Show patches with: State = Action Required       |   289 patches
« 1 2 3 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
selinux: Read sk->sk_family once in selinux_socket_bind() selinux: Read sk->sk_family once in selinux_socket_bind() - - - --- 2024-12-12 Mikhail Ivanov New
[v3,8/8] secilc: include segregate attributes in tests [v3,1/8] libsepol: refactor ebitmap conversion in link.c - - - --- 2022-07-21 Christian Göttsche New
[v3,7/8] secilc: run tests against development version of libsepol [v3,1/8] libsepol: refactor ebitmap conversion in link.c - - - --- 2022-07-21 Christian Göttsche New
[v3,6/8] libsepol/cil: add support for segregate attributes [v3,1/8] libsepol: refactor ebitmap conversion in link.c - - - --- 2022-07-21 Christian Göttsche New
[v3,5/8] libsepol/tests: add test for segregate attributes [v3,1/8] libsepol: refactor ebitmap conversion in link.c - - - --- 2022-07-21 Christian Göttsche New
[v3,4/8] checkpolicy: add front-end support for segregate attributes [v3,1/8] libsepol: refactor ebitmap conversion in link.c - - - --- 2022-07-21 Christian Göttsche New
[v3,3/8] libsepol: add compile-time constraint for mutual exclusive attributes [v3,1/8] libsepol: refactor ebitmap conversion in link.c - - - --- 2022-07-21 Christian Göttsche New
[v3,2/8] libsepol: add ebitmap iterator wrapper with startnode [v3,1/8] libsepol: refactor ebitmap conversion in link.c - - - --- 2022-07-21 Christian Göttsche New
[RFC,4/4] checkpolicy: add front-end support for segregate attributes [RFC,1/4] libsepol: refactor ebitmap conversion in link.c - - - --- 2022-06-16 Christian Göttsche New
[RFC,3/4] libsepol: add compile-time constraint for mutual exclusive attributes [RFC,1/4] libsepol: refactor ebitmap conversion in link.c - - - --- 2022-06-16 Christian Göttsche New
[RFC,2/4] libsepol: add ebitmap iterator wrapper with startnode [RFC,1/4] libsepol: refactor ebitmap conversion in link.c - - - --- 2022-06-16 Christian Göttsche New
[1/4] libselinux: add man page redirections [1/4] libselinux: add man page redirections 1 - - --- 2022-05-20 Christian Göttsche New
Makefile: always include and link with DESTDIR Makefile: always include and link with DESTDIR - - - --- 2022-05-20 Christian Göttsche New
[v2,6/6] Enable missing prototypes [v2,1/6] libsepol/cil: declare file local functions static - - - --- 2022-04-05 Christian Göttsche New
libselinux: Prevent cached context giving wrong results libselinux: Prevent cached context giving wrong results - - - --- 2022-01-27 Johannes Segitz New
[libselinux] libselinux: make threadsafe for discover_class_cache [libselinux] libselinux: make threadsafe for discover_class_cache - - - --- 2022-01-20 Purushottam Choudhary New
[2/2,RFC] libsepol/cil: Add notself and minusself support to CIL libsepol: Adding support for not-self rules - - - --- 2022-01-11 James Carter New
[1/2,RFC] libsepol: Add not self support for neverallow rules libsepol: Adding support for not-self rules - - - --- 2022-01-11 James Carter New
[XSERVER,2/2] selinux: log events with appropriate audit type [XSERVER,1/2] selinux: remap security classes on policyload - - - --- 2021-11-25 Christian Göttsche New
[XSERVER,1/2] selinux: remap security classes on policyload [XSERVER,1/2] selinux: remap security classes on policyload - - - --- 2021-11-25 Christian Göttsche New
[2/2] dbus: Add filetrans for /tmp/dbus-* session socket [1/2] selinux: Add map perms - - - --- 2021-11-21 Jason Zaman New
[1/2] selinux: Add map perms [1/2] selinux: Add map perms - - - --- 2021-11-21 Jason Zaman New
[v2] Support static-only builds [v2] Support static-only builds - - - --- 2021-11-13 Alyssa Ross New
[v4,21/21] fuse: Allow user namespace mounts 1 - - --- 2016-04-26 Seth Forshee New
[v4,20/21] fuse: Restrict allow_other to the superblock's namespace or a descendant 2 - - --- 2016-04-26 Seth Forshee New
[v4,19/21] fuse: Support fuse filesystems outside of init_user_ns - - - --- 2016-04-26 Seth Forshee New
[v4,18/21] fuse: Add support for pid namespaces 1 - - --- 2016-04-26 Seth Forshee New
[v4,17/21] capabilities: Allow privileged user in s_user_ns to set security.* xattrs 2 - - --- 2016-04-26 Seth Forshee New
[v4,16/21] fs: Allow superblock owner to access do_remount_sb() 2 - - --- 2016-04-26 Seth Forshee New
[v4,15/21] fs: Don't remove suid for CAP_FSETID in s_user_ns 1 - - --- 2016-04-26 Seth Forshee New
[v4,14/21] fs: Allow superblock owner to change ownership of inodes with unmappable ids 1 - - --- 2016-04-26 Seth Forshee New
[v4,13/21] fs: Update posix_acl support to handle user namespace mounts 1 - - --- 2016-04-26 Seth Forshee New
[v4,12/21] fs: Refuse uid/gid changes which don't map into s_user_ns 1 - - --- 2016-04-26 Seth Forshee New
[v4,11/21] cred: Reject inodes with invalid ids in set_create_file_as() 1 - - --- 2016-04-26 Seth Forshee New
[v4,10/21] fs: Check for invalid i_uid in may_follow_link() 1 1 - --- 2016-04-26 Seth Forshee New
[v4,09/21] Smack: Handle labels consistently in untrusted mounts 1 - - --- 2016-04-26 Seth Forshee New
[v4,08/21] userns: Replace in_userns with current_in_userns 2 - - --- 2016-04-26 Seth Forshee New
[v4,07/21] selinux: Add support for unprivileged mounts from user namespaces 2 - - --- 2016-04-26 Seth Forshee New
[v4,06/21] fs: Treat foreign mounts as nosuid 2 - - --- 2016-04-26 Seth Forshee New
[v4,05/21] block_dev: Check permissions towards block device inode when mounting 1 - - --- 2016-04-26 Seth Forshee New
[v4,04/21] block_dev: Support checking inode permissions in lookup_bdev() 1 - - --- 2016-04-26 Seth Forshee New
[v4,03/21] fs: Allow sysfs and cgroupfs to share super blocks between user namespaces 1 - - --- 2016-04-26 Seth Forshee New
[v4,02/21] fs: Remove check of s_user_ns for existing mounts in fs_fully_visible() - - - --- 2016-04-26 Seth Forshee New
[v4,01/21] fs: fix a posible leak of allocated superblock 1 - - --- 2016-04-26 Seth Forshee New
[v4,19/21] fuse: Support fuse filesystems outside of init_user_ns - - - --- 2016-04-26 Seth Forshee New
[v4,18/21] fuse: Add support for pid namespaces 1 - - --- 2016-04-26 Seth Forshee New
[v4,16/21] fs: Allow superblock owner to access do_remount_sb() 2 - - --- 2016-04-26 Seth Forshee New
[v4,14/21] fs: Allow superblock owner to change ownership of inodes with unmappable ids 1 - - --- 2016-04-26 Seth Forshee New
[v4,13/21] fs: Update posix_acl support to handle user namespace mounts 1 - - --- 2016-04-26 Seth Forshee New
[v4,11/21] cred: Reject inodes with invalid ids in set_create_file_as() 1 - - --- 2016-04-26 Seth Forshee New
[v4,10/21] fs: Check for invalid i_uid in may_follow_link() 1 - - --- 2016-04-26 Seth Forshee New
[v4,08/21] userns: Replace in_userns with current_in_userns 2 - - --- 2016-04-26 Seth Forshee New
[v4,04/21] block_dev: Support checking inode permissions in lookup_bdev() 1 - - --- 2016-04-26 Seth Forshee New
[v4,02/21] fs: Remove check of s_user_ns for existing mounts in fs_fully_visible() - - - --- 2016-04-26 Seth Forshee New
[RFC] libselinux: restore previous regex spec ordering [RFC] libselinux: restore previous regex spec ordering - - - --- 2024-12-11 Christian Göttsche bachradsusi New
[9/9] Revert "libselinux: rework selabel_file(5) database" [1/9] Revert "libselinux/utils: drop reachable assert in sefcontext_compile" - - - --- 2024-12-11 James Carter bachradsusi New
[8/9] Revert "libselinux: add selabel_file(5) fuzzer" [1/9] Revert "libselinux/utils: drop reachable assert in sefcontext_compile" - - - --- 2024-12-11 James Carter bachradsusi New
[7/9] Revert "libselinux: support parallel selabel_lookup(3)" [1/9] Revert "libselinux/utils: drop reachable assert in sefcontext_compile" - - - --- 2024-12-11 James Carter bachradsusi New
[6/9] Revert "libselinux: move functions out of header file" [1/9] Revert "libselinux/utils: drop reachable assert in sefcontext_compile" - - - --- 2024-12-11 James Carter bachradsusi New
[5/9] Revert "libselinux: avoid memory allocation in common file label lookup" [1/9] Revert "libselinux/utils: drop reachable assert in sefcontext_compile" - - - --- 2024-12-11 James Carter bachradsusi New
[4/9] Revert "libselinux: use vector instead of linked list for substitutions" [1/9] Revert "libselinux/utils: drop reachable assert in sefcontext_compile" - - - --- 2024-12-11 James Carter bachradsusi New
[3/9] Revert "libselinux: simplify string formatting" [1/9] Revert "libselinux/utils: drop reachable assert in sefcontext_compile" - - - --- 2024-12-11 James Carter bachradsusi New
[2/9] Revert "libselinux/utils: use correct error handling" [1/9] Revert "libselinux/utils: drop reachable assert in sefcontext_compile" - - - --- 2024-12-11 James Carter bachradsusi New
[1/9] Revert "libselinux/utils: drop reachable assert in sefcontext_compile" [1/9] Revert "libselinux/utils: drop reachable assert in sefcontext_compile" - - - --- 2024-12-11 James Carter bachradsusi New
libselinux/fuzz: update for lookup_all() change libselinux/fuzz: update for lookup_all() change 1 - - --- 2024-12-05 Christian Göttsche bachradsusi New
libsepol: add missing word separators in error message libsepol: add missing word separators in error message 1 - - --- 2024-12-04 Christian Göttsche bachradsusi New
[v2] libselinux/utils: drop reachable assert in sefcontext_compile [v2] libselinux/utils: drop reachable assert in sefcontext_compile 1 - 1 --- 2024-12-03 Christian Göttsche bachradsusi New
checkpolicy: drop host bits in IPv6 CIDR address checkpolicy: drop host bits in IPv6 CIDR address 1 - - --- 2024-12-02 Christian Göttsche bachradsusi New
Always build for LFS mode on 32-bit archs. Always build for LFS mode on 32-bit archs. - - - --- 2024-11-28 Christian Göttsche bachradsusi New
libsepol: avoid unnecessary memset(3) calls in hashtab libsepol: avoid unnecessary memset(3) calls in hashtab 1 - - --- 2024-11-28 Christian Göttsche bachradsusi New
libselinux/utils: use correct error handling libselinux/utils: use correct error handling 1 - - --- 2024-11-28 Christian Göttsche bachradsusi New
[v3,3/3] libselinux: simplify string formatting [v3,1/3] libselinux: avoid memory allocation in common file label lookup - - - --- 2024-11-26 Christian Göttsche bachradsusi New
[v3,2/3] libselinux: use vector instead of linked list for substitutions [v3,1/3] libselinux: avoid memory allocation in common file label lookup - - - --- 2024-11-26 Christian Göttsche bachradsusi New
[v3,1/3] libselinux: avoid memory allocation in common file label lookup [v3,1/3] libselinux: avoid memory allocation in common file label lookup 1 - - --- 2024-11-26 Christian Göttsche bachradsusi New
[v2,9/9] libsemanage: respect shell paths with /usr prefix [v2,1/9] libsemanage: set O_CLOEXEC flag for file descriptors 1 - - --- 2024-11-25 Christian Göttsche bachradsusi New
[v2,8/9] libsemanage/man: add documentation for command overrides [v2,1/9] libsemanage: set O_CLOEXEC flag for file descriptors - - - --- 2024-11-25 Christian Göttsche bachradsusi New
[v2,7/9] libsemanage: optimize policy by default [v2,1/9] libsemanage: set O_CLOEXEC flag for file descriptors - - - --- 2024-11-25 Christian Göttsche bachradsusi New
[v2,6/9] libsemanage: simplify file deletion [v2,1/9] libsemanage: set O_CLOEXEC flag for file descriptors - - - --- 2024-11-25 Christian Göttsche bachradsusi New
[v2,5/9] libsemanage: check closing written files [v2,1/9] libsemanage: set O_CLOEXEC flag for file descriptors - - - --- 2024-11-25 Christian Göttsche bachradsusi New
[v2,4/9] libsemanage: drop duplicate newlines and error descriptions in error messages [v2,1/9] libsemanage: set O_CLOEXEC flag for file descriptors - - - --- 2024-11-25 Christian Göttsche bachradsusi New
[v2,3/9] libsemanage: handle shell allocation failure [v2,1/9] libsemanage: set O_CLOEXEC flag for file descriptors - - - --- 2024-11-25 Christian Göttsche bachradsusi New
[v2,2/9] libsemanage: handle cil_set_handle_unknown() failure [v2,1/9] libsemanage: set O_CLOEXEC flag for file descriptors - - - --- 2024-11-25 Christian Göttsche bachradsusi New
[v2,1/9] libsemanage: set O_CLOEXEC flag for file descriptors [v2,1/9] libsemanage: set O_CLOEXEC flag for file descriptors - - - --- 2024-11-25 Christian Göttsche bachradsusi New
[2/2] libselinux: harden availability check against user CFLAGS [1/2] libsepol: harden availability check against user CFLAGS - - - --- 2024-11-20 Christian Göttsche bachradsusi New
[1/2] libsepol: harden availability check against user CFLAGS [1/2] libsepol: harden availability check against user CFLAGS 1 - - --- 2024-11-20 Christian Göttsche bachradsusi New
[v3,2/3] libselinux: avoid dynamic allocation in openattr() Untitled series #911259 - - - --- 2024-11-20 Christian Göttsche bachradsusi New
[v2,3/3] libselinux: move functions out of header file [v2,1/3] libselinux: make use of calloc(3) - - - --- 2024-11-20 Christian Göttsche bachradsusi New
[v2,2/3] libselinux: avoid dynamic allocation in openattr() [v2,1/3] libselinux: make use of calloc(3) - - - --- 2024-11-20 Christian Göttsche bachradsusi New
[v2,1/3] libselinux: make use of calloc(3) [v2,1/3] libselinux: make use of calloc(3) 1 - - --- 2024-11-20 Christian Göttsche bachradsusi New
fixfiles: use `grep -F` when search in mounts fixfiles: use `grep -F` when search in mounts 1 - - --- 2024-11-13 Petr Lautrbach bachradsusi New
[v1,2/2] libsemanage: allow specifying SUBDIRS when building [v1,1/2] libsepol: allow specifying SUBDIRS when building - - - --- 2024-11-13 dmitry.sharshakov@siderolabs.com bachradsusi New
[v1,1/2] libsepol: allow specifying SUBDIRS when building [v1,1/2] libsepol: allow specifying SUBDIRS when building - - - --- 2024-11-13 dmitry.sharshakov@siderolabs.com bachradsusi New
[47/47] libsemanage/tests: misc cleanup [01/47] libsemanage: white space cleanup - - - --- 2024-11-11 Christian Göttsche bachradsusi New
[46/47] libsemanage: respect shell paths with /usr prefix [01/47] libsemanage: white space cleanup - - - --- 2024-11-11 Christian Göttsche bachradsusi New
[45/47] libsemanage: skip sort of empty arrays [01/47] libsemanage: white space cleanup - - - --- 2024-11-11 Christian Göttsche bachradsusi New
[44/47] libsemanage/man: add documentation for command overrides [01/47] libsemanage: white space cleanup - - - --- 2024-11-11 Christian Göttsche bachradsusi New
[43/47] libsemanage: optimize policy by default [01/47] libsemanage: white space cleanup - - - --- 2024-11-11 Christian Göttsche bachradsusi New
[42/47] libsemanage: simplify file deletion [01/47] libsemanage: white space cleanup - - - --- 2024-11-11 Christian Göttsche bachradsusi New
[41/47] libsemanage: check closing written files [01/47] libsemanage: white space cleanup - - - --- 2024-11-11 Christian Göttsche bachradsusi New
[40/47] libsemanage: drop duplicate newlines and error descriptions in error messages [01/47] libsemanage: white space cleanup - - - --- 2024-11-11 Christian Göttsche bachradsusi New
« 1 2 3 »