Show patches with: Submitter = Ondrej Mosnacek       |    State = Action Required       |   62 patches
Patch Series A/R/T S/W/F Date Submitter Delegate State
selinux: fix handling of empty opts in selinux_fs_context_submount() selinux: fix handling of empty opts in selinux_fs_context_submount() - 1 - --- 2023-09-11 Ondrej Mosnacek New
sysctl: fix proc_dobool() usability sysctl: fix proc_dobool() usability 1 - - --- 2023-02-10 Ondrej Mosnacek New
[v2] fs: don't audit the capability check in simple_xattr_list() [v2] fs: don't audit the capability check in simple_xattr_list() - 2 - --- 2022-11-03 Ondrej Mosnacek New
[2/2] fs: don't call capable() prematurely in simple_xattr_list() fs: fix capable() call in simple_xattr_list() - - - --- 2022-09-01 Ondrej Mosnacek New
[1/2] fs: convert simple_xattrs to RCU list fs: fix capable() call in simple_xattr_list() - - - --- 2022-09-01 Ondrej Mosnacek New
[RFC,RESEND] userfaultfd: open userfaultfds with O_RDONLY [RFC,RESEND] userfaultfd: open userfaultfds with O_RDONLY 2 - - --- 2022-07-08 Ondrej Mosnacek New
[v4] lockdown,selinux: fix wrong subject in some SELinux lockdown checks [v4] lockdown,selinux: fix wrong subject in some SELinux lockdown checks 3 - - --- 2021-09-13 Ondrej Mosnacek New
[RFC] userfaultfd: open userfaultfds with O_RDONLY [RFC] userfaultfd: open userfaultfds with O_RDONLY - - - --- 2021-06-24 Ondrej Mosnacek New
[v3] lockdown,selinux: fix wrong subject in some SELinux lockdown checks [v3] lockdown,selinux: fix wrong subject in some SELinux lockdown checks 2 - - --- 2021-06-16 Ondrej Mosnacek New
[v2,2/2] selinux: fix SECURITY_LSM_NATIVE_LABELS flag handling on double mount vfs/security/NFS/btrfs: clean up and fix LSM option handling - - - --- 2021-05-17 Ondrej Mosnacek New
[v2,1/2] vfs,LSM: introduce the FS_HANDLES_LSM_OPTS flag vfs/security/NFS/btrfs: clean up and fix LSM option handling - - 1 --- 2021-05-17 Ondrej Mosnacek New
[v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks [v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks 4 - 2 --- 2021-05-17 Ondrej Mosnacek New
[v2] debugfs: fix security_locked_down() call for SELinux [v2] debugfs: fix security_locked_down() call for SELinux - - - --- 2021-05-07 Ondrej Mosnacek New
serial: core: fix suspicious security_locked_down() call serial: core: fix suspicious security_locked_down() call 1 - - --- 2021-05-07 Ondrej Mosnacek New
debugfs: fix security_locked_down() call for SELinux debugfs: fix security_locked_down() call for SELinux - - - --- 2021-05-07 Ondrej Mosnacek New
lockdown,selinux: fix bogus SELinux lockdown permission checks lockdown,selinux: fix bogus SELinux lockdown permission checks - - - --- 2021-05-07 Ondrej Mosnacek New
[RFC,2/2] selinux: add capability to map anon inode types to separate classes selinux,anon_inodes: Use a separate SELinux class for each type of anon inode - - - --- 2021-04-21 Ondrej Mosnacek New
[RFC,1/2] LSM,anon_inodes: explicitly distinguish anon inode types selinux,anon_inodes: Use a separate SELinux class for each type of anon inode - - - --- 2021-04-21 Ondrej Mosnacek New
[2/2] selinux: fix SECURITY_LSM_NATIVE_LABELS flag handling on double mount vfs/security/NFS/btrfs: clean up and fix LSM option handling - - - --- 2021-04-09 Ondrej Mosnacek New
[1/2] vfs,LSM: introduce the FS_HANDLES_LSM_OPTS flag vfs/security/NFS/btrfs: clean up and fix LSM option handling - - - --- 2021-04-09 Ondrej Mosnacek New
