SELinux Development list

Show patches with: State = Action Required | 147 patches

« 1 2 »

Patch	Series	A/R/T	S/W/F	Date	Submitter	Delegate	State
[RFC,v3] security,capability: pass object information to security_capable	[RFC,v3] security,capability: pass object information to security_capable	- - -	---	2019-08-15	Aaron Goidel	pcmoore	New
[RFC] audit, security: allow LSMs to selectively enable audit collection	[RFC] audit, security: allow LSMs to selectively enable audit collection	- - -	---	2019-08-15	Aaron Goidel	pcmoore	New
[RFC,7/7] SELINUXNS: Fixing concurrency issues	[RFC,1/7] LSM: Infrastructure management of the superblock	- - -	---	2022-04-18	Alexander Kozhevnikov	pcmoore	New
[RFC,6/7] SELINUXNS: Fixing superblock security structure memory leakage	[RFC,1/7] LSM: Infrastructure management of the superblock	- - -	---	2022-04-18	Alexander Kozhevnikov	pcmoore	New
[RFC,5/7] SELINUXNS: Migrate all open files and all vma to new namespace	[RFC,1/7] LSM: Infrastructure management of the superblock	- - -	---	2022-04-18	Alexander Kozhevnikov	pcmoore	New
[RFC,4/7] SELINUXNS: Namespacing for xattrs	[RFC,1/7] LSM: Infrastructure management of the superblock	- - -	---	2022-04-18	Alexander Kozhevnikov	pcmoore	New
[RFC,3/7] SELINUXNS: Fix initilization of the superblock security under spinlock	[RFC,1/7] LSM: Infrastructure management of the superblock	- - -	---	2022-04-18	Alexander Kozhevnikov	pcmoore	New
[RFC,2/7] selinux: support per-namespace superblock security structures	[RFC,1/7] LSM: Infrastructure management of the superblock	- - -	---	2022-04-18	Alexander Kozhevnikov	pcmoore	New
[RFC,1/7] LSM: Infrastructure management of the superblock	[RFC,1/7] LSM: Infrastructure management of the superblock	1 2 -	---	2022-04-18	Alexander Kozhevnikov	pcmoore	New
[09/11] pragma once: convert scripts/selinux/genheaders/genheaders.c	Untitled series #439529	- - -	---	2021-02-28	Alexey Dobriyan	pcmoore	New
[v2] Support static-only builds	[v2] Support static-only builds	- - -	---	2021-11-13	Alyssa Ross		New
[1/3] secilc/docs: selinuxuser actually takes a string not identifier	[1/3] secilc/docs: selinuxuser actually takes a string not identifier	- - -	---	2022-08-28	bauen1	bachradsusi	New
[RFC] selinux: Add netlink xperm support	[RFC] selinux: Add netlink xperm support	- - -	---	2021-11-10	Bram Bonné	pcmoore	New
[3/3] libselinux: use a static match_data if single threaded	improve performance of pcre matches	- - -	---	2023-01-23	Carlo Marcelo Arenas Belón	bachradsusi	New
[2/3] libselinux: improve performance with pcre matches	improve performance of pcre matches	- - -	---	2023-01-23	Carlo Marcelo Arenas Belón	bachradsusi	New
[1/3] scripts: respect an initial LD_LIBRARY_PATH with env_use_destdir	improve performance of pcre matches	- - -	---	2023-01-23	Carlo Marcelo Arenas Belón	bachradsusi	New
[RFC] libselinux: improve performance with pcre matches	[RFC] libselinux: improve performance with pcre matches	- - -	---	2023-01-21	Carlo Marcelo Arenas Belón	bachradsusi	New
[v2,2/2] libselinux: getcon.3: add note about PID races	libselinux: add getpidprevcon	- - -	---	2023-02-01	Christian Göttsche	bachradsusi	New
