Show patches with: none      |   9316 patches
« 1 2 3 493 94 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
selinux,xfrm: fix dangling refcount on deferred skb free selinux,xfrm: fix dangling refcount on deferred skb free - - - --- 2024-11-06 Ondrej Mosnacek New
[testsuite] policy/test_sctp.te: add missing corenet_inout_generic_if() calls [testsuite] policy/test_sctp.te: add missing corenet_inout_generic_if() calls - - - --- 2024-11-06 Ondrej Mosnacek New
checkpolicy: avoid leak of identifier on required attribute checkpolicy: avoid leak of identifier on required attribute 1 - - --- 2024-11-06 Christian Göttsche New
checkpolicy: avoid memory leaks on redeclarations checkpolicy: avoid memory leaks on redeclarations 1 - - --- 2024-11-05 Christian Göttsche bachradsusi New
[2/2] libselinux: avoid dynamic allocation in openattr() [1/2] libselinux: make use of calloc(3) - - - --- 2024-11-05 Christian Göttsche bachradsusi New
[1/2] libselinux: make use of calloc(3) [1/2] libselinux: make use of calloc(3) - - - --- 2024-11-05 Christian Göttsche bachradsusi New
[v3,9/9] libselinux: support parallel selabel_lookup(3) libselinux: rework selabel_file(5) database - - - --- 2024-11-05 Christian Göttsche bachradsusi New
[v3,8/9] libselinux: add selabel_file(5) fuzzer libselinux: rework selabel_file(5) database - - - --- 2024-11-05 Christian Göttsche bachradsusi New
[v3,7/9] libselinux: remove unused hashtab code libselinux: rework selabel_file(5) database - - - --- 2024-11-05 Christian Göttsche bachradsusi New
[v3,6/9] libselinux: rework selabel_file(5) database libselinux: rework selabel_file(5) database - - - --- 2024-11-05 Christian Göttsche bachradsusi New
[v3,5/9] libselinux: sidtab updates libselinux: rework selabel_file(5) database - - - --- 2024-11-05 Christian Göttsche bachradsusi New
[v3,4/9] libselinux: add unique id to sidtab entries libselinux: rework selabel_file(5) database - - - --- 2024-11-05 Christian Göttsche bachradsusi New
[v3,3/9] libselinux: use more appropriate types in sidtab libselinux: rework selabel_file(5) database - - - --- 2024-11-05 Christian Göttsche bachradsusi New
[v3,2/9] libselinux/utils: introduce selabel_compare libselinux: rework selabel_file(5) database - - - --- 2024-11-05 Christian Göttsche bachradsusi New
[v3,1/9] policycoreutils: introduce unsetfiles libselinux: rework selabel_file(5) database - - - --- 2024-11-05 Christian Göttsche bachradsusi New
[v4,6/6] libsepol/tests: add cond xperm neverallow tests [v4,1/6] libsepol: misc assertion cleanup - - - --- 2024-11-05 Christian Göttsche bachradsusi New
[v4,5/6] libsepol: indent printed allow rule on assertion failure [v4,1/6] libsepol: misc assertion cleanup - - - --- 2024-11-05 Christian Göttsche bachradsusi New
[v4,4/6] libsepol/cil: add support for xperms in conditional policies [v4,1/6] libsepol: misc assertion cleanup - - - --- 2024-11-05 Christian Göttsche bachradsusi New
[v4,3/6] checkpolicy: add support for xperms in conditional policies [v4,1/6] libsepol: misc assertion cleanup - - - --- 2024-11-05 Christian Göttsche bachradsusi New
[v4,2/6] libsepol: add support for xperms in conditional policies [v4,1/6] libsepol: misc assertion cleanup - - - --- 2024-11-05 Christian Göttsche bachradsusi New
[v4,1/6] libsepol: misc assertion cleanup [v4,1/6] libsepol: misc assertion cleanup - - - --- 2024-11-05 Christian Göttsche bachradsusi New
[3/3] libsepol: Remove special handling of roles in module_to_cil.c [1/3] libsepol/cil: Optionally allow duplicate role declarations - - - --- 2024-11-04 James Carter bachradsusi New
[2/3] libsemanage: Optionally allow duplicate declarations [1/3] libsepol/cil: Optionally allow duplicate role declarations - - - --- 2024-11-04 James Carter bachradsusi New
[1/3] libsepol/cil: Optionally allow duplicate role declarations [1/3] libsepol/cil: Optionally allow duplicate role declarations - - - --- 2024-11-04 James Carter bachradsusi New
[next] lsm: Fix signedness bug in selinux_secid_to_secctx() [next] lsm: Fix signedness bug in selinux_secid_to_secctx() 1 - - --- 2024-11-02 Dan Carpenter pcmoore Under Review
libsemanage/direct_api: INTEGER_OVERFLOW read_len = read() libsemanage/direct_api: INTEGER_OVERFLOW read_len = read() 1 - - --- 2024-10-25 Vit Mojzis Accepted
[2/2] libselinux/matchpathcon: RESOURCE_LEAK: Variable "con" [1/2] libselinux/setexecfilecon: Remove useless rc check - - - --- 2024-10-25 Vit Mojzis Accepted
[1/2] libselinux/setexecfilecon: Remove useless rc check [1/2] libselinux/setexecfilecon: Remove useless rc check 1 - - --- 2024-10-25 Vit Mojzis Accepted
[v3,6/6] libsepol/tests: add cond xperm neverallow tests [v3,1/6] libsepol: misc assertion cleanup - - - --- 2024-10-25 Christian Göttsche bachradsusi New
[v3,5/6] libsepol: indent printed allow rule on assertion failure [v3,1/6] libsepol: misc assertion cleanup - - - --- 2024-10-25 Christian Göttsche bachradsusi New
[v3,4/6] libsepol/cil: add support for xperms in conditional policies [v3,1/6] libsepol: misc assertion cleanup - - - --- 2024-10-25 Christian Göttsche bachradsusi New
[v3,3/6] checkpolicy: add support for xperms in conditional policies [v3,1/6] libsepol: misc assertion cleanup - - - --- 2024-10-25 Christian Göttsche bachradsusi New
[v3,2/6] libsepol: add support for xperms in conditional policies [v3,1/6] libsepol: misc assertion cleanup - - - --- 2024-10-25 Christian Göttsche bachradsusi New
[v3,1/6] libsepol: misc assertion cleanup [v3,1/6] libsepol: misc assertion cleanup - - - --- 2024-10-25 Christian Göttsche bachradsusi New
[3/3] all: coding style fixes [1/3] check-syntax: update arguments for astyle v3.2 (possibly earlier) - - - --- 2024-10-24 Paul Moore omos New
[2/3] check-syntax: ignore "bad" astyle versions [1/3] check-syntax: update arguments for astyle v3.2 (possibly earlier) - - - --- 2024-10-24 Paul Moore omos New
[1/3] check-syntax: update arguments for astyle v3.2 (possibly earlier) [1/3] check-syntax: update arguments for astyle v3.2 (possibly earlier) - - - --- 2024-10-24 Paul Moore omos New
[v2,4/4] libsepol/cil: add support for xperms in conditional policies [v2,1/4] libsepol: misc assertion cleanup - - - --- 2024-10-24 Christian Göttsche bachradsusi New
[v2,3/4] checkpolicy: add support for xperms in conditional policies [v2,1/4] libsepol: misc assertion cleanup - - - --- 2024-10-24 Christian Göttsche bachradsusi New
[v2,2/4] libsepol: add support for xperms in conditional policies [v2,1/4] libsepol: misc assertion cleanup - - - --- 2024-10-24 Christian Göttsche bachradsusi New
[v2,1/4] libsepol: misc assertion cleanup [v2,1/4] libsepol: misc assertion cleanup - - - --- 2024-10-24 Christian Göttsche bachradsusi New
[2/2] restorecond: Set GLib IO channels to nonblocking restorecond: GLib IO channel fixes - - - --- 2024-10-24 Fabian Vogt bachradsusi New
[1/2] restorecond: Set GLib IO channels to binary mode restorecond: GLib IO channel fixes - - - --- 2024-10-24 Fabian Vogt bachradsusi New
[v3,5/5] LSM: secctx provider check on release [v3,1/5] LSM: Ensure the correct LSM context releaser - - - --- 2024-10-23 Casey Schaufler pcmoore Handled Elsewhere
[v3,4/5] LSM: lsm_context in security_dentry_init_security [v3,1/5] LSM: Ensure the correct LSM context releaser - - - --- 2024-10-23 Casey Schaufler pcmoore Handled Elsewhere
[v3,3/5] LSM: Use lsm_context in security_inode_getsecctx [v3,1/5] LSM: Ensure the correct LSM context releaser - - - --- 2024-10-23 Casey Schaufler pcmoore Handled Elsewhere
[v3,2/5] LSM: Replace context+len with lsm_context [v3,1/5] LSM: Ensure the correct LSM context releaser - - - --- 2024-10-23 Casey Schaufler pcmoore Handled Elsewhere
[v3,1/5] LSM: Ensure the correct LSM context releaser [v3,1/5] LSM: Ensure the correct LSM context releaser - - - --- 2024-10-23 Casey Schaufler pcmoore Handled Elsewhere
[3/3] libsepol/cil: add support for xperms in conditional policies [1/3] libsepol: add support for xperms in conditional policies - - - --- 2024-10-23 Christian Göttsche bachradsusi New
[2/3] checkpolicy: add support for xperms in conditional policies [1/3] libsepol: add support for xperms in conditional policies - - - --- 2024-10-23 Christian Göttsche bachradsusi New
[1/3] libsepol: add support for xperms in conditional policies [1/3] libsepol: add support for xperms in conditional policies - - - --- 2024-10-23 Christian Göttsche bachradsusi New
[v2] selinux: add support for xperms in conditional policies [v2] selinux: add support for xperms in conditional policies - - - --- 2024-10-23 Christian Göttsche pcmoore Under Review
selinux: add support for xperms in conditional policies selinux: add support for xperms in conditional policies - - - --- 2024-10-23 Christian Göttsche pcmoore Superseded
[v2,4/4] libsepol: Initialize "strs" on declaration [v2,1/4] libsepol/cil: Initialize avtab_datum on declaration - - - --- 2024-10-23 Vit Mojzis Accepted
[v2,3/4] libsepol/cil/cil_post: Initialize tmp on declaration [v2,1/4] libsepol/cil: Initialize avtab_datum on declaration - - - --- 2024-10-23 Vit Mojzis Accepted
[v2,2/4] libsepol/mls: Do not destroy context on memory error [v2,1/4] libsepol/cil: Initialize avtab_datum on declaration - - - --- 2024-10-23 Vit Mojzis Accepted
[v2,1/4] libsepol/cil: Initialize avtab_datum on declaration [v2,1/4] libsepol/cil: Initialize avtab_datum on declaration 1 - - --- 2024-10-23 Vit Mojzis Accepted
selinux: add netlink nlmsg_type audit message selinux: add netlink nlmsg_type audit message - - - --- 2024-10-22 Thiébaud Weksteen pcmoore Under Review
[4/4] libsepol: Initialize "strs" on declaration [1/4] libsepol/cil: Initialize avtab_datum on declaration 1 - - --- 2024-10-22 Vit Mojzis Accepted
[3/4] libsepol/cil/cil_post: Initialize tmp on declaration [1/4] libsepol/cil: Initialize avtab_datum on declaration - - - --- 2024-10-22 Vit Mojzis Accepted
[2/4] libsepol/mls: Do not destroy context on memory error [1/4] libsepol/cil: Initialize avtab_datum on declaration 1 - - --- 2024-10-22 Vit Mojzis Accepted
[1/4] libsepol/cil: Initialize avtab_datum on declaration [1/4] libsepol/cil: Initialize avtab_datum on declaration - - - --- 2024-10-22 Vit Mojzis Accepted
libsepol: Support nlmsg xperms in assertions libsepol: Support nlmsg xperms in assertions 1 - - --- 2024-10-21 Thiébaud Weksteen Accepted
[4/4] selinux: set missing errno in failure branch [1/4] libselinux: avoid errno modification by fclose(3) - - - --- 2024-10-18 Christian Göttsche Accepted
[3/4] libsemanage: check for rewind(3) failure [1/4] libselinux: avoid errno modification by fclose(3) - - - --- 2024-10-18 Christian Göttsche Accepted
[2/4] selinux: free memory in error branch [1/4] libselinux: avoid errno modification by fclose(3) - - - --- 2024-10-18 Christian Göttsche Accepted
[1/4] libselinux: avoid errno modification by fclose(3) [1/4] libselinux: avoid errno modification by fclose(3) 1 - - --- 2024-10-18 Christian Göttsche Accepted
checkpolicy/fuzz: fix setjmp condition checkpolicy/fuzz: fix setjmp condition 1 - - --- 2024-10-18 Christian Göttsche Accepted
selinux_set_callback for policy load not triggering selinux_set_callback for policy load not triggering - - - --- 2024-10-17 Matthew Sheets bachradsusi New
[2/2] libsemanage: fix swig bindings for 4.3.0 [1/2] libselinux: fix swig bindings for 4.3.0 - - - --- 2024-10-16 Petr Lautrbach Accepted
[1/2] libselinux: fix swig bindings for 4.3.0 [1/2] libselinux: fix swig bindings for 4.3.0 1 - - --- 2024-10-16 Petr Lautrbach Accepted
[v2,6/6] LSM: Use lsm_context in security_inode_notifysecctx [v2,1/6] LSM: Ensure the correct LSM context releaser - - - --- 2024-10-14 Casey Schaufler pcmoore Handled Elsewhere
[v2,5/6] LSM: secctx provider check on release [v2,1/6] LSM: Ensure the correct LSM context releaser - - - --- 2024-10-14 Casey Schaufler pcmoore Handled Elsewhere
[v2,4/6] LSM: lsm_context in security_dentry_init_security [v2,1/6] LSM: Ensure the correct LSM context releaser - - - --- 2024-10-14 Casey Schaufler pcmoore Handled Elsewhere
[v2,3/6] LSM: Use lsm_context in security_inode_getsecctx [v2,1/6] LSM: Ensure the correct LSM context releaser - - - --- 2024-10-14 Casey Schaufler pcmoore Handled Elsewhere
[v2,2/6] LSM: Replace context+len with lsm_context [v2,1/6] LSM: Ensure the correct LSM context releaser - - - --- 2024-10-14 Casey Schaufler pcmoore Handled Elsewhere
[v2,1/6] LSM: Ensure the correct LSM context releaser [v2,1/6] LSM: Ensure the correct LSM context releaser - 1 - --- 2024-10-14 Casey Schaufler pcmoore Handled Elsewhere
[v4,13/13] LSM: Remove lsm_prop scaffolding [v4,01/13] LSM: Add the lsm_prop data structure. - - - --- 2024-10-09 Casey Schaufler pcmoore Handled Elsewhere
[v4,12/13] Use lsm_prop for audit data [v4,01/13] LSM: Add the lsm_prop data structure. - - - --- 2024-10-09 Casey Schaufler pcmoore Handled Elsewhere
[v4,11/13] Audit: Change context data from secid to lsm_prop [v4,01/13] LSM: Add the lsm_prop data structure. - - - --- 2024-10-09 Casey Schaufler pcmoore Handled Elsewhere
[v4,10/13] LSM: Create new security_cred_getlsmprop LSM hook [v4,01/13] LSM: Add the lsm_prop data structure. - - - --- 2024-10-09 Casey Schaufler pcmoore Handled Elsewhere
[v4,09/13] Audit: use an lsm_prop in audit_names [v4,01/13] LSM: Add the lsm_prop data structure. - - - --- 2024-10-09 Casey Schaufler pcmoore Handled Elsewhere
[v4,08/13] LSM: Use lsm_prop in security_inode_getsecid [v4,01/13] LSM: Add the lsm_prop data structure. - - - --- 2024-10-09 Casey Schaufler pcmoore Handled Elsewhere
[v4,07/13] LSM: Use lsm_prop in security_current_getsecid [v4,01/13] LSM: Add the lsm_prop data structure. - - - --- 2024-10-09 Casey Schaufler pcmoore Handled Elsewhere
[v4,06/13] Audit: Update shutdown LSM data [v4,01/13] LSM: Add the lsm_prop data structure. - - - --- 2024-10-09 Casey Schaufler pcmoore Handled Elsewhere
[v4,05/13] LSM: Use lsm_prop in security_ipc_getsecid [v4,01/13] LSM: Add the lsm_prop data structure. - - - --- 2024-10-09 Casey Schaufler pcmoore Handled Elsewhere
[v4,04/13] Audit: maintain an lsm_prop in audit_context [v4,01/13] LSM: Add the lsm_prop data structure. - - - --- 2024-10-09 Casey Schaufler pcmoore Handled Elsewhere
[v4,03/13] LSM: Add lsmprop_to_secctx hook [v4,01/13] LSM: Add the lsm_prop data structure. - - - --- 2024-10-09 Casey Schaufler pcmoore Handled Elsewhere
[v4,02/13] LSM: Use lsm_prop in security_audit_rule_match [v4,01/13] LSM: Add the lsm_prop data structure. - - - --- 2024-10-09 Casey Schaufler pcmoore Handled Elsewhere
[v4,01/13] LSM: Add the lsm_prop data structure. [v4,01/13] LSM: Add the lsm_prop data structure. 1 - - --- 2024-10-09 Casey Schaufler pcmoore Handled Elsewhere
[v9,7/7] drm: Replace strcpy() with strscpy() Improve the copy of task comm 1 1 - --- 2024-10-07 Yafang Shao pcmoore Handled Elsewhere
[v9,6/7] mm/util: Deduplicate code in {kstrdup,kstrndup,kmemdup_nul} Improve the copy of task comm - - - --- 2024-10-07 Yafang Shao pcmoore Handled Elsewhere
[v9,5/7] mm/util: Fix possible race condition in kstrdup() Improve the copy of task comm - - - --- 2024-10-07 Yafang Shao pcmoore Handled Elsewhere
[v9,4/7] bpftool: Ensure task comm is always NUL-terminated Improve the copy of task comm - 1 - --- 2024-10-07 Yafang Shao pcmoore Handled Elsewhere
[v9,3/7] security: Replace memcpy() with get_task_comm() Improve the copy of task comm 1 - - --- 2024-10-07 Yafang Shao pcmoore Handled Elsewhere
[v9,2/7] auditsc: Replace memcpy() with strscpy() Improve the copy of task comm 1 1 - --- 2024-10-07 Yafang Shao pcmoore Handled Elsewhere
[v9,1/7] Get rid of __get_task_comm() Improve the copy of task comm - - - --- 2024-10-07 Yafang Shao pcmoore Handled Elsewhere
[v2] selinux: Deprecate /sys/fs/selinux/user [v2] selinux: Deprecate /sys/fs/selinux/user - - - --- 2024-10-04 Stephen Smalley pcmoore Accepted
libselinux: formally deprecate security_compute_user() libselinux: formally deprecate security_compute_user() 1 - - --- 2024-10-04 Stephen Smalley bachradsusi Accepted
selinux: Deprecate /sys/fs/selinux/user selinux: Deprecate /sys/fs/selinux/user - - - --- 2024-10-04 Stephen Smalley pcmoore Superseded
« 1 2 3 493 94 »