April 2018 Archives by thread
Starting: Sun Apr 1 05:15:39 UTC 2018
Ending: Mon Apr 30 21:35:38 UTC 2018
Messages: 459
- [PATCH] security: Split out hook definitions into lsm_hook_types.h
Sargun Dhillon
- [PATCH v4 0/1] Safe LSM (un)loading, and immutable hooks
Sargun Dhillon
- [PATCH] security: remove security_settime
Sargun Dhillon
- [PATCH 0/4] security: Split out hook definitions into lsm_hook_types.h
Sargun Dhillon
- [PATCH v3 1/1] security: Add mechanism to safely (un)load LSMs after boot time
Tetsuo Handa
- [RFC v3 0/2] WhiteEgret LSM module
Serge E. Hallyn
- [PATCH bpf-next v8 00/11] Landlock LSM: Toward unprivileged sandboxing
Tycho Andersen
- [REVIEW][PATCH 11/11] ipc/sem: Fix semctl(..., GETPID, ...) between pid namespaces
Manfred Spraul
- [GIT PULL][SECURITY] general changes for v4.17
James Morris
- [RFC PATCH v3 1/3] ima: extend clone() with IMA namespace support
Stefan Berger
- [PATCH] tpm: moves the delay_msec increment after sleep in tpm_transmit()
Nayna Jain
- [GIT PULL] Kernel lockdown for secure boot
Andy Lutomirski
- [RFC PATCH v1] fw_lockdown: new micro LSM module to prevent loading unsigned firmware
Andy Lutomirski
- [PATCH v2 1/5] selinux:Remove direct references to policydb.
peter enderborg
- [GIT PULL] Kernel lockdown for secure boot
Ard Biesheuvel
- [GIT PULL] SELinux patches for v4.17
Paul Moore
- [GIT PULL] Kernel lockdown for secure boot
Linus Torvalds
- [GIT PULL] Kernel lockdown for secure boot
Alexei Starovoitov
- An actual suggestion (Re: [GIT PULL] Kernel lockdown for secure boot)
Andy Lutomirski
- Updates on ima digest list feature
Roberto Sassu
- [PATCH v4 0/1] Safe LSM (un)loading, and immutable hooks
Peter Dolding
- [PATCH v4 0/4] Migrate all TPM 2.0 commands to use struct tpm_buf
Jarkko Sakkinen
- [PATCH] uapi/linux/keyctl.h: don't use C++ reserved keyword as a struct member name
Randy Dunlap
- [PATCH] tpm: tpm_crb: relinquish locality on error path.
Tomas Winkler
- [GIT PULL][SECURITY] Smack updates for v4.17
James Morris
- [GIT PULL][SECURITY] TPM updates for v4.17
James Morris
- [GIT PULL][SECURITY] Integrity updates for v4.17
James Morris
- [PATCH v5 0/1] Safe LSM (un)loading, and immutable hooks
Sargun Dhillon
- [PATCH v5 1/1] security: Add mechanism to safely (un)load LSMs after boot time
Sargun Dhillon
- [PATCH 0/5 V2] tpm: timeouts revamp
Ken Goldman
- [PATCH bpf-next v8 05/11] seccomp,landlock: Enforce Landlock programs per process hierarchy
Andy Lutomirski
- [ANNOUNCE] Linux Security Summit North America 2018 - CFP
James Morris
- [PATCH ghak46 V1] audit: normalize MAC_STATUS record
Richard Guy Briggs
- [PATCH ghak47 V1] audit: normalize MAC_POLICY_LOAD record
Richard Guy Briggs
- [PATCH bpf-next v8 05/11] seccomp,landlock: Enforce Landlock programs per process hierarchy
Alexei Starovoitov
- KASAN: null-ptr-deref Read in xattr_getsecurity
Eric W. Biederman
- [PATCH 00/24] security: Add kernel lockdown
David Howells
- [PATCH 01/24] Add the ability to lock down access to the running kernel image
David Howells
- [PATCH 02/24] Add a SysRq option to lift kernel lockdown
David Howells
- [PATCH 03/24] ima: require secure_boot rules in lockdown mode
David Howells
- [PATCH 04/24] Enforce module signatures if the kernel is locked down
David Howells
- [PATCH 05/24] Restrict /dev/{mem, kmem, port} when the kernel is locked down
David Howells
- [PATCH 06/24] kexec_load: Disable at runtime if the kernel is locked down
David Howells
- [PATCH 07/24] hibernate: Disable when the kernel is locked down
David Howells
- [PATCH 08/24] uswsusp: Disable when the kernel is locked down
David Howells
- [PATCH 09/24] PCI: Lock down BAR access when the kernel is locked down
David Howells
- [PATCH 10/24] x86: Lock down IO port access when the kernel is locked down
David Howells
- [PATCH 11/24] x86/msr: Restrict MSR access when the kernel is locked down
David Howells
- [PATCH 12/24] ACPI: Limit access to custom_method when the kernel is locked down
David Howells
- [PATCH 13/24] acpi: Ignore acpi_rsdp kernel param when the kernel has been locked down
David Howells
- [PATCH 14/24] acpi: Disable ACPI table override if the kernel is locked down
David Howells
- [PATCH 15/24] acpi: Disable APEI error injection if the kernel is locked down
David Howells
- [PATCH 16/24] Prohibit PCMCIA CIS storage when the kernel is locked down
David Howells
- [PATCH 17/24] Lock down TIOCSSERIAL
David Howells
- [PATCH 18/24] Lock down module params that specify hardware parameters (eg. ioport)
David Howells
- [PATCH 19/24] x86/mmiotrace: Lock down the testmmiotrace module
David Howells
- [PATCH 20/24] Lock down /proc/kcore
David Howells
- [PATCH 21/24] Lock down kprobes
David Howells
- [PATCH 22/24] bpf: Restrict kernel image access functions when the kernel is locked down
David Howells
- [PATCH 23/24] Lock down perf
David Howells
- [PATCH 24/24] debugfs: Restrict debugfs when the kernel is locked down
David Howells
- [PATCH 01/24] Add the ability to lock down access to the running kernel image
Greg KH
- [PATCH 24/24] debugfs: Restrict debugfs when the kernel is locked down
David Howells
- [PATCH] security: Remove unused field from security_hook_list
Sargun Dhillon
- [PATCH v6 0/1] Safe LSM (un)loading, and immutable hooks
Sargun Dhillon
- [PATCH 0/3] kexec: limit kexec_load syscall
Mimi Zohar
- [RFC PATCH v22 0/6] mm: security: ro protection for dynamic data
Igor Stoppa
- [PATCH] lockdown: fix coordination of kernel module signature verification
Mimi Zohar
- [RFC PATCH v3 1/3] ima: extend clone() with IMA namespace support
Mimi Zohar
- [manpages PATCH] capabilities.7: describe namespaced file capabilities
Michael Kerrisk (man-pages)
- [manpages PATCH] capabilities.7: describe namespaced file capabilities
Michael Kerrisk (man-pages)
- [RFC PATCH] rootfs: force mounting rootfs as tmpfs
Mimi Zohar
- Proposal
MS Zeliha Omer Faruk
- [PATCH v2 0/2] tpm: improving granularity in poll sleep times
Nayna Jain
- [PATCH v2 1/2] tpm: reduce poll sleep time in tpm_transmit()
Nayna Jain
- [PATCH v2 2/2] tpm: reduce polling time to usecs for even finer granularity
Nayna Jain
- [PATCH v2] X.509: unpack RSA signatureValue field from BIT STRING
Maciej S. Szmigiero
- [RFC PATCH v3 1/3] ima: extend clone() with IMA namespace support
John Johansen
- [PATCH 00/24] VFS: Introduce filesystem context [ver #7]
David Howells
- [PATCH 24/24] debugfs: Restrict debugfs when the kernel is locked down
David Howells
- [PATCH 07/24] hibernate: Disable when the kernel is locked down
David Howells
- Representative Needed.
PPMC OFFSHORE
- [PATCH 0/3] Introduce LSM-hook for socketpair(2)
David Herrmann
- [PATCH 1/3] security: add hook for socketpair(AF_UNIX, ...)
David Herrmann
- [PATCH 2/3] net/unix: hook unix_socketpair() into LSM
David Herrmann
- [PATCH 3/3] selinux: provide unix_stream_socketpair callback
David Herrmann
- Security tree merge to v4.17-rc2
James Morris
- [PATCH 1/3] big key: get rid of stack array allocation
Tycho Andersen
- [PATCH 7/9] Pmalloc Rare Write: modify selected pools
Igor Stoppa
- [PATCH 7/9] Pmalloc Rare Write: modify selected pools
Igor Stoppa
- [PATCH 9/9] Protect SELinux initialized state with pmalloc
Stephen Smalley
- [PATCH v3 1/3] big key: get rid of stack array allocation
Tycho Andersen
- [PATCH v3 2/5] efi: Add embedded peripheral firmware support
Luis R. Rodriguez
- [PATCH v7 0/6] Safe LSM (un)loading, and immutable hooks
Sargun Dhillon
- [PATCH v7 1/6] security: Move LSM registration arguments to struct lsm_info
Sargun Dhillon
- [PATCH v7 2/6] security: Make security_hook_heads private
Sargun Dhillon
- [PATCH v7 3/6] security: Introduce mutable (RW) hooks
Sargun Dhillon
- [PATCH v7 4/6] security: Expose security_add_hooks externally and add error handling
Sargun Dhillon
- [PATCH v7 5/6] security: Panic on forced unloading of security module
Sargun Dhillon
- [PATCH v7 6/6] security: Add SECURITY_UNREGISTRABLE_HOOKS to allow for hook removal
Sargun Dhillon
- [PATCH v7 0/6] Safe LSM (un)loading, and immutable hooks
Tetsuo Handa
- [PATCH v7 0/6] Safe LSM (un)loading, and immutable hooks
Sargun Dhillon
- [PATCH v7 0/6] Safe LSM (un)loading, and immutable hooks
Tetsuo Handa
- [PATCH v7 0/6] Safe LSM (un)loading, and immutable hooks
Sargun Dhillon
- [PATCH v7 0/6] Safe LSM (un)loading, and immutable hooks
Sargun Dhillon
- [PATCH v7 0/6] Safe LSM (un)loading, and immutable hooks
Tetsuo Handa
- [PATCH v7 0/6] Safe LSM (un)loading, and immutable hooks
Sargun Dhillon
- [PATCH v7 0/6] Safe LSM (un)loading, and immutable hooks
Casey Schaufler
- [PATCH v7 0/6] Safe LSM (un)loading, and immutable hooks
Tetsuo Handa
- [PATCH v7 0/6] Safe LSM (un)loading, and immutable hooks
Casey Schaufler
- [PATCH v7 0/6] Safe LSM (un)loading, and immutable hooks
Sargun Dhillon
- [PATCH v7 0/6] Safe LSM (un)loading, and immutable hooks
Casey Schaufler
- [PATCH v7 0/6] Safe LSM (un)loading, and immutable hooks
Sargun Dhillon
- [PATCH v7 0/6] Safe LSM (un)loading, and immutable hooks
Casey Schaufler
- [PATCH v7 0/6] Safe LSM (un)loading, and immutable hooks
James Morris
- [PATCH v7 0/6] Safe LSM (un)loading, and immutable hooks
Sargun Dhillon
- [PATCH v7 0/6] Safe LSM (un)loading, and immutable hooks
Sargun Dhillon
- [PATCH 7/9] Pmalloc Rare Write: modify selected pools
Igor Stoppa
- [PATCH 07/24] hibernate: Disable when the kernel is locked down
Rafael J. Wysocki
- [PATCH 07/24] hibernate: Disable when the kernel is locked down
Jiri Kosina
- Extracting written string from the write syscall
Casey Schaufler
- Extracting written string from the write syscall
Richard Guy Briggs
- [PATCH 0/3] Better integrate seccomp logging and auditing
Tyler Hicks
- [PATCH 1/3] seccomp: Separate read and write code for actions_logged sysctl
Tyler Hicks
- [PATCH 2/3] seccomp: Audit attempts to modify the actions_logged sysctl
Tyler Hicks
- [PATCH 3/3] seccomp: Don't special case audited processes when logging
Tyler Hicks
- [PATCH 0/3] linux-next: mm: hardening: Track genalloc allocations
Igor Stoppa
Last message date:
Mon Apr 30 21:35:38 UTC 2018
Archived on: Mon Apr 30 21:35:48 UTC 2018
This archive was generated by
Pipermail 0.09 (Mailman edition).