Show patches with: State = Action Required       |   190 patches
« 1 2 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
[09/11] pragma once: convert scripts/selinux/genheaders/genheaders.c Untitled series #439529 - - - --- 2021-02-28 Alexey Dobriyan pcmoore New
[1/2,RFC] libsepol: Add not self support for neverallow rules libsepol: Adding support for not-self rules - - - --- 2022-01-11 James Carter New
[1/2,testsuite] tests/nfs_filesystem: remove failing mount [1/2,testsuite] tests/nfs_filesystem: remove failing mount - - - --- 2024-05-06 Stephen Smalley omos New
[1/2] checkpolicy: perform contiguous check in host byte order [1/2] checkpolicy: perform contiguous check in host byte order 1 - - --- 2024-05-08 Christian Göttsche bachradsusi New
[1/2] selinux: Add map perms [1/2] selinux: Add map perms - - - --- 2021-11-21 Jason Zaman New
[1/3] libselinux: free empty scandir(3) result [1/3] libselinux: free empty scandir(3) result - - - --- 2024-04-29 Christian Göttsche bachradsusi New
[1/3] secilc/docs: selinuxuser actually takes a string not identifier [1/3] secilc/docs: selinuxuser actually takes a string not identifier - - - --- 2022-08-28 bauen1 bachradsusi New
[1/4] libselinux: add man page redirections [1/4] libselinux: add man page redirections 1 - - --- 2022-05-20 Christian Göttsche New
[1/4] libsepol: improve policy lookup failure message [1/4] libsepol: improve policy lookup failure message 1 - - --- 2024-04-08 Christian Göttsche bachradsusi New
[1/4] libsepol: reject self flag in type rules in old policies [1/4] libsepol: reject self flag in type rules in old policies 1 - - --- 2024-05-06 Christian Göttsche bachradsusi New
[1/4] sandbox: do not fail without xmodmap [1/4] sandbox: do not fail without xmodmap - - - --- 2024-05-14 Petr Lautrbach bachradsusi New
[1/5] libselinux/man: correct file extension of man pages [1/5] libselinux/man: correct file extension of man pages 1 - - --- 2024-04-29 Christian Göttsche bachradsusi New
[10/15] libsepol: add copy member to level_datum [01/15] checkpolicy: add libfuzz based fuzzer - - - --- 2024-01-22 Christian Göttsche bachradsusi New
[11/15] checkpolicy: fix use-after-free on invalid sens alias [01/15] checkpolicy: add libfuzz based fuzzer - - - --- 2024-01-22 Christian Göttsche bachradsusi New
[2/2,RFC] libsepol/cil: Add notself and minusself support to CIL libsepol: Adding support for not-self rules - - - --- 2022-01-11 James Carter New
[2/2,testsuite] tools/nfs.sh: comment out the fscontext= tests for now [1/2,testsuite] tests/nfs_filesystem: remove failing mount - - - --- 2024-05-06 Stephen Smalley omos New
[2/2] checkpolicy: support CIDR notation for nodecon statements [1/2] checkpolicy: perform contiguous check in host byte order - - - --- 2024-05-08 Christian Göttsche bachradsusi New
[2/2] dbus: Add filetrans for /tmp/dbus-* session socket [1/2] selinux: Add map perms - - - --- 2021-11-21 Jason Zaman New
[2/2] libsepol: rework saturation check [1/2] libsepol: use str_read() where appropriate - - - --- 2023-11-01 Christian Göttsche bachradsusi New
[2/2] selinux: add support for xperms in conditional policies [1/2] selinux: constify source policy in cond_policydb_dup() - - - --- 2024-04-05 Christian Göttsche pcmoore New
