linux-security-module.vger.kernel.org archive mirror

 messages from 2019-04-15 16:47:05 to 2019-04-22 12:48:45 UTC [more...]

[PATCH 00/90] LSM: Module stacking for all
 2019-04-22 12:46 UTC  (85+ messages)
` [PATCH 01/90] LSM: Infrastructure management of the superblock
` [PATCH 02/90] LSM: Infrastructure management of the sock security
` [PATCH 03/90] LSM: Infrastructure management of the key security blob
` [PATCH 04/90] LSM: Create an lsm_export data structure
` [PATCH 05/90] LSM: Use lsm_export in the inode_getsecid hooks
` [PATCH 06/90] LSM: Use lsm_export in the cred_getsecid hooks
` [PATCH 07/90] LSM: Use lsm_export in the ipc_getsecid and task_getsecid hooks
` [PATCH 08/90] LSM: Use lsm_export in the kernel_ask_as hooks
` [PATCH 09/90] LSM: Use lsm_export in the getpeersec_dgram hooks
` [PATCH 10/90] LSM: Use lsm_export in the audit_rule_match hooks
` [PATCH 11/90] LSM: Fix logical operation in lsm_export checks
` [PATCH 12/90] LSM: Use lsm_export in the secid_to_secctx hooks
` [PATCH 13/90] LSM: Use lsm_export in the secctx_to_secid hooks
` [PATCH 14/90] LSM: Use lsm_export in security_audit_rule_match
` [PATCH 15/90] LSM: Use lsm_export in security_kernel_act_as
` [PATCH 16/90] LSM: Use lsm_export in security_socket_getpeersec_dgram
` [PATCH 17/90] LSM: Use lsm_export in security_secctx_to_secid
` [PATCH 18/90] LSM: Use lsm_export in security_secid_to_secctx
` [PATCH 19/90] LSM: Use lsm_export in security_ipc_getsecid
` [PATCH 20/90] LSM: Use lsm_export in security_task_getsecid
` [PATCH 21/90] LSM: Use lsm_export in security_inode_getsecid
` [PATCH 22/90] LSM: Use lsm_export in security_cred_getsecid
` [PATCH 23/90] Audit: Change audit_sig_sid to audit_sig_lsm
` [PATCH 24/90] Audit: Convert target_sid to an lsm_export structure
` [PATCH 25/90] Audit: Convert osid "
` [PATCH 26/90] IMA: Clean out lsm_export scaffolding
` [PATCH 27/90] NET: Change the UNIXCB from a secid to an lsm_export
` [PATCH 28/90] NET: Remove scaffolding on secmarks
` [PATCH 29/90] NET: Remove scaffolding on new secmarks
` [PATCH 30/90] NET: Remove netfilter scaffolding for lsm_export
` [PATCH 31/90] Netlabel: Replace secids with lsm_export
` [PATCH 32/90] LSM: Remove lsm_export scaffolding functions
` [PATCH 33/90] IMA: FIXUP prototype using lsm_export
` [PATCH 34/90] Smack: Restore the release_secctx hook
` [PATCH 35/90] AppArmor: Remove unnecessary hook stub
` [PATCH 36/90] LSM: Limit calls to certain module hooks
` [PATCH 37/90] LSM: Create a data structure for a security context
` [PATCH 38/90] LSM: Use lsm_context in secid_to_secctx hooks
` [PATCH 39/90] LSM: Use lsm_context in secctx_to_secid hooks
` [PATCH 40/90] LSM: Use lsm_context in inode_getsecctx hooks
` [PATCH 41/90] LSM: Use lsm_context in inode_notifysecctx hooks
` [PATCH 42/90] LSM: Use lsm_context in dentry_init_security hooks
` [PATCH 43/90] LSM: Use lsm_context in security_dentry_init_security
` [PATCH 44/90] LSM: Use lsm_context in security_inode_notifysecctx
` [PATCH 45/90] LSM: Use lsm_context in security_inode_getsecctx
` [PATCH 46/90] LSM: Use lsm_context in security_secctx_to_secid
` [PATCH 47/90] LSM: Use lsm_context in release_secctx hooks
` [PATCH 48/90] LSM: Use lsm_context in security_release_secctx
` [PATCH 49/90] LSM: Use lsm_context in security_secid_to_secctx
` [PATCH 50/90] fs: remove lsm_context scaffolding
` [PATCH 51/90] LSM: Add the release function to the lsm_context
` [PATCH 52/90] LSM: Use lsm_context in inode_setsecctx hooks
` [PATCH 53/90] LSM: Use lsm_context in security_inode_setsecctx
` [PATCH 54/90] kernfs: remove lsm_context scaffolding
` [PATCH 55/90] LSM: Remove unused macro
` [PATCH 56/90] LSM: Special handling for secctx lsm hooks
` [PATCH 57/90] SELinux: Use blob offset in current_sid
` [PATCH 58/90] LSM: Specify which LSM to display
` [PATCH 59/90] AppArmor: Remove the exclusive flag
` [PATCH 60/90] LSM: Add secmark_relabel_packet to the set of one call hooks
` [PATCH 61/90] LSM: Make getting the secmark right cleaner
` [PATCH 62/90] netfilter: Fix memory leak introduced with lsm_context
` [PATCH 63/90] Smack: Consolidate secmark conversions
` [PATCH 64/90] netfilter: Remove unnecessary NULL check in lsm_context
` [PATCH 65/90] LSM: Add secmark refcounting to call_one list
` [PATCH 66/90] LSM: refactor security_setprocattr
` [PATCH 67/90] Smack: Detect if secmarks can be safely used
` [PATCH 68/90] LSM: Support multiple LSMs using inode_init_security
` [PATCH 69/90] LSM: Use full security context in security_inode_setsecctx
` [PATCH 70/90] LSM: Correct handling of ENOSYS in inode_setxattr
` [PATCH 71/90] LSM: Infrastructure security blobs for mount options
` [PATCH 72/90] LSM: Fix for security_init_inode_security
` [PATCH 73/90] Smack: Advertise the secid to netlabel
` [PATCH 74/90] LSM: Change error detection for UDP peer security
` [PATCH 75/90] Smack: Fix setting of the CIPSO MLS_CAT flags
` [PATCH 76/90] Smack: Set netlabel flags properly on new label import
` [PATCH 77/90] Netlabel: Add a secattr comparison API function
` [PATCH 78/90] Smack: Let netlabel do the work on the ambient domain
` [PATCH 79/90] Smack: Don't set the socket label on each send
` [PATCH 80/90] Smack: Let netlabel do the work on connections
` [PATCH 81/90] Netlabel: Return the labeling type on socket

