Show patches with: Archived = No       |   9200 patches
« 1 2 ... 19 20 2191 92 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
[testsuite,17/24] test_general.te: generalize the dontaudit rule Clean up testsuite policy and support running as sysadm_t - - - --- 2022-07-29 Ondrej Mosnacek omos Superseded
[testsuite,16/24] policy: remove last hardcoded references to unconfined_t Clean up testsuite policy and support running as sysadm_t - - - --- 2022-07-29 Ondrej Mosnacek omos Superseded
[testsuite,15/24] tests/*filesystem: remove weird uses of unconfined_t Clean up testsuite policy and support running as sysadm_t - - - --- 2022-07-29 Ondrej Mosnacek omos Superseded
[testsuite,14/24] tests/nnp_nosuid: avoid hardcoding unconfined_t in the policy Clean up testsuite policy and support running as sysadm_t - - - --- 2022-07-29 Ondrej Mosnacek omos Superseded
[testsuite,13/24] test_filesystem.te: remove suspicious rules Clean up testsuite policy and support running as sysadm_t - - - --- 2022-07-29 Ondrej Mosnacek omos Superseded
[testsuite,12/24] test_filesystem.te: remove redundant dontaudit rules Clean up testsuite policy and support running as sysadm_t - - - --- 2022-07-29 Ondrej Mosnacek omos Superseded
[testsuite,11/24] test_general.te: move sysadm-related rules into an optional block Clean up testsuite policy and support running as sysadm_t - - - --- 2022-07-29 Ondrej Mosnacek omos Superseded
[testsuite,10/24] policy: substitute userdom_sysadm_entry_spec_domtrans_to() Clean up testsuite policy and support running as sysadm_t - - - --- 2022-07-29 Ondrej Mosnacek omos Superseded
[testsuite,09/24] policy: move miscfiles_domain_entry_test_files() to general policy Clean up testsuite policy and support running as sysadm_t - - - --- 2022-07-29 Ondrej Mosnacek omos Superseded
[testsuite,08/24] policy: move userdom_sysadm_entry_spec_domtrans_to() to general policy Clean up testsuite policy and support running as sysadm_t - - - --- 2022-07-29 Ondrej Mosnacek omos Superseded
[testsuite,07/24] policy: move unconfined_t-related dontaudit rule to where it fits better Clean up testsuite policy and support running as sysadm_t - - - --- 2022-07-29 Ondrej Mosnacek omos Superseded
[testsuite,06/24] test_policy.if: remove weird rule from testsuite_domain_type_minimal() Clean up testsuite policy and support running as sysadm_t - - - --- 2022-07-29 Ondrej Mosnacek omos Superseded
[testsuite,03/24] test_global.te: don't add domains to system_r Clean up testsuite policy and support running as sysadm_t - - - --- 2022-07-29 Ondrej Mosnacek omos Superseded
[testsuite,02/24] test_global.te: remove unused role require Clean up testsuite policy and support running as sysadm_t - - - --- 2022-07-29 Ondrej Mosnacek omos Superseded
[testsuite,01/24] keys: change test_newcon_key_t to be just an object context Clean up testsuite policy and support running as sysadm_t - - - --- 2022-07-29 Ondrej Mosnacek omos Superseded
[v3,4/4] selinux: Implement userns_create hook Introduce security_create_user_ns() - - - --- 2022-07-21 Frederick Lawler pcmoore Superseded
[v3,3/4] selftests/bpf: Add tests verifying bpf lsm userns_create hook Introduce security_create_user_ns() 1 - - --- 2022-07-21 Frederick Lawler pcmoore Superseded
[v3,2/4] bpf-lsm: Make bpf_lsm_userns_create() sleepable Introduce security_create_user_ns() 1 - - --- 2022-07-21 Frederick Lawler pcmoore Superseded
[v3,1/4] security, lsm: Introduce security_create_user_ns() Introduce security_create_user_ns() - 1 - --- 2022-07-21 Frederick Lawler pcmoore Superseded
[v2,5/5] libsepol: more strict validation [v2,1/5] libsepol: rename validate_policydb to policydb_validate - - - --- 2022-07-21 Christian Göttsche Accepted
[v2,4/5] libsepol: rename parameter name [v2,1/5] libsepol: rename validate_policydb to policydb_validate - - - --- 2022-07-21 Christian Göttsche Accepted
[v2,3/5] libsepol: operate on const pointers during validation [v2,1/5] libsepol: rename validate_policydb to policydb_validate - - - --- 2022-07-21 Christian Göttsche Accepted
[v2,2/5] libsepol: support const avtab_t pointer in avtab_map() [v2,1/5] libsepol: rename validate_policydb to policydb_validate - - - --- 2022-07-21 Christian Göttsche Accepted
[v2,1/5] libsepol: rename validate_policydb to policydb_validate [v2,1/5] libsepol: rename validate_policydb to policydb_validate 1 - - --- 2022-07-21 Christian Göttsche Accepted
[v3,1/8] libsepol: refactor ebitmap conversion in link.c [v3,1/8] libsepol: refactor ebitmap conversion in link.c 1 - - --- 2022-07-21 Christian Göttsche Accepted
[v2,7/7] libsepol: skip superfluous memset calls in ebitmap operations [v2,1/7] libsepol/tests: add ebitmap tests - - - --- 2022-07-19 Christian Göttsche Accepted
[v2,6/7] libsepol: optimize ebitmap_xor [v2,1/7] libsepol/tests: add ebitmap tests - - - --- 2022-07-19 Christian Göttsche Accepted
[v2,5/7] libsepol: optimize ebitmap_and [v2,1/7] libsepol/tests: add ebitmap tests - - - --- 2022-07-19 Christian Göttsche Accepted
[v2,4/7] libsepol: optimize ebitmap_not [v2,1/7] libsepol/tests: add ebitmap tests - - - --- 2022-07-19 Christian Göttsche Accepted
