June 2020 Archives by thread
Starting: Mon Jun 1 01:16:35 UTC 2020
Ending: Tue Jun 30 23:46:27 UTC 2020
Messages: 707
- [PATCH v31 11/21] x86/sgx: Linux Enclave Driver
Jarkko Sakkinen
- [PATCH v31 12/21] x86/sgx: Add provisioning
Jarkko Sakkinen
- [PATCH v4 1/4] KEYS: trusted: Add generic trusted keys framework
Jarkko Sakkinen
- 答复: new seccomp mode aims to improve performance
zhujianwei (C)
- [PATCH v4 1/4] KEYS: trusted: Add generic trusted keys framework
Jarkko Sakkinen
- [RFC][PATCH 0/2] Add support for using reserved memory for ima buffer pass
Prakhar Srivastava
- [PATCH v32 11/21] x86/sgx: Linux Enclave Driver
Jarkko Sakkinen
- [PATCH v32 12/21] x86/sgx: Add provisioning
Jarkko Sakkinen
- new seccomp mode aims to improve performance
Lennart Poettering
- [PATCH RFC] seccomp: Implement syscall isolation based on memory areas
Gabriel Krisman Bertazi
- [PATCH RFC] seccomp: Implement syscall isolation based on memory areas
Gabriel Krisman Bertazi
- new seccomp mode aims to improve performance
Kees Cook
- [PATCH bpf-next 4/4] bpf: Add selftests for local_storage
Andrii Nakryiko
- [GIT PULL] SELinux patches for v5.8
Paul Moore
- [GIT PULL][Security] lockdown: Allow unprivileged users to see lockdown status
James Morris
- [PATCH v2] capabilities: add description for CAP_SETFCAP
Stefan Hajnoczi
- [PATCH v5 0/4] Introduce TEE based Trusted Keys support
Sumit Garg
- [GIT PULL] keys: Changes for 5.8
David Howells
- [PATCH] RFC: fuse: virtiofs: Call security hooks on new inodes
Vivek Goyal
- [PATCH v3 0/6] Enable as many KUnit tests as possible
Shuah Khan
- [GIT PULL] Smack patches for v5.8
Casey Schaufler
- [PATCH] apparmor: check/put label on apparmor_sk_clone_security()
Mauricio Faria de Oliveira
- [PATCH bpf-next 2/4] bpf: Implement bpf_local_storage for inodes
kbuild test robot
- linux-next: build failure after merge of the overlayfs tree
Miklos Szeredi
- [PATCH v5 0/4] Introduce TEE based Trusted Keys support
Sumit Garg
- HELLO: I AM MRS SUSAN JONES
Mrs.Susan Jones
- [PATCH 1/2] ima: Directly assign the ima_default_policy pointer to ima_rules
Roberto Sassu
- [PATCH 2/2] ima: Call ima_calc_boot_aggregate() in ima_eventdigest_init()
Roberto Sassu
- [PATCH v2 0/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE
Adrian Reber
- [PATCH v5 0/3] SELinux support for anonymous inodes and UFFD
James Morris
- [security:secure_uffd_v5.9 1/3] fs/anon_inodes.c:92:10-17: WARNING: ERR_CAST can be used with inode
kernel test robot
- [PATCH] fix err_cast.cocci warnings
kernel test robot
- general protection fault in ima_free_template_entry
syzbot
- [PATCH 2/2] ima: Call ima_calc_boot_aggregate() in ima_eventdigest_init()
Mimi Zohar
- [exec] 166d03c9ec: ltp.execveat02.fail
Kees Cook
- [exec] 166d03c9ec: ltp.execveat02.fail
Kees Cook
- clean up kernel_{read,write} & friends v2
Philippe Mathieu-Daudé
- [PATCH] ima: Directly free *entry in ima_alloc_init_template() if digests is NULL
Roberto Sassu
- [PATCH 0/3] fs: reduce export usage of kerne_read*() calls
Scott Branden
- [PATCH] security: Add LSM hooks to set*gid syscalls
Micah Morton
- [PATCH v6 0/8] firmware: add partial read support in request_firmware_into_buf
Scott Branden
- [PATCH v6 1/8] fs: introduce kernel_pread_file* support
Scott Branden
- [PATCH v6 2/8] firmware: add offset to request_firmware_into_buf
Scott Branden
- [PATCH v6 3/8] test_firmware: add partial read support for request_firmware_into_buf
Scott Branden
- [PATCH v6 4/8] firmware: test partial file reads of request_firmware_into_buf
Scott Branden
- [PATCH v6 5/8] bcm-vk: add bcm_vk UAPI
Scott Branden
- [PATCH v6 7/8] MAINTAINERS: bcm-vk: add maintainer for Broadcom VK Driver
Scott Branden
- [PATCH v6 8/8] ima: add FIRMWARE_PARTIAL_READ support
Scott Branden
- [PATCH v7 0/8] firmware: add partial read support in request_firmware_into_buf
Scott Branden
