SELinux Development list

Show patches with: Archived = No | 9263 patches

« 1 2 ... 24 25 26 … 92 93 »

Patch	Series	A/R/T	S/W/F	Date	Submitter	Delegate	State
[v33,19/29] NET: Store LSM netlabel data in a lsmblob	[v33,01/29] integrity: disassociate ima_filter_rule from security_audit_rule	2 2 -	---	2022-03-10	Casey Schaufler	pcmoore	Changes Requested
[v33,18/29] LSM: security_secid_to_secctx in netlink netfilter	[v33,01/29] integrity: disassociate ima_filter_rule from security_audit_rule	3 2 -	---	2022-03-10	Casey Schaufler	pcmoore	Changes Requested
[v33,17/29] LSM: Use lsmcontext in security_inode_getsecctx	[v33,01/29] integrity: disassociate ima_filter_rule from security_audit_rule	3 2 -	---	2022-03-10	Casey Schaufler	pcmoore	Changes Requested
[v33,16/29] LSM: Use lsmcontext in security_secid_to_secctx	[v33,01/29] integrity: disassociate ima_filter_rule from security_audit_rule	- - -	---	2022-03-10	Casey Schaufler	pcmoore	Changes Requested
[v33,15/29] LSM: Ensure the correct LSM context releaser	[v33,01/29] integrity: disassociate ima_filter_rule from security_audit_rule	3 2 -	---	2022-03-10	Casey Schaufler	pcmoore	Changes Requested
[v33,14/29] LSM: Specify which LSM to display	[v33,01/29] integrity: disassociate ima_filter_rule from security_audit_rule	- - -	---	2022-03-10	Casey Schaufler	pcmoore	Changes Requested
[v33,13/29] LSM: Use lsmblob in security_cred_getsecid	[v33,01/29] integrity: disassociate ima_filter_rule from security_audit_rule	2 2 -	---	2022-03-10	Casey Schaufler	pcmoore	Changes Requested
[v33,12/29] LSM: Use lsmblob in security_inode_getsecid	[v33,01/29] integrity: disassociate ima_filter_rule from security_audit_rule	2 2 -	---	2022-03-10	Casey Schaufler	pcmoore	Changes Requested
[v33,11/29] LSM: Use lsmblob in security_current_getsecid	[v33,01/29] integrity: disassociate ima_filter_rule from security_audit_rule	2 2 -	---	2022-03-10	Casey Schaufler	pcmoore	Changes Requested
[v33,10/29] LSM: Use lsmblob in security_ipc_getsecid	[v33,01/29] integrity: disassociate ima_filter_rule from security_audit_rule	2 2 -	---	2022-03-10	Casey Schaufler	pcmoore	Changes Requested
[v33,09/29] LSM: Use lsmblob in security_secid_to_secctx	[v33,01/29] integrity: disassociate ima_filter_rule from security_audit_rule	1 1 -	---	2022-03-10	Casey Schaufler	pcmoore	Changes Requested
[v33,08/29] LSM: Use lsmblob in security_secctx_to_secid	[v33,01/29] integrity: disassociate ima_filter_rule from security_audit_rule	1 1 -	---	2022-03-10	Casey Schaufler	pcmoore	Changes Requested
[v33,07/29] LSM: Use lsmblob in security_kernel_act_as	[v33,01/29] integrity: disassociate ima_filter_rule from security_audit_rule	2 2 -	---	2022-03-10	Casey Schaufler	pcmoore	Changes Requested
[v33,06/29] LSM: Use lsmblob in security_audit_rule_match	[v33,01/29] integrity: disassociate ima_filter_rule from security_audit_rule	1 - -	---	2022-03-10	Casey Schaufler	pcmoore	Changes Requested
[v33,05/29] IMA: avoid label collisions with stacked LSMs	[v33,01/29] integrity: disassociate ima_filter_rule from security_audit_rule	- - -	---	2022-03-10	Casey Schaufler	pcmoore	Changes Requested
[v33,04/29] LSM: provide lsm name and id slot mappings	[v33,01/29] integrity: disassociate ima_filter_rule from security_audit_rule	1 1 -	---	2022-03-10	Casey Schaufler	pcmoore	Changes Requested
[v33,03/29] LSM: Add the lsmblob data structure.	[v33,01/29] integrity: disassociate ima_filter_rule from security_audit_rule	- 1 -	---	2022-03-10	Casey Schaufler	pcmoore	Changes Requested
