SELinux Development list

Show patches with: State = Action Required | 216 patches

« 1 2 3 »

Patch	Series	A/R/T	S/W/F	Date	Submitter	Delegate	State
[RFC,v3] security,capability: pass object information to security_capable	[RFC,v3] security,capability: pass object information to security_capable	- - -	---	2019-08-15	Aaron Goidel	pcmoore	New
[RFC] audit, security: allow LSMs to selectively enable audit collection	[RFC] audit, security: allow LSMs to selectively enable audit collection	- - -	---	2019-08-15	Aaron Goidel	pcmoore	New
[RFC,7/7] SELINUXNS: Fixing concurrency issues	[RFC,1/7] LSM: Infrastructure management of the superblock	- - -	---	2022-04-18	Alexander Kozhevnikov	pcmoore	New
[RFC,6/7] SELINUXNS: Fixing superblock security structure memory leakage	[RFC,1/7] LSM: Infrastructure management of the superblock	- - -	---	2022-04-18	Alexander Kozhevnikov	pcmoore	New
[RFC,5/7] SELINUXNS: Migrate all open files and all vma to new namespace	[RFC,1/7] LSM: Infrastructure management of the superblock	- - -	---	2022-04-18	Alexander Kozhevnikov	pcmoore	New
[RFC,4/7] SELINUXNS: Namespacing for xattrs	[RFC,1/7] LSM: Infrastructure management of the superblock	- - -	---	2022-04-18	Alexander Kozhevnikov	pcmoore	New
[RFC,3/7] SELINUXNS: Fix initilization of the superblock security under spinlock	[RFC,1/7] LSM: Infrastructure management of the superblock	- - -	---	2022-04-18	Alexander Kozhevnikov	pcmoore	New
[RFC,2/7] selinux: support per-namespace superblock security structures	[RFC,1/7] LSM: Infrastructure management of the superblock	- - -	---	2022-04-18	Alexander Kozhevnikov	pcmoore	New
[RFC,1/7] LSM: Infrastructure management of the superblock	[RFC,1/7] LSM: Infrastructure management of the superblock	1 2 -	---	2022-04-18	Alexander Kozhevnikov	pcmoore	New
[09/11] pragma once: convert scripts/selinux/genheaders/genheaders.c	Untitled series #439529	- - -	---	2021-02-28	Alexey Dobriyan	pcmoore	New
[v2] Support static-only builds	[v2] Support static-only builds	- - -	---	2021-11-13	Alyssa Ross		New
[1/3] secilc/docs: selinuxuser actually takes a string not identifier	[1/3] secilc/docs: selinuxuser actually takes a string not identifier	- - -	---	2022-08-28	bauen1	bachradsusi	New
[RFC] selinux: Add netlink xperm support	[RFC] selinux: Add netlink xperm support	- - -	---	2021-11-10	Bram Bonné	pcmoore	New
[v3,5/5] LSM: secctx provider check on release	[v3,1/5] LSM: Ensure the correct LSM context releaser	- - -	---	2024-10-23	Casey Schaufler		New
[v3,4/5] LSM: lsm_context in security_dentry_init_security	[v3,1/5] LSM: Ensure the correct LSM context releaser	- - -	---	2024-10-23	Casey Schaufler		New
[v3,3/5] LSM: Use lsm_context in security_inode_getsecctx	[v3,1/5] LSM: Ensure the correct LSM context releaser	- - -	---	2024-10-23	Casey Schaufler		New
[v3,2/5] LSM: Replace context+len with lsm_context	[v3,1/5] LSM: Ensure the correct LSM context releaser	- - -	---	2024-10-23	Casey Schaufler		New
[v3,1/5] LSM: Ensure the correct LSM context releaser	[v3,1/5] LSM: Ensure the correct LSM context releaser	- - -	---	2024-10-23	Casey Schaufler		New
[v2,6/6] LSM: Use lsm_context in security_inode_notifysecctx	[v2,1/6] LSM: Ensure the correct LSM context releaser	- - -	---	2024-10-14	Casey Schaufler		New
[v2,5/6] LSM: secctx provider check on release	[v2,1/6] LSM: Ensure the correct LSM context releaser	- - -	---	2024-10-14	Casey Schaufler		New
[v2,4/6] LSM: lsm_context in security_dentry_init_security	[v2,1/6] LSM: Ensure the correct LSM context releaser	- - -	---	2024-10-14	Casey Schaufler		New
[v2,3/6] LSM: Use lsm_context in security_inode_getsecctx	[v2,1/6] LSM: Ensure the correct LSM context releaser	- - -	---	2024-10-14	Casey Schaufler		New
[v2,2/6] LSM: Replace context+len with lsm_context	[v2,1/6] LSM: Ensure the correct LSM context releaser	- - -	---	2024-10-14	Casey Schaufler		New
[v2,1/6] LSM: Ensure the correct LSM context releaser	[v2,1/6] LSM: Ensure the correct LSM context releaser	- 1 -	---	2024-10-14	Casey Schaufler		New
[v4,13/13] LSM: Remove lsm_prop scaffolding	[v4,01/13] LSM: Add the lsm_prop data structure.	- - -	---	2024-10-09	Casey Schaufler		New
[v4,12/13] Use lsm_prop for audit data	[v4,01/13] LSM: Add the lsm_prop data structure.	- - -	---	2024-10-09	Casey Schaufler		New
[v4,11/13] Audit: Change context data from secid to lsm_prop	[v4,01/13] LSM: Add the lsm_prop data structure.	- - -	---	2024-10-09	Casey Schaufler		New
[v4,10/13] LSM: Create new security_cred_getlsmprop LSM hook	[v4,01/13] LSM: Add the lsm_prop data structure.	- - -	---	2024-10-09	Casey Schaufler		New
[v4,09/13] Audit: use an lsm_prop in audit_names	[v4,01/13] LSM: Add the lsm_prop data structure.	- - -	---	2024-10-09	Casey Schaufler		New
[v4,08/13] LSM: Use lsm_prop in security_inode_getsecid	[v4,01/13] LSM: Add the lsm_prop data structure.	- - -	---	2024-10-09	Casey Schaufler		New
[v4,07/13] LSM: Use lsm_prop in security_current_getsecid	[v4,01/13] LSM: Add the lsm_prop data structure.	- - -	---	2024-10-09	Casey Schaufler		New
[v4,06/13] Audit: Update shutdown LSM data	[v4,01/13] LSM: Add the lsm_prop data structure.	- - -	---	2024-10-09	Casey Schaufler		New
[v4,05/13] LSM: Use lsm_prop in security_ipc_getsecid	[v4,01/13] LSM: Add the lsm_prop data structure.	- - -	---	2024-10-09	Casey Schaufler		New
[v4,04/13] Audit: maintain an lsm_prop in audit_context	[v4,01/13] LSM: Add the lsm_prop data structure.	- - -	---	2024-10-09	Casey Schaufler		New
[v4,03/13] LSM: Add lsmprop_to_secctx hook	[v4,01/13] LSM: Add the lsm_prop data structure.	- - -	---	2024-10-09	Casey Schaufler		New
[v4,02/13] LSM: Use lsm_prop in security_audit_rule_match	[v4,01/13] LSM: Add the lsm_prop data structure.	- - -	---	2024-10-09	Casey Schaufler		New
[v4,01/13] LSM: Add the lsm_prop data structure.	[v4,01/13] LSM: Add the lsm_prop data structure.	1 - -	---	2024-10-09	Casey Schaufler		New
[v3,6/6] libsepol/tests: add cond xperm neverallow tests	[v3,1/6] libsepol: misc assertion cleanup	- - -	---	2024-10-25	Christian Göttsche		New
[v3,5/6] libsepol: indent printed allow rule on assertion failure	[v3,1/6] libsepol: misc assertion cleanup	- - -	---	2024-10-25	Christian Göttsche		New
[v3,4/6] libsepol/cil: add support for xperms in conditional policies	[v3,1/6] libsepol: misc assertion cleanup	- - -	---	2024-10-25	Christian Göttsche		New
[v3,3/6] checkpolicy: add support for xperms in conditional policies	[v3,1/6] libsepol: misc assertion cleanup	- - -	---	2024-10-25	Christian Göttsche		New
[v3,2/6] libsepol: add support for xperms in conditional policies	[v3,1/6] libsepol: misc assertion cleanup	- - -	---	2024-10-25	Christian Göttsche		New
[v3,1/6] libsepol: misc assertion cleanup	[v3,1/6] libsepol: misc assertion cleanup	- - -	---	2024-10-25	Christian Göttsche		New
[v2,4/4] libsepol/cil: add support for xperms in conditional policies	[v2,1/4] libsepol: misc assertion cleanup	- - -	---	2024-10-24	Christian Göttsche		New
[v2,3/4] checkpolicy: add support for xperms in conditional policies	[v2,1/4] libsepol: misc assertion cleanup	- - -	---	2024-10-24	Christian Göttsche		New
[v2,2/4] libsepol: add support for xperms in conditional policies	[v2,1/4] libsepol: misc assertion cleanup	- - -	---	2024-10-24	Christian Göttsche		New
[v2,1/4] libsepol: misc assertion cleanup	[v2,1/4] libsepol: misc assertion cleanup	- - -	---	2024-10-24	Christian Göttsche		New
[3/3] libsepol/cil: add support for xperms in conditional policies	[1/3] libsepol: add support for xperms in conditional policies	- - -	---	2024-10-23	Christian Göttsche		New
[2/3] checkpolicy: add support for xperms in conditional policies	[1/3] libsepol: add support for xperms in conditional policies	- - -	---	2024-10-23	Christian Göttsche		New
[1/3] libsepol: add support for xperms in conditional policies	[1/3] libsepol: add support for xperms in conditional policies	- - -	---	2024-10-23	Christian Göttsche		New
[v2] selinux: add support for xperms in conditional policies	[v2] selinux: add support for xperms in conditional policies	- - -	---	2024-10-23	Christian Göttsche		New
selinux: add support for xperms in conditional policies	selinux: add support for xperms in conditional policies	- - -	---	2024-10-23	Christian Göttsche		New
[4/4] selinux: set missing errno in failure branch	[1/4] libselinux: avoid errno modification by fclose(3)	- - -	---	2024-10-18	Christian Göttsche		New
[3/4] libsemanage: check for rewind(3) failure	[1/4] libselinux: avoid errno modification by fclose(3)	- - -	---	2024-10-18	Christian Göttsche		New
[2/4] selinux: free memory in error branch	[1/4] libselinux: avoid errno modification by fclose(3)	- - -	---	2024-10-18	Christian Göttsche		New
[1/4] libselinux: avoid errno modification by fclose(3)	[1/4] libselinux: avoid errno modification by fclose(3)	1 - -	---	2024-10-18	Christian Göttsche		New
checkpolicy/fuzz: fix setjmp condition	checkpolicy/fuzz: fix setjmp condition	1 - -	---	2024-10-18	Christian Göttsche		New
[RFC,3/3] newrole: use ROWHAMMER resistant values	[RFC,1/3] newrole: constant time password comparison	- - -	---	2024-04-08	Christian Göttsche	bachradsusi	New
[RFC,2/3] newrole: cleanse shadow data hold by libc	[RFC,1/3] newrole: constant time password comparison	- - -	---	2024-04-08	Christian Göttsche	bachradsusi	New
[RFC,1/3] newrole: constant time password comparison	[RFC,1/3] newrole: constant time password comparison	- - -	---	2024-04-08	Christian Göttsche	bachradsusi	New
[2/2] selinux: add support for xperms in conditional policies	[1/2] selinux: constify source policy in cond_policydb_dup()	- - -	---	2024-04-05	Christian Göttsche	pcmoore	New
[RFC] libselinux: disable capturing in fcontext matching	[RFC] libselinux: disable capturing in fcontext matching	- - -	---	2024-01-08	Christian Göttsche	bachradsusi	New
[RFC] libsepol: handle long permission names in sepol_av_to_string()	[RFC] libsepol: handle long permission names in sepol_av_to_string()	- - -	---	2023-12-11	Christian Göttsche	bachradsusi	New
libsepol: validate common classes in scope indices	libsepol: validate common classes in scope indices	- - -	---	2023-12-08	Christian Göttsche	bachradsusi	New
[RFC] libsepol: validate permission identifier length	[RFC] libsepol: validate permission identifier length	- - -	---	2023-12-07	Christian Göttsche	bachradsusi	New
[2/2] libsepol: rework saturation check	[1/2] libsepol: use str_read() where appropriate	- - -	---	2023-11-01	Christian Göttsche	bachradsusi	New
libsepol: ignore writing invalid polcaps in fuzzer	libsepol: ignore writing invalid polcaps in fuzzer	- - -	---	2023-11-01	Christian Göttsche	bachradsusi	New
[RFC,v2,27/27] libselinux: add selabel_file(5) fuzzer	libselinux: rework selabel_file(5) database	- - -	---	2023-08-14	Christian Göttsche	bachradsusi	New
[RFC,v2,26/27] libselinux: remove unused hashtab code	libselinux: rework selabel_file(5) database	- - -	---	2023-08-14	Christian Göttsche	bachradsusi	New
[RFC,v2,17/27] libselinux: remove SELABEL_OPT_SUBSET support from selabel_file(5)	libselinux: rework selabel_file(5) database	- - -	---	2023-08-14	Christian Göttsche	bachradsusi	New
[RFC,v2,13/27] libselinux/utils: introduce selabel_compare	libselinux: rework selabel_file(5) database	- - -	---	2023-08-14	Christian Göttsche	bachradsusi	New
[RFC,v2,10/27] libselinux: introduce selabel_nuke	libselinux: rework selabel_file(5) database	- - -	---	2023-08-14	Christian Göttsche	bachradsusi	New
[v3,2/7] selinux: use u32 as bit type in ebitmap code	[v3,1/7] selinux: avoid implicit conversions in avtab code	- - -	---	2023-08-07	Christian Göttsche	pcmoore	New
[v2] selinux: optimize ebitmap_and()	[v2] selinux: optimize ebitmap_and()	- - -	---	2023-08-03	Christian Göttsche	pcmoore	New
libselinux/utils: introduce getpolicyload	libselinux/utils: introduce getpolicyload	- - -	---	2023-07-06	Christian Göttsche	bachradsusi	New
[RFC,07/20] selinux: services: update type for umber of class permissions	[RFC,01/20] selinux: check for multiplication overflow in put_entry()	- - -	---	2023-07-06	Christian Göttsche	pcmoore	Under Review
[RFC,9/9] restorecond: drop last matchpathcon call	[RFC,1/9] libselinux: annotate interfaces with compiler attributes	- - -	---	2023-05-12	Christian Göttsche	bachradsusi	New
[RFC,8/9] restorecond: check selinux_restorecon(3) for failure	[RFC,1/9] libselinux: annotate interfaces with compiler attributes	- - -	---	2023-05-12	Christian Göttsche	bachradsusi	New
[RFC,7/9] secon: check selinux_raw_to_trans_context(3) for failure	[RFC,1/9] libselinux: annotate interfaces with compiler attributes	- - -	---	2023-05-12	Christian Göttsche	bachradsusi	New
[RFC,5/9] libselinux: explicitly ignore return values	[RFC,1/9] libselinux: annotate interfaces with compiler attributes	- - -	---	2023-05-12	Christian Göttsche	bachradsusi	New
[RFC,4/9] mcstrans: check getcon(3) and context_range_set(3) for failure	[RFC,1/9] libselinux: annotate interfaces with compiler attributes	- - -	---	2023-05-12	Christian Göttsche	bachradsusi	New
[RFC,3/9] libselinux: declare avc_open(3) options parameter const	[RFC,1/9] libselinux: annotate interfaces with compiler attributes	- - -	---	2023-05-12	Christian Göttsche	bachradsusi	New
[RFC,v4,6/6] libsepol: update CIL generation for trivial not-self rules	not-self neverallow support	1 - -	---	2022-11-25	Christian Göttsche	bachradsusi	New
[RFC,v4,2/6] libsepol/cil: Add notself and minusself support to CIL	not-self neverallow support	- - -	---	2022-11-25	Christian Göttsche	bachradsusi	New
[RFC,1/2] fs/xattr: add *at family syscalls	[RFC,1/2] fs/xattr: add *at family syscalls	- - -	---	2022-08-30	Christian Göttsche	pcmoore	New
[RFC,2/2] fs/xattr: wire up syscalls	[RFC,1/2] fs/xattr: add *at family syscalls	- - -	---	2022-08-30	Christian Göttsche	pcmoore	New
[v3,8/8] secilc: include segregate attributes in tests	[v3,1/8] libsepol: refactor ebitmap conversion in link.c	- - -	---	2022-07-21	Christian Göttsche		New
[v3,7/8] secilc: run tests against development version of libsepol	[v3,1/8] libsepol: refactor ebitmap conversion in link.c	- - -	---	2022-07-21	Christian Göttsche		New
[v3,6/8] libsepol/cil: add support for segregate attributes	[v3,1/8] libsepol: refactor ebitmap conversion in link.c	- - -	---	2022-07-21	Christian Göttsche		New
[v3,5/8] libsepol/tests: add test for segregate attributes	[v3,1/8] libsepol: refactor ebitmap conversion in link.c	- - -	---	2022-07-21	Christian Göttsche		New
[v3,4/8] checkpolicy: add front-end support for segregate attributes	[v3,1/8] libsepol: refactor ebitmap conversion in link.c	- - -	---	2022-07-21	Christian Göttsche		New
[v3,3/8] libsepol: add compile-time constraint for mutual exclusive attributes	[v3,1/8] libsepol: refactor ebitmap conversion in link.c	- - -	---	2022-07-21	Christian Göttsche		New
[v3,2/8] libsepol: add ebitmap iterator wrapper with startnode	[v3,1/8] libsepol: refactor ebitmap conversion in link.c	- - -	---	2022-07-21	Christian Göttsche		New
[RFC,4/4] checkpolicy: add front-end support for segregate attributes	[RFC,1/4] libsepol: refactor ebitmap conversion in link.c	- - -	---	2022-06-16	Christian Göttsche		New
[RFC,3/4] libsepol: add compile-time constraint for mutual exclusive attributes	[RFC,1/4] libsepol: refactor ebitmap conversion in link.c	- - -	---	2022-06-16	Christian Göttsche		New
[RFC,2/4] libsepol: add ebitmap iterator wrapper with startnode	[RFC,1/4] libsepol: refactor ebitmap conversion in link.c	- - -	---	2022-06-16	Christian Göttsche		New
[1/4] libselinux: add man page redirections	[1/4] libselinux: add man page redirections	1 - -	---	2022-05-20	Christian Göttsche		New
Makefile: always include and link with DESTDIR	Makefile: always include and link with DESTDIR	- - -	---	2022-05-20	Christian Göttsche		New
selinux: use unsigned char for boolean values	selinux: use unsigned char for boolean values	- - -	---	2022-05-02	Christian Göttsche	pcmoore	New
[v2,6/6] Enable missing prototypes	[v2,1/6] libsepol/cil: declare file local functions static	- - -	---	2022-04-05	Christian Göttsche		New

« 1 2 3 »