Show patches with: State = Action Required       |    Archived = No       |   78 patches
Patch Series A/R/T S/W/F Date Submitter Delegate State
libsemanage/direct_api: INTEGER_OVERFLOW read_len = read() libsemanage/direct_api: INTEGER_OVERFLOW read_len = read() 1 - - --- 2024-10-25 Vit Mojzis New
[2/2] libselinux/matchpathcon: RESOURCE_LEAK: Variable "con" [1/2] libselinux/setexecfilecon: Remove useless rc check - - - --- 2024-10-25 Vit Mojzis New
[1/2] libselinux/setexecfilecon: Remove useless rc check [1/2] libselinux/setexecfilecon: Remove useless rc check 1 - - --- 2024-10-25 Vit Mojzis New
[v3,6/6] libsepol/tests: add cond xperm neverallow tests [v3,1/6] libsepol: misc assertion cleanup - - - --- 2024-10-25 Christian Göttsche New
[v3,5/6] libsepol: indent printed allow rule on assertion failure [v3,1/6] libsepol: misc assertion cleanup - - - --- 2024-10-25 Christian Göttsche New
[v3,4/6] libsepol/cil: add support for xperms in conditional policies [v3,1/6] libsepol: misc assertion cleanup - - - --- 2024-10-25 Christian Göttsche New
[v3,3/6] checkpolicy: add support for xperms in conditional policies [v3,1/6] libsepol: misc assertion cleanup - - - --- 2024-10-25 Christian Göttsche New
[v3,2/6] libsepol: add support for xperms in conditional policies [v3,1/6] libsepol: misc assertion cleanup - - - --- 2024-10-25 Christian Göttsche New
[v3,1/6] libsepol: misc assertion cleanup [v3,1/6] libsepol: misc assertion cleanup - - - --- 2024-10-25 Christian Göttsche New
[3/3] all: coding style fixes [1/3] check-syntax: update arguments for astyle v3.2 (possibly earlier) - - - --- 2024-10-24 Paul Moore New
[2/3] check-syntax: ignore "bad" astyle versions [1/3] check-syntax: update arguments for astyle v3.2 (possibly earlier) - - - --- 2024-10-24 Paul Moore New
[1/3] check-syntax: update arguments for astyle v3.2 (possibly earlier) [1/3] check-syntax: update arguments for astyle v3.2 (possibly earlier) - - - --- 2024-10-24 Paul Moore New
[v2,4/4] libsepol/cil: add support for xperms in conditional policies [v2,1/4] libsepol: misc assertion cleanup - - - --- 2024-10-24 Christian Göttsche New
[v2,3/4] checkpolicy: add support for xperms in conditional policies [v2,1/4] libsepol: misc assertion cleanup - - - --- 2024-10-24 Christian Göttsche New
[v2,2/4] libsepol: add support for xperms in conditional policies [v2,1/4] libsepol: misc assertion cleanup - - - --- 2024-10-24 Christian Göttsche New
[v2,1/4] libsepol: misc assertion cleanup [v2,1/4] libsepol: misc assertion cleanup - - - --- 2024-10-24 Christian Göttsche New
[2/2] restorecond: Set GLib IO channels to nonblocking restorecond: GLib IO channel fixes - - - --- 2024-10-24 Fabian Vogt New
[1/2] restorecond: Set GLib IO channels to binary mode restorecond: GLib IO channel fixes - - - --- 2024-10-24 Fabian Vogt New
[v3,5/5] LSM: secctx provider check on release [v3,1/5] LSM: Ensure the correct LSM context releaser - - - --- 2024-10-23 Casey Schaufler New
[v3,4/5] LSM: lsm_context in security_dentry_init_security [v3,1/5] LSM: Ensure the correct LSM context releaser - - - --- 2024-10-23 Casey Schaufler New
[v3,3/5] LSM: Use lsm_context in security_inode_getsecctx [v3,1/5] LSM: Ensure the correct LSM context releaser - - - --- 2024-10-23 Casey Schaufler New
[v3,2/5] LSM: Replace context+len with lsm_context [v3,1/5] LSM: Ensure the correct LSM context releaser - - - --- 2024-10-23 Casey Schaufler New
[v3,1/5] LSM: Ensure the correct LSM context releaser [v3,1/5] LSM: Ensure the correct LSM context releaser - - - --- 2024-10-23 Casey Schaufler New
[3/3] libsepol/cil: add support for xperms in conditional policies [1/3] libsepol: add support for xperms in conditional policies - - - --- 2024-10-23 Christian Göttsche New
[2/3] checkpolicy: add support for xperms in conditional policies [1/3] libsepol: add support for xperms in conditional policies - - - --- 2024-10-23 Christian Göttsche New
