linux-security-module.vger.kernel.org archive mirror
 help / color / mirror / Atom feed
 messages from 2020-07-12 21:03:02 to 2020-07-17 23:36:47 UTC [more...]

[PATCH] LSM: drop duplicated words in header file comments
 2020-07-17 23:36 UTC 

[RFC PATCH v4 00/12] Integrity Policy Enforcement LSM (IPE)
 2020-07-17 23:16 UTC  (14+ messages)
` [RFC PATCH v4 01/12] scripts: add ipe tooling to generate boot policy
` [RFC PATCH v4 02/12] security: add ipe lsm evaluation loop and audit system
` [RFC PATCH v4 03/12] security: add ipe lsm policy parser and policy loading
` [RFC PATCH v4 04/12] ipe: add property for trust of boot volume
` [RFC PATCH v4 05/12] fs: add security blob and hooks for block_device
` [RFC PATCH v4 06/12] dm-verity: move signature check after tree validation
` [RFC PATCH v4 07/12] dm-verity: add bdev_setsecurity hook for dm-verity signature
` [RFC PATCH v4 08/12] ipe: add property for signed dmverity volumes
` [RFC PATCH v4 09/12] dm-verity: add bdev_setsecurity hook for root-hash
` [RFC PATCH v4 10/12] ipe: add property for dmverity roothash
` [RFC PATCH v4 11/12] documentation: add ipe documentation
` [RFC PATCH v4 12/12] cleanup: uapi/linux/audit.h

[PATCH v3 0/5] LSM: Measure security module state
 2020-07-17 22:28 UTC  (6+ messages)
` [PATCH v3 1/5] IMA: Add LSM_STATE func to measure LSM data
` [PATCH v3 2/5] IMA: Define an IMA hook "
` [PATCH v3 3/5] LSM: Add security_measure_data in lsm_info struct
` [PATCH v3 4/5] LSM: Define SELinux function to measure security state
` [PATCH v3 5/5] LSM: Define workqueue for measuring security module state

[PATCH 00/13] Introduce partial kernel_read_file() support
 2020-07-17 22:10 UTC  (23+ messages)
` [PATCH 01/13] firmware_loader: EFI firmware loader must handle pre-allocated buffer
` [PATCH 02/13] fs/kernel_read_file: Remove FIRMWARE_PREALLOC_BUFFER enum
` [PATCH 03/13] fs/kernel_read_file: Remove FIRMWARE_EFI_EMBEDDED enum
` [PATCH 04/13] fs/kernel_read_file: Split into separate include file
` [PATCH 05/13] fs/kernel_read_file: Split into separate source file
` [PATCH 06/13] fs/kernel_read_file: Remove redundant size argument
` [PATCH 07/13] fs/kernel_read_file: Switch buffer size arg to size_t
` [PATCH 08/13] fs/kernel_read_file: Add file_size output argument
` [PATCH 09/13] LSM: Introduce kernel_post_load_data() hook
` [PATCH 10/13] firmware_loader: Use security_post_load_data()
` [PATCH 11/13] module: Call security_kernel_post_load_data()
` [PATCH 12/13] LSM: Add "contents" flag to kernel_read_file hook
` [PATCH 13/13] fs/kernel_file_read: Add "offset" arg for partial reads

[PATCH v3 00/12] ima: Fix rule parsing bugs and extend KEXEC_CMDLINE rule support
 2020-07-17 19:24 UTC  (16+ messages)
` [PATCH v3 01/12] ima: Have the LSM free its audit rule
` [PATCH v3 06/12] ima: Fail rule parsing when the KEY_CHECK hook is combined with an invalid cond
` [PATCH v3 07/12] ima: Fail rule parsing when appraise_flag=blacklist is unsupportable
` [PATCH v3 08/12] ima: Shallow copy the args_p member of ima_rule_entry.lsm elements

Reporting a use-after-free read bug in userfaultfd_release()
 2020-07-17 11:45 UTC 

