SELinux Development list

Show patches with: State = Action Required | 65 patches

Patch	Series	A/R/T	S/W/F	Date	Submitter	State
[RFC,v3] security,capability: pass object information to security_capable	[RFC,v3] security,capability: pass object information to security_capable	- - -	0 0 0	2019-08-15	Aaron Goidel	New
[RFC] audit, security: allow LSMs to selectively enable audit collection	[RFC] audit, security: allow LSMs to selectively enable audit collection	- - -	0 0 0	2019-08-15	Aaron Goidel	New
[v11,25/25] AppArmor: Remove the exclusive flag	[v11,01/25] LSM: Infrastructure management of the sock security	- 2 -	0 0 0	2019-11-13	Casey Schaufler	New
[v11,24/25] LSM: Add /proc attr entry for full LSM context	[v11,01/25] LSM: Infrastructure management of the sock security	- - -	0 0 0	2019-11-13	Casey Schaufler	New
[v11,23/25] NET: Add SO_PEERCONTEXT for multiple LSMs	[v11,01/25] LSM: Infrastructure management of the sock security	- - -	0 0 0	2019-11-13	Casey Schaufler	New
[v11,22/25] Audit: Include object data for all security modules	[v11,01/25] LSM: Infrastructure management of the sock security	- - -	0 0 0	2019-11-13	Casey Schaufler	New
[v11,21/25] Audit: Add subj_LSM fields when necessary	[v11,01/25] LSM: Infrastructure management of the sock security	- - -	0 0 0	2019-11-13	Casey Schaufler	New
[v11,20/25] LSM: Verify LSM display sanity in binder	[v11,01/25] LSM: Infrastructure management of the sock security	- - -	0 0 0	2019-11-13	Casey Schaufler	New
[v11,19/25] NET: Store LSM netlabel data in a lsmblob	[v11,01/25] LSM: Infrastructure management of the sock security	- 2 -	0 0 0	2019-11-13	Casey Schaufler	New
[v11,18/25] LSM: security_secid_to_secctx in netlink netfilter	[v11,01/25] LSM: Infrastructure management of the sock security	- 2 -	0 0 0	2019-11-13	Casey Schaufler	New
[v11,17/25] LSM: Use lsmcontext in security_inode_getsecctx	[v11,01/25] LSM: Infrastructure management of the sock security	- - -	0 0 0	2019-11-13	Casey Schaufler	New
[v11,16/25] LSM: Use lsmcontext in security_dentry_init_security	[v11,01/25] LSM: Infrastructure management of the sock security	- 2 -	0 0 0	2019-11-13	Casey Schaufler	New
[v11,15/25] LSM: Use lsmcontext in security_secid_to_secctx	[v11,01/25] LSM: Infrastructure management of the sock security	- - -	0 0 0	2019-11-13	Casey Schaufler	New
[v11,14/25] LSM: Ensure the correct LSM context releaser	[v11,01/25] LSM: Infrastructure management of the sock security	- 2 -	0 0 0	2019-11-13	Casey Schaufler	New
[v11,13/25] LSM: Specify which LSM to display	[v11,01/25] LSM: Infrastructure management of the sock security	- - -	0 0 0	2019-11-13	Casey Schaufler	New
[v11,12/25] IMA: Change internal interfaces to use lsmblobs	[v11,01/25] LSM: Infrastructure management of the sock security	- 2 -	0 0 0	2019-11-13	Casey Schaufler	New
[v11,11/25] LSM: Use lsmblob in security_cred_getsecid	[v11,01/25] LSM: Infrastructure management of the sock security	- 2 -	0 0 0	2019-11-13	Casey Schaufler	New
[v11,10/25] LSM: Use lsmblob in security_inode_getsecid	[v11,01/25] LSM: Infrastructure management of the sock security	- 2 -	0 0 0	2019-11-13	Casey Schaufler	New
[v11,09/25] LSM: Use lsmblob in security_task_getsecid	[v11,01/25] LSM: Infrastructure management of the sock security	- 2 -	0 0 0	2019-11-13	Casey Schaufler	New
[v11,08/25] LSM: Use lsmblob in security_ipc_getsecid	[v11,01/25] LSM: Infrastructure management of the sock security	- 2 -	0 0 0	2019-11-13	Casey Schaufler	New
[v11,07/25] LSM: Use lsmblob in security_secid_to_secctx	[v11,01/25] LSM: Infrastructure management of the sock security	- 2 -	0 0 0	2019-11-13	Casey Schaufler	New
[v11,06/25] LSM: Use lsmblob in security_secctx_to_secid	[v11,01/25] LSM: Infrastructure management of the sock security	- 2 -	0 0 0	2019-11-13	Casey Schaufler	New
[v11,05/25] net: Prepare UDS for security module stacking	[v11,01/25] LSM: Infrastructure management of the sock security	- 2 -	0 0 0	2019-11-13	Casey Schaufler	New
[v11,04/25] LSM: Use lsmblob in security_kernel_act_as	[v11,01/25] LSM: Infrastructure management of the sock security	- 2 -	0 0 0	2019-11-13	Casey Schaufler	New
[v11,03/25] LSM: Use lsmblob in security_audit_rule_match	[v11,01/25] LSM: Infrastructure management of the sock security	- 2 -	0 0 0	2019-11-13	Casey Schaufler	New
[v11,02/25] LSM: Create and manage the lsmblob data structure.	[v11,01/25] LSM: Infrastructure management of the sock security	- - -	0 0 0	2019-11-13	Casey Schaufler	New
[v11,01/25] LSM: Infrastructure management of the sock security	[v11,01/25] LSM: Infrastructure management of the sock security	- 2 -	0 0 0	2019-11-13	Casey Schaufler	New
[v6] selinux: sidtab: reverse lookup hash table	[v6] selinux: sidtab: reverse lookup hash table	- 1 1	0 0 0	2019-11-07	Jeff Vander Stoep	New
restorecond: Fix redundant console log output error	restorecond: Fix redundant console log output error	1 - -	0 0 0	2019-11-14	kongbaichuan	New
[v4] selinux: cache the SID -> context string translation	[v4] selinux: cache the SID -> context string translation	1 1 1	0 0 0	2019-11-11	Ondrej Mosnacek	New
selinux-testsuite: Add kernel module tests	selinux-testsuite: Add kernel module tests	- - -	0 0 0	2019-11-13	Richard Haines	New
[V2] selinux-testsuite: Add key_socket tests	[V2] selinux-testsuite: Add key_socket tests	1 - -	0 0 0	2019-11-12	Richard Haines	New
[v4,21/21] fuse: Allow user namespace mounts		1 - -	0 0 0	2016-04-26	Seth Forshee	New
[v4,20/21] fuse: Restrict allow_other to the superblock's namespace or a descendant		2 - -	0 0 0	2016-04-26	Seth Forshee	New
[v4,19/21] fuse: Support fuse filesystems outside of init_user_ns		- - -	0 0 0	2016-04-26	Seth Forshee	New
[v4,18/21] fuse: Add support for pid namespaces		1 - -	0 0 0	2016-04-26	Seth Forshee	New
[v4,17/21] capabilities: Allow privileged user in s_user_ns to set security.* xattrs		2 - -	0 0 0	2016-04-26	Seth Forshee	New
[v4,16/21] fs: Allow superblock owner to access do_remount_sb()		2 - -	0 0 0	2016-04-26	Seth Forshee	New
[v4,15/21] fs: Don't remove suid for CAP_FSETID in s_user_ns		1 - -	0 0 0	2016-04-26	Seth Forshee	New
[v4,14/21] fs: Allow superblock owner to change ownership of inodes with unmappable ids		1 - -	0 0 0	2016-04-26	Seth Forshee	New
[v4,13/21] fs: Update posix_acl support to handle user namespace mounts		1 - -	0 0 0	2016-04-26	Seth Forshee	New
[v4,12/21] fs: Refuse uid/gid changes which don't map into s_user_ns		1 - -	0 0 0	2016-04-26	Seth Forshee	New
[v4,11/21] cred: Reject inodes with invalid ids in set_create_file_as()		1 - -	0 0 0	2016-04-26	Seth Forshee	New
[v4,10/21] fs: Check for invalid i_uid in may_follow_link()		1 1 -	0 0 0	2016-04-26	Seth Forshee	New
[v4,09/21] Smack: Handle labels consistently in untrusted mounts		1 - -	0 0 0	2016-04-26	Seth Forshee	New
[v4,08/21] userns: Replace in_userns with current_in_userns		2 - -	0 0 0	2016-04-26	Seth Forshee	New
[v4,07/21] selinux: Add support for unprivileged mounts from user namespaces		2 - -	0 0 0	2016-04-26	Seth Forshee	New
[v4,06/21] fs: Treat foreign mounts as nosuid		2 - -	0 0 0	2016-04-26	Seth Forshee	New
[v4,05/21] block_dev: Check permissions towards block device inode when mounting		1 - -	0 0 0	2016-04-26	Seth Forshee	New
[v4,04/21] block_dev: Support checking inode permissions in lookup_bdev()		1 - -	0 0 0	2016-04-26	Seth Forshee	New
[v4,03/21] fs: Allow sysfs and cgroupfs to share super blocks between user namespaces		1 - -	0 0 0	2016-04-26	Seth Forshee	New
[v4,02/21] fs: Remove check of s_user_ns for existing mounts in fs_fully_visible()		- - -	0 0 0	2016-04-26	Seth Forshee	New
[v4,01/21] fs: fix a posible leak of allocated superblock		1 - -	0 0 0	2016-04-26	Seth Forshee	New
[v4,19/21] fuse: Support fuse filesystems outside of init_user_ns		- - -	0 0 0	2016-04-26	Seth Forshee	New
[v4,18/21] fuse: Add support for pid namespaces		1 - -	0 0 0	2016-04-26	Seth Forshee	New
[v4,16/21] fs: Allow superblock owner to access do_remount_sb()		2 - -	0 0 0	2016-04-26	Seth Forshee	New
[v4,14/21] fs: Allow superblock owner to change ownership of inodes with unmappable ids		1 - -	0 0 0	2016-04-26	Seth Forshee	New
[v4,13/21] fs: Update posix_acl support to handle user namespace mounts		1 - -	0 0 0	2016-04-26	Seth Forshee	New
[v4,11/21] cred: Reject inodes with invalid ids in set_create_file_as()		1 - -	0 0 0	2016-04-26	Seth Forshee	New
[v4,10/21] fs: Check for invalid i_uid in may_follow_link()		1 - -	0 0 0	2016-04-26	Seth Forshee	New
[v4,08/21] userns: Replace in_userns with current_in_userns		2 - -	0 0 0	2016-04-26	Seth Forshee	New
[v4,04/21] block_dev: Support checking inode permissions in lookup_bdev()		1 - -	0 0 0	2016-04-26	Seth Forshee	New
[v4,02/21] fs: Remove check of s_user_ns for existing mounts in fs_fully_visible()		- - -	0 0 0	2016-04-26	Seth Forshee	New
[RFC] selinux-testsuite: add lockdown tests	[RFC] selinux-testsuite: add lockdown tests	- - -	0 0 0	2019-10-30	Stephen Smalley	New
[RFC] selinux: add SELinux hooks for lockdown integrity and confidentiality	[RFC] selinux: add SELinux hooks for lockdown integrity and confidentiality	- - -	0 0 0	2019-10-30	Stephen Smalley	New