- [PATCH RESEND] device_cgroup: Fix RCU list debugging warning
Paul E. McKenney
- [GIT PULL] apparmor updates for 5.8
John Johansen
- [v1 PATCH 0/2] Adding support to carry IMA measurement logs
Prakhar Srivastava
- [PATCH] capabilities: Introduce CAP_RESTORE
Andrei Vagin
- KASAN: use-after-free Read in smk_write_relabel_self
syzbot
- [PATCH AUTOSEL 5.7 047/274] lockdown: Allow unprivileged users to see lockdown status
Sasha Levin
- [PATCH AUTOSEL 5.6 082/606] ima: Set file->f_mode instead of file->f_flags in ima_calc_file_hash()
Sasha Levin
- [PATCH AUTOSEL 5.6 083/606] evm: Check also if *tfm is an error pointer in init_desc()
Sasha Levin
- [PATCH AUTOSEL 5.6 084/606] ima: Fix return value of ima_write_policy()
Sasha Levin
- [PATCH AUTOSEL 5.6 095/606] evm: Fix a small race in init_desc()
Sasha Levin
- [PATCH AUTOSEL 5.6 153/606] apparmor: Fix use-after-free in aa_audit_rule_init
Sasha Levin
- [PATCH AUTOSEL 5.6 154/606] apparmor: fix potential label refcnt leak in aa_change_profile
Sasha Levin
- [PATCH AUTOSEL 5.6 155/606] apparmor: Fix aa_label refcnt leak in policy_update
Sasha Levin
- [PATCH AUTOSEL 5.6 321/606] exec: Always set cap_ambient in cap_bprm_set_creds
Sasha Levin
- [PATCH AUTOSEL 5.4 034/175] lockdown: Allow unprivileged users to see lockdown status
Sasha Levin
- [PATCH] integrity: Remove redundant variable assignments
Tianjia Zhang
- [PATCH v3 0/8] crpyto: introduce OSCCA certificate and SM2 asymmetric algorithm
Tianjia Zhang
- [PATCH v3 2/8] lib/mpi: Extend the MPI library
Tianjia Zhang
- [PATCH v3 3/8] lib/mpi: Introduce ec implementation to MPI library
Tianjia Zhang
- [PATCH v3 4/8] crypto: sm2 - introduce OSCCA SM2 asymmetric cipher algorithm
Tianjia Zhang
- [PATCH v3 5/8] crypto: testmgr - support test with different ciphertext per encryption
Tianjia Zhang
- [PATCH v3 6/8] X.509: support OSCCA certificate parse
Tianjia Zhang
- [PATCH v3 7/8] X.509: support OSCCA sm2-with-sm3 certificate verification
Tianjia Zhang
- [PATCH v3 8/8] integrity: Asymmetric digsig supports SM2-with-SM3 algorithm
Tianjia Zhang
- [GIT PULL] SafeSetID LSM changes for v5.8
Micah Morton
- [PATCH v8 0/8] firmware: add request_partial_firmware_into_buf
Scott Branden
- [PATCH 1/4] cap_get_proc.3: Typo fixes
Michael Kerrisk (man-pages)
- [PATCH 2/4] cap_get_proc.3: for cap_get_pid(), pid==0 means "the calling process"
Michael Kerrisk (man-pages)
- [PATCH 3/4] getpcaps.8: Note that pid==0 displays capabilities of getpcaps itself
Michael Kerrisk (man-pages)
- [PATCH 4/4] cap_get_proc.3: change "current process" to "calling process"
Michael Kerrisk (man-pages)
- [RFC][PATCH] net/bpfilter: Remove this broken and apparently unmantained
Tetsuo Handa
- [PATCH 0/5] kmod/umh: a few fixes
Luis R. Rodriguez
- [PATCH 1/5] selftests: kmod: Use variable NAME in kmod_test_0001()
Luis R. Rodriguez
- [PATCH 2/5] kmod: Remove redundant "be an" in the comment
Luis R. Rodriguez
- [PATCH 3/5] test_kmod: Avoid potential double free in trigger_config_run_type()
Luis R. Rodriguez
- [PATCH 4/5] umh: fix processed error when UMH_WAIT_PROC is used
Luis R. Rodriguez
- [PATCH 5/5] selftests: simplify kmod failure value
Luis R. Rodriguez
- [PATCH] extend IMA boot_aggregate with kernel measurements
Maurizio Drocco
- [PATCH] capabilities: Introduce CAP_RESTORE
Matt Helsley
- My Dear in the lord
Mrs. Mina A. Brunel
- [PATCH] dh key: Missing a blank line after declarations
Frank Werner-Krippendorf
- [PATCH 0/5] LSM: Measure security module state
Lakshmi Ramasubramanian
- [PATCH 1/5] IMA: Add LSM_STATE func to measure LSM data
Lakshmi Ramasubramanian
- [PATCH 2/5] IMA: Define an IMA hook to measure LSM data
Lakshmi Ramasubramanian
- [PATCH 4/5] LSM: Define SELinux function to measure security state
Lakshmi Ramasubramanian
- [PATCH 5/5] LSM: Define workqueue for measuring security module state
Lakshmi Ramasubramanian
- Lucrative Proposal.
L.D Holt
- [PATCH 13/17] watch_queue: Implement mount topology and attribute change notifications [ver #5]
Ian Kent
- [PATCH] [RFC] security: allow using Clang's zero initialization for stack variables
glider at google.com
- lockdown bypass on mainline kernel for loading unsigned modules
Jason A. Donenfeld
- clean up kernel_{read,write} & friends v4
Christoph Hellwig
- [PATCH 03/13] bpfilter: switch to kernel_write
Christoph Hellwig
- [PATCH 04/13] fs: unexport __kernel_write
Christoph Hellwig
- [PATCH 05/13] fs: check FMODE_WRITE in __kernel_write
Christoph Hellwig
- [PATCH 06/13] fs: implement kernel_write using __kernel_write
Christoph Hellwig
- [PATCH 07/13] fs: remove __vfs_write
Christoph Hellwig
- [PATCH 08/13] fs: don't change the address limit for ->write_iter in __kernel_write
Christoph Hellwig
- [PATCH 09/13] fs: add a __kernel_read helper
Christoph Hellwig
- [PATCH 10/13] integrity/ima: switch to using __kernel_read
Christoph Hellwig
- [PATCH 11/13] fs: implement kernel_read using __kernel_read
Christoph Hellwig
- [PATCH 12/13] fs: remove __vfs_read
Christoph Hellwig
- [PATCH 13/13] fs: don't change the address limit for ->read_iter in __kernel_read
Christoph Hellwig
- [oss-security] lockdown bypass on mainline kernel for loading unsigned modules
Jann Horn
- [PATCH 1/2] mm, treewide: Rename kzfree() to kfree_sensitive()
Dan Carpenter
- [PATCH v9 0/8] firmware: add request_partial_firmware_into_buf
Scott Branden
- [PATCH v9 2/8] firmware: add request_partial_firmware_into_buf
Scott Branden
- [PATCH v9 3/8] test_firmware: add partial read support for request_firmware_into_buf
Scott Branden
- [PATCH v9 4/8] firmware: test partial file reads of request_partial_firmware_into_buf
Scott Branden
- [PATCH v9 5/8] bcm-vk: add bcm_vk UAPI
Scott Branden
- [PATCH v9 7/8] MAINTAINERS: bcm-vk: add maintainer for Broadcom VK Driver
Scott Branden
- [PATCH v9 8/8] ima: add FIRMWARE_PARTIAL_READ support
Scott Branden
- Add SafeSetID LSM tree to linux-next
Micah Morton
- donation of Euro 2,000,000.00.