[PATCH 01/16] Manual pages: getcap.8, getpcaps.8, setcap.8: SEE ALSO: add capabilities(7)
 2020-07-17  6:00 UTC  (18+ messages)
` [PATCH 02/16] Manual pages: cap_get_file.3, getcap.8, setcap.8: SEE ALSO: add user_namespaces(7)
` [PATCH 03/16] Manual pages: setcap.8: Formatting fix: use bold for function name
` [PATCH 04/16] Manual pages: cap_from_text.3: typo fix
` [PATCH 05/16] Manual pages: cap_get_file.3, getcap.8, setcap.8: clarify "namespace"
` [PATCH 06/16] Manual pages: cap_get_file.3: Remove stray macros that have no effect
` [PATCH 07/16] Manual pages: cap_get_proc.3: s/UNCERTAIN/CAP_MODE_UNCERTAIN/
` [PATCH 08/16] Manual pages: cap_get_proc.3: formatting fix
` [PATCH 09/16] Manual pages: capsh.1: spelling fixes
` [PATCH 10/16] Manual pages: capsh.1: Remove stray .TP macro
` [PATCH 11/16] Manual pages: capsh.1: Correct/update the Cap field example for /proc/PID/status
` [PATCH 12/16] Manual pages: capsh.1: Update the capsh --decode example
` [PATCH 13/16] Manual pages: capsh.1: Describe the argument of --secbits in more detail
` [PATCH 14/16] pam_cap.c: Spelling fix in output string
` [PATCH 15/16] Various source files: spelling fixes on comments
` [PATCH 16/16] capsh.c: Spelling fixes in usage() message

[PATCH v2 0/5] LSM: Measure security module state
 2020-07-16 22:03 UTC  (10+ messages)
` [PATCH v2 1/5] IMA: Add LSM_STATE func to measure LSM data
` [PATCH v2 2/5] IMA: Define an IMA hook "
` [PATCH v3 3/5] LSM: Add security_measure_data in lsm_info struct
` [PATCH v2 4/5] LSM: Define SELinux function to measure security state
` [PATCH v2 5/5] LSM: Define workqueue for measuring security module state

[PATCH 0/4] Fix misused kernel_read_file() enums
 2020-07-16 21:16 UTC  (8+ messages)
` [PATCH 2/4] fs: Remove FIRMWARE_PREALLOC_BUFFER from "

[RFC PATCH 0/5] keys: Security changes, ACLs and Container keyring
 2020-07-16 20:35 UTC  (5+ messages)
` [RFC PATCH 1/5] keys: Move permissions checking decisions into the checking code
` [RFC PATCH 3/5] keys: Provide KEYCTL_GRANT_PERMISSION
` [RFC PATCH 4/5] keys: Split the search perms between KEY_NEED_USE and KEY_NEED_SEARCH
` [RFC PATCH 5/5] keys: Implement a 'container' keyring

[PATCH v6 0/7] Add support for O_MAYEXEC
 2020-07-16 19:13 UTC  (22+ messages)
` [PATCH v6 1/7] exec: Change uselib(2) IS_SREG() failure to EACCES
` [PATCH v6 2/7] exec: Move S_ISREG() check earlier
` [PATCH v6 3/7] exec: Move path_noexec() "
` [PATCH v6 4/7] fs: Introduce O_MAYEXEC flag for openat2(2)
` [PATCH v6 5/7] fs,doc: Enable to enforce noexec mounts or file exec through O_MAYEXEC
` [PATCH v6 6/7] selftest/openat2: Add tests for O_MAYEXEC enforcing
` [PATCH v6 7/7] ima: add policy support for the new file open MAY_OPENEXEC flag

[V2 PATCH 0/3] Adding support for carrying IMA measurement logs
 2020-07-16 17:51 UTC  (8+ messages)
` [V2 PATCH 1/3] Refactoring powerpc code for carrying over IMA measurement logs, to move non architecture specific code to security/ima
` [V2 PATCH 2/3] dt-bindings: chosen: Document ima-kexec-buffer

[PATCH v9 0/2] tpm2: Make TPM2 logs accessible for non-UEFI firmware
 2020-07-16 17:26 UTC  (13+ messages)
` [PATCH v9 2/2] tpm: Add support for event log pointer found in TPM2 ACPI table

[PATCH] ima: Rename internal audit rule functions
 2020-07-16 14:23 UTC  (4+ messages)