[2/3] libselinux: avoid pointer dereference before check [1/3] libselinux: free empty scandir(3) result - - - --- 2024-04-29 Christian Göttsche bachradsusi New
[2/4] checkpolicy/tests: add test for splitting xperm rule [1/4] libsepol: improve policy lookup failure message - - - --- 2024-04-08 Christian Göttsche bachradsusi New
[2/4] libsepol: only exempt gaps checking for kernel policies [1/4] libsepol: reject self flag in type rules in old policies - - - --- 2024-05-06 Christian Göttsche bachradsusi New
[2/4] sandbox: do not run window manager if it's not a session [1/4] sandbox: do not fail without xmodmap - - - --- 2024-05-14 Petr Lautrbach bachradsusi New
[2/5] libselinux/man: sync const qualifiers [1/5] libselinux/man: correct file extension of man pages - - - --- 2024-04-29 Christian Göttsche bachradsusi New
[28/32] selinux: Use mem_to_flex_dup() with xfrm and sidtab Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore New
[3/3] mcstrans: free constraint in error branch [1/3] libselinux: free empty scandir(3) result - - - --- 2024-04-29 Christian Göttsche bachradsusi New
[3/4] checkpolicy: declare file local variable static [1/4] libsepol: improve policy lookup failure message - - - --- 2024-04-08 Christian Göttsche bachradsusi New
[3/4] libsepol: validate type-attribute-map for old policies [1/4] libsepol: reject self flag in type rules in old policies - - - --- 2024-05-06 Christian Göttsche bachradsusi New
[3/4] seunshare: Add [ -P pipewiresocket ] [ -W waylandsocket ] options [1/4] sandbox: do not fail without xmodmap - - - --- 2024-05-14 Petr Lautrbach bachradsusi New
[3/5] libselinux/man: use void in synopses [1/5] libselinux/man: correct file extension of man pages - - - --- 2024-04-29 Christian Göttsche bachradsusi New
[4/4] checkpolicy: drop global policyvers variable [1/4] libsepol: improve policy lookup failure message - - - --- 2024-04-08 Christian Göttsche bachradsusi New
[4/4] libsepol: include prefix for module policy versions [1/4] libsepol: reject self flag in type rules in old policies - - - --- 2024-05-06 Christian Göttsche bachradsusi New
[4/4] sandbox: Add support for Wayland [1/4] sandbox: do not fail without xmodmap - - - --- 2024-05-14 Petr Lautrbach bachradsusi New
[4/5] libselinux/man: add format attribute for set_matchpathcon_printf(3) [1/5] libselinux/man: correct file extension of man pages - - - --- 2024-04-29 Christian Göttsche bachradsusi New
[5/5] libselinux: constify selinux_set_mapping(3) parameter [1/5] libselinux/man: correct file extension of man pages - - - --- 2024-04-29 Christian Göttsche bachradsusi New
[7/7,v2] secilc/test: Add notself and other tests Add support for notself and other to CIL - - - --- 2023-08-09 James Carter bachradsusi New
[8/9,v4] secilc/test: Add deny rule tests Add CIL Deny Rule - - - --- 2023-08-09 James Carter bachradsusi New
[libselinux] libselinux: make threadsafe for discover_class_cache [libselinux] libselinux: make threadsafe for discover_class_cache - - - --- 2022-01-20 Purushottam Choudhary New
[PR,#134] sesearch: CIL output [PR,#134] sesearch: CIL output - - - --- 2024-05-17 Topi Miettinen bachradsusi New
[RESEND,v18,1/4] Add flags option to get xattr method paired to __vfs_getxattr overlayfs override_creds=off & nested get xattr fix 5 1 - --- 2020-10-21 Mark Salyzyn pcmoore New
[RESEND,v18,2/4] overlayfs: handle XATTR_NOSECURITY flag for get xattr method overlayfs override_creds=off & nested get xattr fix - - - --- 2020-10-21 Mark Salyzyn pcmoore New
[RESEND,v18,3/4] overlayfs: override_creds=off option bypass creator_cred overlayfs override_creds=off & nested get xattr fix - - - --- 2020-10-21 Mark Salyzyn pcmoore New
[RESEND,v18,4/4] overlayfs: inode_owner_or_capable called during execv Untitled series #368853 - - - --- 2020-10-22 Mark Salyzyn pcmoore New
[RESEND,v5] proc: Allow pid_revalidate() during LOOKUP_RCU [RESEND,v5] proc: Allow pid_revalidate() during LOOKUP_RCU - - - --- 2021-04-16 Stephen Brennan pcmoore New
[RESEND,v5] proc: Allow pid_revalidate() during LOOKUP_RCU [RESEND,v5] proc: Allow pid_revalidate() during LOOKUP_RCU - - - --- 2021-02-04 Stephen Brennan pcmoore New
[RFC,07/20] selinux: services: update type for umber of class permissions [RFC,01/20] selinux: check for multiplication overflow in put_entry() - - - --- 2023-07-06 Christian Göttsche pcmoore Under Review
[RFC,1/1] selinux-testsuite: Reduce sctp test runtime selinux-testsuite: Reduce sctp test runtime - - - --- 2020-11-04 Richard Haines omos Under Review
[RFC,1/1] selinuxns: Replace state pointer with namespace id [RFC,1/1] selinuxns: Replace state pointer with namespace id - - - --- 2022-02-16 Igor Baranov pcmoore New
[RFC,1/2] fs/xattr: add *at family syscalls [RFC,1/2] fs/xattr: add *at family syscalls - - - --- 2022-08-30 Christian Göttsche pcmoore New
[RFC,1/3] newrole: constant time password comparison [RFC,1/3] newrole: constant time password comparison - - - --- 2024-04-08 Christian Göttsche bachradsusi New
[RFC,1/5] selinux-testsuite: add tests/sandbox/nodir_no_allow.cil [RFC,1/5] selinux-testsuite: add tests/sandbox/nodir_no_allow.cil - - - --- 2020-03-13 Stephen Smalley omos New
[RFC,1/7] LSM: Infrastructure management of the superblock [RFC,1/7] LSM: Infrastructure management of the superblock 1 2 - --- 2022-04-18 Alexander Kozhevnikov pcmoore New
[RFC,1/9] sk_buff: track nfct status in newly added skb->_state [RFC,1/9] sk_buff: track nfct status in newly added skb->_state - - - --- 2021-07-21 Paolo Abeni pcmoore New
[RFC,2/2] fs/xattr: wire up syscalls [RFC,1/2] fs/xattr: add *at family syscalls - - - --- 2022-08-30 Christian Göttsche pcmoore New
[RFC,2/2] security, nfs: Provide a hook for fs_context security initialisation [RFC,1/2] security: Remove security_add_mnt_opt() as it's unused - - - --- 2021-12-08 David Howells pcmoore New
[RFC,2/2] selinux: wire up new execstack LSM hook Untitled series #835707 - - - --- 2024-03-15 Christian Göttsche pcmoore New
[RFC,2/3] newrole: cleanse shadow data hold by libc [RFC,1/3] newrole: constant time password comparison - - - --- 2024-04-08 Christian Göttsche bachradsusi New
[RFC,2/4] libsepol: add ebitmap iterator wrapper with startnode [RFC,1/4] libsepol: refactor ebitmap conversion in link.c - - - --- 2022-06-16 Christian Göttsche New
[RFC,2/5] selinux-testsuite: add tests/sandbox/nodir_rx_allow.cil [RFC,1/5] selinux-testsuite: add tests/sandbox/nodir_no_allow.cil - - - --- 2020-03-13 Stephen Smalley omos New
[RFC,2/7] selinux: support per-namespace superblock security structures [RFC,1/7] LSM: Infrastructure management of the superblock - - - --- 2022-04-18 Alexander Kozhevnikov pcmoore New
[RFC,2/9] sk_buff: track dst status in skb->_state [RFC,1/9] sk_buff: track nfct status in newly added skb->_state - - - --- 2021-07-21 Paolo Abeni pcmoore New
[RFC,3/3] newrole: use ROWHAMMER resistant values [RFC,1/3] newrole: constant time password comparison - - - --- 2024-04-08 Christian Göttsche bachradsusi New
[RFC,3/4] libsepol: add compile-time constraint for mutual exclusive attributes [RFC,1/4] libsepol: refactor ebitmap conversion in link.c - - - --- 2022-06-16 Christian Göttsche New
[RFC,3/5] selinux-testsuite: add tests/sandbox/rxdir_no_allow.cil [RFC,1/5] selinux-testsuite: add tests/sandbox/nodir_no_allow.cil - - - --- 2020-03-13 Stephen Smalley omos New
[RFC,3/7] SELINUXNS: Fix initilization of the superblock security under spinlock [RFC,1/7] LSM: Infrastructure management of the superblock - - - --- 2022-04-18 Alexander Kozhevnikov pcmoore New
[RFC,3/9] libselinux: declare avc_open(3) options parameter const [RFC,1/9] libselinux: annotate interfaces with compiler attributes - - - --- 2023-05-12 Christian Göttsche bachradsusi New
[RFC,3/9] sk_buff: move the active_extensions into the state bitfield [RFC,1/9] sk_buff: track nfct status in newly added skb->_state - - - --- 2021-07-21 Paolo Abeni pcmoore New
[RFC,4/4] checkpolicy: add front-end support for segregate attributes [RFC,1/4] libsepol: refactor ebitmap conversion in link.c - - - --- 2022-06-16 Christian Göttsche New
[RFC,4/5] selinux-testsuite: add tests/sandbox/rxdir_rx_allow.cil [RFC,1/5] selinux-testsuite: add tests/sandbox/nodir_no_allow.cil - - - --- 2020-03-13 Stephen Smalley omos New
[RFC,4/7] SELINUXNS: Namespacing for xattrs [RFC,1/7] LSM: Infrastructure management of the superblock - - - --- 2022-04-18 Alexander Kozhevnikov pcmoore New
[RFC,4/9] mcstrans: check getcon(3) and context_range_set(3) for failure [RFC,1/9] libselinux: annotate interfaces with compiler attributes - - - --- 2023-05-12 Christian Göttsche bachradsusi New
[RFC,4/9] net: optimize GRO for the common case. [RFC,1/9] sk_buff: track nfct status in newly added skb->_state - - - --- 2021-07-21 Paolo Abeni pcmoore New
[RFC,5/5] selinux-testsuite: add testing for unprivileged sandboxing capability [RFC,1/5] selinux-testsuite: add tests/sandbox/nodir_no_allow.cil - - - --- 2020-03-13 Stephen Smalley omos New
[RFC,5/7] SELINUXNS: Migrate all open files and all vma to new namespace [RFC,1/7] LSM: Infrastructure management of the superblock - - - --- 2022-04-18 Alexander Kozhevnikov pcmoore New
[RFC,5/9] libselinux: explicitly ignore return values [RFC,1/9] libselinux: annotate interfaces with compiler attributes - - - --- 2023-05-12 Christian Göttsche bachradsusi New
[RFC,5/9] skbuff: introduce has_sk state bit. [RFC,1/9] sk_buff: track nfct status in newly added skb->_state - - - --- 2021-07-21 Paolo Abeni pcmoore New
[RFC,6/7] SELINUXNS: Fixing superblock security structure memory leakage [RFC,1/7] LSM: Infrastructure management of the superblock - - - --- 2022-04-18 Alexander Kozhevnikov pcmoore New
[RFC,6/9] veth: use skb_prepare_for_gro() [RFC,1/9] sk_buff: track nfct status in newly added skb->_state - - - --- 2021-07-21 Paolo Abeni pcmoore New
[RFC,7/7] SELINUXNS: Fixing concurrency issues [RFC,1/7] LSM: Infrastructure management of the superblock - - - --- 2022-04-18 Alexander Kozhevnikov pcmoore New
[RFC,7/9] secon: check selinux_raw_to_trans_context(3) for failure [RFC,1/9] libselinux: annotate interfaces with compiler attributes - - - --- 2023-05-12 Christian Göttsche bachradsusi New
[RFC,7/9] sk_buff: move inner header fields after tail [RFC,1/9] sk_buff: track nfct status in newly added skb->_state - - - --- 2021-07-21 Paolo Abeni pcmoore New
[RFC,8/9] restorecond: check selinux_restorecon(3) for failure [RFC,1/9] libselinux: annotate interfaces with compiler attributes - - - --- 2023-05-12 Christian Göttsche bachradsusi New
[RFC,8/9] sk_buff: move vlan field after tail. [RFC,1/9] sk_buff: track nfct status in newly added skb->_state - - - --- 2021-07-21 Paolo Abeni pcmoore New
[RFC,9/9] restorecond: drop last matchpathcon call [RFC,1/9] libselinux: annotate interfaces with compiler attributes - - - --- 2023-05-12 Christian Göttsche bachradsusi New
[RFC,9/9] sk_buff: access secmark via getter/setter [RFC,1/9] sk_buff: track nfct status in newly added skb->_state - - - --- 2021-07-21 Paolo Abeni pcmoore New
[RFC,V2,1/2] selinux-testsuite: Run tests using remote server selinux-testsuite: Run tests using remote server - - - --- 2020-08-26 Richard Haines omos New
[RFC,v2,1/9] policycoreutils: introduce unsetfiles libselinux: rework selabel_file(5) database - - - --- 2024-01-31 Christian Göttsche bachradsusi New
[RFC,v2,10/27] libselinux: introduce selabel_nuke libselinux: rework selabel_file(5) database - - - --- 2023-08-14 Christian Göttsche bachradsusi New
[RFC,v2,13/27] libselinux/utils: introduce selabel_compare libselinux: rework selabel_file(5) database - - - --- 2023-08-14 Christian Göttsche bachradsusi New
[RFC,v2,17/27] libselinux: remove SELABEL_OPT_SUBSET support from selabel_file(5) libselinux: rework selabel_file(5) database - - - --- 2023-08-14 Christian Göttsche bachradsusi New
[RFC,V2,2/2] selinux-testsuite: Run SCTP tests using remote server selinux-testsuite: Run tests using remote server - - - --- 2020-08-26 Richard Haines omos New
[RFC,v2,2/9] libselinux/utils: introduce selabel_compare libselinux: rework selabel_file(5) database - - - --- 2024-01-31 Christian Göttsche bachradsusi New
[RFC,v2,26/27] libselinux: remove unused hashtab code libselinux: rework selabel_file(5) database - - - --- 2023-08-14 Christian Göttsche bachradsusi New
[RFC,v2,27/27] libselinux: add selabel_file(5) fuzzer libselinux: rework selabel_file(5) database - - - --- 2023-08-14 Christian Göttsche bachradsusi New
[RFC,v2,3/9] libselinux: use more appropriate types in sidtab libselinux: rework selabel_file(5) database - - - --- 2024-01-31 Christian Göttsche bachradsusi New
[RFC,v2,4/9] libselinux: add unique id to sidtab entries libselinux: rework selabel_file(5) database - - - --- 2024-01-31 Christian Göttsche bachradsusi New
[RFC,v2,5/9] libselinux: sidtab updates libselinux: rework selabel_file(5) database - - - --- 2024-01-31 Christian Göttsche bachradsusi New
[RFC,v2,6/9] libselinux: rework selabel_file(5) database libselinux: rework selabel_file(5) database - - - --- 2024-01-31 Christian Göttsche bachradsusi New
[RFC,v2,7/9] libselinux: remove unused hashtab code libselinux: rework selabel_file(5) database - - - --- 2024-01-31 Christian Göttsche bachradsusi New
« 1 2 »