fs_context: drop the unused lsm_flags member fs_context: drop the unused lsm_flags member - - - --- 2021-04-09 Ondrej Mosnacek New
[v2] vfs: fix fsconfig(2) LSM mount option handling for btrfs [v2] vfs: fix fsconfig(2) LSM mount option handling for btrfs - - 1 --- 2021-03-16 Ondrej Mosnacek New
vfs: fix fsconfig(2) LSM mount option handling for btrfs vfs: fix fsconfig(2) LSM mount option handling for btrfs - - - --- 2020-11-18 Ondrej Mosnacek New
[v2,4/4] selinux: use d_genocide_safe() in selinuxfs selinux: fix race when removing selinuxfs entries - - - --- 2019-08-01 Ondrej Mosnacek New
[v2,3/4] dcache: introduce d_genocide_safe() selinux: fix race when removing selinuxfs entries - - - --- 2019-08-01 Ondrej Mosnacek New
[v2,2/4] d_walk: add leave callback selinux: fix race when removing selinuxfs entries - - - --- 2019-08-01 Ondrej Mosnacek New
[v2,1/4] d_walk: optionally lock also parent inode selinux: fix race when removing selinuxfs entries - - - --- 2019-08-01 Ondrej Mosnacek New
[v7,7/7] kernfs: initialize security of newly created nodes Allow initializing the kernfs node's secctx based on its parent - - - --- 2019-02-22 Ondrej Mosnacek New
[v7,6/7] selinux: implement the kernfs_init_security hook Allow initializing the kernfs node's secctx based on its parent - - - --- 2019-02-22 Ondrej Mosnacek New
[v7,5/7] LSM: add new hook for kernfs node initialization Allow initializing the kernfs node's secctx based on its parent - - - --- 2019-02-22 Ondrej Mosnacek New
[v7,4/7] kernfs: use simple_xattrs for security attributes Allow initializing the kernfs node's secctx based on its parent - - - --- 2019-02-22 Ondrej Mosnacek New
[v7,3/7] selinux: try security xattr after genfs for kernfs filesystems Allow initializing the kernfs node's secctx based on its parent 1 - - --- 2019-02-22 Ondrej Mosnacek New
[v7,2/7] kernfs: do not alloc iattrs in kernfs_xattr_get Allow initializing the kernfs node's secctx based on its parent - - - --- 2019-02-22 Ondrej Mosnacek New
[v7,1/7] kernfs: clean up struct kernfs_iattrs Allow initializing the kernfs node's secctx based on its parent - - - --- 2019-02-22 Ondrej Mosnacek New
[v6,5/5] kernfs: initialize security of newly created nodes Allow initializing the kernfs node's secctx based on its parent - - - --- 2019-02-14 Ondrej Mosnacek New
[v6,4/5] selinux: implement the kernfs_init_security hook Allow initializing the kernfs node's secctx based on its parent - - - --- 2019-02-14 Ondrej Mosnacek New
[v6,3/5] LSM: add new hook for kernfs node initialization Allow initializing the kernfs node's secctx based on its parent - - - --- 2019-02-14 Ondrej Mosnacek New
[v6,2/5] kernfs: use simple_xattrs for security attributes Allow initializing the kernfs node's secctx based on its parent - - - --- 2019-02-14 Ondrej Mosnacek New
[v6,1/5] selinux: try security xattr after genfs for kernfs filesystems Allow initializing the kernfs node's secctx based on its parent - - - --- 2019-02-14 Ondrej Mosnacek New
[v5,5/5] kernfs: initialize security of newly created nodes Allow initializing the kernfs node's secctx based on its parent - - - --- 2019-02-05 Ondrej Mosnacek New
[v5,4/5] selinux: implement the kernfs_init_security hook Allow initializing the kernfs node's secctx based on its parent - - - --- 2019-02-05 Ondrej Mosnacek New
