Show patches with: State = Action Required       |    Archived = No       |   121 patches
« 1 2 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
libsepol: use checked arithmetic builtin to perform safe addition libsepol: use checked arithmetic builtin to perform safe addition - - - --- 2021-04-22 Nicolas Iooss New
libselinux: do not duplicate make target when going into subdirectory libselinux: do not duplicate make target when going into subdirectory - - - --- 2021-04-22 Nicolas Iooss New
selinux: add proper NULL termination to the secclass_map permissions selinux: add proper NULL termination to the secclass_map permissions - - - --- 2021-04-22 Paul Moore New
[3/3,v3] secilc: Create the new program called secil2tree to write out CIL AST Create secil2tree to write CIL AST - - - --- 2021-04-21 James Carter New
[2/3,v3] libsepol/cil: Add functions to make use of cil_write_ast() Create secil2tree to write CIL AST - - - --- 2021-04-21 James Carter New
[1/3,v3] libsepol/cil: Create functions to write the CIL AST Create secil2tree to write CIL AST - - - --- 2021-04-21 James Carter New
[RFC,testsuite] Add extended_anon_inode_class policy capability support [RFC,testsuite] Add extended_anon_inode_class policy capability support - - - --- 2021-04-21 Ondrej Mosnacek New
[RFC,2/2] selinux: add capability to map anon inode types to separate classes selinux,anon_inodes: Use a separate SELinux class for each type of anon inode - - - --- 2021-04-21 Ondrej Mosnacek New
[RFC,1/2] LSM,anon_inodes: explicitly distinguish anon inode types selinux,anon_inodes: Use a separate SELinux class for each type of anon inode - - - --- 2021-04-21 Ondrej Mosnacek New
[v2,6/6] evm: Support multiple LSMs providing an xattr evm: Prepare for moving to the LSM infrastructure - - - --- 2021-04-21 Roberto Sassu New
[v2,5/6] evm: Align evm_inode_init_security() definition with LSM infrastructure evm: Prepare for moving to the LSM infrastructure - - - --- 2021-04-21 Roberto Sassu New
[v2,4/6] security: Support multiple LSMs implementing the inode_init_security hook evm: Prepare for moving to the LSM infrastructure - - - --- 2021-04-21 Roberto Sassu New
[v2,3/6] security: Pass xattrs allocated by LSMs to the inode_init_security hook evm: Prepare for moving to the LSM infrastructure - - - --- 2021-04-21 Roberto Sassu New
[v2,2/6] reiserfs: Add missing calls to reiserfs_security_free() evm: Prepare for moving to the LSM infrastructure - - - --- 2021-04-21 Roberto Sassu New
[v2,1/6] xattr: Complete constify ->name member of "struct xattr" evm: Prepare for moving to the LSM infrastructure - - - --- 2021-04-21 Roberto Sassu New
[3/3,v2] secilc: Create the new program called secil2tree to write out CIL AST Create secil2tree to write CIL AST - - - --- 2021-04-19 James Carter New
[2/3,v2] libsepol/cil: Add functions to make use of cil_write_ast() Create secil2tree to write CIL AST - - - --- 2021-04-19 James Carter New
[1/3,v2] libsepol/cil: Create functions to write the CIL AST Create secil2tree to write CIL AST - - - --- 2021-04-19 James Carter New
[11/11,v2] libsepol/cil: Move check for the shadowing of macro parameters Various CIL patches - - - --- 2021-04-19 James Carter New
[10/11,v2] libsepol/cil: Create function cil_add_decl_to_symtab() and refactor Various CIL patches - - - --- 2021-04-19 James Carter New
[09/11,v2] libsepol/cil: Refactor helper function for cil_gen_node() Various CIL patches - - - --- 2021-04-19 James Carter New
[08/11,v2] libsepol/cil: Allow permission expressions when using map classes Various CIL patches - - - --- 2021-04-19 James Carter New
[07/11,v2] libsepol/cil: Exit with an error if declaration name is a reserved word Various CIL patches - - - --- 2021-04-19 James Carter New
[06/11,v2] libsepol/cil: More strict verification of constraint leaf expressions Various CIL patches - - - --- 2021-04-19 James Carter New
[05/11,v2] libsepol/cil: Set class field to NULL when resetting struct cil_classperms Various CIL patches - - - --- 2021-04-19 James Carter New
[04/11,v2] libsepol/cil: cil_reset_classperms_set() should not reset classpermission Various CIL patches - - - --- 2021-04-19 James Carter New
[03/11,v2] libsepol/cil: Destroy classperm list when resetting map perms Various CIL patches - - - --- 2021-04-19 James Carter New
[02/11,v2] libsepol/cil: Destroy classperms list when resetting classpermission Various CIL patches - - - --- 2021-04-19 James Carter New
[01/11,v2] libsepol/cil: Fix out-of-bound read of file context pattern ending with "\" Various CIL patches - - - --- 2021-04-19 James Carter New
[RESEND,v5] proc: Allow pid_revalidate() during LOOKUP_RCU [RESEND,v5] proc: Allow pid_revalidate() during LOOKUP_RCU - - - --- 2021-04-16 Stephen Brennan New
[3/3] secilc: Create the new program called secil2tree to write out CIL AST Create secil2tree to write CIL AST - - - --- 2021-04-15 James Carter New
[2/3] libsepol/cil: Add functions to make use of cil_write_ast() Create secil2tree to write CIL AST - - - --- 2021-04-15 James Carter New
[1/3] libsepol/cil: Create functions to write the CIL AST Create secil2tree to write CIL AST - - - --- 2021-04-15 James Carter New
[5/5] evm: Support multiple LSMs providing an xattr evm: Prepare for moving to the LSM infrastructure - - - --- 2021-04-15 Roberto Sassu New
[4/5] evm: Align evm_inode_init_security() definition with LSM infrastructure evm: Prepare for moving to the LSM infrastructure - - - --- 2021-04-15 Roberto Sassu New
[3/5] security: Pass xattrs allocated by LSMs to the inode_init_security hook evm: Prepare for moving to the LSM infrastructure - - - --- 2021-04-15 Roberto Sassu New
[2/5] security: Support multiple LSMs implementing the inode_init_security hook evm: Prepare for moving to the LSM infrastructure - - - --- 2021-04-15 Roberto Sassu New
[1/5] xattr: Complete constify ->name member of "struct xattr" evm: Prepare for moving to the LSM infrastructure - - - --- 2021-04-15 Roberto Sassu New
secilc.c: Don't fail if input file is empty secilc.c: Don't fail if input file is empty 1 - - --- 2021-04-14 Yi-Yo Chiang New
[RFC,SHADOW,7/7] selinux: only open selabel database once SELinux modernizations - - - --- 2021-04-13 Christian Göttsche New
[RFC,SHADOW,6/7] set_selinux_file_context(): prepare context for actual file type SELinux modernizations - - - --- 2021-04-13 Christian Göttsche New
[RFC,SHADOW,5/7] selinux.c: use modern selabel interface instead of deprecated matchpathcon SELinux modernizations - - - --- 2021-04-13 Christian Göttsche New
[RFC,SHADOW,4/7] selinux.c:reset_selinux_file_context(): do not fail in permissive mode SELinux modernizations - - - --- 2021-04-13 Christian Göttsche New
[RFC,SHADOW,3/7] selinux.c: do not use deprecated typedef and skip context translation SELinux modernizations - - - --- 2021-04-13 Christian Göttsche New
[RFC,SHADOW,2/7] vipw[selinux]: do not use deprecated typedef and skip context translation SELinux modernizations - - - --- 2021-04-13 Christian Göttsche New
[RFC,SHADOW,1/7] struct commonio_db[selinux]: do not use deprecated type security_context_t SELinux modernizations - - - --- 2021-04-13 Christian Göttsche New
[2/2] selinux: fix SECURITY_LSM_NATIVE_LABELS flag handling on double mount vfs/security/NFS/btrfs: clean up and fix LSM option handling - - - --- 2021-04-09 Ondrej Mosnacek pcmoore New
[1/2] vfs,LSM: introduce the FS_HANDLES_LSM_OPTS flag vfs/security/NFS/btrfs: clean up and fix LSM option handling - - - --- 2021-04-09 Ondrej Mosnacek pcmoore New
[2/2] selinux:Delete selinux_xfrm_policy_lookup() useless argument Untitled series #463965 - - - --- 2021-04-09 Zhongjun Tan pcmoore New
[11/11] libsepol/cil: Move check for the shadowing of macro parameters Various CIL patches - - - --- 2021-04-08 James Carter New
[10/11] libsepol/cil: Create function cil_add_decl_to_symtab() and refactor Various CIL patches - - - --- 2021-04-08 James Carter New
