messages from 2026-05-07 05:50:14 to 2026-05-15 05:01:35 UTC [more...]
[PATCH] apparmor: hold peer path references in aa_unix_file_perm()
2026-05-15 5:01 UTC
[PATCH] killswitch: add per-function short-circuit mitigation primitive
2026-05-15 3:48 UTC
[PATCH net 4/4] netlabel: validate CIPSO option against skb tail in netlbl_skbuff_getattr
2026-05-15 2:42 UTC (3+ messages)
[PATCH net 3/4] netlabel: validate CALIPSO option against skb tail in netlbl_skbuff_getattr
2026-05-15 2:42 UTC (5+ messages)
[PATCH] lsm: hold cred_guard_mutex for lsm_set_self_attr()
2026-05-14 20:47 UTC (2+ messages)
[PATCH RFC 0/5] memcg: dma-buf per-cgroup accounting via pid_fd
2026-05-14 20:44 UTC (14+ messages)
` [PATCH RFC 1/5] memcg: Track exported dma-buffers
` [PATCH RFC 2/5] dma-heap: charge dma-buf memory via explicit memcg
` [PATCH RFC 3/5] security: dma-heap: Add dma_heap_alloc LSM hook
` [PATCH RFC 4/5] selinux: Restrict cross-cgroup dma-heap charging
` [PATCH RFC 5/5] selftests/dmabuf-heaps: Add dma-buf memcg accounting tests
[PATCH v2 0/3] security, sched: Expand task_setscheduler LSM hook and related fixes
2026-05-14 20:15 UTC (8+ messages)
` [PATCH v2 1/3] cgroup/cpuset: Fix deadline bandwidth leak in cpuset_can_attach()
` [PATCH v2 2/3] security: Expand task_setscheduler LSM hook to include CPU affinity mask
` [PATCH v2 3/3] mips: sched: Fix CPUMASK_OFFSTACK memory corruption
[PATCH net 0/4] net: trust-after-modification fixes for IPv4 options + netlabel
2026-05-14 17:06 UTC (2+ messages)
[PATCH] hornet: depend on CONFIG_SECURITY and CONFIG_BPF_SYSCALL
2026-05-14 16:57 UTC (3+ messages)
[PATCH] ipe: restore the kdoc comments for evaluate_property()
2026-05-14 16:57 UTC (3+ messages)
[RFC PATCH v3 0/4] Fix IMA + TPM initialisation ordering issue
2026-05-14 14:53 UTC (35+ messages)
` [RFC PATCH v3 4/4] Revert "firmware: arm_ffa: Change initcall level of ffa_init() to rootfs_initcall"
` [PATCH] ima: debugging late_initcall_sync measurements
[QUESTION] move load_uefi_certs() and keyring initcall to earlier initcall
2026-05-14 13:36 UTC
[linus:master] [landlock] 874c8f8382: kernel-selftests.landlock.audit_test.audit.thread.fail
2026-05-13 18:36 UTC (2+ messages)
[PATCH v7 00/10] Reintroduce Hornet LSM
2026-05-13 18:36 UTC (25+ messages)
` [PATCH v7 01/10] crypto: pkcs7: add flag for validated trust on a signed info block
` [PATCH v7 1/10] "
` [PATCH v7 02/10] crypto: pkcs7: add ability to extract signed attributes by OID
` [PATCH v7 2/10] "
` [PATCH v7 03/10] crypto: pkcs7: add tests for pkcs7_get_authattr
` [PATCH v7 3/10] "
` [PATCH v7 04/10] lsm: framework for BPF integrity verification
` [PATCH v7 4/10] "
` [PATCH v7 05/10] lsm: security: Add additional enum values for bpf integrity checks
` [PATCH v7 5/10] "
` [PATCH v7 06/10] security: Hornet LSM
` [PATCH v7 6/10] "
` [PATCH v7 07/10] hornet: Introduce gen_sig
` [PATCH v7 7/10] "
` [PATCH v7 08/10] hornet: Add a light skeleton data extractor scripts
` [PATCH v7 8/10] "
` [PATCH v7 09/10] selftests/hornet: Add a selftest for the Hornet LSM
` [PATCH v7 9/10] "
` [PATCH v7 10/10] ipe: Add BPF program load policy enforcement via Hornet integration
[PATCH v1] landlock: Account all audit data allocations to user space
2026-05-13 18:03 UTC
[PATCH v2 0/3] landlock: Restrict renameat2 with RENAME_WHITEOUT
2026-05-13 16:05 UTC (4+ messages)
` [PATCH v2 1/3] landlock: Require LANDLOCK_ACCESS_FS_MAKE_WHITEOUT for RENAME_WHITEOUT
` [PATCH v2 2/3] selftests/landlock: Add test for RENAME_WHITEOUT denial
` [PATCH v2 3/3] selftests/landlock: Test OverlayFS renames w/o LANDLOCK_ACCESS_FS_MAKE_WHITEOUT
[PATCH] rust: cred: add safe abstractions for capable() and ns_capable()
2026-05-13 15:39 UTC (5+ messages)
[PATCH v1] landlock: Demonstrate best-effort allowed_access filtering
2026-05-13 15:18 UTC
