Show patches with: State = Action Required       |    Archived = No       |   85 patches
Patch Series A/R/T S/W/F Date Submitter Delegate State
[V2,1/1] selinux-testsuite: Add btrfs support for filesystem tests selinux-testsuite: Add btrfs support for filesystem tests - - - --- 2020-11-03 Richard Haines omos Queued
[RFC,1/1] selinux-testsuite: Reduce sctp test runtime selinux-testsuite: Reduce sctp test runtime - - - --- 2020-11-04 Richard Haines omos Under Review
[v2,1/2] vfs,LSM: introduce the FS_HANDLES_LSM_OPTS flag vfs/security/NFS/btrfs: clean up and fix LSM option handling - - 1 --- 2021-05-17 Ondrej Mosnacek pcmoore New
[v2,2/2] selinux: fix SECURITY_LSM_NATIVE_LABELS flag handling on double mount vfs/security/NFS/btrfs: clean up and fix LSM option handling - - - --- 2021-05-17 Ondrej Mosnacek pcmoore New
[v2] checkpolicy: fix the leak memory when uses xperms [v2] checkpolicy: fix the leak memory when uses xperms - - 1 --- 2021-06-01 liwugang New
[RFC] userfaultfd: open userfaultfds with O_RDONLY [RFC] userfaultfd: open userfaultfds with O_RDONLY - - - --- 2021-06-24 Ondrej Mosnacek pcmoore New
[1/2] ci: turn on CIFuzz [1/2] ci: turn on CIFuzz 1 - - --- 2021-07-10 Evgeny Vereshchagin New
[2/2] README: add OSS-Fuzz/CIFuzz badges [1/2] ci: turn on CIFuzz - - - --- 2021-07-10 Evgeny Vereshchagin New
[v2] libsepol/cil: move the fuzz target and build script to the selinux repository [v2] libsepol/cil: move the fuzz target and build script to the selinux repository 1 - - --- 2021-07-15 Evgeny Vereshchagin New
[RFC,1/9] sk_buff: track nfct status in newly added skb->_state [RFC,1/9] sk_buff: track nfct status in newly added skb->_state - - - --- 2021-07-21 Paolo Abeni pcmoore New
[RFC,2/9] sk_buff: track dst status in skb->_state [RFC,1/9] sk_buff: track nfct status in newly added skb->_state - - - --- 2021-07-21 Paolo Abeni pcmoore New
[RFC,3/9] sk_buff: move the active_extensions into the state bitfield [RFC,1/9] sk_buff: track nfct status in newly added skb->_state - - - --- 2021-07-21 Paolo Abeni pcmoore New
[RFC,4/9] net: optimize GRO for the common case. [RFC,1/9] sk_buff: track nfct status in newly added skb->_state - - - --- 2021-07-21 Paolo Abeni pcmoore New
[RFC,5/9] skbuff: introduce has_sk state bit. [RFC,1/9] sk_buff: track nfct status in newly added skb->_state - - - --- 2021-07-21 Paolo Abeni pcmoore New
[RFC,6/9] veth: use skb_prepare_for_gro() [RFC,1/9] sk_buff: track nfct status in newly added skb->_state - - - --- 2021-07-21 Paolo Abeni pcmoore New
[RFC,7/9] sk_buff: move inner header fields after tail [RFC,1/9] sk_buff: track nfct status in newly added skb->_state - - - --- 2021-07-21 Paolo Abeni pcmoore New
[RFC,8/9] sk_buff: move vlan field after tail. [RFC,1/9] sk_buff: track nfct status in newly added skb->_state - - - --- 2021-07-21 Paolo Abeni pcmoore New
[RFC,9/9] sk_buff: access secmark via getter/setter [RFC,1/9] sk_buff: track nfct status in newly added skb->_state - - - --- 2021-07-21 Paolo Abeni pcmoore New
libsepol regressions libsepol regressions - - - --- 2021-08-01 Dominick Grift New
[SYSTEMD,1/7] selinux: add function name to audit data Re-add SELinux checks for unit install operations - - - --- 2021-08-05 Christian Göttsche New
[SYSTEMD,2/7] selinux: improve debug log format Re-add SELinux checks for unit install operations - - - --- 2021-08-05 Christian Göttsche New
[SYSTEMD,3/7] selinux: mark _mac_selinux_generic_access_check with leading underscore Re-add SELinux checks for unit install operations - - - --- 2021-08-05 Christian Göttsche New
[SYSTEMD,4/7] core: add support for MAC checks on unit install operations Re-add SELinux checks for unit install operations - - - --- 2021-08-05 Christian Göttsche New
[SYSTEMD,5/7] core: implement the sd-bus generic callback for SELinux Re-add SELinux checks for unit install operations - - - --- 2021-08-05 Christian Göttsche New
[SYSTEMD,6/7] core: avoid bypasses in D-BUS SELinux filter Re-add SELinux checks for unit install operations - - - --- 2021-08-05 Christian Göttsche New
[SYSTEMD,7/7] core: tweak job_type_to_access_method SELinux permissions Re-add SELinux checks for unit install operations - - - --- 2021-08-05 Christian Göttsche New
cil_container_statements.md: clarify in-statement limitations cil_container_statements.md: clarify in-statement limitations - - - --- 2021-08-12 Dominick Grift New
[v3,1/1] xattr: Allow user.* xattr on symlink and special files Relax restrictions on user.* xattr - - - --- 2021-09-02 Vivek Goyal pcmoore New