[09/11] libsepol/cil: Refactor helper function for cil_gen_node() Various CIL patches - - - --- 2021-04-08 James Carter New
[08/11] libsepol/cil: Allow permission expressions when using map classes Various CIL patches - - - --- 2021-04-08 James Carter New
[07/11,v2] libsepol/cil: Exit with an error if declaration name is a reserved word Various CIL patches - - - --- 2021-04-08 James Carter New
[06/11] libsepol/cil: More strict verification of constraint leaf expressions Various CIL patches - - - --- 2021-04-08 James Carter New
[05/11] libsepol/cil: Set class field to NULL when resetting struct cil_classperms Various CIL patches - - - --- 2021-04-08 James Carter New
[04/11] libsepol/cil: cil_reset_classperms_set() should not reset classpermission Various CIL patches - - - --- 2021-04-08 James Carter New
[03/11] libsepol/cil: Destroy classperm list when resetting map perms Various CIL patches - - - --- 2021-04-08 James Carter New
[02/11] libsepol/cil: Destroy classperms list when resetting classpermission Various CIL patches - - - --- 2021-04-08 James Carter New
[01/11] libsepol/cil: Fix out-of-bound read of file context pattern ending with "\" Various CIL patches - - - --- 2021-04-08 James Carter New
[12/12] secilc/docs: Update the CIL documentation for various blocks Update checks for invalid rules in blocks - - - --- 2021-03-30 James Carter New
[11/12] libsepol/cil: Use CIL_ERR for error messages in cil_compile() Update checks for invalid rules in blocks - - - --- 2021-03-30 James Carter New
[10/12] libsepol/cil: Make invalid statement error messages consistent Update checks for invalid rules in blocks - - - --- 2021-03-30 James Carter New
[09/12] libsepol/cil: Do not allow tunable declarations in in-statements Update checks for invalid rules in blocks - - - --- 2021-03-30 James Carter New
[08/12] libsepol/cil: Sync checks for invalid rules in macros Update checks for invalid rules in blocks - - - --- 2021-03-30 James Carter New
[07/12] libsepol/cil: Check for statements not allowed in optional blocks Update checks for invalid rules in blocks - - - --- 2021-03-30 James Carter New
[06/12] libsepol/cil: Sync checks for invalid rules in booleanifs Update checks for invalid rules in blocks - - - --- 2021-03-30 James Carter New
[05/12] libsepol/cil: Reorder checks for invalid rules when resolving AST Update checks for invalid rules in blocks - - - --- 2021-03-30 James Carter New
[04/12] libsepol/cil: Use AST to track blocks and optionals when resolving Update checks for invalid rules in blocks - - - --- 2021-03-30 James Carter New
[03/12] libsepol/cil: Create new first child helper function for building AST Update checks for invalid rules in blocks - - - --- 2021-03-30 James Carter New
[02/12] libsepol/cil: Cleanup build AST helper functions Update checks for invalid rules in blocks - - - --- 2021-03-30 James Carter New
[01/12] libsepol/cil: Reorder checks for invalid rules when building AST Update checks for invalid rules in blocks - - - --- 2021-03-30 James Carter New
[3/3] selinux: constify some avtab function arguments selinux: fix changing booleans - - - --- 2021-03-30 Ondrej Mosnacek pcmoore New
[2/3] selinux: simplify duplicate_policydb_cond_list() by using kmemdup() selinux: fix changing booleans - - - --- 2021-03-30 Ondrej Mosnacek pcmoore New
[testsuite] Add AF_VSOCK SOCK_STREAM client/server tests [testsuite] Add AF_VSOCK SOCK_STREAM client/server tests - - - --- 2021-03-29 David Brazdil omos Under Review
cil_conditional_statements.md: fix expr definition cil_conditional_statements.md: fix expr definition 1 - - --- 2021-03-24 Dominick Grift New
[RFC,userspace,6/6] setfiles/restorecon: support parallel relabeling Parallel setfiles/restorecon - - - --- 2021-03-23 Ondrej Mosnacek New
[RFC,userspace,5/6] selinux_restorecon: introduce selinux_restorecon_parallel(3) Parallel setfiles/restorecon - - - --- 2021-03-23 Ondrej Mosnacek New
