Show patches with: Submitter = Christian Göttsche       |    Archived = No       |   893 patches
« 1 2 ... 5 6 78 9 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
[1/4] newrole: add Makefile target to test build options [1/4] newrole: add Makefile target to test build options 1 - - --- 2022-02-22 Christian Göttsche Accepted
libsepol: validate expressions by evaluating libsepol: validate expressions by evaluating - - - --- 2022-02-22 Christian Göttsche Superseded
libsepol: NULL pointer offset fix libsepol: NULL pointer offset fix 1 - - --- 2022-02-22 Christian Göttsche Accepted
[RFC,1/2] capability: add capable_or to test for multiple caps with exactly one audit message [RFC,1/2] capability: add capable_or to test for multiple caps with exactly one audit message - - - --- 2022-02-17 Christian Göttsche pcmoore Handled Elsewhere
[RFC,2/2] capability: use new capable_or functionality [RFC,1/2] capability: add capable_or to test for multiple caps with exactly one audit message - - - --- 2022-02-17 Christian Göttsche pcmoore Handled Elsewhere
selinux: log anon inode class name selinux: log anon inode class name - - - --- 2022-02-17 Christian Göttsche pcmoore Changes Requested
[1/5] selinux: drop return statement at end of void functions [1/5] selinux: drop return statement at end of void functions - - - --- 2022-02-17 Christian Göttsche pcmoore Accepted
[5/5] selinux: drop unnecessary NULL check [1/5] selinux: drop return statement at end of void functions - - - --- 2022-02-17 Christian Göttsche pcmoore Accepted
[4/5] selinux: declare data arrays const [1/5] selinux: drop return statement at end of void functions - - - --- 2022-02-17 Christian Göttsche pcmoore Changes Requested
[3/5] selinux: use consistent pointer types for boolean arrays [1/5] selinux: drop return statement at end of void functions - - - --- 2022-02-17 Christian Göttsche pcmoore Changes Requested
[2/5] selinux: use correct type for context length [1/5] selinux: drop return statement at end of void functions - - - --- 2022-02-17 Christian Göttsche pcmoore Accepted
security: declare member holding string literal const security: declare member holding string literal const - 2 - --- 2022-02-17 Christian Göttsche pcmoore Accepted
python/sepolgen: accept square brackets in FILENAME token python/sepolgen: accept square brackets in FILENAME token 1 - - --- 2022-02-14 Christian Göttsche Accepted
python/sepolgen: accept square brackets in FILENAME token python/sepolgen: accept square brackets in FILENAME token - - - --- 2022-02-14 Christian Göttsche Superseded
[3/3] libsepol: validate several flags [1/3] libsepol: use correct error type to please UBSAN - - - --- 2022-02-10 Christian Göttsche Accepted
[2/3] libsepol: more strict constraint validation [1/3] libsepol: use correct error type to please UBSAN - - - --- 2022-02-10 Christian Göttsche Accepted
[1/3] libsepol: use correct error type to please UBSAN [1/3] libsepol: use correct error type to please UBSAN 1 - - --- 2022-02-10 Christian Göttsche Accepted
[v2] checkpolicy: allow wildcard permissions in constraints [v2] checkpolicy: allow wildcard permissions in constraints 1 - - --- 2022-02-10 Christian Göttsche Accepted
checkpolicy: allow wildcard permissions in constraints checkpolicy: allow wildcard permissions in constraints - - - --- 2022-02-04 Christian Göttsche Superseded
[2/2] libsepol: add policy utilities [1/2] libsepol: add sepol_av_perm_to_string - - - --- 2022-02-04 Christian Göttsche Superseded
[1/2] libsepol: add sepol_av_perm_to_string [1/2] libsepol: add sepol_av_perm_to_string - - - --- 2022-02-04 Christian Göttsche Superseded
libsepol: do not add gaps to string list libsepol: do not add gaps to string list 1 - - --- 2022-01-31 Christian Göttsche Accepted
policycoreutils: handle argument counter of zero policycoreutils: handle argument counter of zero 1 - - --- 2022-01-26 Christian Göttsche Accepted
[RFC] selinux: split no transition execve check [RFC] selinux: split no transition execve check - - - --- 2022-01-25 Christian Göttsche pcmoore Rejected
[RFC] mm: create security context for memfd_secret inodes [RFC] mm: create security context for memfd_secret inodes - - - --- 2022-01-25 Christian Göttsche pcmoore Accepted
[1/9] selinux: check return value of sel_make_avc_files [1/9] selinux: check return value of sel_make_avc_files - 1 - --- 2022-01-25 Christian Göttsche pcmoore Accepted
[9/9] selinux: drop unused macro [1/9] selinux: check return value of sel_make_avc_files - 1 - --- 2022-01-25 Christian Göttsche pcmoore Accepted
[8/9] selinux: simplify cred_init_security [1/9] selinux: check return value of sel_make_avc_files - - - --- 2022-01-25 Christian Göttsche pcmoore Accepted
