Show patches with: State = Action Required       |   188 patches
« 1 2 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
[RFC,v3] security,capability: pass object information to security_capable [RFC,v3] security,capability: pass object information to security_capable - - - --- 2019-08-15 Aaron Goidel pcmoore New
[RFC] audit, security: allow LSMs to selectively enable audit collection [RFC] audit, security: allow LSMs to selectively enable audit collection - - - --- 2019-08-15 Aaron Goidel pcmoore New
[RFC,7/7] SELINUXNS: Fixing concurrency issues [RFC,1/7] LSM: Infrastructure management of the superblock - - - --- 2022-04-18 Alexander Kozhevnikov pcmoore New
[RFC,6/7] SELINUXNS: Fixing superblock security structure memory leakage [RFC,1/7] LSM: Infrastructure management of the superblock - - - --- 2022-04-18 Alexander Kozhevnikov pcmoore New
[RFC,5/7] SELINUXNS: Migrate all open files and all vma to new namespace [RFC,1/7] LSM: Infrastructure management of the superblock - - - --- 2022-04-18 Alexander Kozhevnikov pcmoore New
[RFC,4/7] SELINUXNS: Namespacing for xattrs [RFC,1/7] LSM: Infrastructure management of the superblock - - - --- 2022-04-18 Alexander Kozhevnikov pcmoore New
[RFC,3/7] SELINUXNS: Fix initilization of the superblock security under spinlock [RFC,1/7] LSM: Infrastructure management of the superblock - - - --- 2022-04-18 Alexander Kozhevnikov pcmoore New
[RFC,2/7] selinux: support per-namespace superblock security structures [RFC,1/7] LSM: Infrastructure management of the superblock - - - --- 2022-04-18 Alexander Kozhevnikov pcmoore New
[RFC,1/7] LSM: Infrastructure management of the superblock [RFC,1/7] LSM: Infrastructure management of the superblock 1 2 - --- 2022-04-18 Alexander Kozhevnikov pcmoore New
[09/11] pragma once: convert scripts/selinux/genheaders/genheaders.c Untitled series #439529 - - - --- 2021-02-28 Alexey Dobriyan pcmoore New
[v2] Support static-only builds [v2] Support static-only builds - - - --- 2021-11-13 Alyssa Ross New
[RFC] selinux: Add netlink xperm support [RFC] selinux: Add netlink xperm support - - - --- 2021-11-10 Bram Bonné pcmoore New
[v37,33/33] AppArmor: Remove the exclusive flag [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 2 1 - --- 2022-06-28 Casey Schaufler New
[v37,32/33] LSM: Add /proc attr entry for full LSM context [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-06-28 Casey Schaufler New
[v37,31/33] LSM: Removed scaffolding function lsmcontext_init [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-06-28 Casey Schaufler New
[v37,30/33] netlabel: Use a struct lsmblob in audit data [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 - - --- 2022-06-28 Casey Schaufler New
[v37,29/33] Audit: Add record for multiple object contexts [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 - - --- 2022-06-28 Casey Schaufler New
[v37,28/33] audit: multiple subject lsm values for netlabel [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 - - --- 2022-06-28 Casey Schaufler New
[v37,27/33] Audit: Add record for multiple task security contexts [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 - - --- 2022-06-28 Casey Schaufler New
[v37,26/33] Audit: Allow multiple records in an audit_buffer [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-06-28 Casey Schaufler New
[v37,25/33] LSM: Add a function to report multiple LSMs [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-06-28 Casey Schaufler New
[v37,24/33] Audit: Create audit_stamp structure [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 - - --- 2022-06-28 Casey Schaufler New
[v37,23/33] Audit: Keep multiple LSM data in audit_names [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 - - --- 2022-06-28 Casey Schaufler New
[v37,22/33] LSM: security_secid_to_secctx module selection [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-06-28 Casey Schaufler New
[v37,21/33] binder: Pass LSM identifier for confirmation [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-06-28 Casey Schaufler New
[v37,20/33] NET: Store LSM netlabel data in a lsmblob [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-06-28 Casey Schaufler New
[v37,19/33] LSM: security_secid_to_secctx in netlink netfilter [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 3 2 - --- 2022-06-28 Casey Schaufler New
[v37,18/33] LSM: Use lsmcontext in security_dentry_init_security [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-06-28 Casey Schaufler New
[v37,17/33] LSM: Use lsmcontext in security_inode_getsecctx [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 3 2 - --- 2022-06-28 Casey Schaufler New
[v37,16/33] LSM: Use lsmcontext in security_secid_to_secctx [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-06-28 Casey Schaufler New
[v37,15/33] LSM: Ensure the correct LSM context releaser [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 3 2 - --- 2022-06-28 Casey Schaufler New
[v37,14/33] LSM: Specify which LSM to display [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-06-28 Casey Schaufler New
[v37,13/33] LSM: Use lsmblob in security_cred_getsecid [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-06-28 Casey Schaufler New
[v37,12/33] LSM: Use lsmblob in security_inode_getsecid [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-06-28 Casey Schaufler New
[v37,11/33] LSM: Use lsmblob in security_current_getsecid [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-06-28 Casey Schaufler New
[v37,10/33] LSM: Use lsmblob in security_ipc_getsecid [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-06-28 Casey Schaufler New
[v37,09/33] LSM: Use lsmblob in security_secid_to_secctx [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-06-28 Casey Schaufler New
[v37,08/33] LSM: Use lsmblob in security_secctx_to_secid [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-06-28 Casey Schaufler New
[v37,07/33] LSM: Use lsmblob in security_kernel_act_as [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-06-28 Casey Schaufler New
[v37,06/33] LSM: Use lsmblob in security_audit_rule_match [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-06-28 Casey Schaufler New
[v37,05/33] IMA: avoid label collisions with stacked LSMs [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-06-28 Casey Schaufler New
[v37,04/33] LSM: provide lsm name and id slot mappings [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-06-28 Casey Schaufler New
[v37,03/33] LSM: Add the lsmblob data structure. [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - 2 - --- 2022-06-28 Casey Schaufler New
[v37,02/33] LSM: Infrastructure management of the sock security [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-06-28 Casey Schaufler New
[v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-06-28 Casey Schaufler New
libsepol: do not modify policy during write libsepol: do not modify policy during write 1 - - --- 2022-06-30 Christian Göttsche New
libsepol/utils: improve wording libsepol/utils: improve wording 1 - - --- 2022-06-29 Christian Göttsche New
[v3,1/4] support Dash as default shell [v3,1/4] support Dash as default shell - - - --- 2022-06-28 Christian Göttsche New
[RFC,4/4] checkpolicy: add front-end support for segregate attributes [RFC,1/4] libsepol: refactor ebitmap conversion in link.c - - - --- 2022-06-16 Christian Göttsche New
[RFC,3/4] libsepol: add compile-time constraint for mutual exclusive attributes [RFC,1/4] libsepol: refactor ebitmap conversion in link.c - - - --- 2022-06-16 Christian Göttsche New
[RFC,2/4] libsepol: add ebitmap iterator wrapper with startnode [RFC,1/4] libsepol: refactor ebitmap conversion in link.c - - - --- 2022-06-16 Christian Göttsche New
[RFC,1/4] libsepol: refactor ebitmap conversion in link.c [RFC,1/4] libsepol: refactor ebitmap conversion in link.c - - - --- 2022-06-16 Christian Göttsche New
[v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message [v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message - 1 - --- 2022-06-15 Christian Göttsche pcmoore New
[v3,8/8] net: use new capable_any functionality [v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message - - - --- 2022-06-15 Christian Göttsche pcmoore New
[v3,7/8] bpf: use new capable_any functionality [v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message - - - --- 2022-06-15 Christian Göttsche pcmoore New
[v3,6/8] kernel: use new capable_any functionality [v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message - - - --- 2022-06-15 Christian Göttsche pcmoore New
[v3,5/8] fs: use new capable_any functionality [v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message - - - --- 2022-06-15 Christian Göttsche pcmoore New
[v3,4/8] drivers: use new capable_any functionality [v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message - 1 - --- 2022-06-15 Christian Göttsche pcmoore New
[v3,3/8] block: use new capable_any functionality [v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message - 1 - --- 2022-06-15 Christian Göttsche pcmoore New
[v3,2/8] capability: use new capable_any functionality [v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message - - - --- 2022-06-15 Christian Göttsche pcmoore New
[v3,RFC] sched: only perform capability check on privileged operation [v3,RFC] sched: only perform capability check on privileged operation - - - --- 2022-06-15 Christian Göttsche pcmoore New
[v2,4/4] watchkey: skip if CONFIG_WATCH_QUEUE not set [v2,1/4] support Dash as default shell - - - --- 2022-06-15 Christian Göttsche New
[v2,3/4] filesystem: allow getfilecon(3) to pass test [v2,1/4] support Dash as default shell - - - --- 2022-06-15 Christian Göttsche New
[v2,2/4] support perf_event_paranoid=3 [v2,1/4] support Dash as default shell - - - --- 2022-06-15 Christian Göttsche New
[v2,1/4] support Dash as default shell [v2,1/4] support Dash as default shell - - - --- 2022-06-15 Christian Göttsche New
[4/4] watchkey: skip if CONFIG_WATCH_QUEUE not set [1/4] support Dash as default shell - - - --- 2022-06-14 Christian Göttsche New
[3/4] filesystem: allow getfilecon(3) to pass test [1/4] support Dash as default shell - - - --- 2022-06-14 Christian Göttsche New
[2/4] support perf_event_paranoid=3 [1/4] support Dash as default shell - - - --- 2022-06-14 Christian Göttsche New
[1/4] support Dash as default shell [1/4] support Dash as default shell - - - --- 2022-06-14 Christian Göttsche New
libsepol: avoid potential NULL dereference on optional parameter libsepol: avoid potential NULL dereference on optional parameter 1 - - --- 2022-06-10 Christian Göttsche New
[v2] libsepol: fix validation of user declarations in non-base modules [v2] libsepol: fix validation of user declarations in non-base modules - - - --- 2022-06-09 Christian Göttsche New
[RFC,3/3] checkpolicy: rework initial SID handling [RFC,1/3] libsepol: export initial SIDs - - - --- 2022-06-07 Christian Göttsche New
[RFC,2/3] libsepol: validate initial SIDs [RFC,1/3] libsepol: export initial SIDs - - - --- 2022-06-07 Christian Göttsche New
[RFC,1/3] libsepol: export initial SIDs [RFC,1/3] libsepol: export initial SIDs - - - --- 2022-06-07 Christian Göttsche New
[v2,3/4] libselinux: name parameters in context.h Untitled series #648107 - - - --- 2022-06-07 Christian Göttsche New
[v4,4/4] libselinux: check for truncations Untitled series #648106 - - - --- 2022-06-07 Christian Göttsche New
[v2] libselinux: restorecon: avoid printing NULL pointer [v2] libselinux: restorecon: avoid printing NULL pointer 1 - - --- 2022-06-07 Christian Göttsche New
[RFC] f*xattr: allow O_PATH descriptors [RFC] f*xattr: allow O_PATH descriptors - 1 - --- 2022-06-07 Christian Göttsche pcmoore New
libsepol: fix validation of user declarations in modules libsepol: fix validation of user declarations in modules 1 - - --- 2022-06-07 Christian Göttsche New
semodule: avoid toctou on output module semodule: avoid toctou on output module 1 - - --- 2022-05-20 Christian Göttsche New
libselinux: declare return value of context_str(3) const libselinux: declare return value of context_str(3) const 1 - - --- 2022-05-20 Christian Göttsche New
[4/4] libselinux: declare parameter of security_load_policy(3) const [1/4] libselinux: add man page redirections - - - --- 2022-05-20 Christian Göttsche New
[3/4] libselinux: name parameters in context.h [1/4] libselinux: add man page redirections - - - --- 2022-05-20 Christian Göttsche New
[2/4] libselinux: enclose macro definition in parenthesis [1/4] libselinux: add man page redirections - - - --- 2022-05-20 Christian Göttsche New
[1/4] libselinux: add man page redirections [1/4] libselinux: add man page redirections 1 - - --- 2022-05-20 Christian Göttsche New
Makefile: always include and link with DESTDIR Makefile: always include and link with DESTDIR - - - --- 2022-05-20 Christian Göttsche New
python/audit2allow: close file stream on error python/audit2allow: close file stream on error 1 - - --- 2022-05-20 Christian Göttsche New
[v3,4/4] libselinux: check for truncations Untitled series #643600 - - - --- 2022-05-20 Christian Göttsche New
[RFC,v2,4/4] libselinux: check for truncations Untitled series #642403 - - - --- 2022-05-17 Christian Göttsche New
[2/2] libselinux: restorecon: avoid printing NULL pointer [1/2] libselinux: restorecon: add fallback for pre 3.6 Linux - - - --- 2022-05-17 Christian Göttsche New
[1/2] libselinux: restorecon: add fallback for pre 3.6 Linux [1/2] libselinux: restorecon: add fallback for pre 3.6 Linux - - - --- 2022-05-17 Christian Göttsche New
[RFC,3/4] libselinux: introduce strlcpy [RFC,1/4] libselinux: simplify policy path logic to avoid uninitialized read - - - --- 2022-05-10 Christian Göttsche New
[RFC,2/4] libselinux: add header guard for internal header [RFC,1/4] libselinux: simplify policy path logic to avoid uninitialized read - - - --- 2022-05-10 Christian Göttsche New
[RFC,1/4] libselinux: simplify policy path logic to avoid uninitialized read [RFC,1/4] libselinux: simplify policy path logic to avoid uninitialized read 1 - - --- 2022-05-10 Christian Göttsche New
[v2,RFC] sched: only perform capability check on privileged operation [v2,RFC] sched: only perform capability check on privileged operation - - - --- 2022-05-02 Christian Göttsche pcmoore New
selinux: use unsigned char for boolean values selinux: use unsigned char for boolean values - - - --- 2022-05-02 Christian Göttsche pcmoore New
libselinux/utils/getsebool: add options to display en-/disabled booleans libselinux/utils/getsebool: add options to display en-/disabled booleans - - - --- 2022-04-28 Christian Göttsche New
[v2,6/6] Enable missing prototypes [v2,1/6] libsepol/cil: declare file local functions static - - - --- 2022-04-05 Christian Göttsche New
[RFC,v3,5/5] libsepol: pass avtab to report function [RFC,v3,1/5] libsepol: introduce ebitmap_relative_complement() - - - --- 2021-12-04 Christian Göttsche New
[RFC,v3,4/5] libsepol: free ebitmap on end of function [RFC,v3,1/5] libsepol: introduce ebitmap_relative_complement() - - - --- 2021-12-04 Christian Göttsche New
« 1 2 »