[RFC,userspace,4/6] selinux_restorecon: add a global mutex to synchronize progress output Parallel setfiles/restorecon - - - --- 2021-03-23 Ondrej Mosnacek New
[RFC,userspace,3/6] selinux_restorecon: introduce selinux_log_sync() Parallel setfiles/restorecon - - - --- 2021-03-23 Ondrej Mosnacek New
[RFC,userspace,2/6] selinux_restorecon: protect file_spec list with a mutex Parallel setfiles/restorecon - - - --- 2021-03-23 Ondrej Mosnacek New
[RFC,userspace,1/6] selinux_restorecon: simplify fl_head allocation by using calloc() Parallel setfiles/restorecon - - - --- 2021-03-23 Ondrej Mosnacek New
[3/3] libsepol/cil: Move check for the shadowing of macro parameters libsepol/cil: Allow permission expressions when using map classes - - - --- 2021-03-22 James Carter New
[2/3] libsepol/cil: Create function cil_add_decl_to_symtab() and refactor libsepol/cil: Allow permission expressions when using map classes - - - --- 2021-03-22 James Carter New
[1/3] libsepol/cil: Refactor helper function for cil_gen_node() [1/3] libsepol/cil: Refactor helper function for cil_gen_node() - - - --- 2021-03-22 James Carter New
libsepol/cil: Allow permission expressions when using map classes libsepol/cil: Allow permission expressions when using map classes - - - --- 2021-03-22 James Carter New
libsepol/cil: Allow permission expressions when using map classes libsepol/cil: Allow permission expressions when using map classes - - - --- 2021-03-22 James Carter New
[V2] libsepol/cil: Exit with an error if declaration name is a reserved word [V2] libsepol/cil: Exit with an error if declaration name is a reserved word - - - --- 2021-03-22 James Carter New
[userspace] policycoreutils/setfiles: do not create useless setfiles.8.man file [userspace] policycoreutils/setfiles: do not create useless setfiles.8.man file 1 - - --- 2021-03-19 Ondrej Mosnacek New
[v2] libsepol/cil: fix out-of-bound read of a file context pattern ending with "\" [v2] libsepol/cil: fix out-of-bound read of a file context pattern ending with "\" - - - --- 2021-03-18 Nicolas Iooss New
[v25,25/25] AppArmor: Remove the exclusive flag [v25,01/25] LSM: Infrastructure management of the sock security 2 1 - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,24/25] LSM: Add /proc attr entry for full LSM context [v25,01/25] LSM: Infrastructure management of the sock security - 1 - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,23/25] Audit: Add a new record for multiple object LSM attributes [v25,01/25] LSM: Infrastructure management of the sock security - - - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,22/25] Audit: Add new record for multiple process LSM attributes [v25,01/25] LSM: Infrastructure management of the sock security - - - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,21/25] audit: add support for non-syscall auxiliary records [v25,01/25] LSM: Infrastructure management of the sock security - - - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,20/25] LSM: Verify LSM display sanity in binder [v25,01/25] LSM: Infrastructure management of the sock security 2 2 - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,19/25] NET: Store LSM netlabel data in a lsmblob [v25,01/25] LSM: Infrastructure management of the sock security 2 2 - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,18/25] LSM: security_secid_to_secctx in netlink netfilter [v25,01/25] LSM: Infrastructure management of the sock security 2 2 - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,17/25] LSM: Use lsmcontext in security_inode_getsecctx [v25,01/25] LSM: Infrastructure management of the sock security 3 1 - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,16/25] LSM: Use lsmcontext in security_secid_to_secctx [v25,01/25] LSM: Infrastructure management of the sock security 2 1 - --- 2021-03-09 Casey Schaufler pcmoore New
« 1 2 »