[7/9] selinux: do not discard const qualifier in cast [1/9] selinux: check return value of sel_make_avc_files - - - --- 2022-01-25 Christian Göttsche pcmoore Accepted
[6/9] selinux: drop unused parameter of avtab_insert_node [1/9] selinux: check return value of sel_make_avc_files - - - --- 2022-01-25 Christian Göttsche pcmoore Accepted
[5/9] selinux: drop cast to same type [1/9] selinux: check return value of sel_make_avc_files - - - --- 2022-01-25 Christian Göttsche pcmoore Accepted
[4/9] selinux: enclose macro arguments in parenthesis [1/9] selinux: check return value of sel_make_avc_files - 1 - --- 2022-01-25 Christian Göttsche pcmoore Accepted
[3/9] selinux: declare name parameter of hash_eval const [1/9] selinux: check return value of sel_make_avc_files - - - --- 2022-01-25 Christian Göttsche pcmoore Accepted
[2/9] selinux: declare path parameters of _genfs_sid const [1/9] selinux: check return value of sel_make_avc_files - - - --- 2022-01-25 Christian Göttsche pcmoore Accepted
libsepol: invert only valid range of role bitmap libsepol: invert only valid range of role bitmap 1 - - --- 2022-01-25 Christian Göttsche Accepted
[v3] libsepol: handle type gaps [v3] libsepol: handle type gaps 1 - - --- 2022-01-25 Christian Göttsche Accepted
libsepol: drop trailing newlines in log messages libsepol: drop trailing newlines in log messages 1 - - --- 2022-01-19 Christian Göttsche Accepted
libsepol: return failure on saturated class name length libsepol: return failure on saturated class name length 1 - - --- 2022-01-19 Christian Göttsche Accepted
libsepol: reject invalid roles before inverting libsepol: reject invalid roles before inverting - - - --- 2022-01-17 Christian Göttsche Changes Requested
libsepol: check for saturated class name length libsepol: check for saturated class name length 1 - - --- 2022-01-06 Christian Göttsche Accepted
[v2] libsepol: handle type gaps [v2] libsepol: handle type gaps - - - --- 2022-01-06 Christian Göttsche Superseded
libsepol: handle type gaps when optimizing libsepol: handle type gaps when optimizing - - - --- 2021-12-23 Christian Göttsche Superseded
[v2] libsepol: check for valid sensitivity before lookup [v2] libsepol: check for valid sensitivity before lookup 1 - - --- 2021-12-23 Christian Göttsche Accepted
libsepol: check for valid sensitivity before lookup libsepol: check for valid sensitivity before lookup - - - --- 2021-12-23 Christian Göttsche Superseded
libsepol/cil: bail out on snprintf failure libsepol/cil: bail out on snprintf failure 1 - - --- 2021-12-20 Christian Göttsche Accepted
[v3,36/36] libsepol: validate class default targets libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,35/36] libsepol: validate fsuse types libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,34/36] libsepol: validate categories libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,33/36] libsepol: validate policy properties libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,32/36] libsepol: validate permissive types libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,31/36] libsepol: validate genfs contexts libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,30/36] libsepol: validate ocontexts libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,29/36] libsepol: validate type of avtab type rules libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,28/36] libsepol: validate constraint expression operators and attributes libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,27/36] libsepol: validate avtab and avrule types libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,26/36] libsepol: resolve log message mismatch libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,25/36] libsepol: validate permission count of classes libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,24/36] libsepol: validate expanded user range and level libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,23/36] libsepol: validate MLS levels libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,22/36] libsepol: split validation of datum array gaps and entries libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,21/36] libsepol: do not create a string list with initial size zero libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,20/36] libsepol: use correct size for initial string list libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,19/36] libsepol: do not crash on user gaps libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,18/36] libsepol: do not crash on class gaps libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,17/36] libsepol: do not underflow on short format arguments libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,16/36] libsepol: use size_t for indexes in strs helpers libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,15/36] libsepol: zero member before