messages from 2024-03-31 15:42:12 to 2024-04-12 08:53:57 UTC [more...]
[PATCH bpf-next v3 00/11] Add check for bpf lsm return value
2024-04-12 8:53 UTC (13+ messages)
` [PATCH bpf-next v3 01/11] bpf, lsm: Annotate lsm hook return value range
` [PATCH bpf-next v3 02/11] bpf, lsm: Add helper to read "
` [PATCH bpf-next v3 03/11] bpf, lsm: Check bpf lsm hook return values in verifier
` [PATCH bpf-next v3 04/11] bpf, lsm: Add bpf lsm disabled hook list
` [PATCH bpf-next v3 05/11] bpf: Avoid progs for different hooks calling each other with tail call
` [PATCH bpf-next v3 06/11] bpf: Fix compare error in function retval_range_within
` [PATCH bpf-next v3 07/11] bpf: Fix a false rejection caused by AND operation
` [PATCH bpf-next v3 08/11] selftests/bpf: Avoid load failure for token_lsm.c
` [PATCH bpf-next v3 09/11] selftests/bpf: Add return value checks for failed tests
` [PATCH bpf-next v3 10/11] selftests/bpf: Add test for lsm tail call
` [PATCH bpf-next v3 11/11] selftests/bpf: Add verifier tests for bpf lsm
[PATCH v8 0/6] DCP as trusted keys backend
2024-04-12 6:26 UTC (14+ messages)
` [PATCH v8 1/6] crypto: mxs-dcp: Add support for hardware-bound keys
` [PATCH v8 2/6] KEYS: trusted: improve scalability of trust source config
` [PATCH v8 3/6] KEYS: trusted: Introduce NXP DCP-backed trusted keys
` [EXT] "
` [PATCH v8 4/6] MAINTAINERS: add entry for DCP-based "
` [PATCH v8 5/6] docs: document DCP-backed trusted keys kernel params
` [PATCH v8 6/6] docs: trusted-encrypted: add DCP as new trust source
` [EXT] "
[PATCH net] netlabel: fix RCU annotation for IPv4 options on socket creation
2024-04-11 19:47 UTC (5+ messages)
[PATCH v3 00/12] Implement Trusted Security Event Modeling
2024-04-11 18:13 UTC (17+ messages)
` [PATCH v3 01/12] Update MAINTAINERS file
` [PATCH v3 02/12] Add TSEM specific documentation
` [PATCH v3 03/12] TSEM global declarations
` [PATCH v3 04/12] Add primary TSEM implementation file
` [PATCH v3 05/12] Add root domain trust implementation
` [PATCH v3 06/12] Implement TSEM control plane
` [PATCH v3 07/12] Add namespace implementation
` [PATCH v3 08/12] Add security event description export facility
` [PATCH v3 09/12] Add event processing implementation
` [PATCH v3 10/12] Implement security event mapping
` [PATCH v3 11/12] Implement the internal Trusted Modeling Agent
` [PATCH v3 12/12] Activate the configuration and build of the TSEM LSM
[RFC PATCH v1 00/10] Socket type control for Landlock
2024-04-11 15:58 UTC (16+ messages)
` [RFC PATCH v1 01/10] landlock: Support socket access-control
` [RFC PATCH v1 02/10] landlock: Add hook on socket_create()
` [RFC PATCH v1 03/10] selftests/landlock: Create 'create' test
` [RFC PATCH v1 04/10] selftests/landlock: Create 'socket_access_rights' test
` [RFC PATCH v1 05/10] selftests/landlock: Create 'rule_with_unknown_access' test
` [RFC PATCH v1 06/10] selftests/landlock: Create 'rule_with_unhandled_access' test
` [RFC PATCH v1 07/10] selftests/landlock: Create 'inval' test
` [RFC PATCH v1 08/10] selftests/landlock: Create 'ruleset_overlap' test
` [RFC PATCH v1 09/10] selftests/landlock: Create 'ruleset_with_unknown_access' test
` [RFC PATCH v1 10/10] samples/landlock: Support socket protocol restrictions
Hardcoded security module suggestion - stop the stacking insanity
2024-04-11 10:33 UTC (8+ messages)
[PATCH v9 3/4] security: Replace indirect LSM hook calls with static calls
2024-04-11 7:12 UTC (3+ messages)
[PATCH v9 4/4] bpf: Only enable BPF LSM hooks when an LSM program is attached
2024-04-11 0:38 UTC (2+ messages)
[PATCH v2] landlock: Add abstract unix socket connect restrictions
2024-04-10 22:24 UTC (3+ messages)
[PATCH bpf-next v2 0/7] Add check for bpf lsm return value
2024-04-10 12:34 UTC (7+ messages)
` [PATCH bpf-next v2 2/7] bpf, lsm: Add return value range description for lsm hook
[PATCH v3 00/10] evm: Support signatures on stacked filesystem
2024-04-09 21:29 UTC (2+ messages)
[GIT PULL] security changes for v6.9-rc3
2024-04-09 20:14 UTC (12+ messages)
[PATCH v3 1/2] proc: restrict /proc/pid/mem access via param knobs
2024-04-09 17:57 UTC (2+ messages)
` [PATCH v3 2/2] proc: add Kconfigs to restrict /proc/pid/mem access
[PATCH v4 RESEND 0/7] Handle faults in KUnit tests
2024-04-09 17:28 UTC (9+ messages)
` [PATCH v4 RESEND 1/7] kunit: Handle thread creation error
` [PATCH v4 RESEND 2/7] kunit: Fix kthread reference
` [PATCH v4 RESEND 3/7] kunit: Fix timeout message