[v33,02/29] LSM: Infrastructure management of the sock security	[v33,01/29] integrity: disassociate ima_filter_rule from security_audit_rule	2 2 -	---	2022-03-10	Casey Schaufler	pcmoore	Changes Requested
[v33,01/29] integrity: disassociate ima_filter_rule from security_audit_rule	[v33,01/29] integrity: disassociate ima_filter_rule from security_audit_rule	1 - -	---	2022-03-10	Casey Schaufler	pcmoore	Changes Requested
libsepol/cil: Write a message when a log message is truncated	libsepol/cil: Write a message when a log message is truncated	- - -	---	2022-03-09	James Carter		Accepted
[RFC] selinux: checkreqprot is deprecated, add some ssleep() discomfort	[RFC] selinux: checkreqprot is deprecated, add some ssleep() discomfort	- - -	---	2022-03-08	Paul Moore	pcmoore	Accepted
[2/2] libsepol: validate boolean datum arrays	[1/2] libsepol: reject xperm av rules in conditional statements	- - -	---	2022-03-08	Christian Göttsche		Accepted
[1/2] libsepol: reject xperm av rules in conditional statements	[1/2] libsepol: reject xperm av rules in conditional statements	1 - -	---	2022-03-08	Christian Göttsche		Accepted
[v2] selinux: log anon inode class name	[v2] selinux: log anon inode class name	- - -	---	2022-03-08	Christian Göttsche	pcmoore	Accepted
[v2,4/5] selinux: declare data arrays const	Untitled series #621586	- - -	---	2022-03-08	Christian Göttsche	pcmoore	Superseded
libsepol: Shorten the policy capability enum names	libsepol: Shorten the policy capability enum names	1 - -	---	2022-03-07	Richard Haines		Accepted
libsepol: Do a more thorough validation of constraints	libsepol: Do a more thorough validation of constraints	- - -	---	2022-03-03	James Carter		Accepted
libsepol: fix reallocarray imports	libsepol: fix reallocarray imports	1 - -	---	2022-03-03	Thiébaud Weksteen		Accepted
semanage-fcontext.8: Drop extra )s after FILE_SPEC	semanage-fcontext.8: Drop extra )s after FILE_SPEC	1 - -	---	2022-03-02	Petr Lautrbach		Accepted
[RFC] selinux: runtime disable is deprecated, add some ssleep() discomfort	[RFC] selinux: runtime disable is deprecated, add some ssleep() discomfort	1 - -	---	2022-03-01	Paul Moore	pcmoore	Accepted
selinux: shorten the policy capability enum names	selinux: shorten the policy capability enum names	- - -	---	2022-03-01	Paul Moore	pcmoore	Accepted
docs: selinux: add '=' signs to kernel boot options	docs: selinux: add '=' signs to kernel boot options	1 - -	---	2022-03-01	Randy Dunlap	pcmoore	Accepted
[RESEND] xfs: don't generate selinux audit messages for capability testing	[RESEND] xfs: don't generate selinux audit messages for capability testing	1 2 -	---	2022-03-01	Darrick J. Wong	pcmoore	Handled Elsewhere
[V2] libsepol: Add 'ioctl_skip_cloexec' policy capability	[V2] libsepol: Add 'ioctl_skip_cloexec' policy capability	1 - -	---	2022-02-25	Richard Haines		Accepted
[V4] security/selinux: Always allow FIOCLEX and FIONCLEX	[V4] security/selinux: Always allow FIOCLEX and FIONCLEX	- - -	---	2022-02-25	Richard Haines	pcmoore	Accepted
userfaultfd, capability: introduce CAP_USERFAULTFD	userfaultfd, capability: introduce CAP_USERFAULTFD	- - -	---	2022-02-24	Axel Rasmussen	pcmoore	Handled Elsewhere
[Notebook] policy_config_statements.md: How to add a new capability	[Notebook] policy_config_statements.md: How to add a new capability	- - -	---	2022-02-24	Richard Haines	pcmoore	Changes Requested
[testsuite] tests/ioctl: Update ioctl tests	[testsuite] tests/ioctl: Update ioctl tests	- - -	---	2022-02-24	Richard Haines	omos	Accepted
libsepol: Add 'ioctl_skip_cloexec' policy capability	libsepol: Add 'ioctl_skip_cloexec' policy capability	- - -	---	2022-02-24	Richard Haines		Accepted
[V3] security/selinux: Always allow FIOCLEX and FIONCLEX	[V3] security/selinux: Always allow FIOCLEX and FIONCLEX	- - -	---	2022-02-24	Richard Haines	pcmoore	Changes Requested
[GIT,PULL] SELinux fixes for v5.17 (#2)	[GIT,PULL] SELinux fixes for v5.17 (#2)	- - -	---	2022-02-23	Paul Moore	pcmoore	Accepted
[v2] libsepol: validate expressions by evaluating	[v2] libsepol: validate expressions by evaluating	- - -	---	2022-02-22	Christian Göttsche		Superseded
[RFC,v2,4/4] libsepol: add policy utilities	[RFC,v2,1/4] libsepol: add sepol_av_perm_to_string	- - -	---	2022-02-22	Christian Göttsche		Accepted
[RFC,v2,3/4] libsepol: export functions for policy analysis	[RFC,v2,1/4] libsepol: add sepol_av_perm_to_string	- - -	---	2022-02-22	Christian Göttsche		Accepted
[RFC,v2,2/4] libsepol: introduce sepol_const_security_context_t typedef	[RFC,v2,1/4] libsepol: add sepol_av_perm_to_string	- - -	---	2022-02-22	Christian Göttsche		Accepted
[RFC,v2,1/4] libsepol: add sepol_av_perm_to_string	[RFC,v2,1/4] libsepol: add sepol_av_perm_to_string	1 - -	---	2022-02-22	Christian Göttsche		Accepted
[4/4] newrole: ensure password memory erasure	[1/4] newrole: add Makefile target to test build options	- - -	---	2022-02-22	Christian Göttsche		Accepted
[3/4] newrole: check for crypt(3) failure	[1/4] newrole: add Makefile target to test build options	- - -	---	2022-02-22	Christian Göttsche		Accepted
[2/4] newrole: silence compiler warnings	[1/4] newrole: add Makefile target to test build options	- - -	---	2022-02-22	Christian Göttsche		Accepted
[1/4] newrole: add Makefile target to test build options	[1/4] newrole: add Makefile target to test build options	1 - -	---	2022-02-22	Christian Göttsche		Accepted
libsepol: validate expressions by evaluating	libsepol: validate expressions by evaluating	- - -	---	2022-02-22	Christian Göttsche		Superseded
libsepol: NULL pointer offset fix	libsepol: NULL pointer offset fix	1 - -	---	2022-02-22	Christian Göttsche		Accepted
selinux: fix misuse of mutex_is_locked()	selinux: fix misuse of mutex_is_locked()	- - -	---	2022-02-21	Ondrej Mosnacek	pcmoore	Accepted
[V2] security/selinux: Always allow FIOCLEX and FIONCLEX	[V2] security/selinux: Always allow FIOCLEX and FIONCLEX	- - -	---	2022-02-21	Richard Haines	pcmoore	Changes Requested
[testsuite] tests/bpf: use new API if version >= 0.6	[testsuite] tests/bpf: use new API if version >= 0.6	- - -	---	2022-02-18	Ondrej Mosnacek		Accepted
[v2] policycoreutils/fixfiles: Use parallel relabeling	[v2] policycoreutils/fixfiles: Use parallel relabeling	1 - -	---	2022-02-18	Petr Lautrbach		Accepted
[RFC,1/2] capability: add capable_or to test for multiple caps with exactly one audit message	[RFC,1/2] capability: add capable_or to test for multiple caps with exactly one audit message	- - -	---	2022-02-17	Christian Göttsche	pcmoore	Handled Elsewhere
[RFC,2/2] capability: use new capable_or functionality	[RFC,1/2] capability: add capable_or to test for multiple caps with exactly one audit message	- - -	---	2022-02-17	Christian Göttsche	pcmoore	Handled Elsewhere
selinux: log anon inode class name	selinux: log anon inode class name	- - -	---	2022-02-17	Christian Göttsche	pcmoore	Changes Requested
[1/5] selinux: drop return statement at end of void functions	[1/5] selinux: drop return statement at end of void functions	- - -	---	2022-02-17	Christian Göttsche	pcmoore	Accepted
[5/5] selinux: drop unnecessary NULL check	[1/5] selinux: drop return statement at end of void functions	- - -	---	2022-02-17	Christian Göttsche	pcmoore	Accepted
[4/5] selinux: declare data arrays const	[1/5] selinux: drop return statement at end of void functions	- - -	---	2022-02-17	Christian Göttsche	pcmoore	Changes Requested
[3/5] selinux: use consistent pointer types for boolean arrays	[1/5] selinux: drop return statement at end of void functions	- - -	---	2022-02-17	Christian Göttsche	pcmoore	Changes Requested
[2/5] selinux: use correct type for context length	[1/5] selinux: drop return statement at end of void functions	- - -	---	2022-02-17	Christian Göttsche	pcmoore	Accepted
security: declare member holding string literal const	security: declare member holding string literal const	- 2 -	---	2022-02-17	Christian Göttsche	pcmoore	Accepted
[v2] libselinux: Strip spaces before values in config	[v2] libselinux: Strip spaces before values in config	1 - -	---	2022-02-17	Vit Mojzis		Accepted
libsemanage: allow spaces in user/group names	libsemanage: allow spaces in user/group names	1 - -	---	2022-02-17	Vit Mojzis		Accepted
policycoreutils/fixfiles: Use parallel relabeling	policycoreutils/fixfiles: Use parallel relabeling	- - -	---	2022-02-16	Petr Lautrbach		Superseded
[v2] libsepol: Populate and use policy name	[v2] libsepol: Populate and use policy name	1 - -	---	2022-02-16	Thiébaud Weksteen		Accepted
python/sepolgen: accept square brackets in FILENAME token	python/sepolgen: accept square brackets in FILENAME token	1 - -	---	2022-02-14	Christian Göttsche		Accepted
python/sepolgen: accept square brackets in FILENAME token	python/sepolgen: accept square brackets in FILENAME token	- - -	---	2022-02-14	Christian Göttsche		Superseded
[testsuite,v3] tests/sctp: add client peeloff tests	[testsuite,v3] tests/sctp: add client peeloff tests	- - -	---	2022-02-14	Ondrej Mosnacek	omos	Superseded
[testsuite,v2] tests/sctp: add client peeloff tests	[testsuite,v2] tests/sctp: add client peeloff tests	- - -	---	2022-02-12	Ondrej Mosnacek	omos	Superseded
[net,v3,2/2] security: implement sctp_assoc_established hook in selinux	security: fixups for the security hooks in sctp	- - -	---	2022-02-12	Ondrej Mosnacek	pcmoore	Accepted
[net,v3,1/2] security: add sctp_assoc_established hook	security: fixups for the security hooks in sctp	- - -	---	2022-02-12	Ondrej Mosnacek	pcmoore	Accepted
[2/2] libsepol: Don't write out constraint if it has no permissions	[1/2] libsepol/cil: Don't add constraint if there are no permissions	- - -	---	2022-02-11	James Carter		Accepted
[1/2] libsepol/cil: Don't add constraint if there are no permissions	[1/2] libsepol/cil: Don't add constraint if there are no permissions	- - -	---	2022-02-11	James Carter		Accepted
[3/3] libsepol: validate several flags	[1/3] libsepol: use correct error type to please UBSAN	- - -	---	2022-02-10	Christian Göttsche		Accepted
[2/3] libsepol: more strict constraint validation	[1/3] libsepol: use correct error type to please UBSAN	- - -	---	2022-02-10	Christian Göttsche		Accepted
[1/3] libsepol: use correct error type to please UBSAN	[1/3] libsepol: use correct error type to please UBSAN	1 - -	---	2022-02-10	Christian Göttsche		Accepted
[v2] checkpolicy: allow wildcard permissions in constraints	[v2] checkpolicy: allow wildcard permissions in constraints	1 - -	---	2022-02-10	Christian Göttsche		Accepted
[testsuite] tests/binder: Adjust kernel uapi headers check for building	[testsuite] tests/binder: Adjust kernel uapi headers check for building	- - -	---	2022-02-09	Gong Ruiqi	omos	Accepted
checkpolicy: allow wildcard permissions in constraints	checkpolicy: allow wildcard permissions in constraints	- - -	---	2022-02-04	Christian Göttsche		Superseded
[2/2] libsepol: add policy utilities	[1/2] libsepol: add sepol_av_perm_to_string	- - -	---	2022-02-04	Christian Göttsche		Superseded
[1/2] libsepol: add sepol_av_perm_to_string	[1/2] libsepol: add sepol_av_perm_to_string	- - -	---	2022-02-04	Christian Göttsche		Superseded
[GIT,PULL] SELinux fixes for v5.17 (#1)	[GIT,PULL] SELinux fixes for v5.17 (#1)	- - -	---	2022-02-03	Paul Moore	pcmoore	Accepted
[userspace,v2,6/6] semodule: add command-line option to detect module changes	Optionally rebuild policy store only if there were external changes to modules	- - -	---	2022-02-03	Ondrej Mosnacek		Accepted
[userspace,v2,5/6] libsemanage: optionally rebuild policy when modules are changed externally	Optionally rebuild policy store only if there were external changes to modules	- - -	---	2022-02-03	Ondrej Mosnacek		Accepted
[userspace,v2,4/6] libsemanage: clean up semanage_direct_commit() a bit	Optionally rebuild policy store only if there were external changes to modules	- - -	---	2022-02-03	Ondrej Mosnacek		Accepted
[userspace,v2,3/6] libsemanage: move compressed file handling into a separate object	Optionally rebuild policy store only if there were external changes to modules	- - -	---	2022-02-03	Ondrej Mosnacek		Accepted
[userspace,v2,2/6] semodule,libsemanage: move module hashing into libsemanage	Optionally rebuild policy store only if there were external changes to modules	- - -	---	2022-02-03	Ondrej Mosnacek		Accepted
[userspace,v2,1/6] libsemanage: add missing include to boolean_record.c	Optionally rebuild policy store only if there were external changes to modules	1 - -	---	2022-02-03	Ondrej Mosnacek		Accepted
[v32,28/28] AppArmor: Remove the exclusive flag	[v32,01/28] integrity: disassociate ima_filter_rule from security_audit_rule	2 1 -	---	2022-02-02	Casey Schaufler	pcmoore	Changes Requested
[v32,27/28] LSM: Add /proc attr entry for full LSM context	[v32,01/28] integrity: disassociate ima_filter_rule from security_audit_rule	- 1 -	---	2022-02-02	Casey Schaufler	pcmoore	Changes Requested
[v32,26/28] Audit: Add record for multiple object security contexts	[v32,01/28] integrity: disassociate ima_filter_rule from security_audit_rule	- - -	---	2022-02-02	Casey Schaufler	pcmoore	Changes Requested
[v32,25/28] Audit: Add record for multiple task security contexts	[v32,01/28] integrity: disassociate ima_filter_rule from security_audit_rule	- - -	---	2022-02-02	Casey Schaufler	pcmoore	Changes Requested
[v32,24/28] Audit: Add framework for auxiliary records	[v32,01/28] integrity: disassociate ima_filter_rule from security_audit_rule	- - -	---	2022-02-02	Casey Schaufler	pcmoore	Changes Requested
[v32,23/28] Audit: Create audit_stamp structure	[v32,01/28] integrity: disassociate ima_filter_rule from security_audit_rule	1 - -	---	2022-02-02	Casey Schaufler	pcmoore	Changes Requested
[v32,22/28] Audit: Keep multiple LSM data in audit_names	[v32,01/28] integrity: disassociate ima_filter_rule from security_audit_rule	1 - -	---	2022-02-02	Casey Schaufler	pcmoore	Changes Requested
[v32,21/28] LSM: Extend security_secid_to_secctx to include module selection	[v32,01/28] integrity: disassociate ima_filter_rule from security_audit_rule	- - -	---	2022-02-02	Casey Schaufler	pcmoore	Changes Requested

« 1 2 ... 24 25 26 … 92 93 »