messages from 2020-07-28 20:29:08 to 2020-08-03 17:00:06 UTC [more...]
[PATCH v1 0/4] [RFC] Implement Trampoline File Descriptor
2020-08-03 17:00 UTC (34+ messages)
` [PATCH v1 2/4] [RFC] x86/trampfd: Provide support for the trampoline file descriptor
[PATCH bpf-next v8 0/7] Generalizing bpf_local_storage
2020-08-03 16:46 UTC (8+ messages)
` [PATCH bpf-next v8 1/7] A purely mechanical change to split the renaming from the actual generalization
` [PATCH bpf-next v8 2/7] bpf: Generalize caching for sk_storage
` [PATCH bpf-next v8 3/7] bpf: Generalize bpf_sk_storage
` [PATCH bpf-next v8 4/7] bpf: Split bpf_local_storage to bpf_sk_storage
` [PATCH bpf-next v8 5/7] bpf: Implement bpf_local_storage for inodes
` [PATCH bpf-next v8 6/7] bpf: Allow local storage to be used from LSM programs
` [PATCH bpf-next v8 7/7] bpf: Add selftests for local_storage
[GIT PULL] Mount notifications
2020-08-03 16:42 UTC (3+ messages)
` [GIT PULL] Filesystem Information
[PATCH v5 0/4] LSM: Measure security module data
2020-08-03 16:14 UTC (15+ messages)
` [PATCH v5 1/4] IMA: Add func to measure LSM state and policy
` [PATCH v5 2/4] IMA: Define IMA hooks "
` [PATCH v5 3/4] LSM: Define SELinux function to measure "
` [PATCH v5 4/4] IMA: Handle early boot data measurement
[PATCH bpf-next v7 0/7] Generalizing bpf_local_storage
2020-08-03 15:41 UTC (12+ messages)
` [PATCH bpf-next v7 1/7] A purely mechanical change to split the renaming from the actual generalization
` [PATCH bpf-next v7 2/7] bpf: Generalize caching for sk_storage
` [PATCH bpf-next v7 3/7] bpf: Generalize bpf_sk_storage
` [PATCH bpf-next v7 4/7] bpf: Split bpf_local_storage to bpf_sk_storage
` [PATCH bpf-next v7 5/7] bpf: Implement bpf_local_storage for inodes
` [PATCH bpf-next v7 6/7] bpf: Allow local storage to be used from LSM programs
` [PATCH bpf-next v7 7/7] bpf: Add selftests for local_storage
[PATCH 00/17] pipe: Keyrings, mount and superblock notifications [ver #5]
2020-08-03 14:30 UTC (16+ messages)
` [PATCH 13/17] watch_queue: Implement mount topology and attribute change "
[PATCH 00/18] VFS: Filesystem information [ver #21]
2020-08-03 13:39 UTC (19+ messages)
` [PATCH 01/18] fsinfo: Introduce a non-repeating system-unique superblock ID "
` [PATCH 02/18] fsinfo: Add fsinfo() syscall to query filesystem information "
` [PATCH 03/18] fsinfo: Provide a bitmap of the features a filesystem supports "
` [PATCH 04/18] fsinfo: Allow retrieval of superblock devname, options and stats "
` [PATCH 05/18] fsinfo: Allow fsinfo() to look up a mount object by ID "
` [PATCH 06/18] fsinfo: Add a uniquifier ID to struct mount "
` [PATCH 07/18] fsinfo: Allow mount information to be queried "
` [PATCH 08/18] fsinfo: Allow mount topology and propagation info to be retrieved "
` [PATCH 09/18] watch_queue: Mount event counters "
` [PATCH 10/18] fsinfo: Provide notification overrun handling support "
` [PATCH 11/18] fsinfo: sample: Mount listing program "
` [PATCH 12/18] fsinfo: Add API documentation "
` [PATCH 13/18] fsinfo: Add support for AFS "
` [PATCH 14/18] fsinfo: Add support to ext4 "
` [PATCH 15/18] fsinfo: Add an attribute that lists all the visible mounts in a namespace "
