kernel-hardening.lists.openwall.com archive mirror
 help / color / mirror / Atom feed
Self introduction
 2021-09-19 20:44 UTC 

[ANNOUNCE][CFP] Linux Security Summit 2021
 2021-09-14  2:44 UTC  (4+ messages)

Landlock news #1
 2021-09-02 16:13 UTC 

[RFC PATCH v2 00/19] PKS write protected page tables
 2021-09-02 13:56 UTC  (35+ messages)
` [RFC PATCH v2 01/19] list: Support getting most recent element in list_lru
` [RFC PATCH v2 02/19] list: Support list head not in object for list_lru
` [RFC PATCH v2 03/19] x86/mm/cpa: Add grouped page allocations
` [RFC PATCH v2 04/19] mm: Explicitly zero page table lock ptr
` [RFC PATCH v2 05/19] x86, mm: Use cache of page tables
` [RFC PATCH v2 06/19] x86/mm/cpa: Add perm callbacks to grouped pages
` [RFC PATCH v2 07/19] x86/cpufeatures: Add feature for pks tables
` [RFC PATCH v2 08/19] x86/mm/cpa: Add get_grouped_page_atomic()
` [RFC PATCH v2 09/19] x86/mm: Support GFP_ATOMIC in alloc_table_node()
` [RFC PATCH v2 10/19] x86/mm: Use alloc_table() for fill_pte(), etc
` [RFC PATCH v2 11/19] mm/sparsemem: Use alloc_table() for table allocations
` [RFC PATCH v2 12/19] x86/mm: Use free_table in unmap path
` [RFC PATCH v2 13/19] mm/debug_vm_page_table: Use setters instead of WRITE_ONCE
` [RFC PATCH v2 14/19] x86/efi: Toggle table protections when copying
` [RFC PATCH v2 15/19] x86/mm/cpa: Add set_memory_pks()
` [RFC PATCH v2 16/19] x86/mm: Protect page tables with PKS
` [RFC PATCH v2 17/19] x86/mm/cpa: PKS protect direct map page tables
` [RFC PATCH v2 18/19] x86/mm: Add PKS table soft mode
` [RFC PATCH v2 19/19] x86/mm: Add PKS table debug checking

[PATCH v11 5/9] Reimplement RLIMIT_MSGQUEUE on top of ucounts
 2021-08-24  3:24 UTC  (9+ messages)
        ` [PATCH] ucounts: Fix regression preventing increasing of rlimits in init_user_ns

forkat(int pidfd), execveat(int pidfd), other awful things?
 2021-08-03  6:00 UTC  (11+ messages)
    ` Leveraging pidfs for process creation without fork

[PATCH v8 3/8] security/brute: Detect a brute force attack
 2021-07-05 12:52 UTC  (6+ messages)

[PATCH 1/2] seq_buf: fix overflow in seq_buf_putmem_hex()
 2021-06-26  3:21 UTC  (2+ messages)
` [PATCH 2/2] seq_buf: Make trace_seq_putmem_hex() support data longer than 8

[PATCH 1/2] seq_buf: fix overflow when length is bigger than 8
 2021-06-26  0:57 UTC  (4+ messages)
` [PATCH 2/2] seq_buf: Make trace_seq_putmem_hex() support data longer "
  ` 回复: [PATCH 1/2] seq_buf: fix overflow when length is bigger "

[PATCH] seq_buf: let seq_buf_putmem_hex support len larger than 8
 2021-06-25 13:27 UTC  (7+ messages)

[PATCH v4] bpf: core: fix shift-out-of-bounds in ___bpf_prog_run
 2021-06-17 10:09 UTC  (18+ messages)
                          ` [PATCH v5] "

[PATCH v8 0/8] Fork brute force attack mitigation
 2021-06-11 15:41 UTC  (13+ messages)
` [PATCH v8 1/8] security: Add LSM hook at the point where a task gets a fatal signal
` [PATCH v8 2/8] security/brute: Define a LSM and add sysctl attributes
` [PATCH v8 3/8] security/brute: Detect a brute force attack
` [PATCH v8 4/8] security/brute: Mitigate "
` [PATCH v8 5/8] security/brute: Notify to userspace "task killed"
` [PATCH v8 6/8] selftests/brute: Add tests for the Brute LSM
` [PATCH v8 7/8] Documentation: Add documentation "
` [PATCH v8 8/8] MAINTAINERS: Add a new entry "

