SELinux Development list

Show patches with: State = Action Required | Archived = No | 53 patches

Patch	Series	A/R/T	S/W/F	Date	Submitter	Delegate	State
semodule: avoid toctou on output module	semodule: avoid toctou on output module	- - -	---	2022-05-20	Christian Göttsche		New
libselinux: declare return value of context_str(3) const	libselinux: declare return value of context_str(3) const	- - -	---	2022-05-20	Christian Göttsche		New
[4/4] libselinux: declare parameter of security_load_policy(3) const	[1/4] libselinux: add man page redirections	- - -	---	2022-05-20	Christian Göttsche		New
[3/4] libselinux: name parameters in context.h	[1/4] libselinux: add man page redirections	- - -	---	2022-05-20	Christian Göttsche		New
[2/4] libselinux: enclose macro definition in parenthesis	[1/4] libselinux: add man page redirections	- - -	---	2022-05-20	Christian Göttsche		New
[1/4] libselinux: add man page redirections	[1/4] libselinux: add man page redirections	- - -	---	2022-05-20	Christian Göttsche		New
Makefile: always include and link with DESTDIR	Makefile: always include and link with DESTDIR	- - -	---	2022-05-20	Christian Göttsche		New
python/audit2allow: close file stream on error	python/audit2allow: close file stream on error	- - -	---	2022-05-20	Christian Göttsche		New
[v3,4/4] libselinux: check for truncations	Untitled series #643600	- - -	---	2022-05-20	Christian Göttsche		New
selinux: add __randomize_layout to selinux_audit_data	selinux: add __randomize_layout to selinux_audit_data	- - -	---	2022-05-18	GONG, Ruiqi	pcmoore	New
[RFC,v2,4/4] libselinux: check for truncations	Untitled series #642403	- - -	---	2022-05-17	Christian Göttsche		New
[2/2] libselinux: restorecon: avoid printing NULL pointer	[1/2] libselinux: restorecon: add fallback for pre 3.6 Linux	- - -	---	2022-05-17	Christian Göttsche		New
[1/2] libselinux: restorecon: add fallback for pre 3.6 Linux	[1/2] libselinux: restorecon: add fallback for pre 3.6 Linux	- - -	---	2022-05-17	Christian Göttsche		New
[RFC,3/4] libselinux: introduce strlcpy	[RFC,1/4] libselinux: simplify policy path logic to avoid uninitialized read	- - -	---	2022-05-10	Christian Göttsche		New
[RFC,2/4] libselinux: add header guard for internal header	[RFC,1/4] libselinux: simplify policy path logic to avoid uninitialized read	- - -	---	2022-05-10	Christian Göttsche		New
[RFC,1/4] libselinux: simplify policy path logic to avoid uninitialized read	[RFC,1/4] libselinux: simplify policy path logic to avoid uninitialized read	1 - -	---	2022-05-10	Christian Göttsche		New
[28/32] selinux: Use mem_to_flex_dup() with xfrm and sidtab	Introduce flexible array struct memcpy() helpers	- - -	---	2022-05-04	Kees Cook	pcmoore	New
[v2,1/8] capability: add capable_or to test for multiple caps with exactly one audit message	[v2,1/8] capability: add capable_or to test for multiple caps with exactly one audit message	- - -	---	2022-05-02	Christian Göttsche	pcmoore	New
[v2,8/8] net: use new capable_or functionality	[v2,1/8] capability: add capable_or to test for multiple caps with exactly one audit message	- 1 -	---	2022-05-02	Christian Göttsche	pcmoore	New
[v2,7/8] kernel/bpf: use new capable_or functionality	[v2,1/8] capability: add capable_or to test for multiple caps with exactly one audit message	- - -	---	2022-05-02	Christian Göttsche	pcmoore	New
[v2,6/8] kernel: use new capable_or functionality	[v2,1/8] capability: add capable_or to test for multiple caps with exactly one audit message	- - -	---	2022-05-02	Christian Göttsche	pcmoore	New
[v2,5/8] fs: use new capable_or functionality	[v2,1/8] capability: add capable_or to test for multiple caps with exactly one audit message	- - -	---	2022-05-02	Christian Göttsche	pcmoore	New
[v2,4/8] drivers: use new capable_or functionality	[v2,1/8] capability: add capable_or to test for multiple caps with exactly one audit message	1 1 -	---	2022-05-02	Christian Göttsche	pcmoore	New
[v2,3/8] block: use new capable_or functionality	[v2,1/8] capability: add capable_or to test for multiple caps with exactly one audit message	- - -	---	2022-05-02	Christian Göttsche	pcmoore	New
[v2,2/8] capability: use new capable_or functionality	[v2,1/8] capability: add capable_or to test for multiple caps with exactly one audit message	- - -	---	2022-05-02	Christian Göttsche	pcmoore	New
[v2,RFC] sched: only perform capability check on privileged operation	[v2,RFC] sched: only perform capability check on privileged operation	- - -	---	2022-05-02	Christian Göttsche	pcmoore	New