[PATCH v36 11/24] x86/sgx: Add SGX enclave driver
 2020-07-16 13:52 UTC  (2+ messages)
` [PATCH v36 15/24] x86/sgx: Allow a limited use of ATTRIBUTE.PROVISIONKEY for attestation

[PATCH v5 0/6] capabilities: Introduce CAP_CHECKPOINT_RESTORE
 2020-07-16  8:51 UTC  (15+ messages)
` [PATCH v5 1/6] "
` [PATCH v5 2/6] pid: use checkpoint_restore_ns_capable() for set_tid
` [PATCH v5 3/6] pid_namespace: use checkpoint_restore_ns_capable() for ns_last_pid
` [PATCH v5 4/6] proc: allow access in init userns for map_files with CAP_CHECKPOINT_RESTORE
` [PATCH v5 5/6] prctl: Allow checkpoint/restore capable processes to change exe link
` [PATCH v5 6/6] selftests: add clone3() CAP_CHECKPOINT_RESTORE test

[PATCH] Smack: fix use-after-free in smk_write_relabel_self()
 2020-07-16  0:27 UTC  (2+ messages)

[PATCH bpf-next v4 0/4] Generalizing bpf_local_storage
 2020-07-15 22:59 UTC  (7+ messages)
` [PATCH bpf-next v4 1/4] bpf: Generalize bpf_sk_storage
` [PATCH bpf-next v4 2/4] bpf: Implement bpf_local_storage for inodes

[PATCH] keys: asymmetric: fix error return code in software_key_query()
 2020-07-15 22:28 UTC 

[RFC PATCH v3 00/12] Integrity Policy Enforcement LSM (IPE)
 2020-07-15 19:16 UTC  (3+ messages)
` [RFC PATCH v3 03/12] security: add ipe lsm policy parser and policy loading

[PATCH v1 0/5] LSM: Measure security module state
 2020-07-15 18:34 UTC  (8+ messages)
` [PATCH v1 1/5] IMA: Add LSM_STATE func to measure LSM data
` [PATCH v1 2/5] IMA: Define an IMA hook "
` [PATCH v1 3/5] LSM: Add security_state function pointer in lsm_info struct
` [PATCH v1 4/5] LSM: Define SELinux function to measure security state
` [PATCH v1 5/5] LSM: Define workqueue for measuring security module state

[PATCH 0/7] Implementing kernel_execve
 2020-07-15 18:23 UTC  (30+ messages)
` [PATCH 1/7] exec: Remove unnecessary spaces from binfmts.h
` [PATCH 2/7] exec: Factor out alloc_bprm
` [PATCH 3/7] exec: Move initialization of bprm->filename into alloc_bprm
` [PATCH 4/7] exec: Move bprm_mm_init "
` [PATCH 5/7] exec: Factor bprm_execve out of do_execve_common
` [PATCH 6/7] exec: Factor bprm_stack_limits out of prepare_arg_pages
` [PATCH 7/7] exec: Implement kernel_execve

[PATCH net-next] cipso: Remove unused inline functions
 2020-07-15 14:45 UTC  (3+ messages)

[PATCH ghak84 v4] audit: purge audit_log_string from the intra-kernel audit API
 2020-07-14 21:00 UTC  (5+ messages)

[RFC][PATCH] net/bpfilter: Remove this broken and apparently unmantained
 2020-07-14 19:42 UTC  (13+ messages)
        ` [PATCH 00/14] Make the user mode driver code a better citizen
            ` [PATCH v2 00/15] "
              ` [PATCH v3 00/16] "
                ` [PATCH v3 10/16] exec: Remove do_execve_file
                ` [merged][PATCH v3 00/16] Make the user mode driver code a better citizen

[PATCH v8 00/12] Introduce CAP_PERFMON to secure system performance monitoring and observability
 2020-07-14 15:27 UTC  (10+ messages)

[PATCH -next] IMA: Make ima_mok_init() static
 2020-07-13 14:26 UTC 

[PATCH] capabilities: Replace HTTP links with HTTPS ones
 2020-07-13 10:34 UTC 

[PATCH v5 0/8] crpyto: introduce OSCCA certificate and SM2 asymmetric algorithm
 2020-07-13  2:17 UTC  (4+ messages)
` [PATCH v5 2/8] lib/mpi: Extend the MPI library


This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).