[PATCH] proc: prevent changes to overridden credentials
 2019-04-21 17:14 UTC  (5+ messages)

kernel BUG at kernel/cred.c:434!
 2019-04-20  7:38 UTC  (24+ messages)

[PATCHv2] added ima hook for buffer, being enabled as a policy
 2019-04-20  0:00 UTC  (3+ messages)
` [PATCHv2] use event name instead of enum to make the call generic
` [PATCHv2] since cmdline args can be same for multiple kexec, log entry hash will collide. Prepend the kernel file name to the cmdline args to distinguish between cmdline args passed to subsequent kexec calls

[PATCH 00/57] Convert files to ReST
 2019-04-19 22:10 UTC  (5+ messages)
` [PATCH 23/57] docs: netlabel: convert it "
` Avoiding merge conflicts while adding new docs - Was: Re: [PATCH 00/57] Convert files "

[PATCH v2 0/3] Refactor memory initialization hardening
 2019-04-19 19:15 UTC  (7+ messages)
` [PATCH v2 1/3] security: Create "kernel hardening" config area

[PATCH v20 16/28] x86/sgx: Add provisioning
 2019-04-19  3:06 UTC  (2+ messages)

[PATCH 0/3] RFC: add init_allocations=1 boot option
 2019-04-18 22:08 UTC  (11+ messages)
` [PATCH 1/3] mm: security: introduce the "
` [PATCH 2/3] gfp: mm: introduce __GFP_NOINIT
` [PATCH 3/3] RFC: net: apply __GFP_NOINIT to AF_UNIX sk_buff allocations

[PATCH V32 0/27] Lockdown patches for 5.2
 2019-04-18 19:35 UTC  (5+ messages)
` [PATCH V32 01/27] Add the ability to lock down access to the running kernel image

[RFC PATCH v9 03/13] mm: Add support for eXclusive Page Frame Ownership (XPFO)
 2019-04-18 14:34 UTC  (17+ messages)

[PATCH v2 0/2] RFC: introduce CONFIG_INIT_ALL_MEMORY
 2019-04-18 13:02 UTC  (4+ messages)
` [PATCH v2 2/2] initmem: introduce CONFIG_INIT_ALL_HEAP

fanotify and LSM path hooks
 2019-04-18 10:53 UTC  (8+ messages)

[PATCH v10 00/12] Appended signatures support for IMA appraisal
 2019-04-18  3:51 UTC  (13+ messages)
` [PATCH v10 01/12] MODSIGN: Export module signature definitions
` [PATCH v10 02/12] PKCS#7: Refactor verify_pkcs7_signature()
` [PATCH v10 03/12] PKCS#7: Introduce pkcs7_get_digest()
` [PATCH v10 04/12] integrity: Introduce struct evm_xattr
` [PATCH v10 05/12] integrity: Select CONFIG_KEYS instead of depending on it
` [PATCH v10 06/12] ima: Use designated initializers for struct ima_event_data
` [PATCH v10 07/12] ima: Add modsig appraise_type option for module-style appended signatures
` [PATCH v10 08/12] ima: Factor xattr_verify() out of ima_appraise_measurement()
` [PATCH v10 09/12] ima: Implement support for module-style appended signatures
` [PATCH v10 10/12] ima: Collect modsig
` [PATCH v10 11/12] ima: Define ima-modsig template
` [PATCH v10 12/12] ima: Store the measurement again when appraising a modsig

[PATCH] mm: security: introduce CONFIG_INIT_HEAP_ALL
 2019-04-17 17:04 UTC  (11+ messages)

[RFC PATCH v1 0/5] Add support for O_MAYEXEC
 2019-04-17 15:04 UTC  (9+ messages)
` [RFC PATCH v1 1/5] fs: Add support for an O_MAYEXEC flag on sys_open()

crypto: Kernel memory overwrite attempt detected to spans multiple pages
 2019-04-17  9:54 UTC  (10+ messages)
` [PATCH] crypto: testmgr - allocate buffers with __GFP_COMP

[PATCH] apparmor: fix spelling mistake "immutible" -> "immutable"
 2019-04-16 19:56 UTC  (2+ messages)

[PULL] Smack: Changes for 5.2
 2019-04-16  0:33 UTC  (2+ messages)

[PATCH 1/3] selinux: Check address length before reading address family
 2019-04-15 16:46 UTC  (2+ messages)