selinux: use unsigned char for boolean values	selinux: use unsigned char for boolean values	- - -	---	2022-05-02	Christian Göttsche	pcmoore	New
libselinux/utils/getsebool: add options to display en-/disabled booleans	libselinux/utils/getsebool: add options to display en-/disabled booleans	- - -	---	2022-04-28	Christian Göttsche		New
[RFC,7/7] SELINUXNS: Fixing concurrency issues	[RFC,1/7] LSM: Infrastructure management of the superblock	- - -	---	2022-04-18	Alexander Kozhevnikov	pcmoore	New
[RFC,6/7] SELINUXNS: Fixing superblock security structure memory leakage	[RFC,1/7] LSM: Infrastructure management of the superblock	- - -	---	2022-04-18	Alexander Kozhevnikov	pcmoore	New
[RFC,5/7] SELINUXNS: Migrate all open files and all vma to new namespace	[RFC,1/7] LSM: Infrastructure management of the superblock	- - -	---	2022-04-18	Alexander Kozhevnikov	pcmoore	New
[RFC,4/7] SELINUXNS: Namespacing for xattrs	[RFC,1/7] LSM: Infrastructure management of the superblock	- - -	---	2022-04-18	Alexander Kozhevnikov	pcmoore	New
[RFC,3/7] SELINUXNS: Fix initilization of the superblock security under spinlock	[RFC,1/7] LSM: Infrastructure management of the superblock	- - -	---	2022-04-18	Alexander Kozhevnikov	pcmoore	New
[RFC,2/7] selinux: support per-namespace superblock security structures	[RFC,1/7] LSM: Infrastructure management of the superblock	- - -	---	2022-04-18	Alexander Kozhevnikov	pcmoore	New
[RFC,1/7] LSM: Infrastructure management of the superblock	[RFC,1/7] LSM: Infrastructure management of the superblock	1 2 -	---	2022-04-18	Alexander Kozhevnikov	pcmoore	New
[v2,6/6] Enable missing prototypes	[v2,1/6] libsepol/cil: declare file local functions static	- - -	---	2022-04-05	Christian Göttsche		New
docs: selinux: add '=' signs to kernel boot options	docs: selinux: add '=' signs to kernel boot options	1 - -	---	2022-03-01	Randy Dunlap		New
[RESEND] xfs: don't generate selinux audit messages for capability testing	[RESEND] xfs: don't generate selinux audit messages for capability testing	1 2 -	---	2022-03-01	Darrick J. Wong		New
[5/5] selinux: drop unnecessary NULL check	[1/5] selinux: drop return statement at end of void functions	- - -	---	2022-02-17	Christian Göttsche	pcmoore	New
[RFC,1/1] selinuxns: Replace state pointer with namespace id	[RFC,1/1] selinuxns: Replace state pointer with namespace id	- - -	---	2022-02-16	Igor Baranov		New
libselinux: Prevent cached context giving wrong results	libselinux: Prevent cached context giving wrong results	- - -	---	2022-01-27	Johannes Segitz		New
[RFC] mm: create security context for memfd_secret inodes	[RFC] mm: create security context for memfd_secret inodes	- - -	---	2022-01-25	Christian Göttsche	pcmoore	New
[libselinux] libselinux: make threadsafe for discover_class_cache	[libselinux] libselinux: make threadsafe for discover_class_cache	- - -	---	2022-01-20	Purushottam Choudhary		New
[2/2,RFC] libsepol/cil: Add notself and minusself support to CIL	libsepol: Adding support for not-self rules	- - -	---	2022-01-11	James Carter		New
[1/2,RFC] libsepol: Add not self support for neverallow rules	libsepol: Adding support for not-self rules	- - -	---	2022-01-11	James Carter		New
[RFC,2/2] security, nfs: Provide a hook for fs_context security initialisation	[RFC,1/2] security: Remove security_add_mnt_opt() as it's unused	- - -	---	2021-12-08	David Howells	pcmoore	New
[RFC,v3,5/5] libsepol: pass avtab to report function	[RFC,v3,1/5] libsepol: introduce ebitmap_relative_complement()	- - -	---	2021-12-04	Christian Göttsche		New
[RFC,v3,4/5] libsepol: free ebitmap on end of function	[RFC,v3,1/5] libsepol: introduce ebitmap_relative_complement()	- - -	---	2021-12-04	Christian Göttsche		New
[RFC,v3,3/5] checkpolicy: add not-self neverallow support	[RFC,v3,1/5] libsepol: introduce ebitmap_relative_complement()	- - -	---	2021-12-04	Christian Göttsche		New
[RFC,v3,2/5] libsepol: add not-self neverallow support	[RFC,v3,1/5] libsepol: introduce ebitmap_relative_complement()	- - -	---	2021-12-04	Christian Göttsche		New
[RFC,v3,1/5] libsepol: introduce ebitmap_relative_complement()	[RFC,v3,1/5] libsepol: introduce ebitmap_relative_complement()	- - -	---	2021-12-04	Christian Göttsche		New
[RFC,1/1] selinux-testsuite: Reduce sctp test runtime	selinux-testsuite: Reduce sctp test runtime	- - -	---	2020-11-04	Richard Haines	omos	Under Review
[V2,1/1] selinux-testsuite: Add btrfs support for filesystem tests	selinux-testsuite: Add btrfs support for filesystem tests	- - -	---	2020-11-03	Richard Haines	omos	Queued