[linus:master] [selftests] 465b05bae5: kernel-selftests.landlock.audit_test.audit.tsync_override_log_subdomains_off.fail
2026-05-13 10:52 UTC (2+ messages)
[PATCH v1 1/2] selftests/landlock: Filter dealloc records in audit_count_records()
2026-05-13 10:51 UTC (2+ messages)
` [PATCH v1 2/2] selftests/landlock: Increase default audit socket timeout
[PATCH 0/3] security, sched: Expand task_setscheduler LSM hook and related fixes
2026-05-12 19:37 UTC (10+ messages)
` [PATCH 1/3] cgroup/cpuset: Fix deadline bandwidth leak in cpuset_can_attach()
` [PATCH 2/3] security: Expand task_setscheduler LSM hook to include CPU affinity mask
` [PATCH 3/3] mips: sched: Fix CPUMASK_OFFSTACK memory corruption
[BUG] lsm= with bpf before selinux breaks fscreate with EINVAL
2026-05-12 19:17 UTC (7+ messages)
[PATCH v3 0/7] lsm: Replace security_sb_mount with granular mount hooks
2026-05-12 18:07 UTC (17+ messages)
` [PATCH v3 1/7] lsm: Add granular mount hooks to replace security_sb_mount
` [PATCH v3 2/7] apparmor: Remove redundant MS_MGC_MSK stripping in apparmor_sb_mount
` [PATCH v3 3/7] apparmor: Convert from sb_mount to granular mount hooks
` [PATCH v3 4/7] selinux: "
` [PATCH v3 5/7] landlock: "
` [PATCH v3 6/7] tomoyo: "
` [PATCH v3 7/7] lsm: Remove security_sb_mount and security_move_mount
[PATCH v2 0/4] Firmware LSM hook
2026-05-12 8:51 UTC (11+ messages)
[PATCH v5 00/13] ima: Introduce staging mechanism
2026-05-12 8:17 UTC (4+ messages)
[PATCH 0/2] smack: fix incorrect task context in smack_msg_queue_msgrcv
2026-05-11 0:17 UTC (3+ messages)
` [PATCH 1/2] "
` [PATCH 2/2] smack: show msgrcv() subject task in audit
[PATCH v2 1/2] bpf: add bpf_init_inode_xattr kfunc for atomic inode labeling
2026-05-10 21:22 UTC (2+ messages)
[syzbot] Monthly lsm report (Apr 2026)
2026-05-10 4:02 UTC (3+ messages)
[PATCH RESEND] keys: use kmalloc_flex in user_preparse
2026-05-09 15:53 UTC (2+ messages)
[PATCH v2 0/7] lsm: Replace security_sb_mount with granular mount hooks
2026-05-08 21:25 UTC (6+ messages)
` [PATCH v2 1/7] lsm: Add granular mount hooks to replace security_sb_mount
[PATCH 0/4] firmware: arm_ffa: Move core init to platform driver probe
2026-05-08 18:45 UTC (8+ messages)
` [PATCH 1/4] Revert "firmware: arm_ffa: Change initcall level of ffa_init() to rootfs_initcall"
` [PATCH 2/4] firmware: arm_ffa: Register core as a platform driver
` [PATCH 3/4] firmware: arm_ffa: Set the core device as FF-A device parent
` [PATCH 4/4] firmware: arm_ffa: Defer probe until pKVM is initialized
[v6 00/10] Reintroduce Hornet LSM
2026-05-08 18:03 UTC (3+ messages)
[RFC PATCH 0/3] initalise ff-a after finalising pKVM
2026-05-08 17:59 UTC (2+ messages)
[RFC PATCH v1 00/11] Landlock: Namespace and capability control
2026-05-08 15:54 UTC (9+ messages)
` [RFC PATCH v1 05/11] landlock: Enforce namespace entry restrictions
` [RFC PATCH v1 06/11] landlock: Enforce capability restrictions
` [RFC PATCH v1 11/11] landlock: Add documentation for capability and namespace restrictions
[RFC PATCH v4 00/19] Support socket access-control
2026-05-08 13:29 UTC (6+ messages)
` [RFC PATCH v4 01/19] landlock: "
[GIT PULL] selinux/selinux-pr-20260507
2026-05-08 0:30 UTC (2+ messages)
[PATCH v4 0/7] landlock: Add UDP access control support
2026-05-07 22:11 UTC (3+ messages)
[PATCH] Documentation: fix typo and formattting in security/credentials.rst
2026-05-07 19:35 UTC (5+ messages)
[PATCH v3 0/2] Delete task_euid()
2026-05-07 12:03 UTC (5+ messages)
` [PATCH v3 1/2] rust: task: clarify comments on task UID accessors
` [PATCH v3 2/2] cred: delete task_euid()
[PATCH] lockdown: remove useless decrement operation
2026-05-07 9:38 UTC (3+ messages)
page: | prev (newer) | latest
- recent:[subjects (threaded)|topics (new)|topics (active)]
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox