Show patches with: Archived = No       |   9249 patches
« 1 2 ... 3 4 592 93 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
checkpolicy: Fix MLS users in optional blocks checkpolicy: Fix MLS users in optional blocks - - - --- 2024-08-12 James Carter bachradsusi Superseded
[v2] fs,security: Fix file_set_fowner LSM hook inconsistencies [v2] fs,security: Fix file_set_fowner LSM hook inconsistencies - - - --- 2024-08-12 Mickaël Salaün pcmoore Handled Elsewhere
libsepol/cil: Allow dotted names in aliasactual rules libsepol/cil: Allow dotted names in aliasactual rules - - - --- 2024-08-12 James Carter bachradsusi Accepted
fs,security: Fix file_set_fowner LSM hook inconsistencies fs,security: Fix file_set_fowner LSM hook inconsistencies - - - --- 2024-08-12 Mickaël Salaün pcmoore Handled Elsewhere
[v6,9/9] drm: Replace strcpy() with strscpy() Improve the copy of task comm 1 - - --- 2024-08-12 Yafang Shao pcmoore Handled Elsewhere
[v6,8/9] net: Replace strcpy() with strscpy() Improve the copy of task comm - - - --- 2024-08-12 Yafang Shao pcmoore Handled Elsewhere
[v6,7/9] tracing: Replace strncpy() with strscpy() Improve the copy of task comm 1 - - --- 2024-08-12 Yafang Shao pcmoore Handled Elsewhere
[v6,6/9] mm/util: Deduplicate code in {kstrdup,kstrndup,kmemdup_nul} Improve the copy of task comm - - - --- 2024-08-12 Yafang Shao pcmoore Handled Elsewhere
[v6,5/9] mm/util: Fix possible race condition in kstrdup() Improve the copy of task comm - - - --- 2024-08-12 Yafang Shao pcmoore Handled Elsewhere
[v6,4/9] bpftool: Ensure task comm is always NUL-terminated Improve the copy of task comm - 1 - --- 2024-08-12 Yafang Shao pcmoore Handled Elsewhere
[v6,3/9] security: Replace memcpy() with get_task_comm() Improve the copy of task comm 1 - - --- 2024-08-12 Yafang Shao pcmoore Handled Elsewhere
[v6,2/9] auditsc: Replace memcpy() with strscpy() Improve the copy of task comm 1 - - --- 2024-08-12 Yafang Shao pcmoore Handled Elsewhere
[v6,1/9] Get rid of __get_task_comm() Improve the copy of task comm - - - --- 2024-08-12 Yafang Shao pcmoore Handled Elsewhere
[2/2] selinux: move genheaders to security/selinux/ selinux: Do not include <linux/*.h> from host programs (+ extra clean-up) - - - --- 2024-08-09 Masahiro Yamada pcmoore Superseded
[1/2] selinux: do not include <linux/*.h> headers from host programs selinux: Do not include <linux/*.h> from host programs (+ extra clean-up) - - - --- 2024-08-09 Masahiro Yamada pcmoore Superseded
selinux: revert our use of vma_is_initial_heap() selinux: revert our use of vma_is_initial_heap() - - - --- 2024-08-08 Paul Moore pcmoore Accepted
Revert "selinux: use vma_is_initial_stack() and vma_is_initial_heap()" Revert "selinux: use vma_is_initial_stack() and vma_is_initial_heap()" 1 - - --- 2024-08-08 Kefeng Wang pcmoore Superseded
[1/1] selinux: add the processing of the failure of avc_add_xperms_decision() [1/1] selinux: add the processing of the failure of avc_add_xperms_decision() 1 - - --- 2024-08-07 Leizhen (ThunderTown) pcmoore Accepted
[12/12] scripts/kallsyms: add compatibility support for macos Enable build system on macOS hosts - - - --- 2024-08-06 Daniel Gomez via B4 Relay pcmoore Handled Elsewhere
[11/12] tty/vt: conmakehash requires linux/limits.h Enable build system on macOS hosts - - - --- 2024-08-06 Daniel Gomez via B4 Relay pcmoore Handled Elsewhere
[10/12] scripts/mod: add byteswap support Enable build system on macOS hosts - - - --- 2024-08-06 Daniel Gomez via B4 Relay pcmoore Handled Elsewhere
[09/12] include: add endian.h support Enable build system on macOS hosts - - - --- 2024-08-06 Daniel Gomez via B4 Relay pcmoore Handled Elsewhere
[08/12] include: add elf.h support Enable build system on macOS hosts - - - --- 2024-08-06 Daniel Gomez via B4 Relay pcmoore Handled Elsewhere
[07/12] selinux/mdp: include bitsperlong and posix_types headers Enable build system on macOS hosts - - - --- 2024-08-06 Daniel Gomez via B4 Relay pcmoore Changes Requested
[06/12] selinux/genheaders: include bitsperlong and posix_types headers Enable build system on macOS hosts - - - --- 2024-08-06 Daniel Gomez via B4 Relay pcmoore Changes Requested
[05/12] accessiblity/speakup: genmap and makemapdata require linux/version.h Enable build system on macOS hosts - - - --- 2024-08-06 Daniel Gomez via B4 Relay pcmoore Handled Elsewhere
[04/12] drm/xe: xe_gen_wa_oob: fix program_invocation_short_name for macos Enable build system on macOS hosts - - - --- 2024-08-06 Daniel Gomez via B4 Relay pcmoore Handled Elsewhere
[03/12] file2alias: fix uuid_t definitions for macos Enable build system on macOS hosts - - - --- 2024-08-06 Daniel Gomez via B4 Relay pcmoore Handled Elsewhere
[02/12] kbuild: add header_install dependency to scripts Enable build system on macOS hosts - - - --- 2024-08-06 Daniel Gomez via B4 Relay pcmoore Handled Elsewhere
[01/12] scripts: subarch.include: fix SUBARCH on MacOS hosts Enable build system on macOS hosts - 1 - --- 2024-08-06 Daniel Gomez via B4 Relay pcmoore Handled Elsewhere
[1/1] selinux: Fix potential counting error in avc_add_xperms_decision() [1/1] selinux: Fix potential counting error in avc_add_xperms_decision() 1 - - --- 2024-08-06 Leizhen (ThunderTown) pcmoore Accepted
[v2,2/2] security: remove unused cred_alloc_blank/cred_transfer helpers get rid of cred_transfer - - - --- 2024-08-05 Jann Horn pcmoore New
[v2,1/2] KEYS: use synchronous task work for changing parent credentials get rid of cred_transfer - - - --- 2024-08-05 Jann Horn pcmoore New
[v5,9/9] drm: Replace strcpy() with __get_task_comm() Improve the copy of task comm 1 - - --- 2024-08-04 Yafang Shao pcmoore Handled Elsewhere
[v5,8/9] net: Replace strcpy() with __get_task_comm() Improve the copy of task comm - - - --- 2024-08-04 Yafang Shao pcmoore Handled Elsewhere
[v5,7/9] tracing: Replace strncpy() with __get_task_comm() Improve the copy of task comm 1 - - --- 2024-08-04 Yafang Shao pcmoore Handled Elsewhere
[v5,6/9] mm/util: Deduplicate code in {kstrdup,kstrndup,kmemdup_nul} Improve the copy of task comm - - - --- 2024-08-04 Yafang Shao pcmoore Handled Elsewhere
[v5,5/9] mm/util: Fix possible race condition in kstrdup() Improve the copy of task comm - - - --- 2024-08-04 Yafang Shao pcmoore Handled Elsewhere
[v5,4/9] bpftool: Ensure task comm is always NUL-terminated Improve the copy of task comm - 1 - --- 2024-08-04 Yafang Shao pcmoore Handled Elsewhere
[v5,3/9] security: Replace memcpy() with __get_task_comm() Improve the copy of task comm 1 - - --- 2024-08-04 Yafang Shao pcmoore Handled Elsewhere
[v5,2/9] auditsc: Replace memcpy() with __get_task_comm() Improve the copy of task comm 1 - - --- 2024-08-04 Yafang Shao pcmoore Handled Elsewhere
[v5,1/9] fs/exec: Drop task_lock() inside __get_task_comm() Improve the copy of task comm - - - --- 2024-08-04 Yafang Shao pcmoore Handled Elsewhere
[RFC] security/KEYS: get rid of cred_alloc_blank and cred_transfer [RFC] security/KEYS: get rid of cred_alloc_blank and cred_transfer - - - --- 2024-08-02 Jann Horn pcmoore Superseded
[v1,2/2] policygen: respect CIL option when generating comments [v1,1/2] sepolgen: initialize gen_cil - - - --- 2024-08-01 dmitry.sharshakov@siderolabs.com bachradsusi Accepted
[v1,1/2] sepolgen: initialize gen_cil [v1,1/2] sepolgen: initialize gen_cil 1 - - --- 2024-08-01 dmitry.sharshakov@siderolabs.com bachradsusi Accepted
[v5] libsemanage: Preserve file context and ownership in policy store [v5] libsemanage: Preserve file context and ownership in policy store 1 - - --- 2024-07-29 Vit Mojzis Accepted
[v4,11/11] drm: Replace strcpy() with __get_task_comm() Improve the copy of task comm 1 - - --- 2024-07-29 Yafang Shao pcmoore Handled Elsewhere
[v4,10/11] net: Replace strcpy() with __get_task_comm() Improve the copy of task comm - - - --- 2024-07-29 Yafang Shao pcmoore Handled Elsewhere
[v4,09/11] tracing: Replace strncpy() with __get_task_comm() Improve the copy of task comm 1 - - --- 2024-07-29 Yafang Shao pcmoore Handled Elsewhere
[v4,08/11] tsacct: Replace strncpy() with __get_task_comm() Improve the copy of task comm - - - --- 2024-07-29 Yafang Shao pcmoore Handled Elsewhere
[v4,07/11] mm/kmemleak: Replace strncpy() with __get_task_comm() Improve the copy of task comm 1 - - --- 2024-07-29 Yafang Shao pcmoore Handled Elsewhere
[v4,06/11] mm/util: Deduplicate code in {kstrdup,kstrndup,kmemdup_nul} Improve the copy of task comm - - - --- 2024-07-29 Yafang Shao pcmoore Handled Elsewhere
[v4,05/11] mm/util: Fix possible race condition in kstrdup() Improve the copy of task comm - - - --- 2024-07-29 Yafang Shao pcmoore Handled Elsewhere
[v4,04/11] bpftool: Ensure task comm is always NUL-terminated Improve the copy of task comm - 1 - --- 2024-07-29 Yafang Shao pcmoore Handled Elsewhere
[v4,03/11] security: Replace memcpy() with __get_task_comm() Improve the copy of task comm 1 - - --- 2024-07-29 Yafang Shao pcmoore Handled Elsewhere
[v4,02/11] auditsc: Replace memcpy() with __get_task_comm() Improve the copy of task comm 1 - - --- 2024-07-29 Yafang Shao pcmoore Handled Elsewhere
[v4,01/11] fs/exec: Drop task_lock() inside __get_task_comm() Improve the copy of task comm - - - --- 2024-07-29 Yafang Shao pcmoore Handled Elsewhere
libselinux/restorecon: Include <selinux/label.h> libselinux/restorecon: Include <selinux/label.h> 1 - - --- 2024-07-26 Vit Mojzis Accepted
[v4] libsemanage: Preserve file context and ownership in policy store [v4] libsemanage: Preserve file context and ownership in policy store 1 - - --- 2024-07-25 Vit Mojzis Superseded
[v1,2/2] lsm: Refactor return value of LSM hook inode_copy_up_xattr Refactor return value of two lsm hooks - - - --- 2024-07-24 Xu Kuohai pcmoore Handled Elsewhere
[v1,1/2] lsm: Refactor return value of LSM hook vm_enough_memory Refactor return value of two lsm hooks - - - --- 2024-07-24 Xu Kuohai pcmoore Handled Elsewhere
libsepol/cil: Check that sym_index is within bounds libsepol/cil: Check that sym_index is within bounds 1 - - --- 2024-07-23 Vit Mojzis bachradsusi Accepted
[v3] libsemanage: Preserve file context and ownership in policy store [v3] libsemanage: Preserve file context and ownership in policy store - - - --- 2024-07-23 Vit Mojzis bachradsusi Superseded
libsepol/sepol_compute_sid: Do not destroy uninitialized context libsepol/sepol_compute_sid: Do not destroy uninitialized context 1 1 - --- 2024-07-19 Vit Mojzis bachradsusi Accepted
[v2] libsemanage: Preserve file context and ownership in policy store [v2] libsemanage: Preserve file context and ownership in policy store - - - --- 2024-07-19 Vit Mojzis bachradsusi Superseded
[GIT,PULL] selinux/selinux-pr-20240715 [GIT,PULL] selinux/selinux-pr-20240715 - - - --- 2024-07-15 Paul Moore pcmoore Accepted
[RPC] Topic: Issues and Testing Regarding SELinx AVC Cache Modification [RPC] Topic: Issues and Testing Regarding SELinx AVC Cache Modification - - - --- 2024-07-15 Canfeng Guo pcmoore RFC
[-next,v2] selinux: refactor code to return ERR_PTR in selinux_netlbl_sock_genattr [-next,v2] selinux: refactor code to return ERR_PTR in selinux_netlbl_sock_genattr - - - --- 2024-07-12 cuigaosheng pcmoore Accepted
[RFC] libsemanage: Do not change file context when copying files [RFC] libsemanage: Do not change file context when copying files - - - --- 2024-07-11 Vit Mojzis bachradsusi Superseded
[bpf-next,v4,20/20] selftests/bpf: Add verifier tests for bpf lsm Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Handled Elsewhere
[bpf-next,v4,19/20] selftests/bpf: Add test for lsm tail call Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Handled Elsewhere
[bpf-next,v4,18/20] selftests/bpf: Add return value checks for failed tests Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Handled Elsewhere
[bpf-next,v4,17/20] selftests/bpf: Avoid load failure for token_lsm.c Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Handled Elsewhere
[bpf-next,v4,16/20] bpf: Add a special case for bitwise AND on range [-1, 0] Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Handled Elsewhere
[bpf-next,v4,15/20] bpf: Fix compare error in function retval_range_within Add return value range check for BPF LSM 1 - - --- 2024-07-11 Xu Kuohai pcmoore Handled Elsewhere
