| [RFC,V3,1/1] selinux-testsuite: Add binder tests |
- - - |
2018-05-21 |
Paul Moore via Selinux |
|
New |
| [RFC,V2,1/1] selinux-testsuite: Add binder tests |
- - - |
2018-05-20 |
Paul Moore via Selinux |
|
New |
| [ghak81,V3,3/3] audit: collect audit task parameters |
- - - |
2018-05-16 |
Richard Guy Briggs |
|
New |
| [ghak81,V3,2/3] audit: normalize loginuid read access |
- - - |
2018-05-16 |
Richard Guy Briggs |
|
New |
| [ghak81,V3,1/3] audit: use new audit_context access funciton for seccomp_actions_logged |
- - - |
2018-05-16 |
Richard Guy Briggs |
|
New |
| [RFC,1/1] selinux-testsuite: Add binder tests |
- - - |
2018-05-15 |
Stephen Smalley |
|
New |
| [RFC,1/1] selinux-testsuite: Add binder tests |
- - - |
2018-05-15 |
Paul Moore via Selinux |
|
New |
| [24/23] LSM: Functions for dealing with struct secids |
- - - |
2018-05-11 |
Casey Schaufler |
|
New |
| [23/23] Netfilter: Add a selection for Smack |
- - - |
2018-05-11 |
Casey Schaufler |
|
New |
| [22/23] LSM: Fix setting of the IMA data in inode init |
- - - |
2018-05-11 |
Casey Schaufler |
|
New |
| [21/23] LSM: Multiple concurrent major security modules |
- - - |
2018-05-11 |
Casey Schaufler |
|
New |
| [20/23] LSM: Move common usercopy into |
- - - |
2018-05-11 |
Casey Schaufler |
|
New |
| [19/23] LSM: Use multiple secids in LSM interfaces |
- - - |
2018-05-11 |
Casey Schaufler |
|
New |
| [18/23] LSM: Use multiple secids in security module interfaces |
- - - |
2018-05-11 |
Casey Schaufler |
|
New |
| [17/23] LSM: Allow mount options from multiple security modules |
- - - |
2018-05-11 |
Casey Schaufler |
|
New |
| [16/23] LSM: Sharing of security blobs |
- - - |
2018-05-11 |
Casey Schaufler |
|
New |
| [15/23] LSM: Mark security blob allocation failures as unlikely |
- - - |
2018-05-11 |
Casey Schaufler |
|
New |
| [14/23] LSM: Infrastructure management of the key security blob |
- - - |
2018-05-11 |
Casey Schaufler |
|
New |
| [13/23] LSM: Infrastructure management of the ipc security blob |
- - - |
2018-05-11 |
Casey Schaufler |
|
New |
| [12/23] LSM: Infrastructure management of the sock security |
- - - |
2018-05-11 |
Casey Schaufler |
|
New |
| [11/23] LSM: Infrastructure management of the superblock |
- - - |
2018-05-11 |
Casey Schaufler |
|
New |
| [10/23] LSM: Infrastructure management of the inode security |
- - - |
2018-05-11 |
Casey Schaufler |
|
New |
| [09/23] Smack: Abstract use of inode security blob |
- - - |
2018-05-11 |
Casey Schaufler |
|
New |
| [08/23] SELinux: Abstract use of inode security blob |
- - - |
2018-05-11 |
Casey Schaufler |
|
New |
| [07/23] LSM: Infrastructure management of the task security |
- - - |
2018-05-11 |
Casey Schaufler |
|
New |
| [06/23] LSM: Infrastructure management of the file security |
- - - |
2018-05-11 |
Casey Schaufler |
|
New |
| [05/23] SELinux: Abstract use of file security blob |
- - - |
2018-05-11 |
Casey Schaufler |
|
New |
| [04/23] LSM: Infrastructure management of the cred security |
- - - |
2018-05-11 |
Casey Schaufler |
|
New |
| [03/23] SELinux: Abstract use of cred security blob |
- - - |
2018-05-11 |
Casey Schaufler |
|
New |
| [02/23] Smack: Abstract use of cred security blob |
- - - |
2018-05-11 |
Casey Schaufler |
|
New |
| [01/23] procfs: add smack subdir to attrs |
- - - |
2018-05-11 |
Casey Schaufler |
|
New |
| [15/18] security: Remove pr_fmt duplicate logging prefixes |
1 - - |
2018-05-10 |
Joe Perches |
|
New |
| [v2,09/11] docs: Fix some broken references |
4 - - |
2018-05-09 |
Mauro Carvalho Chehab |
|
New |
| [ghak81,RFC,V1,5/5] audit: collect audit task parameters |
- - - |
2018-05-04 |
Richard Guy Briggs |
|
New |
