messages from 2026-05-22 22:05:59 to 2026-05-29 18:03:29 UTC [more...]
[PATCH 00/11] hornet: security, tooling and selftest fixes
2026-05-29 18:03 UTC (15+ messages)
` [PATCH 01/11] hornet: fix TOCTOU in signed program verification
` [PATCH 02/11] hornet: invert map set check logic
` [PATCH 03/11] hornet: fix off-by-one bug in max used maps check
` [PATCH 04/11] selftests: hornet: handle cross compilation and test skipping
` [PATCH 05/11] hornet: gen_sig: fix off-by-one check for used maps
` [PATCH 06/11] hornet: gen_sig: fix error string allocations
` [PATCH 07/11] hornet: gen_sig: check for bad allocations
` [PATCH 08/11] hornet: gen_sig: fix missing command line switches
` [PATCH 09/11] hornet: scripts: set a non-zero error code for usage
` [PATCH 10/11] hornet: scripts: harden scripts to handle trailing whitespace
` [PATCH 11/11] hornet: scripts: Improve argument handling and error messages
[PATCH bpf v3 0/2] gen_loader fixes
2026-05-29 15:01 UTC (7+ messages)
` [PATCH bpf v3 2/2] bpf, libbpf: reject non-exclusive metadata maps in the signed loader
[PATCH v5 00/13] ima: Introduce staging mechanism
2026-05-29 14:59 UTC (12+ messages)
` [PATCH v5 11/13] ima: Support staging and deleting N measurements entries
` [PATCH v5 12/13] ima: Return error on deleting measurements already copied during kexec
` [PATCH v5 13/13] doc: security: Add documentation of the IMA staging mechanism
[PATCH] tpm-buf: memory-safe allocations
2026-05-29 14:08 UTC (5+ messages)
[PATCH v4 0/2] Delete task_euid()
2026-05-29 12:17 UTC (4+ messages)
` [PATCH v4 1/2] rust: task: clarify comments on task UID accessors
` [PATCH v4 2/2] cred: delete task_euid()
[REPORT] landlock: SCOPE_SIGNAL bypass via F_SETOWN to invoker pgid -> SIGIO/SIGKILL to non-sandboxed targets
2026-05-29 11:08 UTC (2+ messages)
[PATCH] KEYS: Use acquire when reading state in keyring search
2026-05-29 3:34 UTC
[BUG] apparmor: AA_BUG aa_policy_destroy on aa_alloc_profile error path
2026-05-29 3:32 UTC
[PATCH] landlock: fix LANDLOCK_SCOPE_SIGNAL bypass via F_SETOWN to invoker's pgid
2026-05-29 3:25 UTC (2+ messages)
[PATCH v9 0/9] Implement LANDLOCK_ADD_RULE_QUIET
2026-05-29 2:34 UTC (12+ messages)
` [PATCH v9 1/9] landlock: Add a place for flags to layer rules
` [PATCH v9 2/9] landlock: Add API support and docs for the quiet flags
` [PATCH v9 3/9] landlock: Suppress logging when quiet flag is present
` [PATCH v9 4/9] samples/landlock: Add quiet flag support to sandboxer
` [PATCH v9 5/9] selftests/landlock: Replace hard-coded 16 with a constant
` [PATCH v9 6/9] selftests/landlock: add tests for quiet flag with fs rules
` [PATCH v9 7/9] selftests/landlock: add tests for quiet flag with net rules
` [PATCH v9 8/9] selftests/landlock: Add tests for quiet flag with scope
` [PATCH v9 9/9] selftests/landlock: Add tests for invalid use of quiet flag
[PATCH v8 00/10] Implement LANDLOCK_ADD_RULE_NO_INHERIT
2026-05-29 1:52 UTC (11+ messages)
` [PATCH v8 01/10] landlock: Add landlock_walk_path_up() helper
` [PATCH v8 02/10] landlock: Use landlock_walk_path_up() in is_access_to_paths_allowed()
` [PATCH v8 03/10] landlock: Use landlock_walk_path_up() in collect_domain_accesses()
` [PATCH v8 04/10] landlock: Add LANDLOCK_ADD_RULE_NO_INHERIT user API
` [PATCH v8 05/10] landlock: Return inserted rule from landlock_insert_rule()
` [PATCH v8 06/10] landlock: Implement LANDLOCK_ADD_RULE_NO_INHERIT
` [PATCH v8 07/10] landlock: Add documentation for LANDLOCK_ADD_RULE_NO_INHERIT
` [PATCH v8 08/10] samples/landlock: Add LANDLOCK_ADD_RULE_NO_INHERIT to landlock-sandboxer