manuel franco
- Add SafeSetID LSM tree to linux-next
Micah Morton
- [PATCH v4 0/3] mm, treewide: Rename kzfree() to kfree_sensitive()
Waiman Long
- [PATCH v4 1/3] mm/slab: Use memzero_explicit() in kzfree()
Waiman Long
- [RFC][PATCH 0/8] seccomp: Implement constant action bitmaps
Kees Cook
- [PATCH 1/8] selftests/seccomp: Improve calibration loop
Kees Cook
- [PATCH 2/8] seccomp: Use pr_fmt
Kees Cook
- [PATCH 3/8] seccomp: Introduce SECCOMP_PIN_ARCHITECTURE
Kees Cook
- [PATCH 5/8] selftests/seccomp: Compare bitmap vs filter overhead
Kees Cook
- [PATCH 6/8] x86: Provide API for local kernel TLB flushing
Kees Cook
- [PATCH v2] [RFC] security: allow using Clang's zero initialization for stack variables
glider at google.com
- [PATCH v4 2/3] mm, treewide: Rename kzfree() to kfree_sensitive()
Dan Carpenter
- Two questions about IMA
Zhao, Shirley
- [PATCH v5 0/2] mm, treewide: Rename kzfree() to kfree_sensitive()
Waiman Long
- [PATCH v5 1/2] mm/slab: Use memzero_explicit() in kzfree()
Waiman Long
- [PATCH] fs: move kernel_read_file* to its own include file
Scott Branden
- [PATCH v2 1/1] fs: move kernel_read_file* to its own include file
Scott Branden
- [PATCH v3 1/1] fs: move kernel_read_file* to its own include file
Scott Branden
- [PATCH bpf-next v2 0/4] Generalizing bpf_local_storage
KP Singh
- [PATCH v33 11/21] x86/sgx: Linux Enclave Driver
Jarkko Sakkinen
- [PATCH v33 12/21] x86/sgx: Allow a limited use of ATTRIBUTE.PROVISIONKEY for attestation
Jarkko Sakkinen
- [PATCH AUTOSEL 5.7 098/388] apparmor: fix introspection of of task mode for unconfined tasks
Sasha Levin
- [PATCH AUTOSEL 5.7 100/388] apparmor: check/put label on apparmor_sk_clone_security()
Sasha Levin
- [PATCH AUTOSEL 5.7 112/388] apparmor: fix nnp subset test for unconfined
Sasha Levin
- [RFC PATCH] security: Add a config option to disable security mitigations
Pranith Kumar
- [PATCH AUTOSEL 5.4 075/266] apparmor: fix introspection of of task mode for unconfined tasks
Sasha Levin
- [PATCH AUTOSEL 5.4 077/266] apparmor: check/put label on apparmor_sk_clone_security()
Sasha Levin
- [PATCH AUTOSEL 5.4 083/266] apparmor: fix nnp subset test for unconfined
Sasha Levin
- [PATCH AUTOSEL 4.19 017/172] Smack: slab-out-of-bounds in vsscanf
Sasha Levin
- [PATCH AUTOSEL 4.19 045/172] apparmor: fix introspection of of task mode for unconfined tasks
Sasha Levin
- [PATCH AUTOSEL 4.19 046/172] apparmor: check/put label on apparmor_sk_clone_security()
Sasha Levin
- [PATCH AUTOSEL 4.19 050/172] apparmor: fix nnp subset test for unconfined
Sasha Levin
- [PATCH AUTOSEL 4.14 013/108] Smack: slab-out-of-bounds in vsscanf
Sasha Levin
- [PATCH AUTOSEL 4.14 034/108] apparmor: fix introspection of of task mode for unconfined tasks
Sasha Levin
- [PATCH AUTOSEL 4.9 10/80] Smack: slab-out-of-bounds in vsscanf
Sasha Levin
- [PATCH AUTOSEL 4.4 06/60] Smack: slab-out-of-bounds in vsscanf
Sasha Levin
- [V2 PATCH 0/3] Adding support for carrying IMA measurement logs
Prakhar Srivastava
- [V2 PATCH 1/3] Refactoring powerpc code for carrying over IMA measurement logs, to move non architecture specific code to security/ima.
Prakhar Srivastava
- [V2 PATCH 2/3] dt-bindings: chosen: Document ima-kexec-buffer
Prakhar Srivastava
- [V2 PATCH 3/3] Add support for arm64 to carry over IMA measurement logs
Prakhar Srivastava
- [PATCH v3 0/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE
Adrian Reber
- [PATCH 01/11] evm: Execute evm_inode_init_security() only when the HMAC key is loaded
Roberto Sassu
- [PATCH 06/11] evm: Allow setxattr() and setattr() if metadata digest won't change
Roberto Sassu
- [PATCH 07/11] evm: Set IMA_CHANGE_XATTR/ATTR bit if EVM_ALLOW_METADATA_WRITES is set
Roberto Sassu
- [PATCH 08/11] ima: Allow imasig requirement to be satisfied by EVM portable signatures
Roberto Sassu
- [PATCH 09/11] ima: Don't remove security.ima if file must not be appraised
Roberto Sassu
- [PATCH 10/11] ima: Don't ignore errors from crypto_shash_update()
Roberto Sassu
- [PATCH 11/11] ima: Remove semicolon at the end of ima_get_binary_runtime_size()
Roberto Sassu
- [PATCH bpf] security: Fix hook iteration for secid_to_secctx
Ondrej Mosnacek
- [PATCH v3] acpi: Extend TPM2 ACPI table with missing log fields
Stefan Berger
- [GIT PULL] SELinux fixes for v5.8 (#1)
Paul Moore
- [PATCH] security: Fix hook iteration and default value for inode_copy_up_xattr
KP Singh
- URGENT REPLY.