KASAN: use-after-free Read in hci_chan_del
 2021-06-08  8:53 UTC  (7+ messages)
` [syzbot] "

[PATCH v11 0/9] Count rlimits in each user namespace
 2021-06-02 20:37 UTC  (15+ messages)
` [PATCH v11 1/9] Increase size of ucounts to atomic_long_t
` [PATCH v11 2/9] Add a reference to ucounts for each cred
` [PATCH v11 3/9] Use atomic_t for ucounts reference counting
` [PATCH v11 4/9] Reimplement RLIMIT_NPROC on top of ucounts
    ` [PATCH] ucounts: Silence warning in dec_rlimit_ucounts
` [PATCH v11 5/9] Reimplement RLIMIT_MSGQUEUE on top of ucounts
` [PATCH v11 6/9] Reimplement RLIMIT_SIGPENDING "
` [PATCH v11 7/9] Reimplement RLIMIT_MEMLOCK "
` [PATCH v11 8/9] kselftests: Add test to check for rlimit changes in different user namespaces
` [PATCH v11 9/9] ucounts: Set ucount_max to the largest positive value the type can hold

[PATCH v7 0/7] Fork brute force attack mitigation
 2021-05-23 15:47 UTC  (12+ messages)
` [PATCH v7 1/7] security: Add LSM hook at the point where a task gets a fatal signal
` [PATCH v7 2/7] security/brute: Define a LSM and add sysctl attributes
` [PATCH v7 3/7] security/brute: Detect a brute force attack
` [PATCH v7 4/7] security/brute: Mitigate "
` [PATCH v7 5/7] selftests/brute: Add tests for the Brute LSM
` [PATCH v7 6/7] Documentation: Add documentation "
` [PATCH v7 7/7] MAINTAINERS: Add a new entry "

[PATCH RFC 0/9] PKS write protected page tables
 2021-05-10 19:38 UTC  (32+ messages)
` [PATCH RFC 1/9] list: Support getting most recent element in list_lru
` [PATCH RFC 2/9] list: Support list head not in object for list_lru
` [PATCH RFC 3/9] x86/mm/cpa: Add grouped page allocations
` [PATCH RFC 4/9] mm: Explicitly zero page table lock ptr
` [PATCH RFC 5/9] x86, mm: Use cache of page tables
` [PATCH RFC 6/9] x86/mm/cpa: Add set_memory_pks()
` [PATCH RFC 7/9] x86/mm/cpa: Add perm callbacks to grouped pages
` [PATCH RFC 8/9] x86, mm: Protect page tables with PKS
` [PATCH RFC 9/9] x86, cpa: PKS protect direct map page tables

New mailing list for Landlock LSM user space discussions
 2021-05-07 16:15 UTC 

[PATCH v10 6/9] Reimplement RLIMIT_SIGPENDING on top of ucounts
 2021-05-07  7:14 UTC  (10+ messages)
` 08ed4efad6: stress-ng.sigsegv.ops_per_sec -41.9% regression

[PATCH v34 00/13] Landlock LSM
 2021-04-23 15:22 UTC  (17+ messages)
` [PATCH v34 01/13] landlock: Add object management
` [PATCH v34 02/13] landlock: Add ruleset and domain management
` [PATCH v34 03/13] landlock: Set up the security framework and manage credentials
` [PATCH v34 04/13] landlock: Add ptrace restrictions
` [PATCH v34 05/13] LSM: Infrastructure management of the superblock
` [PATCH v34 06/13] fs,security: Add sb_delete hook
` [PATCH v34 07/13] landlock: Support filesystem access-control
` [PATCH v34 08/13] landlock: Add syscall implementations
` [PATCH v34 09/13] arch: Wire up Landlock syscalls
` [PATCH v34 10/13] selftests/landlock: Add user space tests
` [PATCH v34 11/13] samples/landlock: Add a sandbox manager example
` [PATCH v34 12/13] landlock: Add user and kernel documentation
` [PATCH v34 13/13] landlock: Enable user space to infer supported features

Notify special task kill using wait* functions
 2021-04-11  8:46 UTC  (7+ messages)

[PATCH v12 0/3] Add trusted_for(2) (was O_MAYEXEC)
 2021-04-09 17:15 UTC  (3+ messages)

page: 

This is a public inbox, see mirroring instructions
on how to clone and mirror all data and code used for this inbox