` [PATCH v4 RESEND 4/7] kunit: Handle test faults
` [PATCH v4 RESEND 5/7] kunit: Fix KUNIT_SUCCESS() calls in iov_iter tests
` [PATCH v4 RESEND 6/7] kunit: Print last test location on fault
` [PATCH v4 RESEND 7/7] kunit: Add tests for fault
[PATCH 0/7] sysctl: Remove sentinel elements from misc directories
2024-04-09 16:59 UTC (7+ messages)
` [PATCH 1/7] memory: Remove the now superfluous sentinel element from ctl_table array
` [PATCH 3/7] crypto: "
[PATCH v14 00/12] Landlock: IOCTL support
2024-04-09 12:11 UTC (16+ messages)
` [PATCH v14 01/12] fs: Return ENOTTY directly if FS_IOC_GETUUID or FS_IOC_GETFSSYSFSPATH fail
` (subset) "
` [PATCH v14 02/12] landlock: Add IOCTL access right for character and block devices
` [PATCH v14 03/12] selftests/landlock: Test IOCTL support
` [PATCH v14 04/12] selftests/landlock: Test IOCTL with memfds
` [PATCH v14 05/12] selftests/landlock: Test ioctl(2) and ftruncate(2) with open(O_PATH)
` [PATCH v14 06/12] selftests/landlock: Test IOCTLs on named pipes
` [PATCH v14 07/12] selftests/landlock: Check IOCTL restrictions for named UNIX domain sockets
` [PATCH v14 08/12] selftests/landlock: Exhaustive test for the IOCTL allow-list
` [PATCH v14 09/12] samples/landlock: Add support for LANDLOCK_ACCESS_FS_IOCTL_DEV
` [PATCH v14 10/12] landlock: Document IOCTL support
` [PATCH v14 11/12] MAINTAINERS: Notify Landlock maintainers about changes to fs/ioctl.c
` [PATCH v14 12/12] fs/ioctl: Add a comment to keep the logic in sync with LSM policies
[PATCH 0/2] Forbid illegitimate binding via listen(2)
2024-04-08 9:47 UTC (3+ messages)
` [PATCH 1/2] landlock: Add hook on socket_listen()
` [PATCH 2/2] selftests/landlock: Create 'listen_zero', 'deny_listen_zero' tests
[PATCH v4] Add test for io_uring openat access control with Landlock rules
2024-04-04 21:16 UTC
[PATCH v13 00/10] Landlock: IOCTL support
2024-04-05 21:44 UTC (11+ messages)
` [PATCH v13 01/10] landlock: Add IOCTL access right for character and block devices
[PATCH v4 0/7] Handle faults in KUnit tests
2024-04-05 18:35 UTC (4+ messages)
[PATCH v5][next] integrity: Avoid -Wflex-array-member-not-at-end warnings
2024-04-05 14:17 UTC (5+ messages)
[PATCH 1/1] mm: change inlined allocation helpers to account at the call site
2024-04-05 13:53 UTC (14+ messages)
[PATCH RFC 0/8] Clavis LSM
2024-04-05 12:56 UTC (4+ messages)
` [PATCH RFC 1/8] certs: Introduce ability to link to a system key
[PATCH v3] selftests/landlock: Add tests for io_uring openat access control with Landlock rules
2024-04-04 13:08 UTC (3+ messages)
` (no subject)
[RESEND][PATCH v3] security: Place security_path_post_mknod() where the original IMA call was
2024-04-03 22:21 UTC (5+ messages)
Subject: [PATCH] Add test for more file systems in landlock - ext4
2024-04-03 16:32 UTC (4+ messages)
[PATCH v2] landlock: Use kmem for landlock_object
2024-04-03 16:09 UTC (6+ messages)
[PATCH v3] security: Place security_path_post_mknod() where the original IMA call was
2024-04-03 14:58 UTC (3+ messages)
[PATCH v16 00/20] Integrity Policy Enforcement LSM (IPE)
2024-04-03 5:10 UTC (5+ messages)
` [PATCH v16 16/20] fsverity: consume fsverity built-in signatures via LSM hook
` [PATCH v16 17/20] ipe: enable support for fs-verity as a trust provider
[GIT PULL] selinux/selinux-pr-20240402
2024-04-03 3:16 UTC (2+ messages)
general protection fault in security_inode_getattr
2024-04-02 16:01 UTC (3+ messages)
[GIT PULL] security changes for v6.9-rc3
2024-04-02 12:15 UTC (2+ messages)
[PATCH v2] security: Handle dentries without inode in security_path_post_mknod()
2024-04-02 8:18 UTC
[PATCH v16 15/20] security: add security_inode_setintegrity() hook
2024-04-02 1:26 UTC (2+ messages)
[PATCH v16 14/20] ipe: add support for dm-verity as a trust provider
2024-04-02 1:26 UTC (2+ messages)
[PATCH v16 13/20] dm verity: consume root hash digest and signature data via LSM hook
2024-04-02 1:26 UTC (2+ messages)
[PATCH v16 11/20] block|security: add LSM blob to block_device
2024-04-02 1:26 UTC (2+ messages)
[PATCH] landlock: Use kmem for object, rule, and hierarchy structures
2024-04-01 20:15 UTC
[PATCH v4][next] integrity: Avoid -Wflex-array-member-not-at-end warnings
2024-04-01 18:42 UTC
[PATCH v1 1/2] lsm: Check and handle error priority for socket_bind and socket_connect
2024-03-29 21:34 UTC (8+ messages)
page: next (older) | prev (newer) | latest
- recent:[subjects (threaded)|topics (new)|topics (active)]
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).