| [ghak81,RFC,V1,4/5] audit: use inline function to set audit context |
- - - |
2018-05-04 |
Richard Guy Briggs |
|
New |
| [ghak81,RFC,V1,3/5] audit: use inline function to get audit context |
- - - |
2018-05-04 |
Richard Guy Briggs |
|
New |
| [ghak81,RFC,V1,2/5] audit: convert sessionid unset to a macro |
- - - |
2018-05-04 |
Richard Guy Briggs |
|
New |
| [ghak81,RFC,V1,1/5] audit: normalize loginuid read access |
- - - |
2018-05-04 |
Richard Guy Briggs |
|
New |
| selinux-testsuite: Enhance inet_socket tests |
- - - |
2018-04-13 |
Paul Moore via Selinux |
|
New |
| selinux-testsuite: Add SCTP test support |
- - - |
2018-03-20 |
Paul Moore via Selinux |
|
New |
| [8/8] LSM: Full security module stacking |
- - - |
2018-03-08 |
Casey Schaufler |
|
New |
| [7/8] LSM: Multiple security mount options |
- - - |
2018-03-08 |
Casey Schaufler |
|
New |
| [6/8] LSM: General stacking |
- - - |
2018-03-08 |
Casey Schaufler |
|
New |
| [5/8] LSM: Manage remaining security blobs |
- - - |
2018-03-08 |
Casey Schaufler |
|
New |
| [4/8] LSM: Manage task security blobs |
- - - |
2018-03-08 |
Casey Schaufler |
|
New |
| [3/8] LSM: Manage file security blobs |
- - - |
2018-03-08 |
Casey Schaufler |
|
New |
| [2/8] LSM: Manage credential security blobs |
- - - |
2018-03-08 |
Casey Schaufler |
|
New |
| [1/8] procfs: add smack subdir to attrs |
- - - |
2018-03-08 |
Casey Schaufler |
|
New |
| [selinux-next] selinux: Annotate lockdep for services locks |
- - - |
2018-02-19 |
peter enderborg |
|
New |
| [RFC] sidtab: use memset vs loop for init |
- - - |
2018-02-07 |
william.c.roberts@intel.com |
|
New |
| [PATCH-selinuxns] selinux: Annotate lockdep for services locks |
- - - |
2018-02-02 |
peter enderborg |
|
New |
| [PATCH-selinuxns] selinux: Annotate lockdep for services locks |
- - - |
2018-02-02 |
peter enderborg |
|
New |
| [v2,4/5] selinux: Use pointer to switch policydb and sidtab |
- - - |
2018-01-30 |
Stephen Smalley |
|
New |
| [v2,5/5] selinux: Switch locking to RCU. |
- - - |
2018-01-26 |
peter enderborg |
|
New |
| [v2,4/5] selinux: Use pointer to switch policydb and sidtab |
- - - |
2018-01-26 |
peter enderborg |
|
New |
| [v2,3/5] selinux: Move sidtab to pointer structure |
- - - |
2018-01-26 |
peter enderborg |
|
New |
| [v2,2/5] selinux: Move policydb to pointer structure |
- - - |
2018-01-26 |
peter enderborg |
|
New |
| [v2,1/5] selinux:Remove direct references to policydb. |
- - - |
2018-01-26 |
peter enderborg |
|
New |
| [Fwd:,[PATCH,v2,14/15] selinux: allow setxattr on rootfs so initramfs code can set them] |
- - - |
2018-01-25 |
Stephen Smalley |
|
New |
| [Fwd:,[PATCH,v2,15/15] selinux: delay sid population for rootfs till init is complete] |
- - - |
2018-01-25 |
Stephen Smalley |
|
New |
| [RFC,v0.2] selinuxns: extend namespace support to security.selinux xattrs |
- - - |
2017-11-21 |
James Morris |
|
New |
| selinux-testsuite: inet_socket: test xfrm state selectors |
- - - |
2017-10-30 |
Stephen Smalley |
|
New |
| [RFC,1/1] selinux-testsuite: Add CALIPSO/IPv6 tests |
- - - |
2017-10-19 |
Richard Haines |
|
New |
| usb, signal, security: only pass the cred, not the secid, to kill_pid_info_as_cred and security_task_kill |
4 - - |
2017-09-08 |
Stephen Smalley |
|
New |
| Additional tests for long-time supported netlink classes |
- - - |
2017-07-13 |
Milos Malik |
|
New |
| [v6,2/2] selinux: expose policy brief via selinuxfs |
- - - |
2017-05-17 |
Sebastien Buisson |
|
New |
| [v6,1/2] selinux: add brief info to policydb |
- - - |
2017-05-17 |
Sebastien Buisson |
|
New |
| selinux-testsuite: capable_file: Add dac_override and dac_read_search tests |
- - - |
2017-03-02 |
