| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <CAHC9VhS97RWMYmCOQVCZPUUCxdMXPMzM3R0z_U4zJQNe40M4BA@mail.gmail.com> Date: Sun, 13 Apr 2025 15:25:08 -0400 From: Paul Moore <paul@...l-moore.com> To: Nikolay Borisov <nik.borisov@...e.com> Cc: linux-security-module@...r.kernel.org, serge@...lyn.com, kees@...nel.org, linux-kernel@...r.kernel.org, kirill.shutemov@...ux.intel.com, linux-coco@...ts.linux.dev Subject: Re: [PATCH 0/2] Allow individual features to be locked down On Fri, Mar 21, 2025 at 5:13 PM Paul Moore <paul@...l-moore.com> wrote: > On Fri, Mar 21, 2025 at 6:24 AM Nikolay Borisov <nik.borisov@...e.com> wrote: > > > > This simple change allows usecases where someone might want to lock only specific > > feature at a finer granularity than integrity/confidentiality levels allows. > > The first likely user of this is the CoCo subsystem where certain features will be > > disabled. > > > > Nikolay Borisov (2): > > lockdown: Switch implementation to using bitmap > > lockdown/kunit: Introduce kunit tests > > Hi Nikolay, > > Thanks for the patches! With the merge window opening in a few days, > it is too late to consider this for the upcoming merge window so > realistically this patchset is two weeks out and I'm hopeful we'll > have a dedicated Lockdown maintainer by then so I'm going to defer the > ultimate decision on acceptance to them. FYI, I expect we'll see something on the mailing list related to this soon. -- paul-moore.com
Powered by blists - more mailing lists