` [PATCH v8 09/10] selftests/landlock: Add selftests for LANDLOCK_ADD_RULE_NO_INHERIT
` [PATCH v8 10/10] landlock: Add KUnit tests "
[PATCH v5 0/8] lsm: Replace security_sb_mount with granular mount hooks
2026-05-28 18:26 UTC (9+ messages)
` [PATCH v5 1/8] lsm: Add "
` [PATCH v5 2/8] apparmor: Remove redundant MS_MGC_MSK stripping in apparmor_sb_mount
` [PATCH v5 3/8] apparmor: Convert from sb_mount to granular mount hooks
` [PATCH v5 4/8] selinux: "
` [PATCH v5 5/8] landlock: "
` [PATCH v5 6/8] tomoyo: "
` [PATCH v5 7/8] vfs: Replace security_sb_mount/security_move_mount with granular hooks
` [PATCH v5 8/8] lsm: Remove security_sb_mount and security_move_mount
[PATCH 6.12.y] landlock: Fix TCP handling of short AF_UNSPEC addresses
2026-05-28 12:14 UTC
[PATCH net v2] netlabel: validate unlabeled mask attribute length
2026-05-28 1:59 UTC
[PATCH v3] security: Expand task_setscheduler LSM hook to include CPU affinity mask
2026-05-28 1:19 UTC (8+ messages)
[PATCH v4 0/7] lsm: Replace security_sb_mount with granular mount hooks
2026-05-27 21:08 UTC (6+ messages)
` [PATCH v4 1/7] lsm: Add granular mount hooks to replace security_sb_mount
[PATCH v2 0/9] Landlock: Namespace and capability control
2026-05-27 18:11 UTC (10+ messages)
` [PATCH v2 1/9] security: add LSM blob and hooks for namespaces
` [PATCH v2 2/9] security: Add LSM_AUDIT_DATA_NS for namespace audit records
` [PATCH v2 3/9] landlock: Wrap per-layer access masks in struct layer_config
` [PATCH v2 4/9] landlock: Enforce namespace use restrictions
` [PATCH v2 5/9] landlock: Enforce capability restrictions
` [PATCH v2 6/9] selftests/landlock: Add namespace restriction tests
` [PATCH v2 7/9] selftests/landlock: Add capability "
` [PATCH v2 8/9] samples/landlock: Add capability and namespace restriction support
` [PATCH v2 9/9] landlock: Add documentation for capability and namespace restrictions
security_task_prctl: why -ENOSYS
2026-05-27 16:05 UTC (4+ messages)
[PATCH v4 0/3] introduce IMA_INIT_LATE_SYNC option
2026-05-27 14:44 UTC (6+ messages)
` [PATCH v4 1/3] security: lsm: Allow LSMs to register for late_initcall_sync init
` [PATCH v4 2/3] security: ima: introduce IMA_INIT_LATE_SYNC option
` [PATCH v4 3/3] tpm: tpm_crb_ffa: revert defered_probed when tpm_crb_ffa is built-in
[PATCH] firmware: arm_ffa: Treat missing FF-A feature on a platform as a probe miss
2026-05-27 9:16 UTC (5+ messages)
[syzbot] Monthly lsm report (May 2026)
2026-05-27 4:32 UTC
[PATCH v8 0/9] Implement LANDLOCK_ADD_RULE_QUIET
2026-05-27 1:07 UTC (14+ messages)
` [PATCH v8 1/9] landlock: Add a place for flags to layer rules
` [PATCH v8 2/9] landlock: Add API support and docs for the quiet flags
` [PATCH v8 3/9] landlock: Suppress logging when quiet flag is present
[PATCH] tomoyo: Fix NULL pointer dereference in tomoyo_init_request_info() when domain is NULL
2026-05-27 0:57 UTC (5+ messages)
[PATCH v2 2/2] security: smack: fix spelling mistake
2026-05-26 21:52 UTC (2+ messages)
[PATCH v2 00/17] Landlock tracepoints
2026-05-26 21:34 UTC (5+ messages)
` [PATCH v2 06/17] landlock: Add create_ruleset and free_ruleset tracepoints
` [PATCH v2 10/17] landlock: Set audit_net.sk for socket access checks
[PATCH bpf-next 00/13] Signed BPF + IPE Policies
2026-05-26 16:23 UTC (17+ messages)
` [PATCH bpf-next 05/13] bpf: compute prog->digest at BPF_PROG_LOAD entry
` [PATCH bpf-next 06/13] bpf: resolve loader-style kfunc CALLs against prog BTF
` [PATCH bpf-next 09/13] lsm: add bpf_prog_load_post_integrity hook
[PATCH RESEND 0/1] yama: clean-up ptrace relations upon activating YAMA_SCOPE_NO_ATTACH
2026-05-26 15:35 UTC (2+ messages)