Stephen Smalley |
|
New |
| [v4,21/21] fuse: Allow user namespace mounts |
- - - |
2016-04-26 |
Seth Forshee |
|
New |
| [v4,20/21] fuse: Restrict allow_other to the superblock's namespace or a descendant |
- - - |
2016-04-26 |
Seth Forshee |
|
New |
| [v4,19/21] fuse: Support fuse filesystems outside of init_user_ns |
- - - |
2016-04-26 |
Seth Forshee |
|
New |
| [v4,18/21] fuse: Add support for pid namespaces |
1 - - |
2016-04-26 |
Seth Forshee |
|
New |
| [v4,17/21] capabilities: Allow privileged user in s_user_ns to set security.* xattrs |
- - - |
2016-04-26 |
Seth Forshee |
|
New |
| [v4,16/21] fs: Allow superblock owner to access do_remount_sb() |
- - - |
2016-04-26 |
Seth Forshee |
|
New |
| [v4,15/21] fs: Don't remove suid for CAP_FSETID in s_user_ns |
- - - |
2016-04-26 |
Seth Forshee |
|
New |
| [v4,14/21] fs: Allow superblock owner to change ownership of inodes with unmappable ids |
- - - |
2016-04-26 |
Seth Forshee |
|
New |
| [v4,13/21] fs: Update posix_acl support to handle user namespace mounts |
- - - |
2016-04-26 |
Seth Forshee |
|
New |
| [v4,12/21] fs: Refuse uid/gid changes which don't map into s_user_ns |
- - - |
2016-04-26 |
Seth Forshee |
|
New |
| [v4,11/21] cred: Reject inodes with invalid ids in set_create_file_as() |
- - - |
2016-04-26 |
Seth Forshee |
|
New |
| [v4,10/21] fs: Check for invalid i_uid in may_follow_link() |
1 1 - |
2016-04-26 |
Seth Forshee |
|
New |
| [v4,09/21] Smack: Handle labels consistently in untrusted mounts |
- - - |
2016-04-26 |
Seth Forshee |
|
New |
| [v4,08/21] userns: Replace in_userns with current_in_userns |
- - - |
2016-04-26 |
Seth Forshee |
|
New |
| [v4,07/21] selinux: Add support for unprivileged mounts from user namespaces |
- - - |
2016-04-26 |
Seth Forshee |
|
New |
| [v4,06/21] fs: Treat foreign mounts as nosuid |
- - - |
2016-04-26 |
Seth Forshee |
|
New |
| [v4,05/21] block_dev: Check permissions towards block device inode when mounting |
- - - |
2016-04-26 |
Seth Forshee |
|
New |
| [v4,04/21] block_dev: Support checking inode permissions in lookup_bdev() |
- - - |
2016-04-26 |
Seth Forshee |
|
New |
| [v4,03/21] fs: Allow sysfs and cgroupfs to share super blocks between user namespaces |
- - - |
2016-04-26 |
Seth Forshee |
|
New |
| [v4,02/21] fs: Remove check of s_user_ns for existing mounts in fs_fully_visible() |
- - - |
2016-04-26 |
Seth Forshee |
|
New |
| [v4,01/21] fs: fix a posible leak of allocated superblock |
- - - |
2016-04-26 |
Seth Forshee |
|
New |
| [v4,19/21] fuse: Support fuse filesystems outside of init_user_ns |
- - - |
2016-04-26 |
Seth Forshee |
|
New |
| [v4,18/21] fuse: Add support for pid namespaces |
- - - |
2016-04-26 |
Seth Forshee |
|
New |
| [v4,16/21] fs: Allow superblock owner to access do_remount_sb() |
- - - |
2016-04-26 |
Seth Forshee |
|
New |
| [v4,14/21] fs: Allow superblock owner to change ownership of inodes with unmappable ids |
- - - |
2016-04-26 |
Seth Forshee |
|
New |
| [v4,13/21] fs: Update posix_acl support to handle user namespace mounts |
- - - |
2016-04-26 |
Seth Forshee |
|
New |
| [v4,11/21] cred: Reject inodes with invalid ids in set_create_file_as() |
- - - |
2016-04-26 |
Seth Forshee |
|
New |
| [v4,10/21] fs: Check for invalid i_uid in may_follow_link() |
- - - |
2016-04-26 |
Seth Forshee |
|
New |
| [v4,08/21] userns: Replace in_userns with current_in_userns |
- - - |
2016-04-26 |
Seth Forshee |
|
New |
| [v4,04/21] block_dev: Support checking inode permissions in lookup_bdev() |
- - - |
2016-04-26 |
Seth Forshee |
|
New |
| [v4,02/21] fs: Remove check of s_user_ns for existing mounts in fs_fully_visible() |
- - - |
2016-04-26 |
Seth Forshee |
|
New |