[v2,1/2] libselinux: add getpidprevcon	[v2,1/2] libselinux: add getpidprevcon	- - -	---	2023-02-01	Christian Göttsche	bachradsusi	New
[3/3] libselinux: restore: use fixed sized integer for hash index	[1/3] libselinux: drop obsolete optimization flag	- - -	---	2023-02-01	Christian Göttsche	bachradsusi	New
[2/3] libselinux: restore: misc tweaks	[1/3] libselinux: drop obsolete optimization flag	- - -	---	2023-02-01	Christian Göttsche	bachradsusi	New
[1/3] libselinux: drop obsolete optimization flag	[1/3] libselinux: drop obsolete optimization flag	- - -	---	2023-02-01	Christian Göttsche	bachradsusi	New
[RFC,v4,6/6] libsepol: update CIL generation for trivial not-self rules	not-self neverallow support	- - -	---	2022-11-25	Christian Göttsche	bachradsusi	New
[RFC,v4,5/6] libsepol/tests: add tests for minus self neverallow rules	not-self neverallow support	- - -	---	2022-11-25	Christian Göttsche	bachradsusi	New
[RFC,v4,4/6] libsepol/tests: add tests for not self neverallow rules	not-self neverallow support	- - -	---	2022-11-25	Christian Göttsche	bachradsusi	New
[RFC,v4,3/6] checkpolicy: add not-self neverallow support	not-self neverallow support	- - -	---	2022-11-25	Christian Göttsche	bachradsusi	New
[RFC,v4,2/6] libsepol/cil: Add notself and minusself support to CIL	not-self neverallow support	- - -	---	2022-11-25	Christian Göttsche	bachradsusi	New
[RFC,v4,1/6] libsepol: Add not self support for neverallow rules	not-self neverallow support	- - -	---	2022-11-25	Christian Göttsche	bachradsusi	New
[RFC,6/6] libsemanage/tests: rename bool identifiers	[RFC,1/6] libsepol: rename struct member	- - -	---	2022-11-14	Christian Göttsche	bachradsusi	New
[RFC,5/6] libsepol: rename bool identifiers	[RFC,1/6] libsepol: rename struct member	- - -	---	2022-11-14	Christian Göttsche	bachradsusi	New
[RFC,4/6] checkpolicy: rename bool identifiers	[RFC,1/6] libsepol: rename struct member	- - -	---	2022-11-14	Christian Göttsche	bachradsusi	New
[RFC,3/6] libsepol/tests: rename bool indentifiers	[RFC,1/6] libsepol: rename struct member	- - -	---	2022-11-14	Christian Göttsche	bachradsusi	New
[RFC,2/6] checkpolicy: update cond_expr_t struct member name	[RFC,1/6] libsepol: rename struct member	- - -	---	2022-11-14	Christian Göttsche	bachradsusi	New
[RFC,1/6] libsepol: rename struct member	[RFC,1/6] libsepol: rename struct member	- - -	---	2022-11-14	Christian Göttsche	bachradsusi	New
[RFC,1/2] fs/xattr: add *at family syscalls	[RFC,1/2] fs/xattr: add *at family syscalls	- - -	---	2022-08-30	Christian Göttsche	pcmoore	New
[RFC,2/2] fs/xattr: wire up syscalls	[RFC,1/2] fs/xattr: add *at family syscalls	- - -	---	2022-08-30	Christian Göttsche	pcmoore	New
[v3,8/8] secilc: include segregate attributes in tests	[v3,1/8] libsepol: refactor ebitmap conversion in link.c	- - -	---	2022-07-21	Christian Göttsche		New
[v3,7/8] secilc: run tests against development version of libsepol	[v3,1/8] libsepol: refactor ebitmap conversion in link.c	- - -	---	2022-07-21	Christian Göttsche		New
[v3,6/8] libsepol/cil: add support for segregate attributes	[v3,1/8] libsepol: refactor ebitmap conversion in link.c	- - -	---	2022-07-21	Christian Göttsche		New
[v3,5/8] libsepol/tests: add test for segregate attributes	[v3,1/8] libsepol: refactor ebitmap conversion in link.c	- - -	---	2022-07-21	Christian Göttsche		New
[v3,4/8] checkpolicy: add front-end support for segregate attributes	[v3,1/8] libsepol: refactor ebitmap conversion in link.c	- - -	---	2022-07-21	Christian Göttsche		New
[v3,3/8] libsepol: add compile-time constraint for mutual exclusive attributes	[v3,1/8] libsepol: refactor ebitmap conversion in link.c	- - -	---	2022-07-21	Christian Göttsche		New
[v3,2/8] libsepol: add ebitmap iterator wrapper with startnode	[v3,1/8] libsepol: refactor ebitmap conversion in link.c	- - -	---	2022-07-21	Christian Göttsche		New
[RFC,4/4] checkpolicy: add front-end support for segregate attributes	[RFC,1/4] libsepol: refactor ebitmap conversion in link.c	- - -	---	2022-06-16	Christian Göttsche		New
[RFC,3/4] libsepol: add compile-time constraint for mutual exclusive attributes	[RFC,1/4] libsepol: refactor ebitmap conversion in link.c	- - -	---	2022-06-16	Christian Göttsche		New
[RFC,2/4] libsepol: add ebitmap iterator wrapper with startnode	[RFC,1/4] libsepol: refactor ebitmap conversion in link.c	- - -	---	2022-06-16	Christian Göttsche		New
[1/4] libselinux: add man page redirections	[1/4] libselinux: add man page redirections	1 - -	---	2022-05-20	Christian Göttsche		New
Makefile: always include and link with DESTDIR	Makefile: always include and link with DESTDIR	- - -	---	2022-05-20	Christian Göttsche		New
selinux: use unsigned char for boolean values	selinux: use unsigned char for boolean values	- - -	---	2022-05-02	Christian Göttsche	pcmoore	New
[v2,6/6] Enable missing prototypes	[v2,1/6] libsepol/cil: declare file local functions static	- - -	---	2022-04-05	Christian Göttsche		New
[XSERVER,2/2] selinux: log events with appropriate audit type	[XSERVER,1/2] selinux: remap security classes on policyload	- - -	---	2021-11-25	Christian Göttsche		New
[XSERVER,1/2] selinux: remap security classes on policyload	[XSERVER,1/2] selinux: remap security classes on policyload	- - -	---	2021-11-25	Christian Göttsche		New
[RFC,2/2] security, nfs: Provide a hook for fs_context security initialisation	[RFC,1/2] security: Remove security_add_mnt_opt() as it's unused	- - -	---	2021-12-08	David Howells	pcmoore	New
[RFC,1/1] selinuxns: Replace state pointer with namespace id	[RFC,1/1] selinuxns: Replace state pointer with namespace id	- - -	---	2022-02-16	Igor Baranov	pcmoore	New
[RFC,9/9] secilc/docs: Add deny rule to CIL documentation	Add CIL Deny Rule	- - -	---	2022-12-15	James Carter	bachradsusi	New
[RFC,8/9] secilc/test: Add a deny rule test	Add CIL Deny Rule	- - -	---	2022-12-15	James Carter	bachradsusi	New
[RFC,7/9] secilc/secil2tree: Add option to write CIL AST after post processing	Add CIL Deny Rule	- - -	---	2022-12-15	James Carter	bachradsusi	New
[RFC,6/9] libsepol: Export the cil_write_post_ast function	Add CIL Deny Rule	- - -	---	2022-12-15	James Carter	bachradsusi	New
[RFC,5/9] libsepol/cil: Add cil_write_post_ast function	Add CIL Deny Rule	- - -	---	2022-12-15	James Carter	bachradsusi	New
[RFC,4/9] libsepol/cil: Process deny rules	Add CIL Deny Rule	- - -	---	2022-12-15	James Carter	bachradsusi	New
[RFC,3/9] libsepol/cil: Add cil_tree_remove_node function	Add CIL Deny Rule	- - -	---	2022-12-15	James Carter	bachradsusi	New
[RFC,2/9] libsepol/cil: Add cil_list_is_empty macro	Add CIL Deny Rule	- - -	---	2022-12-15	James Carter	bachradsusi	New
[RFC,1/9] libsepol/cil: Parse and add deny rule to AST, but do not process	Add CIL Deny Rule	- - -	---	2022-12-15	James Carter	bachradsusi	New
[2/2,RFC] libsepol/cil: Add notself and minusself support to CIL	libsepol: Adding support for not-self rules	- - -	---	2022-01-11	James Carter		New
[1/2,RFC] libsepol: Add not self support for neverallow rules	libsepol: Adding support for not-self rules	- - -	---	2022-01-11	James Carter		New
[2/2] dbus: Add filetrans for /tmp/dbus-* session socket	[1/2] selinux: Add map perms	- - -	---	2021-11-21	Jason Zaman		New
[1/2] selinux: Add map perms	[1/2] selinux: Add map perms	- - -	---	2021-11-21	Jason Zaman		New
libselinux: Prevent cached context giving wrong results	libselinux: Prevent cached context giving wrong results	- - -	---	2022-01-27	Johannes Segitz		New
[28/32] selinux: Use mem_to_flex_dup() with xfrm and sidtab	Introduce flexible array struct memcpy() helpers	- - -	---	2022-05-04	Kees Cook	pcmoore	New
Looking at profile data once again - avc lookup	Looking at profile data once again - avc lookup	- - -	---	2023-01-28	Linus Torvalds		New
[RESEND,v18,4/4] overlayfs: inode_owner_or_capable called during execv	Untitled series #368853	- - -	---	2020-10-22	Mark Salyzyn	pcmoore	New
[RESEND,v18,3/4] overlayfs: override_creds=off option bypass creator_cred	overlayfs override_creds=off & nested get xattr fix	- - -	---	2020-10-21	Mark Salyzyn	pcmoore	New
[RESEND,v18,2/4] overlayfs: handle XATTR_NOSECURITY flag for get xattr method	overlayfs override_creds=off & nested get xattr fix	- - -	---	2020-10-21	Mark Salyzyn	pcmoore	New
[RESEND,v18,1/4] Add flags option to get xattr method paired to __vfs_getxattr	overlayfs override_creds=off & nested get xattr fix	5 1 -	---	2020-10-21	Mark Salyzyn	pcmoore	New
[RFC] userfaultfd: open userfaultfds with O_RDONLY	[RFC] userfaultfd: open userfaultfds with O_RDONLY	- - -	---	2021-06-24	Ondrej Mosnacek	pcmoore	New
[v2,2/2] selinux: fix SECURITY_LSM_NATIVE_LABELS flag handling on double mount	vfs/security/NFS/btrfs: clean up and fix LSM option handling	- - -	---	2021-05-17	Ondrej Mosnacek	pcmoore	New
[v2,1/2] vfs,LSM: introduce the FS_HANDLES_LSM_OPTS flag	vfs/security/NFS/btrfs: clean up and fix LSM option handling	- - 1	---	2021-05-17	Ondrej Mosnacek	pcmoore	New
[v2,2/2] selinux: Implement mptcp_add_subflow hook	lsm: introduce and use security_mptcp_add_subflow()	- - -	---	2022-12-19	Paolo Abeni	pcmoore	New
[v2,1/2] security, lsm: Introduce security_mptcp_add_subflow()	lsm: introduce and use security_mptcp_add_subflow()	1 - -	---	2022-12-19	Paolo Abeni	pcmoore	New
[RFC,9/9] sk_buff: access secmark via getter/setter	[RFC,1/9] sk_buff: track nfct status in newly added skb->_state	- - -	---	2021-07-21	Paolo Abeni	pcmoore	New
[RFC,8/9] sk_buff: move vlan field after tail.	[RFC,1/9] sk_buff: track nfct status in newly added skb->_state	- - -	---	2021-07-21	Paolo Abeni	pcmoore	New
[RFC,7/9] sk_buff: move inner header fields after tail	[RFC,1/9] sk_buff: track nfct status in newly added skb->_state	- - -	---	2021-07-21	Paolo Abeni	pcmoore	New
[RFC,6/9] veth: use skb_prepare_for_gro()	[RFC,1/9] sk_buff: track nfct status in newly added skb->_state	- - -	---	2021-07-21	Paolo Abeni	pcmoore	New
[RFC,5/9] skbuff: introduce has_sk state bit.	[RFC,1/9] sk_buff: track nfct status in newly added skb->_state	- - -	---	2021-07-21	Paolo Abeni	pcmoore	New
[RFC,4/9] net: optimize GRO for the common case.	[RFC,1/9] sk_buff: track nfct status in newly added skb->_state	- - -	---	2021-07-21	Paolo Abeni	pcmoore	New
[RFC,3/9] sk_buff: move the active_extensions into the state bitfield	[RFC,1/9] sk_buff: track nfct status in newly added skb->_state	- - -	---	2021-07-21	Paolo Abeni	pcmoore	New
[RFC,2/9] sk_buff: track dst status in skb->_state	[RFC,1/9] sk_buff: track nfct status in newly added skb->_state	- - -	---	2021-07-21	Paolo Abeni	pcmoore	New
[RFC,1/9] sk_buff: track nfct status in newly added skb->_state	[RFC,1/9] sk_buff: track nfct status in newly added skb->_state	- - -	---	2021-07-21	Paolo Abeni	pcmoore	New
tests/sctp: reenable the SCTP ASCONF tests	tests/sctp: reenable the SCTP ASCONF tests	- - -	---	2022-08-09	Paul Moore	omos	Under Review
RTIC: selinux: ARM64: Move selinux_state to a separate page	RTIC: selinux: ARM64: Move selinux_state to a separate page	1 - -	---	2021-02-16	Preeti Nagar	pcmoore	New
[libselinux] libselinux: make threadsafe for discover_class_cache	[libselinux] libselinux: make threadsafe for discover_class_cache	- - -	---	2022-01-20	Purushottam Choudhary		New
[V2,testsuite] tests/inet_socket: Add socket transition tests	[V2,testsuite] tests/inet_socket: Add socket transition tests	- - -	---	2021-11-25	Richard Haines	omos	New
[RFC,1/1] selinux-testsuite: Reduce sctp test runtime	selinux-testsuite: Reduce sctp test runtime	- - -	---	2020-11-04	Richard Haines	omos	Under Review
[V2,1/1] selinux-testsuite: Add btrfs support for filesystem tests	selinux-testsuite: Add btrfs support for filesystem tests	- - -	---	2020-11-03	Richard Haines	omos	Queued
[RFC,V2,2/2] selinux-testsuite: Run SCTP tests using remote server	selinux-testsuite: Run tests using remote server	- - -	---	2020-08-26	Richard Haines	omos	New
[RFC,V2,1/2] selinux-testsuite: Run tests using remote server	selinux-testsuite: Run tests using remote server	- - -	---	2020-08-26	Richard Haines	omos	New
[v4,21/21] fuse: Allow user namespace mounts		1 - -	---	2016-04-26	Seth Forshee		New
[v4,20/21] fuse: Restrict allow_other to the superblock's namespace or a descendant		2 - -	---	2016-04-26	Seth Forshee		New
[v4,19/21] fuse: Support fuse filesystems outside of init_user_ns		- - -	---	2016-04-26	Seth Forshee		New
[v4,18/21] fuse: Add support for pid namespaces		1 - -	---	2016-04-26	Seth Forshee		New

« 1 2 »