messages from 2024-03-07 15:39:05 to 2024-03-15 18:41:19 UTC [more...]
[RFC PATCH 2/2] selinux: wire up new execstack LSM hook
2024-03-15 18:41 UTC (5+ messages)
` [RFC PATCH 1/2] lsm: introduce new hook security_vm_execstack
[PATCH 01/10] capability: introduce new capable flag CAP_OPT_NOAUDIT_ONDENY
2024-03-15 18:30 UTC (18+ messages)
` [PATCH 02/10] capability: add any wrappers to test for multiple caps with exactly one audit message
` [PATCH 03/10] capability: use new capable_any functionality
` [PATCH 04/10] block: "
` [PATCH 05/10] drivers: "
` [PATCH 06/10] fs: "
` [PATCH 07/10] kernel: "
` [PATCH 08/10] net: "
` [PATCH 09/10] bpf: "
` [PATCH 10/10] coccinelle: add script for capable_any()
` [PATCH 00/10] Introduce capable_any()
[PATCH v10 0/9] Landlock: IOCTL support
2024-03-15 18:30 UTC (15+ messages)
` [PATCH v10 1/9] security: Create security_file_vfs_ioctl hook
` [RFC PATCH] fs: Add an use vfs_get_ioctl_handler()
` [PATCH v10 2/9] landlock: Add IOCTL access right for character and block devices
` [PATCH v10 3/9] selftests/landlock: Test IOCTL support
` [PATCH v10 4/9] selftests/landlock: Test IOCTL with memfds
` [PATCH v10 5/9] selftests/landlock: Test ioctl(2) and ftruncate(2) with open(O_PATH)
` [PATCH v10 6/9] selftests/landlock: Test IOCTLs on named pipes
` [PATCH v10 7/9] selftests/landlock: Check IOCTL restrictions for named UNIX domain sockets
` [PATCH v10 8/9] samples/landlock: Add support for LANDLOCK_ACCESS_FS_IOCTL_DEV
` [PATCH v10 9/9] landlock: Document IOCTL support
[PATCH] lsm: handle the NULL buffer case in lsm_fill_user_ctx()
2024-03-15 17:00 UTC (13+ messages)
[syzbot] [tomoyo?] [hfs?] general protection fault in tomoyo_check_acl (3)
2024-03-15 13:29 UTC (8+ messages)
` [syzbot] [hfs] "
[PATCH 2/2] apparmor: fix typo in kernel doc
2024-03-15 12:54 UTC (2+ messages)
` [PATCH 1/2] yama: document function parameter
[GIT PULL] lsm/lsm-pr-20240314
2024-03-14 23:17 UTC (4+ messages)
[GIT PULL] Landlock updates for v6.9
2024-03-14 23:14 UTC (2+ messages)
[PATCH] LSM: use 32 bit compatible data types in LSM syscalls
2024-03-14 18:18 UTC (15+ messages)
` [PATCH v2] "
` [PATCH v3] "
[PATCH v2 bpf-next 0/9] add new acquire/release BPF kfuncs
2024-03-13 21:05 UTC (13+ messages)
[GIT PULL] selinux/selinux-pr-20240312
2024-03-13 3:14 UTC (2+ messages)
[GIT PULL] lsm/lsm-pr-20240312
2024-03-13 3:14 UTC (2+ messages)
[PATCH] integrity: don't throw an error immediately when failed to add a cert to the .machine keyring
2024-03-13 2:37 UTC (6+ messages)
` [PATCH v2] integrity: eliminate unnecessary "Problem loading X.509 certificate" msg
[PATCH v15 00/11] LSM: Three basic syscalls
2024-03-12 23:17 UTC (14+ messages)
` [PATCH v15 05/11] LSM: Create lsm_list_modules system call
[GIT PULL] Smack patches for 6.9
2024-03-12 22:24 UTC (2+ messages)
[RFC PATCH v14 00/19] Integrity Policy Enforcement LSM (IPE)
2024-03-12 20:07 UTC (17+ messages)
` [RFC PATCH v14 01/19] security: add ipe lsm
` [RFC PATCH v14 05/19] initramfs|security: Add a security hook to do_populate_rootfs()
` [RFC PATCH v14 15/19] fsverity: consume builtin signature via LSM hook
[PATCH RFC 0/8] Clavis LSM
2024-03-12 15:18 UTC (17+ messages)
` [PATCH RFC 1/8] certs: Introduce ability to link to a system key
` [EXTERNAL] "
` [PATCH RFC 2/8] clavis: Introduce a new system keyring called clavis
` [PATCH RFC 3/8] efi: Make clavis boot param persist across kexec
` [PATCH RFC 4/8] clavis: Prevent clavis boot param from changing during kexec
` [PATCH RFC 5/8] keys: Add new verification type (VERIFYING_CLAVIS_SIGNATURE)
` [PATCH RFC 6/8] keys: Add ability to track intended usage of the public key
` [PATCH RFC 7/8] clavis: Introduce a new key type called clavis_key_acl
` [PATCH RFC 8/8] clavis: Introduce new LSM called clavis
[PATCH v2 0/7] Handle faults in KUnit tests
2024-03-12 12:15 UTC (19+ messages)
` [PATCH v2 1/7] kunit: Handle thread creation error
` [PATCH v2 2/7] kunit: Fix kthread reference
` [PATCH v2 3/7] kunit: Fix timeout message
` [PATCH v2 4/7] kunit: Handle test faults
` [PATCH v2 5/7] kunit: Fix KUNIT_SUCCESS() calls in iov_iter tests
` [PATCH v2 6/7] kunit: Print last test location on fault
` [PATCH v2 7/7] kunit: Add tests for fault
[PATCH v9 1/8] landlock: Add IOCTL access right
2024-03-12 10:58 UTC (25+ messages)
` [RFC PATCH] fs: Add vfs_masks_device_ioctl*() helpers
[PATCH v5 0/6] DCP as trusted keys backend
2024-03-11 20:07 UTC (14+ messages)
` [PATCH v6 1/6] crypto: mxs-dcp: Add support for hardware-bound keys
` [PATCH v6 2/6] KEYS: trusted: improve scalability of trust source config
` [PATCH v6 3/6] KEYS: trusted: Introduce NXP DCP-backed trusted keys
` [PATCH v6 4/6] MAINTAINERS: add entry for DCP-based "
` [PATCH v6 5/6] docs: document DCP-backed trusted keys kernel params
` [PATCH v6 6/6] docs: trusted-encrypted: add DCP as new trust source
[RFC][PATCH 0/8] ima: Integrate with digest_cache LSM
2024-03-11 14:00 UTC (22+ messages)
` [RFC][PATCH 2/8] ima: Nest iint mutex for DIGEST_LIST_CHECK hook
` [RFC][PATCH 3/8] ima: Add digest_cache policy keyword
` [RFC][PATCH 4/8] ima: Add digest_cache_measure and digest_cache_appraise boot-time policies
` [RFC][PATCH 5/8] ima: Record IMA verification result of digest lists in digest cache
` [RFC][PATCH 6/8] ima: Use digest cache for measurement
` [RFC][PATCH 8/8] ima: Detect if digest cache changed since last measurement/appraisal
[syzbot] [reiserfs?] possible deadlock in reiserfs_dirty_inode
2024-03-10 0:54 UTC (2+ messages)
[RFC 0/9] Nginx refcount scalability issue with Apparmor enabled and potential solutions
2024-03-08 20:09 UTC (5+ messages)
[PATCH] xattr: restrict vfs_getxattr_alloc() allocation size
2024-03-07 20:03 UTC (3+ messages)
[PATCH v39 00/42] LSM: General module stacking
2024-03-07 17:36 UTC (6+ messages)
` [PATCH v39 04/42] IMA: avoid label collisions with stacked LSMs
[PATCH] landlock: Use f_cred in security_file_open() hook
2024-03-07 17:54 UTC (2+ messages)
page: next (older) | prev (newer) | latest
- recent:[subjects (threaded)|topics (new)|topics (active)]
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).