` [PATCH RESEND 1/1] "
[PATCH v5 00/14] module: Introduce hash-based integrity checking
2026-05-26 13:14 UTC (14+ messages)
` [PATCH v5 06/14] module: Switch load_info::len to size_t
` [PATCH v5 07/14] module: Make module authentication usable without MODULE_SIG
` [PATCH v5 08/14] module: Move authentication logic into dedicated new file
` [PATCH v5 09/14] module: Move signature type check out of mod_check_sig()
` [PATCH v5 10/14] module: Prepare for additional module authentication mechanisms
[net-next] netlabel: validate unlabeled mask attribute length
2026-05-26 10:35 UTC (2+ messages)
[PATCH 0/4] firmware: arm_ffa: Move core init to platform driver probe
2026-05-26 9:41 UTC (8+ messages)
` [PATCH 2/4] firmware: arm_ffa: Register core as a platform driver
[PATCH 00/11] Convert moduleparams to seq_buf
2026-05-26 6:53 UTC (13+ messages)
` [PATCH 03/11] moduleparam: Add DEFINE_KERNEL_PARAM_OPS macro family
` [PATCH 04/11] treewide: Convert struct kernel_param_ops initializers to DEFINE_KERNEL_PARAM_OPS
` [PATCH 06/11] moduleparam: Add seq_buf-based .get callback alongside .get_str
` [PATCH 07/11] moduleparam: Route DEFINE_KERNEL_PARAM_OPS get pointer via _Generic
` [PATCH 08/11] params: Convert generic kernel_param_ops .get helpers to seq_buf
[bug report] keys: request_key_auth payload use-after-free in keyctl_instantiate_key_common()
2026-05-26 2:50 UTC (2+ messages)
[PATCH] keys: Pin request_key_auth payload in instantiate paths
2026-05-26 2:48 UTC
[PATCH v2 1/2] security: apparmor: fix two spelling mistakes
2026-05-26 1:38 UTC
[PATCH] apparmor: fix use-after-free in rawdata dedup loop
2026-05-25 22:04 UTC
[PATCH v4 0/7] landlock: Add UDP access control support
2026-05-25 20:28 UTC (2+ messages)
[net-next] netlabel: fix IPv6 unlabeled address add error handling
2026-05-25 19:10 UTC (2+ messages)
[PATCH] Fix various spelling mistakes
2026-05-25 16:06 UTC (2+ messages)
[PATCH v8 0/3]
2026-05-24 23:43 UTC (7+ messages)
` [PATCH v8 1/3] lib/asn1_encoder: Add asn1_encode_integer_bytes()
` [PATCH v8 2/3] crypto: Migrate TPMKey ASN.1 objects from trusted-keys
` [PATCH v8 3/3] keys: asymmetric: tpm2_asymmetric
[PATCH 0/2] smack: restrict smackfs/{direct,mapped} values to 0-255
2026-05-24 22:37 UTC (3+ messages)
` [PATCH 1/2] smack: deduplicate smackfs/{direct,mapped} file_operations
` [PATCH 2/2] smack: restrict smackfs/{direct,mapped} values to 0-255
[PATCH] apparmor: Constify 'nulldfa_src' and 'stacksplitdfa_src' arrays
2026-05-24 11:34 UTC
[PATCH net v2 0/4] net: trust-after-modification fixes for IPv4 options + netlabel
2026-05-24 4:14 UTC (3+ messages)
` [PATCH net v2 3/4] netlabel: validate CALIPSO option against skb tail in netlbl_skbuff_getattr
` [PATCH net v2 4/4] netlabel: validate CIPSO "
[RFC PATCH] ipe: support multiple BPF integrity verification LSMs
2026-05-24 0:39 UTC (3+ messages)
[PATCH] lsm,bpf: fix security_bpf_prog_load() error handling
2026-05-23 17:44 UTC (6+ messages)
[PATCH] crypto: pkcs7: export verify_pkcs7_message_sig() as EXPORT_SYMBOL_GPL
2026-05-23 15:57 UTC
[PATCH 09/11] treewide: Convert custom kernel_param_ops .get callbacks to seq_buf via cocci
2026-05-23 0:45 UTC (2+ messages)
[PATCH bpf v3 1/2] libbpf: fix off-by-one in emit_signature_match jump offset
2026-05-22 22:41 UTC (2+ messages)
[PATCH v2 0/2] gen_loader fixes
2026-05-22 22:05 UTC (4+ messages)
` [PATCH v2 2/2] bpf, libbpf: reject non-exclusive metadata maps in the signed loader
page: next (older) | prev (newer) | latest
- recent:[subjects (threaded)|topics (new)|topics (active)]
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox