kernel-hardening.lists.openwall.com archive mirror
 help / color / mirror / Atom feed
[RFC PATCH] Early version of thread stack randomization
 2019-02-08 15:15 UTC  (6+ messages)
` [RFC PATCH] x86/entry/64: randomize kernel stack offset upon system call

[PATCH v6 00/27] x86: PIE support and option to extend KASLR randomization
 2019-02-07 23:55 UTC  (53+ messages)
` [PATCH v6 01/27] x86/crypto: Adapt assembly for PIE support
` [PATCH v6 02/27] x86: Use symbol name in jump table "
` [PATCH v6 03/27] x86: Add macro to get symbol address "
` [PATCH v6 04/27] x86: relocate_kernel - Adapt assembly "
` [PATCH v6 05/27] x86/entry/64: "
` [PATCH v6 06/27] x86: pm-trace - "
` [PATCH v6 07/27] x86/CPU: "
` [PATCH v6 08/27] x86/acpi: "
` [PATCH v6 09/27] x86/boot/64: "
` [PATCH v6 10/27] x86/power/64: "
` [PATCH v6 11/27] x86/paravirt: "
` [PATCH v6 12/27] x86/alternatives: "
` [PATCH v6 13/27] x86/boot/64: Build head64.c as mcmodel large when PIE is enabled
` [PATCH v6 14/27] x86/percpu: Adapt percpu for PIE support
` [PATCH v6 15/27] compiler: Option to default to hidden symbols
` [PATCH v6 16/27] compiler: Option to add PROVIDE_HIDDEN replacement for weak symbols
` [PATCH v6 17/27] x86/relocs: Handle PIE relocations
` [PATCH v6 18/27] xen: Adapt assembly for PIE support
` [PATCH v6 19/27] kvm: "
` [PATCH v6 20/27] x86: Support global stack cookie
` [PATCH v6 21/27] x86/ftrace: Adapt function tracing for PIE support
` [PATCH v6 22/27] x86/modules: Add option to start module section after kernel
` [PATCH v6 23/27] x86/modules: Adapt module loading for PIE support
` [PATCH v6 24/27] x86/mm: Make the x86 GOT read-only
` [PATCH v6 25/27] x86/pie: Add option to build the kernel as PIE
` [PATCH v6 26/27] x86/relocs: Add option to generate 64-bit relocations
` [PATCH v6 27/27] x86/kaslr: Add option to extend KASLR range from 1GB to 3GB

[PATCH 0/3] Minor bug fixes to leaking_addresses.pl
 2019-02-07 23:35 UTC  (5+ messages)
` [PATCH 1/3] leaking_addresses: Fix calls to dprint
` [PATCH 2/3] leaking_addresses: Completely remove --version flag
` [PATCH 3/3] leaking_addresses: Expand tilde in output file name

[PATCH 00/17] Merge text_poke fixes and executable lockdowns
 2019-02-07 18:20 UTC  (18+ messages)
` [PATCH 01/17] Fix "x86/alternatives: Lockdep-enforce text_mutex in text_poke*()"
` [PATCH 08/17] x86/ftrace: set trampoline pages as executable
` [PATCH 16/17] Plug in new special vfree flag
` [PATCH 17/17] module: Prevent module removal racing with text_poke()

[PATCH v2 0/3] admin-guide: extend perf-security with resource control, data categories and privileged users
 2019-02-07 13:32 UTC  (5+ messages)
` [PATCH v2 1/4] perf-security: document perf_events/Perf resource control
` [PATCH v2 2/4] perf-security: document collected perf_events/Perf data categories
` [PATCH v2 3/4] perf-security: elaborate on perf_events/Perf privileged users
` [PATCH v2 4/4] perf-security: wrap paragraphs on 72 columns

[PATCH v1 0/3] admin-guide: extend perf-security with resource control, data categories and privileged users
 2019-02-07 13:14 UTC  (8+ messages)
` [PATCH v1 1/3] perf-security: document perf_events/Perf resource control
` [PATCH v1 2/3] perf-security: document collected perf_events/Perf data categories
` [PATCH v1 3/3] perf-security: document perf_events/Perf resource control

[PATCH v2] KVM: x86: Fix single-step debugging
 2019-02-05 22:55 UTC  (6+ messages)

[PATCH v2 00/20] Merge text_poke fixes and executable lockdowns
 2019-02-05 17:54 UTC  (35+ messages)
` [PATCH v2 01/20] Fix "x86/alternatives: Lockdep-enforce text_mutex in text_poke*()"
` [PATCH v2 02/20] x86/jump_label: Use text_poke_early() during early init
` [PATCH v2 03/20] x86/mm: temporary mm struct
` [PATCH v2 04/20] fork: provide a function for copying init_mm
` [PATCH v2 05/20] x86/alternative: initializing temporary mm for patching
` [PATCH v2 06/20] x86/alternative: use temporary mm for text poking
` [PATCH v2 07/20] x86/kgdb: avoid redundant comparison of patched code
` [PATCH v2 08/20] x86/ftrace: set trampoline pages as executable
` [PATCH v2 09/20] x86/kprobes: instruction pages initialization enhancements
` [PATCH v2 10/20] x86: avoid W^X being broken during modules loading
` [PATCH v2 11/20] x86/jump-label: remove support for custom poker
` [PATCH v2 12/20] x86/alternative: Remove the return value of text_poke_*()
` [PATCH v2 13/20] Add set_alias_ function and x86 implementation
` [PATCH v2 14/20] mm: Make hibernate handle unmapped pages
` [PATCH v2 15/20] vmalloc: New flags for safe vfree on special perms
` [PATCH v2 16/20] modules: Use vmalloc special flag
` [PATCH v2 17/20] bpf: "
` [PATCH v2 18/20] x86/ftrace: "
` [PATCH v2 19/20] x86/kprobes: "
` [PATCH v2 20/20] x86/alternative: comment about module removal races

[PATCH] mm: Prevent mapping slab pages to userspace
 2019-01-31  6:03 UTC  (8+ messages)

ARM64 suggestion: reduce the compat address limit (currently 0x100000000)?
 2019-01-30 19:34 UTC  (3+ messages)

[PATCH] mm: Prevent mapping typed pages to userspace
 2019-01-30 12:01 UTC  (3+ messages)

[PATCH] tty: ldisc: add sysctl to prevent autoloading of ldiscs
 2019-01-30  8:28 UTC  (3+ messages)

[PATCH 0/3] gcc-plugins: Introduce stackinit plugin
 2019-01-29  0:12 UTC  (19+ messages)
` [PATCH 1/3] treewide: Lift switch variables out of switches
    ` [Intel-gfx] "
  ` [Intel-wired-lan] "
` [PATCH 2/3] gcc-plugins: Introduce stackinit plugin
` [PATCH 3/3] lib: Introduce test_stackinit module

[PATCH v2 0/3] [PATCH v2 0/3] Kernel Userspace Protection for Radix MMU
 2019-01-25 11:45 UTC  (4+ messages)
` [PATCH v2 2/3] powerpc/lib: Refactor __patch_instruction() to use __put_user_asm()

[PATCH 4.19 026/106] crypto: ecc - regularize scalar for scalar multiplication
 2019-01-24 19:19 UTC 

[PATCH 4.20 032/127] crypto: ecc - regularize scalar for scalar multiplication
 2019-01-24 19:19 UTC 

[RFC v1 0/4] static analysis of copy_to_user()
 2019-01-24  3:15 UTC  (5+ messages)

[RFC PATCH v7 00/16] Add support for eXclusive Page Frame Ownership
 2019-01-23 15:03 UTC  (10+ messages)
` [RFC PATCH v7 04/16] swiotlb: Map the buffer if it was unmapped by XPFO
` [RFC PATCH v7 05/16] arm64/mm: Add support for XPFO
` [RFC PATCH v7 07/16] arm64/mm, xpfo: temporarily map dcache regions
` [RFC PATCH v7 09/16] mm: add a user_virt_to_phys symbol

[RFC] x86/speculation: add L1 Terminal Fault / Foreshadow demo
 2019-01-22 14:34 UTC  (5+ messages)

[RESEND PATCH V8 0/11] KVM: X86: Introducing ROE Protection Kernel Hardening
 2019-01-22  3:10 UTC  (13+ messages)
` [RESEND PATCH V8 01/11] KVM: State whether memory should be freed in kvm_free_memslot
` [RESEND PATCH V8 02/11] KVM: X86: Add arbitrary data pointer in kvm memslot iterator functions
` [RESEND PATCH V8 03/11] KVM: X86: Add helper function to convert SPTE to GFN
` [RESEND PATCH V8 04/11] KVM: Document Memory ROE
` [RESEND PATCH V8 05/11] KVM: Create architecture independent ROE skeleton
` [RESEND PATCH V8 06/11] KVM: X86: Enable ROE for x86
` [RESEND PATCH V8 07/11] KVM: Add support for byte granular memory ROE
` [RESEND PATCH V8 08/11] KVM: X86: Port ROE_MPROTECT_CHUNK to x86
` [RESEND PATCH V8 09/11] KVM: Add new exit reason For ROE violations
` [RESEND PATCH V8 10/11] KVM: Log ROE violations in system log
` [RESEND PATCH V8 11/11] KVM: ROE: Store protected chunks in red black tree

[PATCH] KVM: x86: Fix single-step debugging
 2019-01-21 12:47 UTC  (2+ messages)

[PATCH 0/2] gcc-plugins: fixes for arm_ssp_per_task_plugin
 2019-01-20 15:43 UTC  (5+ messages)
` [PATCH 1/2] gcc-plugins: arm_ssp_per_task_plugin: sign extend the SP mask
` [PATCH 2/2] gcc-plugins: arm_ssp_per_task_plugin: fix for GCC 9+

page:  |  | latest

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).