025-03-20 10:35 UTC
CVE-2025-21830: landlock: Handle weird files
2025-03-20 6:26 UTC (23+ messages)
` Unprivileged filesystem mounts
[PATCH v10 0/8] ima: kexec: measure events between kexec load and execute
2025-03-20 2:59 UTC (21+ messages)
` [PATCH v10 1/8] ima: rename variable the ser_file "file" to "ima_kexec_file"
` [PATCH v10 2/8] ima: define and call ima_alloc_kexec_file_buf()
` [PATCH v10 3/8] kexec: define functions to map and unmap segments
` [PATCH v10 4/8] ima: kexec: skip IMA segment validation after kexec soft reboot
` [PATCH v10 5/8] ima: kexec: define functions to copy IMA log at soft boot
` [PATCH v10 6/8] ima: kexec: move IMA log copy from kexec load to execute
` [PATCH v10 7/8] ima: make the kexec extra memory configurable
` [PATCH v10 8/8] ima: measure kexec load and exec events as critical data
[PATCH v3 0/5] Audit: Records for multiple security contexts
2025-03-19 22:27 UTC (6+ messages)
` [PATCH v3 1/5] Audit: Create audit_stamp structure
` [PATCH v3 2/5] LSM: security_lsmblob_to_secctx module selection
` [PATCH v3 3/5] Audit: Add record for multiple task security contexts
` [PATCH v3 4/5] Audit: multiple subject lsm values for netlabel
` [PATCH v3 5/5] Audit: Add record for multiple object contexts
[PATCH v2] keys: Fix UAF in key_put()
2025-03-19 18:47 UTC (4+ messages)
[syzbot] [keyrings?] [lsm?] KASAN: slab-use-after-free Read in key_put
2025-03-19 15:49 UTC (3+ messages)
[PATCH] RDMA/uverbs: Consider capability of the process that opens the file
2025-03-18 22:57 UTC (8+ messages)
[PATCH v5 0/1] ipe: add errno field to IPE policy load auditing
2025-03-18 22:50 UTC (5+ messages)
` [PATCH v5 1/1] "
[PATCH] apparmor: make __begin_current_label_crit_section() indicate whether put is needed
2025-03-18 22:06 UTC
[RFC PATCH v1 0/7] ima: get rid of hard dependency on SHA-1
2025-03-18 20:49 UTC (16+ messages)
` [RFC PATCH v1 1/7] ima: don't expose runtime_measurements for unsupported hashes
` [RFC PATCH v1 2/7] ima: always create runtime_measurements sysfs file for ima_hash
` [RFC PATCH v1 3/7] ima: move INVALID_PCR() to ima.h
` [RFC PATCH v1 4/7] ima: track the set of PCRs ever extended
` [RFC PATCH v1 5/7] tpm: enable bank selection for PCR extend
` [RFC PATCH v1 6/7] ima: invalidate unsupported PCR banks once at first use
` [RFC PATCH v1 7/7] ima: make SHA1 non-mandatory
[PATCH v2 0/8] Landlock signal scope fix and errata interface
2025-03-18 16:14 UTC (9+ messages)
` [PATCH v2 1/8] landlock: Move code to ease future backports
` [PATCH v2 2/8] landlock: Add the errata interface
` [PATCH v2 3/8] landlock: Add erratum for TCP fix
` [PATCH v2 4/8] landlock: Prepare to add second errata
` [PATCH v2 5/8] landlock: Always allow signals between threads of the same process
` [PATCH v2 6/8] selftests/landlock: Split signal_scoping_threads tests
` [PATCH v2 7/8] selftests/landlock: Add a new test for setuid()
` [PATCH v2 8/8] landlock: Document errata
[PATCH] keys: Fix UAF in key_put()
2025-03-18 13:27 UTC (4+ messages)
[PATCH v2 02/11] quota: reorder capability check last
2025-03-18 3:41 UTC (3+ messages)
` [PATCH v2 01/11] coccinelle: Add script to reorder capable() calls
[PATCH v9 0/7] ima: kexec: measure events between kexec load and execute
2025-03-17 18:26 UTC (13+ messages)
` [PATCH v9 1/7] ima: copy only complete measurement records across kexec
` [PATCH v9 2/7] kexec: define functions to map and unmap segments
[PATCH] [v2] crypto: lib/Kconfig: hide library options
2025-03-17 12:38 UTC (5+ messages)
apparmor NULL pointer dereference on resume
2025-03-17 8:56 UTC (20+ messages)
` apparmor NULL pointer dereference on resume [efivarfs]