[v5,3/5] LSM: add new hook for kernfs node initialization Allow initializing the kernfs node's secctx based on its parent - - - --- 2019-02-05 Ondrej Mosnacek New
[v5,2/5] kernfs: use simple_xattrs for security attributes Allow initializing the kernfs node's secctx based on its parent - - - --- 2019-02-05 Ondrej Mosnacek New
[v5,1/5] selinux: try security xattr after genfs for kernfs filesystems Allow initializing the kernfs node's secctx based on its parent - - - --- 2019-02-05 Ondrej Mosnacek New
[v4,5/5] kernfs: initialize security of newly created nodes Allow initializing the kernfs node's secctx based on its parent - - - --- 2019-02-05 Ondrej Mosnacek New
[v4,4/5] selinux: implement the kernfs_init_security hook Allow initializing the kernfs node's secctx based on its parent - - - --- 2019-02-05 Ondrej Mosnacek New
[v4,3/5] LSM: add new hook for kernfs node initialization Allow initializing the kernfs node's secctx based on its parent - - - --- 2019-02-05 Ondrej Mosnacek New
[v4,2/5] kernfs: use simple_xattrs for security attributes Allow initializing the kernfs node's secctx based on its parent - - - --- 2019-02-05 Ondrej Mosnacek New
[v4,1/5] selinux: try security xattr after genfs for kernfs filesystems Allow initializing the kernfs node's secctx based on its parent - - - --- 2019-02-05 Ondrej Mosnacek New
[v3,5/5] kernfs: initialize security of newly created nodes Allow initializing the kernfs node's secctx based on its parent - - - --- 2019-01-30 Ondrej Mosnacek New
[v3,4/5] selinux: implement the kernfs_init_security hook Allow initializing the kernfs node's secctx based on its parent - - - --- 2019-01-30 Ondrej Mosnacek New
[v3,3/5] LSM: add new hook for kernfs node initialization Allow initializing the kernfs node's secctx based on its parent - - - --- 2019-01-30 Ondrej Mosnacek New
[v3,2/5] kernfs: use simple_xattrs for security attributes Allow initializing the kernfs node's secctx based on its parent - - - --- 2019-01-30 Ondrej Mosnacek New
[v3,1/5] selinux: try security xattr after genfs for kernfs filesystems Allow initializing the kernfs node's secctx based on its parent - - - --- 2019-01-30 Ondrej Mosnacek New
[v2,3/3] kernfs: Initialize security of newly created nodes Allow initializing the kernfs node's secctx based on its parent - 1 - --- 2019-01-09 Ondrej Mosnacek New
[v2,2/3] selinux: Implement the object_init_security hook Allow initializing the kernfs node's secctx based on its parent - 1 - --- 2019-01-09 Ondrej Mosnacek New
[v2,1/3] LSM: Add new hook for generic node initialization Allow initializing the kernfs node's secctx based on its parent - - - --- 2019-01-09 Ondrej Mosnacek New
[3/3] kernfs: Initialize security of newly created nodes Allow initializing the kernfs node's secctx based on its parent - 1 - --- 2019-01-09 Ondrej Mosnacek New
[2/3] selinux: Implement the object_init_security hook Allow initializing the kernfs node's secctx based on its parent - 1 - --- 2019-01-09 Ondrej Mosnacek New
[1/3] LSM: Add new hook for generic node initialization Allow initializing the kernfs node's secctx based on its parent - - - --- 2019-01-09 Ondrej Mosnacek New
selinux: always allow mounting submounts selinux: always allow mounting submounts - - - --- 2018-11-16 Ondrej Mosnacek New
selinux: fix race when removing selinuxfs entries selinux: fix race when removing selinuxfs entries - - - --- 2018-10-02 Ondrej Mosnacek New