` [PATCH 16/18] errseq: add a new errseq_scrape function "
` [PATCH 17/18] vfs: allow fsinfo to fetch the current state of s_wb_err "
` [PATCH 18/18] samples: add error state information to test-fsinfo.c "
[PATCH 0/5] Mount notifications [ver #2]
2020-08-03 13:22 UTC (7+ messages)
` [PATCH 1/5] watch_queue: Limit the number of watches a user can hold "
` [PATCH 2/5] watch_queue: Make watch_sizeof() check record size "
` [PATCH 3/5] watch_queue: Add security hooks to rule on setting mount watches "
` [PATCH 4/5] watch_queue: Implement mount topology and attribute change notifications "
` [PATCH 5/5] watch_queue: sample: Display mount tree "
[PATCH v20 00/12] Landlock LSM
2020-08-02 21:59 UTC (13+ messages)
` [PATCH v20 01/12] landlock: Add object management
` [PATCH v20 02/12] landlock: Add ruleset and domain management
` [PATCH v20 03/12] landlock: Set up the security framework and manage credentials
` [PATCH v20 04/12] landlock: Add ptrace restrictions
` [PATCH v20 05/12] LSM: Infrastructure management of the superblock
` [PATCH v20 06/12] fs,security: Add sb_delete hook
` [PATCH v20 07/12] landlock: Support filesystem access-control
` [PATCH v20 08/12] landlock: Add syscall implementations
` [PATCH v20 09/12] arch: Wire up Landlock syscalls
` [PATCH v20 10/12] selftests/landlock: Add initial tests
` [PATCH v20 11/12] samples/landlock: Add a sandbox manager example
` [PATCH v20 12/12] landlock: Add user and kernel documentation
[RFC PATCH v5 00/11] Integrity Policy Enforcement LSM (IPE)
2020-08-02 16:43 UTC (24+ messages)
` [RFC PATCH v5 01/11] scripts: add ipe tooling to generate boot policy
` [RFC PATCH v5 02/11] security: add ipe lsm evaluation loop and audit system
` [RFC PATCH v5 03/11] security: add ipe lsm policy parser and policy loading
` [RFC PATCH v5 04/11] ipe: add property for trust of boot volume
` [RFC PATCH v5 05/11] fs: add security blob and hooks for block_device
` [RFC PATCH v5 06/11] dm-verity: move signature check after tree validation
` [RFC PATCH v5 07/11] dm-verity: add bdev_setsecurity hook for dm-verity signature
` [RFC PATCH v5 08/11] ipe: add property for signed dmverity volumes
` [RFC PATCH v5 09/11] dm-verity: add bdev_setsecurity hook for root-hash
` [RFC PATCH v5 10/11] documentation: add ipe documentation
` [RFC PATCH v5 10/12] ipe: add property for dmverity roothash
` [RFC PATCH v5 11/11] cleanup: uapi/linux/audit.h
` [RFC PATCH v5 11/12] documentation: add ipe documentation
` [RFC PATCH v5 12/12] cleanup: uapi/linux/audit.h
` [dm-devel] [RFC PATCH v5 00/11] Integrity Policy Enforcement LSM (IPE)
[PATCH v19 00/23] LSM: Module stacking for AppArmor
2020-07-30 22:22 UTC (26+ messages)
` [PATCH v19 02/23] LSM: Create and manage the lsmblob data structure
` [PATCH v19 04/23] LSM: Use lsmblob in security_kernel_act_as
` [PATCH v19 05/23] net: Prepare UDS for security module stacking
` [PATCH v19 06/23] LSM: Use lsmblob in security_secctx_to_secid
` [PATCH v19 13/23] LSM: Specify which LSM to display
` [PATCH v19 15/23] LSM: Use lsmcontext in security_secid_to_secctx
` [PATCH v19 16/23] LSM: Use lsmcontext in security_inode_getsecctx
` [PATCH v19 19/23] LSM: Verify LSM display sanity in binder
` [PATCH v19 22/23] LSM: Add /proc attr entry for full LSM context
` [PATCH v19 23/23] AppArmor: Remove the exclusive flag
[PATCH] watch_queue: Limit the number of watches a user can hold
2020-07-30 17:19 UTC (3+ messages)
[PATCH v4 00/17] Introduce partial kernel_read_file() support
2020-07-30 2:26 UTC (22+ messages)
` [PATCH v4 01/17] test_firmware: Test platform fw loading on non-EFI systems
` [PATCH v4 02/17] fs/kernel_read_file: Remove FIRMWARE_PREALLOC_BUFFER enum
` [PATCH v4 03/17] fs/kernel_read_file: Remove FIRMWARE_EFI_EMBEDDED enum
` [PATCH v4 04/17] fs/kernel_read_file: Split into separate include file
` [PATCH v4 05/17] fs/kernel_read_file: Split into separate source file
` [PATCH v4 06/17] fs/kernel_read_file: Remove redundant size argument
` [PATCH v4 07/17] fs/kernel_read_file: Switch buffer size arg to size_t
` [PATCH v4 08/17] fs/kernel_read_file: Add file_size output argument
` [PATCH v4 09/17] LSM: Introduce kernel_post_load_data() hook
` [PATCH v4 10/17] firmware_loader: Use security_post_load_data()
` [PATCH v4 11/17] module: Call security_kernel_post_load_data()
` [PATCH v4 12/17] LSM: Add "contents" flag to kernel_read_file hook
` [PATCH v4 13/17] IMA: Add support for file reads without contents
` [PATCH v4 14/17] fs/kernel_file_read: Add "offset" arg for partial reads
` [PATCH v4 15/17] firmware: Store opt_flags in fw_priv
` [PATCH v4 16/17] firmware: Add request_partial_firmware_into_buf()
` [PATCH v4 17/17] test_firmware: Test partial read support
[RFC PATCH v6 00/11] Integrity Policy Enforcement LSM (IPE)
2020-07-30 0:31 UTC (12+ messages)
` [RFC PATCH v6 01/11] scripts: add ipe tooling to generate boot policy
` [RFC PATCH v6 02/11] security: add ipe lsm evaluation loop and audit system
` [RFC PATCH v6 03/11] security: add ipe lsm policy parser and policy loading
` [RFC PATCH v6 04/11] ipe: add property for trust of boot volume
` [RFC PATCH v6 05/11] fs: add security blob and hooks for block_device
` [RFC PATCH v6 06/11] dm-verity: add bdev_setsecurity hook for dm-verity signature
` [RFC PATCH v6 07/11] ipe: add property for signed dmverity volumes
` [RFC PATCH v6 08/11] dm-verity: add bdev_setsecurity hook for root-hash
` [RFC PATCH v6 09/11] ipe: add property for dmverity roothash
` [RFC PATCH v6 10/11] documentation: add ipe documentation
` [RFC PATCH v6 11/11] cleanup: uapi/linux/audit.h
[PATCH v2] netfilter: Replace HTTP links with HTTPS ones
2020-07-29 20:43 UTC (2+ messages)
general protection fault in security_inode_getattr
2020-07-29 20:23 UTC
[PATCH v3 00/19] Introduce partial kernel_read_file() support
2020-07-29 19:13 UTC (12+ messages)
` [PATCH v3 12/19] firmware_loader: Use security_post_load_data()
` [PATCH v3 18/19] firmware: Add request_partial_firmware_into_buf()
[PATCH V3fix ghak120] audit: initialize context values in case of mandatory events
2020-07-29 14:33 UTC (6+ messages)
[PATCH 0/3] fs: reduce export usage of kerne_read*() calls
2020-07-29 1:20 UTC (7+ messages)
page: next (older) | prev (newer) | latest
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).