[1/3] libsepol: add support for xperms in conditional policies [1/3] libsepol: add support for xperms in conditional policies - - - --- 2024-10-23 Christian Göttsche New
[v2] selinux: add support for xperms in conditional policies [v2] selinux: add support for xperms in conditional policies - - - --- 2024-10-23 Christian Göttsche New
selinux: add support for xperms in conditional policies selinux: add support for xperms in conditional policies - - - --- 2024-10-23 Christian Göttsche New
[v2,4/4] libsepol: Initialize "strs" on declaration [v2,1/4] libsepol/cil: Initialize avtab_datum on declaration - - - --- 2024-10-23 Vit Mojzis New
[v2,3/4] libsepol/cil/cil_post: Initialize tmp on declaration [v2,1/4] libsepol/cil: Initialize avtab_datum on declaration - - - --- 2024-10-23 Vit Mojzis New
[v2,2/4] libsepol/mls: Do not destroy context on memory error [v2,1/4] libsepol/cil: Initialize avtab_datum on declaration - - - --- 2024-10-23 Vit Mojzis New
[v2,1/4] libsepol/cil: Initialize avtab_datum on declaration [v2,1/4] libsepol/cil: Initialize avtab_datum on declaration 1 - - --- 2024-10-23 Vit Mojzis New
selinux: add netlink nlmsg_type audit message selinux: add netlink nlmsg_type audit message - - - --- 2024-10-22 Thiébaud Weksteen New
[4/4] libsepol: Initialize "strs" on declaration [1/4] libsepol/cil: Initialize avtab_datum on declaration 1 - - --- 2024-10-22 Vit Mojzis New
[3/4] libsepol/cil/cil_post: Initialize tmp on declaration [1/4] libsepol/cil: Initialize avtab_datum on declaration - - - --- 2024-10-22 Vit Mojzis New
[2/4] libsepol/mls: Do not destroy context on memory error [1/4] libsepol/cil: Initialize avtab_datum on declaration 1 - - --- 2024-10-22 Vit Mojzis New
[1/4] libsepol/cil: Initialize avtab_datum on declaration [1/4] libsepol/cil: Initialize avtab_datum on declaration - - - --- 2024-10-22 Vit Mojzis New
libsepol: Support nlmsg xperms in assertions libsepol: Support nlmsg xperms in assertions 1 - - --- 2024-10-21 Thiébaud Weksteen New
[4/4] selinux: set missing errno in failure branch [1/4] libselinux: avoid errno modification by fclose(3) - - - --- 2024-10-18 Christian Göttsche New
[3/4] libsemanage: check for rewind(3) failure [1/4] libselinux: avoid errno modification by fclose(3) - - - --- 2024-10-18 Christian Göttsche New
[2/4] selinux: free memory in error branch [1/4] libselinux: avoid errno modification by fclose(3) - - - --- 2024-10-18 Christian Göttsche New
[1/4] libselinux: avoid errno modification by fclose(3) [1/4] libselinux: avoid errno modification by fclose(3) 1 - - --- 2024-10-18 Christian Göttsche New
checkpolicy/fuzz: fix setjmp condition checkpolicy/fuzz: fix setjmp condition 1 - - --- 2024-10-18 Christian Göttsche New
selinux_set_callback for policy load not triggering selinux_set_callback for policy load not triggering - - - --- 2024-10-17 Matthew Sheets New
[2/2] libsemanage: fix swig bindings for 4.3.0 [1/2] libselinux: fix swig bindings for 4.3.0 - - - --- 2024-10-16 Petr Lautrbach New
[1/2] libselinux: fix swig bindings for 4.3.0 [1/2] libselinux: fix swig bindings for 4.3.0 1 - - --- 2024-10-16 Petr Lautrbach New
[v2,6/6] LSM: Use lsm_context in security_inode_notifysecctx [v2,1/6] LSM: Ensure the correct LSM context releaser - - - --- 2024-10-14 Casey Schaufler New
[v2,5/6] LSM: secctx provider check on release [v2,1/6] LSM: Ensure the correct LSM context releaser - - - --- 2024-10-14 Casey Schaufler New
[v2,4/6] LSM: lsm_context in security_dentry_init_security [v2,1/6] LSM: Ensure the correct LSM context releaser - - - --- 2024-10-14 Casey Schaufler New
[v2,3/6] LSM: Use lsm_context in security_inode_getsecctx [v2,1/6] LSM: Ensure the correct LSM context releaser - - - --- 2024-10-14 Casey Schaufler New
[v2,2/6] LSM: Replace context+len with lsm_context [v2,1/6] LSM: Ensure the correct LSM context releaser - - - --- 2024-10-14 Casey Schaufler New
[v2,1/6] LSM: Ensure the correct LSM context releaser [v2,1/6] LSM: Ensure the correct LSM context releaser - 1 - --- 2024-10-14 Casey Schaufler New