[v2,3/7] libsepol/cil: use ebitmap_init_range [v2,1/7] libsepol/tests: add ebitmap tests - - - --- 2022-07-19 Christian Göttsche Accepted
[v2,2/7] libsepol: add ebitmap_init_range [v2,1/7] libsepol/tests: add ebitmap tests - - - --- 2022-07-19 Christian Göttsche Accepted
[v2,1/7] libsepol/tests: add ebitmap tests [v2,1/7] libsepol/tests: add ebitmap tests 1 - - --- 2022-07-19 Christian Göttsche Accepted
tests/sctp: remove assumptions in the SCTP tests tests/sctp: remove assumptions in the SCTP tests - - - --- 2022-07-18 Paul Moore omos Accepted
[testsuite] tests/module_load: detect the linker to use for module build [testsuite] tests/module_load: detect the linker to use for module build - - - --- 2022-07-18 Ondrej Mosnacek omos Accepted
[5/5] libsepol: more strict validation [1/5] libsepol: rename validate_policydb to policydb_validate - - - --- 2022-07-13 Christian Göttsche Accepted
[4/5] libsepol: rename parameter name [1/5] libsepol: rename validate_policydb to policydb_validate - - - --- 2022-07-13 Christian Göttsche Accepted
[2/5] libsepol: support const avtab_t pointer in avtab_map() [1/5] libsepol: rename validate_policydb to policydb_validate - - - --- 2022-07-13 Christian Göttsche Accepted
[1/5] libsepol: rename validate_policydb to policydb_validate [1/5] libsepol: rename validate_policydb to policydb_validate 1 - - --- 2022-07-13 Christian Göttsche Accepted
[3/3] libsepol: enclose macro parameters and replacement lists in parentheses [1/3] libsepol: break circular include - - - --- 2022-07-13 Christian Göttsche Accepted
[2/3] libsepol: include necessary headers in headers [1/3] libsepol: break circular include - - - --- 2022-07-13 Christian Göttsche Accepted
[1/3] libsepol: break circular include [1/3] libsepol: break circular include 1 - - --- 2022-07-13 Christian Göttsche Accepted
[7/7] libsepol: skip superfluous memset calls in ebitmap operations [1/7] libsepol/tests: add ebitmap tests 1 - - --- 2022-07-12 Christian Göttsche Accepted
[6/7] libsepol: optimize ebitmap_xor [1/7] libsepol/tests: add ebitmap tests 1 - - --- 2022-07-12 Christian Göttsche Accepted
[5/7] libsepol: optimize ebitmap_and [1/7] libsepol/tests: add ebitmap tests - - - --- 2022-07-12 Christian Göttsche Accepted
[4/7] libsepol: optimize ebitmap_not [1/7] libsepol/tests: add ebitmap tests 1 - - --- 2022-07-12 Christian Göttsche Accepted
[3/7] libsepol/cil: use ebitmap_init_range [1/7] libsepol/tests: add ebitmap tests 1 - - --- 2022-07-12 Christian Göttsche Accepted
[2/7] libsepol: add ebitmap_init_range [1/7] libsepol/tests: add ebitmap tests - - - --- 2022-07-12 Christian Göttsche Accepted
[1/7] libsepol/tests: add ebitmap tests [1/7] libsepol/tests: add ebitmap tests - - - --- 2022-07-12 Christian Göttsche Accepted
[RFC,RESEND] userfaultfd: open userfaultfds with O_RDONLY [RFC,RESEND] userfaultfd: open userfaultfds with O_RDONLY 2 - - --- 2022-07-08 Ondrej Mosnacek pcmoore Handled Elsewhere
[v2,4/4] selinux: Implement create_user_ns hook Introduce security_create_user_ns() - - - --- 2022-07-07 Frederick Lawler pcmoore Superseded
[v2,3/4] selftests/bpf: Add tests verifying bpf lsm create_user_ns hook Introduce security_create_user_ns() - - - --- 2022-07-07 Frederick Lawler pcmoore Superseded
[v2,2/4] bpf-lsm: Make bpf_lsm_create_user_ns() sleepable Introduce security_create_user_ns() - - - --- 2022-07-07 Frederick Lawler pcmoore Superseded
[v2,1/4] security, lsm: Introduce security_create_user_ns() Introduce security_create_user_ns() - - - --- 2022-07-07 Frederick Lawler pcmoore Superseded
[v2] libselinux: set errno to EBADF on O_PATH emulation ENOENT failure [v2] libselinux: set errno to EBADF on O_PATH emulation ENOENT failure 1 - - --- 2022-07-06 Christian Göttsche Accepted
libsepol: do not modify policy during write libsepol: do not modify policy during write 1 - - --- 2022-06-30 Christian Göttsche Accepted
libsepol/utils: improve wording libsepol/utils: improve wording 1 - - --- 2022-06-29 Christian Göttsche Accepted
[userspace,1/1] libsepol: initialize s in constraint_expr_eval_reason [userspace,1/1] libsepol: initialize s in constraint_expr_eval_reason 1 - - --- 2022-06-29 Nicolas Iooss Accepted
[userspace,1/1] CircleCI: do not add Debian-specific parameter when invoking setup.py [userspace,1/1] CircleCI: do not add Debian-specific parameter when invoking setup.py 1 - - --- 2022-06-29 Nicolas Iooss Accepted
[v3,1/4] support Dash as default shell [v3,1/4] support Dash as default shell - - - --- 2022-06-28 Christian Göttsche omos Superseded
[testsuite,2/2] tests/keys: fix Makefile dependencies Make the keys test pass in FIPS mode - - - --- 2022-06-28 Ondrej Mosnacek omos Accepted
[testsuite,1/2] tests/keys: use a longer prime in DH params Make the keys test pass in FIPS mode - - - --- 2022-06-28 Ondrej Mosnacek omos Accepted
[v37,33/33] AppArmor: Remove the exclusive flag [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 2 1 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,32/33] LSM: Add /proc attr entry for full LSM context [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,31/33] LSM: Removed scaffolding function lsmcontext_init [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,30/33] netlabel: Use a struct lsmblob in audit data [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 - - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,29/33] Audit: Add record for multiple object contexts [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 - - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,28/33] audit: multiple subject lsm values for netlabel [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 - - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,27/33] Audit: Add record for multiple task security contexts [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 - - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,26/33] Audit: Allow multiple records in an audit_buffer [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,25/33] LSM: Add a function to report multiple LSMs [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,24/33] Audit: Create audit_stamp structure [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 - - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,23/33] Audit: Keep multiple LSM data in audit_names [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 - - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,22/33] LSM: security_secid_to_secctx module selection [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,21/33] binder: Pass LSM identifier for confirmation [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,20/33] NET: Store LSM netlabel data in a lsmblob [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,19/33] LSM: security_secid_to_secctx in netlink netfilter [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 3 2 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,18/33] LSM: Use lsmcontext in security_dentry_init_security [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,17/33] LSM: Use lsmcontext in security_inode_getsecctx [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 3 2 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,16/33] LSM: Use lsmcontext in security_secid_to_secctx [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,15/33] LSM: Ensure the correct LSM context releaser [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 3 2 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,14/33] LSM: Specify which LSM to display [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,13/33] LSM: Use lsmblob in security_cred_getsecid [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,12/33] LSM: Use lsmblob in security_inode_getsecid [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,11/33] LSM: Use lsmblob in security_current_getsecid [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,10/33] LSM: Use lsmblob in security_ipc_getsecid [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,09/33] LSM: Use lsmblob in security_secid_to_secctx [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,08/33] LSM: Use lsmblob in security_secctx_to_secid [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,07/33] LSM: Use lsmblob in security_kernel_act_as [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,06/33] LSM: Use lsmblob in security_audit_rule_match [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,05/33] IMA: avoid label collisions with stacked LSMs [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,04/33] LSM: provide lsm name and id slot mappings [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,03/33] LSM: Add the lsmblob data structure. [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - 2 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,02/33] LSM: Infrastructure management of the sock security [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
[v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule [v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-06-28 Casey Schaufler pcmoore Handled Elsewhere
gettext: handle unsupported languages properly gettext: handle unsupported languages properly 1 1 - --- 2022-06-24 Vit Mojzis Accepted
[-next] selinux: Cleanup the enum SEL_COMPAT_NET [-next] selinux: Cleanup the enum SEL_COMPAT_NET - - - --- 2022-06-21 Xiu Jianfeng pcmoore Rejected
[RESEND,-next] selinux: Let the caller free the momory in *mnt_opts on error [RESEND,-next] selinux: Let the caller free the momory in *mnt_opts on error - - - --- 2022-06-17 Xiu Jianfeng pcmoore Accepted
[GIT,PULL] SELinux fixes for v5.19 (#1) [GIT,PULL] SELinux fixes for v5.19 (#1) - - - --- 2022-06-16 Paul Moore pcmoore Accepted
[RFC,1/4] libsepol: refactor ebitmap conversion in link.c [RFC,1/4] libsepol: refactor ebitmap conversion in link.c - - - --- 2022-06-16 Christian Göttsche Accepted
[-next] selinux: Let the caller free the momory in *mnt_opts on error [-next] selinux: Let the caller free the momory in *mnt_opts on error - - - --- 2022-06-16 Xiu Jianfeng pcmoore Superseded
« 1 2 ... 19 20 2191 92 »