Karim Zakari
- [PATCH] security: fix the key_permission LSM hook function type
James Morris
- LTP: crypto: af_alg02 regression on linux-next 20200621 tag
Naresh Kamboju
- [PATCH 00/12] ima: Fix rule parsing bugs and extend KEXEC_CMDLINE rule support
Tyler Hicks
- Greetings From Mrs. Sarah Koffi
Sarah Koffi
- [PATCH v5 0/2] tpm2: Make TPM2 logs accessible for non-UEFI firmware
Stefan Berger
- [PATCH v5 1/2] acpi: Extend TPM2 ACPI table with missing log fields
Stefan Berger
- [PATCH v5 2/2] tpm: Add support for event log pointer found in TPM2 ACPI table
Stefan Berger
- Hello.
YAVUZ BEKTER
- [PATCH] ima: AppArmor satisfies the audit rule requirements
Tyler Hicks
- [RFC][PATCH] net/bpfilter: Remove this broken and apparently unmantained
Tetsuo Handa
- Re;
test02 at shecc.com
- clean up kernel_{read,write} & friends v5
Christoph Hellwig
- [PATCH 01/14] cachefiles: switch to kernel_write
Christoph Hellwig
- [PATCH 02/14] autofs: switch to kernel_write
Christoph Hellwig
- [PATCH 03/14] bpfilter: switch to kernel_write
Christoph Hellwig
- [PATCH 04/14] fs: unexport __kernel_write
Christoph Hellwig
- [PATCH 05/14] fs: check FMODE_WRITE in __kernel_write
Christoph Hellwig
- [PATCH 06/14] fs: implement kernel_write using __kernel_write
Christoph Hellwig
- [PATCH 07/14] fs: remove __vfs_write
Christoph Hellwig
- [PATCH 08/14] fs: don't change the address limit for ->write_iter in __kernel_write
Christoph Hellwig
- [PATCH 09/14] fs: add a __kernel_read helper
Christoph Hellwig
- [PATCH 10/14] integrity/ima: switch to using __kernel_read
Christoph Hellwig
- [PATCH 11/14] fs: implement kernel_read using __kernel_read
Christoph Hellwig
- [PATCH 12/14] fs: remove __vfs_read
Christoph Hellwig
- [PATCH 13/14] fs: implement default_file_splice_read using __kernel_read
Christoph Hellwig
- [PATCH 14/14] fs: don't change the address limit for ->read_iter in __kernel_read
Christoph Hellwig
- [PATCH v2] ima_evm_utils: extended calc_bootaggr to PCRs 8 - 9
Stefan Berger
- [PATCH v3] ima_evm_utils: extended calc_bootaggr to PCRs 8 - 9
Maurizio Drocco
- [RFC][PATCH] net/bpfilter: Remove this broken and apparently unmantained
Tetsuo Handa
- [PATCH v6 0/2] tpm2: Make TPM2 logs accessible for non-UEFI firmware
Stefan Berger
- [PATCH v6 2/2] tpm: Add support for event log pointer found in TPM2 ACPI table
Stefan Berger
- Enabling interrupts in QEMU TPM TIS
Stefan Berger
- [PATCH v7 0/2] tpm2: Make TPM2 logs accessible for non-UEFI firmware
Stefan Berger
- [PATCH v8 0/2] tpm2: Make TPM2 logs accessible for non-UEFI firmware
Stefan Berger
- [PATCH v8 1/2] acpi: Extend TPM2 ACPI table with missing log fields
Stefan Berger
- [PATCH v2 00/11] ima: Fix rule parsing bugs and extend KEXEC_CMDLINE rule support
Tyler Hicks
- No subject
lookman joe
- possible deadlock in process_measurement (2)
syzbot
- [PATCH] ima: Rename internal audit rule functions
Tyler Hicks
- [PATCH] ima: Rename internal audit rule functions
Casey Schaufler
- Hello,
mrs.victoria alexander
- [GIT PULL] Security subsystem fixes for v5.8
James Morris
- [RFC PATCH 1/7] x86/cpufeatures: add X86_FEATURE_SCI
hackapple
Last message date:
Tue Jun 30 23:46:27 UTC 2020
Archived on: Tue Jun 30 23:46:43 UTC 2020
This archive was generated by
Pipermail 0.09 (Mailman edition).