[v4,13/13] LSM: Remove lsm_prop scaffolding [v4,01/13] LSM: Add the lsm_prop data structure. - - - --- 2024-10-09 Casey Schaufler New
[v4,12/13] Use lsm_prop for audit data [v4,01/13] LSM: Add the lsm_prop data structure. - - - --- 2024-10-09 Casey Schaufler New
[v4,11/13] Audit: Change context data from secid to lsm_prop [v4,01/13] LSM: Add the lsm_prop data structure. - - - --- 2024-10-09 Casey Schaufler New
[v4,10/13] LSM: Create new security_cred_getlsmprop LSM hook [v4,01/13] LSM: Add the lsm_prop data structure. - - - --- 2024-10-09 Casey Schaufler New
[v4,09/13] Audit: use an lsm_prop in audit_names [v4,01/13] LSM: Add the lsm_prop data structure. - - - --- 2024-10-09 Casey Schaufler New
[v4,08/13] LSM: Use lsm_prop in security_inode_getsecid [v4,01/13] LSM: Add the lsm_prop data structure. - - - --- 2024-10-09 Casey Schaufler New
[v4,07/13] LSM: Use lsm_prop in security_current_getsecid [v4,01/13] LSM: Add the lsm_prop data structure. - - - --- 2024-10-09 Casey Schaufler New
[v4,06/13] Audit: Update shutdown LSM data [v4,01/13] LSM: Add the lsm_prop data structure. - - - --- 2024-10-09 Casey Schaufler New
[v4,05/13] LSM: Use lsm_prop in security_ipc_getsecid [v4,01/13] LSM: Add the lsm_prop data structure. - - - --- 2024-10-09 Casey Schaufler New
[v4,04/13] Audit: maintain an lsm_prop in audit_context [v4,01/13] LSM: Add the lsm_prop data structure. - - - --- 2024-10-09 Casey Schaufler New
[v4,03/13] LSM: Add lsmprop_to_secctx hook [v4,01/13] LSM: Add the lsm_prop data structure. - - - --- 2024-10-09 Casey Schaufler New
[v4,02/13] LSM: Use lsm_prop in security_audit_rule_match [v4,01/13] LSM: Add the lsm_prop data structure. - - - --- 2024-10-09 Casey Schaufler New
[v4,01/13] LSM: Add the lsm_prop data structure. [v4,01/13] LSM: Add the lsm_prop data structure. 1 - - --- 2024-10-09 Casey Schaufler New
libselinux: formally deprecate security_compute_user() libselinux: formally deprecate security_compute_user() 1 - - --- 2024-10-04 Stephen Smalley bachradsusi New
[v3] checkpolicy: Fix MLS users in optional blocks [v3] checkpolicy: Fix MLS users in optional blocks - - - --- 2024-08-28 James Carter bachradsusi New
[v2] sepolgen-ifgen: allow M4 escaped filenames [v2] sepolgen-ifgen: allow M4 escaped filenames - - - --- 2024-08-27 Petr Lautrbach bachradsusi New
selinux: support IPPROTO_SMC in socket_type_to_security_class() selinux: support IPPROTO_SMC in socket_type_to_security_class() 1 - - --- 2024-08-15 Jeongjun Park pcmoore Under Review
[v2,2/2] security: remove unused cred_alloc_blank/cred_transfer helpers get rid of cred_transfer - - - --- 2024-08-05 Jann Horn pcmoore New
[v2,1/2] KEYS: use synchronous task work for changing parent credentials get rid of cred_transfer - - - --- 2024-08-05 Jann Horn pcmoore New
[testsuite] tests/task_setscheduler: add cgroup v2 case for moving proc to root cgroup [testsuite] tests/task_setscheduler: add cgroup v2 case for moving proc to root cgroup - - - --- 2024-07-02 Gong Ruiqi omos New
[RFC] ima: Use sequence number to wait for policy updates [RFC] ima: Use sequence number to wait for policy updates - - - --- 2024-05-07 Roberto Sassu pcmoore New
[RFC,07/20] selinux: services: update type for umber of class permissions [RFC,01/20] selinux: check for multiplication overflow in put_entry() - - - --- 2023-07-06 Christian Göttsche pcmoore Under Review
[RFC] selinux: TESTING ONLY, PLEASE IGNORE [RFC] selinux: TESTING ONLY, PLEASE IGNORE - - - --- 2023-05-16 Paul Moore pcmoore Under Review
tests/sctp: reenable the SCTP ASCONF tests tests/sctp: reenable the SCTP ASCONF tests - - - --- 2022-08-09 Paul Moore omos Under Review
[RFC,1/1] selinux-testsuite: Reduce sctp test runtime selinux-testsuite: Reduce sctp test runtime - - - --- 2020-11-04 Richard Haines omos Under Review
[V2,1/1] selinux-testsuite: Add btrfs support for filesystem tests selinux-testsuite: Add btrfs support for filesystem tests - - - --- 2020-11-03 Richard Haines omos Queued