[bpf-next,v4,14/20] bpf: Prevent tail call between progs attached to different hooks Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Handled Elsewhere
[bpf-next,v4,13/20] bpf, lsm: Add check for BPF LSM return value Add return value range check for BPF LSM 1 - - --- 2024-07-11 Xu Kuohai pcmoore Handled Elsewhere
[bpf-next,v4,12/20] bpf, lsm: Enable BPF LSM prog to read/write return value parameters Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Handled Elsewhere
[bpf-next,v4,11/20] bpf, lsm: Add disabled BPF LSM hook list Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Handled Elsewhere
[bpf-next,v4,10/20] lsm: Refactor return value of LSM hook audit_rule_match Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Handled Elsewhere
[bpf-next,v4,09/20] lsm: Refactor return value of LSM hook key_getsecurity Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Handled Elsewhere
[bpf-next,v4,08/20] lsm: Refactor return value of LSM hook getprocattr Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Handled Elsewhere
[bpf-next,v4,07/20] lsm: Refactor return value of LSM hook setprocattr Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Handled Elsewhere
[bpf-next,v4,06/20] lsm: Refactor return value of LSM hook getselfattr Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Handled Elsewhere
[bpf-next,v4,05/20] lsm: Refactor return value of LSM hook inode_copy_up_xattr Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Handled Elsewhere
[bpf-next,v4,04/20] lsm: Refactor return value of LSM hook inode_listsecurity Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Handled Elsewhere
[bpf-next,v4,03/20] lsm: Refactor return value of LSM hook inode_getsecurity Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Handled Elsewhere
[bpf-next,v4,02/20] lsm: Refactor return value of LSM hook inode_need_killpriv Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Handled Elsewhere
[bpf-next,v4,01/20] lsm: Refactor return value of LSM hook vm_enough_memory Add return value range check for BPF LSM - - - --- 2024-07-11 Xu Kuohai pcmoore Handled Elsewhere
[-next] selinux: refactor code to return the correct errno [-next] selinux: refactor code to return the correct errno - - - --- 2024-07-11 cuigaosheng pcmoore Changes Requested
[RFC] lsm: add the inode_free_security_rcu() LSM implementation hook [RFC] lsm: add the inode_free_security_rcu() LSM implementation hook - - - --- 2024-07-10 Paul Moore pcmoore Handled Elsewhere
libselinux: set free'd data to NULL libselinux: set free'd data to NULL 1 - - --- 2024-07-09 Petr Lautrbach bachradsusi Accepted
checkpolicy: Check the right bits of an ibpkeycon rule subnet prefix checkpolicy: Check the right bits of an ibpkeycon rule subnet prefix 1 - - --- 2024-07-08 James Carter bachradsusi Accepted
selinux,smack: remove the capability checks in the removexattr hooks selinux,smack: remove the capability checks in the removexattr hooks 1 - - --- 2024-07-03 Paul Moore pcmoore Handled Elsewhere
selinux: Streamline type determination in security_compute_sid selinux: Streamline type determination in security_compute_sid - - - --- 2024-07-03 Canfeng Guo pcmoore Accepted
[testsuite] tests/task_setscheduler: add cgroup v2 case for moving proc to root cgroup [testsuite] tests/task_setscheduler: add cgroup v2 case for moving proc to root cgroup - - - --- 2024-07-02 Gong Ruiqi omos New
libselinux: Fix integer comparison issues when compiling for 32-bit libselinux: Fix integer comparison issues when compiling for 32-bit 1 1 - --- 2024-07-01 James Carter bachradsusi Accepted
UnicodeDecodeError: utf-8 on python semanage -i import UnicodeDecodeError: utf-8 on python semanage -i import - - - --- 2024-07-01 Allan Oepping bachradsusi Rejected
selinux: Streamline type determination in security_compute_sid selinux: Streamline type determination in security_compute_sid - - - --- 2024-06-29 Canfeng Guo pcmoore Changes Requested
selinux: Use 1UL for EBITMAP_BIT to match maps type selinux: Use 1UL for EBITMAP_BIT to match maps type - - - --- 2024-06-29 Canfeng Guo pcmoore Accepted
« 1 2 ... 3 4 592 93 »