potential dereference libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,14/36] libsepol: reject invalid filetrans source type libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,13/36] libsepol: reject abnormal huge sid ids libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,12/36] libsepol: clean memory on conditional insertion failure libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,11/36] libsepol: enforce avtab item limit libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,10/36] libsepol: add checks for read sizes libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,09/36] libsepol: use reallocarray wrapper to avoid overflows libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,08/36] libsepol: use mallocarray wrapper to avoid overflows libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,07/36] libsepol: use logging framework in ebitmap.c libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,06/36] libsepol: use logging framework in conditional.c libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,05/36] libsepol/fuzz: limit element sizes for fuzzing libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,04/36] libsepol: add libfuzz based fuzzer for reading binary policies libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,03/36] libsepol/fuzz: silence secilc-fuzzer libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,02/36] cifuzz: use the default runtime of 600 seconds libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v3,01/36] cifuzz: enable report-unreproducible-crashes libsepol: add fuzzer for reading binary policies - - - --- 2021-12-09 Christian Göttsche Accepted
[v2,1/3] mcstrans: port to new PCRE2 from end-of-life PCRE [v2,1/3] mcstrans: port to new PCRE2 from end-of-life PCRE 1 - - --- 2021-11-30 Christian Göttsche Accepted
[2/2] checkpolicy: warn on bogus IP address or netmask in nodecon statement [1/2] libsepol/cil: support IPv4/IPv6 address embedding 1 - - --- 2021-11-30 Christian Göttsche Accepted
[1/2] libsepol/cil: support IPv4/IPv6 address embedding [1/2] libsepol/cil: support IPv4/IPv6 address embedding 1 - - --- 2021-11-30 Christian Göttsche Accepted
libsepol: free ebitmap on end of function libsepol: free ebitmap on end of function - - - --- 2021-11-25 Christian Göttsche Superseded
[RFC,v2,4/4] libsepol: free ebitmap on end of function [RFC,v2,1/4] libsepol: introduce ebitmap_subtract() - - - --- 2021-11-24 Christian Göttsche Superseded
[RFC,v2,3/4] checkpolicy: add not-self neverallow support [RFC,v2,1/4] libsepol: introduce ebitmap_subtract() - - - --- 2021-11-24 Christian Göttsche Superseded
[RFC,v2,2/4] libsepol: add not-self neverallow support [RFC,v2,1/4] libsepol: introduce ebitmap_subtract() - - - --- 2021-11-24 Christian Göttsche Superseded
[RFC,v2,1/4] libsepol: introduce ebitmap_subtract() [RFC,v2,1/4] libsepol: introduce ebitmap_subtract() - - - --- 2021-11-24 Christian Göttsche Superseded
[RFC,3/3] checkpolicy: add not-self neverallow support [RFC,1/3] libsepol: introduce ebitmap_subtract() - - - --- 2021-11-23 Christian Göttsche Superseded
[RFC,2/3] libsepol: add not-self neverallow support [RFC,1/3] libsepol: introduce ebitmap_subtract() - - - --- 2021-11-23 Christian Göttsche Superseded
[RFC,1/3] libsepol: introduce ebitmap_subtract() [RFC,1/3] libsepol: introduce ebitmap_subtract() - - - --- 2021-11-23 Christian Göttsche Superseded
[3/3] Replace PCRE with PCRE2 build dependencies [1/3] mcstrans: port to new PCRE2 from end-of-life PCRE 1 - - --- 2021-11-23 Christian Göttsche Accepted
[2/3] libselinux: use PCRE2 by default [1/3] mcstrans: port to new PCRE2 from end-of-life PCRE 1 - - --- 2021-11-23 Christian Göttsche Accepted
[1/3] mcstrans: port to new PCRE2 from end-of-life PCRE [1/3] mcstrans: port to new PCRE2 from end-of-life PCRE - - - --- 2021-11-23 Christian Göttsche Accepted
[RFC] capability: add capable_or to test for multiple caps with exactly one audit message [RFC] capability: add capable_or to test for multiple caps with exactly one audit message - - - --- 2021-11-16 Christian Göttsche pcmoore Handled Elsewhere
[12/12] libsemanage: add extern prototype for legacy function [01/12] checkpolicy: use correct unsigned format specifiers - - - --- 2021-11-12 Christian Göttsche Accepted
[11/12] libsemanage: include paired header for prototypes [01/12] checkpolicy: use correct unsigned format specifiers - - - --- 2021-11-12 Christian Göttsche Accepted
[10/12] libsemanage: mark local functions static [01/12] checkpolicy: use correct unsigned format specifiers - - - --- 2021-11-12 Christian Göttsche Accepted
[09/12] mcstrans: avoid missing prototypes [01/12] checkpolicy: use correct unsigned format specifiers - - - --- 2021-11-12 Christian Göttsche Accepted
« 1 2 ... 5 6 78 9 »