` [RFC 1/1] fix NULL mnt [was Re: apparmor NULL pointer dereference on resume [efivarfs]]
[PATCH v2 0/2] smack: fix two bugs in setting task label
2025-03-15 1:57 UTC (3+ messages)
` [PATCH v2 1/2] smack: fix bug: unprivileged task can create labels
` [PATCH v2 2/2] smack: fix bug: setting task label silently ignores input garbage
[PATCH v5] hwmon: (pmbus/tps53679) Add support for TPS53685
2025-03-14 17:44 UTC (2+ messages)
[RFC PATCH v1] landlock: Allow signals between threads of the same process
2025-03-14 15:42 UTC (2+ messages)
[RFC PATCH 0/6] fs, lsm: mediate O_PATH fd creation in file_open hook
2025-03-14 1:28 UTC (11+ messages)
` [RFC PATCH 1/6] fs: invoke LSM file_open hook in do_dentry_open for O_PATH fds as well
` [RFC PATCH 2/6] apparmor: explicitly skip mediation of O_PATH file descriptors
` [RFC PATCH 3/6] landlock: "
` [RFC PATCH 4/6] selinux: "
` [RFC PATCH 5/6] smack: "
` [RFC PATCH 6/6] tomoyo: "
[PATCH v2 4/6] Audit: Add record for multiple task security contexts
2025-03-13 12:29 UTC (3+ messages)
[PATCH v2 6/6] Audit: Add record for multiple object contexts
2025-03-12 23:51 UTC (2+ messages)
[PATCH v2 5/6] Audit: multiple subject lsm values for netlabel
2025-03-12 23:51 UTC (2+ messages)
[PATCH v2 3/6] LSM: security_lsmblob_to_secctx module selection
2025-03-12 23:51 UTC (2+ messages)
[PATCH v2 2/6] Audit: Allow multiple records in an audit_buffer
2025-03-12 23:51 UTC (2+ messages)
[PATCH v2 1/6] Audit: Create audit_stamp structure
2025-03-12 23:51 UTC (2+ messages)
[PATCH 0/2] smack: fix two bugs in setting task label
2025-03-12 16:35 UTC (4+ messages)
` Re[6]: "
[RFC PATCH 0/9] Landlock supervise: a mechanism for interactive permission requests
2025-03-12 12:26 UTC (31+ messages)
` [RFC PATCH 4/9] User-space API for creating a supervisor-fd
` [RFC PATCH 5/9] Define user structure for events and responses
` [RFC PATCH 6/9] Creating supervisor events for filesystem operations
[bug report] landlock: Add AUDIT_LANDLOCK_DOMAIN and log domain status
2025-03-12 11:32 UTC (3+ messages)
[PATCH v9 4/7] ima: kexec: define functions to copy IMA log at soft boot
2025-03-12 8:57 UTC (2+ messages)
[PATCH v4 0/1] ipe: add errno field to IPE policy load auditing
2025-03-11 22:10 UTC (4+ messages)
` [RFC PATCH v4 1/1] "
` [PATCH RFC "
[PATCH] init/main.c: Initialize early LSMs after arch code
2025-03-11 15:14 UTC (3+ messages)
[RFC 0/2] landlock: Multithreaded policy enforcement
2025-03-11 14:32 UTC (7+ messages)
` [RFC 1/2] landlock: Multithreading support for landlock_restrict_self()
[PATCH v7 bpf-next 0/2] security: Propagate caller information in bpf hooks
2025-03-11 11:40 UTC (6+ messages)
` [PATCH v7 bpf-next 1/2] "
` [PATCH v7 bpf-next 2/2] selftests/bpf: Add a kernel flag test for LSM bpf hook
[PATCH] RDMA/uverbs: Fix CAP_NET_RAW check for flow create in user namespace
2025-03-11 11:32 UTC (8+ messages)
[PATCH] MAINTAINERS: add Serge Hallyn as maintainer for creds
2025-03-10 21:52 UTC (5+ messages)
[RFC PATCH] MAINTAINERS: add an explicit credentials entry
2025-03-10 20:29 UTC (3+ messages)
[PATCH] lsm_audit: remove old email address
2025-03-10 20:04 UTC (2+ messages)
[PATCH v6 bpf-next 0/2] security: Propagate caller information in bpf hooks
2025-03-10 18:20 UTC (7+ messages)
` [PATCH v6 bpf-next 2/2] selftests/bpf: Add a kernel flag test for LSM bpf hook
[PATCH v6 bpf-next 1/2] security: Propagate caller information in bpf hooks
2025-03-10 16:31 UTC (2+ messages)
` [PATCH v6 "
page: next (older) | prev (newer) | latest
- recent:[subjects (threaded)|topics (new)|topics (active)]
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).