Show patches with: Archived = No       |   9200 patches
« 1 2 ... 20 21 2291 92 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
python: remove IOError in certain cases python: remove IOError in certain cases 1 - - --- 2022-06-16 Elijah Conners Accepted
selinux: free contexts previously transferred in selinux_add_opt() selinux: free contexts previously transferred in selinux_add_opt() - - - --- 2022-06-15 Christian Göttsche pcmoore Accepted
[v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message [v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message - 1 - --- 2022-06-15 Christian Göttsche pcmoore Handled Elsewhere
[v3,8/8] net: use new capable_any functionality [v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message - - - --- 2022-06-15 Christian Göttsche pcmoore Handled Elsewhere
[v3,7/8] bpf: use new capable_any functionality [v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message - - - --- 2022-06-15 Christian Göttsche pcmoore Handled Elsewhere
[v3,6/8] kernel: use new capable_any functionality [v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message - - - --- 2022-06-15 Christian Göttsche pcmoore Handled Elsewhere
[v3,5/8] fs: use new capable_any functionality [v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message - - - --- 2022-06-15 Christian Göttsche pcmoore Handled Elsewhere
[v3,4/8] drivers: use new capable_any functionality [v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message - 1 - --- 2022-06-15 Christian Göttsche pcmoore Handled Elsewhere
[v3,3/8] block: use new capable_any functionality [v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message - 1 - --- 2022-06-15 Christian Göttsche pcmoore Handled Elsewhere
[v3,2/8] capability: use new capable_any functionality [v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message - - - --- 2022-06-15 Christian Göttsche pcmoore Handled Elsewhere
[v3,RFC] sched: only perform capability check on privileged operation [v3,RFC] sched: only perform capability check on privileged operation - - - --- 2022-06-15 Christian Göttsche pcmoore Handled Elsewhere
[v2,4/4] watchkey: skip if CONFIG_WATCH_QUEUE not set [v2,1/4] support Dash as default shell - - - --- 2022-06-15 Christian Göttsche omos Superseded
[v2,3/4] filesystem: allow getfilecon(3) to pass test [v2,1/4] support Dash as default shell - - - --- 2022-06-15 Christian Göttsche omos Superseded
[v2,2/4] support perf_event_paranoid=3 [v2,1/4] support Dash as default shell - - - --- 2022-06-15 Christian Göttsche omos Superseded
[v2,1/4] support Dash as default shell [v2,1/4] support Dash as default shell - - - --- 2022-06-15 Christian Göttsche omos Superseded
[-next] selinux: Fix memleak in security_read_policy [-next] selinux: Fix memleak in security_read_policy - - - --- 2022-06-14 Xiu Jianfeng pcmoore Changes Requested
[4/4] watchkey: skip if CONFIG_WATCH_QUEUE not set [1/4] support Dash as default shell - - - --- 2022-06-14 Christian Göttsche Superseded
[3/4] filesystem: allow getfilecon(3) to pass test [1/4] support Dash as default shell - - - --- 2022-06-14 Christian Göttsche Superseded
[2/4] support perf_event_paranoid=3 [1/4] support Dash as default shell - - - --- 2022-06-14 Christian Göttsche Superseded
[1/4] support Dash as default shell [1/4] support Dash as default shell - - - --- 2022-06-14 Christian Göttsche Superseded
[-next] selinux: Add boundary check in put_entry() [-next] selinux: Add boundary check in put_entry() - - - --- 2022-06-14 Xiu Jianfeng pcmoore Accepted
[-next] selinux: Fix memleak in security_read_state_kernel [-next] selinux: Fix memleak in security_read_state_kernel - - - --- 2022-06-13 Xiu Jianfeng pcmoore Accepted
[-next] selinux: Fix potential memory leak in selinux_add_opt [-next] selinux: Fix potential memory leak in selinux_add_opt - - - --- 2022-06-11 Xiu Jianfeng pcmoore Changes Requested
checkpolicy: error out if required permission would exceed limit checkpolicy: error out if required permission would exceed limit 1 - - --- 2022-06-10 Christian Göttsche Accepted
libsepol: avoid potential NULL dereference on optional parameter libsepol: avoid potential NULL dereference on optional parameter 1 - - --- 2022-06-10 Christian Göttsche Accepted
[v36,33/33] AppArmor: Remove the exclusive flag [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 2 1 - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
[v36,32/33] LSM: Add /proc attr entry for full LSM context [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
[v36,31/33] LSM: Removed scaffolding function lsmcontext_init [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
[v36,30/33] netlabel: Use a struct lsmblob in audit data [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 - - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
[v36,29/33] Audit: Add record for multiple object contexts [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 - - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
[v36,28/33] audit: multiple subject lsm values for netlabel [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 - - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
[v36,27/33] Audit: Add record for multiple task security contexts [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 - - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
[v36,26/33] Audit: Allow multiple records in an audit_buffer [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
[v36,25/33] LSM: Add a function to report multiple LSMs [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
[v36,24/33] Audit: Create audit_stamp structure [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 - - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
[v36,23/33] Audit: Keep multiple LSM data in audit_names [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 - - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
[v36,22/33] LSM: Extend security_secid_to_secctx to include module selection [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
[v36,21/33] binder: Pass LSM identifier for confirmation [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
[v36,20/33] NET: Store LSM netlabel data in a lsmblob [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
[v36,19/33] LSM: security_secid_to_secctx in netlink netfilter [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 3 2 - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
[v36,18/33] LSM: Use lsmcontext in security_dentry_init_security [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
[v36,17/33] LSM: Use lsmcontext in security_inode_getsecctx [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 3 2 - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
[v36,16/33] LSM: Use lsmcontext in security_secid_to_secctx [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
[v36,15/33] LSM: Ensure the correct LSM context releaser [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 3 2 - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
[v36,14/33] LSM: Specify which LSM to display [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
[v36,13/33] LSM: Use lsmblob in security_cred_getsecid [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
[v36,12/33] LSM: Use lsmblob in security_inode_getsecid [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
[v36,11/33] LSM: Use lsmblob in security_current_getsecid [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
[v36,10/33] LSM: Use lsmblob in security_ipc_getsecid [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
[v36,09/33] LSM: Use lsmblob in security_secid_to_secctx [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
[v36,08/33] LSM: Use lsmblob in security_secctx_to_secid [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
[v36,07/33] LSM: Use lsmblob in security_kernel_act_as [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
[v36,06/33] LSM: Use lsmblob in security_audit_rule_match [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
[v36,05/33] IMA: avoid label collisions with stacked LSMs [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - - - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
[v36,04/33] LSM: provide lsm name and id slot mappings [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
[v36,03/33] LSM: Add the lsmblob data structure. [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule - 2 - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
[v36,02/33] LSM: Infrastructure management of the sock security [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 2 2 - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
[v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule [v36,01/33] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-06-09 Casey Schaufler pcmoore Changes Requested
selinux: fix typos in comments selinux: fix typos in comments - - - --- 2022-06-08 Jonas Lindner pcmoore Accepted
[userspace,2/2] semodule: rename --rebuild-if-modules-changed to --refresh Refine semantics of libsemanage's check_ext_changes - - - --- 2022-06-08 Ondrej Mosnacek Accepted
[userspace,1/2] libsemanage: always write kernel policy when check_ext_changes is specified Refine semantics of libsemanage's check_ext_changes 1 - - --- 2022-06-08 Ondrej Mosnacek Accepted
[v3] cred: Propagate security_prepare_creds() error code [v3] cred: Propagate security_prepare_creds() error code 2 1 - --- 2022-06-08 Frederick Lawler pcmoore Handled Elsewhere
[v2,3/4] libselinux: name parameters in context.h Untitled series #648107 - - - --- 2022-06-07 Christian Göttsche Accepted
[v4,4/4] libselinux: check for truncations Untitled series #648106 - - - --- 2022-06-07 Christian Göttsche Accepted
[v2] libselinux: restorecon: avoid printing NULL pointer [v2] libselinux: restorecon: avoid printing NULL pointer 1 - - --- 2022-06-07 Christian Göttsche Accepted
[RFC] f*xattr: allow O_PATH descriptors [RFC] f*xattr: allow O_PATH descriptors - 1 - --- 2022-06-07 Christian Göttsche pcmoore Handled Elsewhere
libsepol: fix validation of user declarations in modules libsepol: fix validation of user declarations in modules 1 - - --- 2022-06-07 Christian Göttsche Accepted
libsepol: Drop unused assignment libsepol: Drop unused assignment 1 - - --- 2022-06-07 Petr Lautrbach Accepted
[testsuite] tests/sctp: temporarily disable ASCONF tests [testsuite] tests/sctp: temporarily disable ASCONF tests - - - --- 2022-06-02 Ondrej Mosnacek omos Accepted
Revert "libselinux: restorecon: pin file to avoid TOCTOU issues" Revert "libselinux: restorecon: pin file to avoid TOCTOU issues" 1 - - --- 2022-05-31 Petr Lautrbach Accepted
python: Split "semanage import" into two transactions python: Split "semanage import" into two transactions 1 - - --- 2022-05-30 Vit Mojzis Accepted
[1/1] libselinux: do not return the cached prev_current value when using getpidcon() [1/1] libselinux: do not return the cached prev_current value when using getpidcon() 1 - - --- 2022-05-29 Nicolas Iooss Accepted
[v2] network_support.md: clarify local port range and name_bind [v2] network_support.md: clarify local port range and name_bind - - - --- 2022-05-27 Dominick Grift pcmoore Accepted
[v2] cred: Propagate security_prepare_creds() error code [v2] cred: Propagate security_prepare_creds() error code 2 1 - --- 2022-05-25 Frederick Lawler pcmoore Handled Elsewhere
[GIT,PULL] SELinux patches for v5.19 [GIT,PULL] SELinux patches for v5.19 - - - --- 2022-05-23 Paul Moore pcmoore Accepted
[SELinux-notebook] network_support.md: clarify local port range and name_bind [SELinux-notebook] network_support.md: clarify local port range and name_bind - - - --- 2022-05-23 Dominick Grift pcmoore Changes Requested
cred: Propagate security_prepare_creds() error code cred: Propagate security_prepare_creds() error code - 1 - --- 2022-05-20 Frederick Lawler pcmoore Superseded
semodule: avoid toctou on output module semodule: avoid toctou on output module 1 - - --- 2022-05-20 Christian Göttsche Accepted
libselinux: declare return value of context_str(3) const libselinux: declare return value of context_str(3) const 1 - - --- 2022-05-20 Christian Göttsche Accepted
[4/4] libselinux: declare parameter of security_load_policy(3) const [1/4] libselinux: add man page redirections - - - --- 2022-05-20 Christian Göttsche Accepted
[3/4] libselinux: name parameters in context.h [1/4] libselinux: add man page redirections - - - --- 2022-05-20 Christian Göttsche Accepted
[2/4] libselinux: enclose macro definition in parenthesis [1/4] libselinux: add man page redirections - - - --- 2022-05-20 Christian Göttsche Accepted
python/audit2allow: close file stream on error python/audit2allow: close file stream on error 1 - - --- 2022-05-20 Christian Göttsche Accepted
[v3,4/4] libselinux: check for truncations Untitled series #643600 - - - --- 2022-05-20 Christian Göttsche Accepted
[GIT,PULL] SELinux fixes for v5.18 (#1) [GIT,PULL] SELinux fixes for v5.18 (#1) - - - --- 2022-05-18 Paul Moore pcmoore Accepted
selinux: add __randomize_layout to selinux_audit_data selinux: add __randomize_layout to selinux_audit_data - - - --- 2022-05-18 Gong Ruiqi pcmoore Accepted
[RFC,v2,4/4] libselinux: check for truncations Untitled series #642403 - - - --- 2022-05-17 Christian Göttsche Accepted
[2/2] libselinux: restorecon: avoid printing NULL pointer [1/2] libselinux: restorecon: add fallback for pre 3.6 Linux - - - --- 2022-05-17 Christian Göttsche Accepted
ci: declare git repository a safe directory ci: declare git repository a safe directory 1 - - --- 2022-05-17 Christian Göttsche Accepted
selinux: fix bad cleanup on error in hashtab_duplicate() selinux: fix bad cleanup on error in hashtab_duplicate() - - - --- 2022-05-17 Ondrej Mosnacek pcmoore Accepted
[userspace,v4,2/2] libsepol,checkpolicy: add support for self keyword in type transitions Support the 'self' keyword in type transitions - - - --- 2022-05-13 Ondrej Mosnacek Accepted
[userspace,v4,1/2] libsepol/cil: add support for self keyword in type transitions Support the 'self' keyword in type transitions - - - --- 2022-05-13 Ondrej Mosnacek Accepted
[RFC,4/4] libselinux: restorecon: pin file to avoid TOCTOU issues [RFC] libselinux: emulate O_PATH support in fgetfilecon/fsetfilecon 1 - - --- 2022-05-11 Christian Göttsche Accepted
[RFC,3/4] libselinux: restorecon: forward error if not ENOENT [RFC] libselinux: emulate O_PATH support in fgetfilecon/fsetfilecon 1 - - --- 2022-05-11 Christian Göttsche Accepted
[RFC,2/4] libselinux: restorecon: misc tweaks [RFC] libselinux: emulate O_PATH support in fgetfilecon/fsetfilecon 1 - - --- 2022-05-11 Christian Göttsche Accepted
libselinux: preserve errno in selinux_log() libselinux: preserve errno in selinux_log() 1 - - --- 2022-05-11 Christian Göttsche Accepted
[RFC,4/4] libselinux: check for truncations [RFC,1/4] libselinux: simplify policy path logic to avoid uninitialized read - - - --- 2022-05-10 Christian Göttsche Superseded
[RFC,3/4] libselinux: introduce strlcpy [RFC,1/4] libselinux: simplify policy path logic to avoid uninitialized read - - - --- 2022-05-10 Christian Göttsche Accepted
[RFC,2/4] libselinux: add header guard for internal header [RFC,1/4] libselinux: simplify policy path logic to avoid uninitialized read - - - --- 2022-05-10 Christian Göttsche Accepted
[RFC,1/4] libselinux: simplify policy path logic to avoid uninitialized read [RFC,1/4] libselinux: simplify policy path logic to avoid uninitialized read 1 - - --- 2022-05-10 Christian Göttsche Accepted
« 1 2 ... 20 21 2291 92 »