[2/1] man-pages: xattr.7: Update text for user extended xattr behavior change Relax restrictions on user.* xattr - - - --- 2021-09-02 Vivek Goyal pcmoore New
[setools] __init__.py: Make NetworkX dep optional [setools] __init__.py: Make NetworkX dep optional - - - --- 2021-09-19 Jason Zaman New
[v29,01/28] LSM: Infrastructure management of the sock security [v29,01/28] LSM: Infrastructure management of the sock security 2 2 - --- 2021-09-24 Casey Schaufler pcmoore New
[v29,02/28] LSM: Add the lsmblob data structure. [v29,01/28] LSM: Infrastructure management of the sock security 3 - - --- 2021-09-24 Casey Schaufler pcmoore New
[v29,03/28] LSM: provide lsm name and id slot mappings [v29,01/28] LSM: Infrastructure management of the sock security 1 1 - --- 2021-09-24 Casey Schaufler pcmoore New
[v29,04/28] IMA: avoid label collisions with stacked LSMs [v29,01/28] LSM: Infrastructure management of the sock security - 1 - --- 2021-09-24 Casey Schaufler pcmoore New
[v29,05/28] LSM: Use lsmblob in security_audit_rule_match [v29,01/28] LSM: Infrastructure management of the sock security 2 2 - --- 2021-09-24 Casey Schaufler pcmoore New
[v29,06/28] LSM: Use lsmblob in security_kernel_act_as [v29,01/28] LSM: Infrastructure management of the sock security 2 2 - --- 2021-09-24 Casey Schaufler pcmoore New
[v29,07/28] LSM: Use lsmblob in security_secctx_to_secid [v29,01/28] LSM: Infrastructure management of the sock security 1 1 - --- 2021-09-24 Casey Schaufler pcmoore New
[v29,08/28] LSM: Use lsmblob in security_secid_to_secctx [v29,01/28] LSM: Infrastructure management of the sock security 1 1 - --- 2021-09-24 Casey Schaufler pcmoore New
[v29,09/28] LSM: Use lsmblob in security_ipc_getsecid [v29,01/28] LSM: Infrastructure management of the sock security 2 2 - --- 2021-09-24 Casey Schaufler pcmoore New
[v29,10/28] LSM: Use lsmblob in security_task_getsecid [v29,01/28] LSM: Infrastructure management of the sock security 2 2 - --- 2021-09-24 Casey Schaufler pcmoore New
[v29,11/28] LSM: Use lsmblob in security_inode_getsecid [v29,01/28] LSM: Infrastructure management of the sock security 2 2 - --- 2021-09-24 Casey Schaufler pcmoore New
[v29,12/28] LSM: Use lsmblob in security_cred_getsecid [v29,01/28] LSM: Infrastructure management of the sock security 2 2 - --- 2021-09-24 Casey Schaufler pcmoore New
[v29,13/28] IMA: Change internal interfaces to use lsmblobs [v29,01/28] LSM: Infrastructure management of the sock security 1 2 - --- 2021-09-24 Casey Schaufler pcmoore New
[v29,14/28] LSM: Specify which LSM to display [v29,01/28] LSM: Infrastructure management of the sock security - - - --- 2021-09-24 Casey Schaufler pcmoore New
[v29,15/28] LSM: Ensure the correct LSM context releaser [v29,01/28] LSM: Infrastructure management of the sock security 3 2 - --- 2021-09-24 Casey Schaufler pcmoore New
[v29,16/28] LSM: Use lsmcontext in security_secid_to_secctx [v29,01/28] LSM: Infrastructure management of the sock security 2 1 - --- 2021-09-24 Casey Schaufler pcmoore New
[v29,17/28] LSM: Use lsmcontext in security_inode_getsecctx [v29,01/28] LSM: Infrastructure management of the sock security 3 2 - --- 2021-09-24 Casey Schaufler pcmoore New
[v29,18/28] LSM: security_secid_to_secctx in netlink netfilter [v29,01/28] LSM: Infrastructure management of the sock security 3 2 - --- 2021-09-24 Casey Schaufler pcmoore New
[v29,19/28] NET: Store LSM netlabel data in a lsmblob [v29,01/28] LSM: Infrastructure management of the sock security 2 2 - --- 2021-09-24 Casey Schaufler pcmoore New
[v29,20/28] LSM: Verify LSM display sanity in binder [v29,01/28] LSM: Infrastructure management of the sock security 2 2 - --- 2021-09-24 Casey Schaufler pcmoore New
[v29,21/28] LSM: Extend security_secid_to_secctx to include module selection [v29,01/28] LSM: Infrastructure management of the sock security - - - --- 2021-09-24 Casey Schaufler pcmoore New
[v29,22/28] Audit: Keep multiple LSM data in audit_names [v29,01/28] LSM: Infrastructure management of the sock security - - - --- 2021-09-24 Casey Schaufler pcmoore New
[v29,23/28] Audit: Create audit_stamp structure [v29,01/28] LSM: Infrastructure management of the sock security - - - --- 2021-09-24 Casey Schaufler pcmoore New
[v29,24/28] Audit: Add framework for auxiliary records [v29,01/28] LSM: Infrastructure management of the sock security - - - --- 2021-09-24 Casey Schaufler pcmoore New
[v29,25/28] Audit: Add record for multiple task security contexts [v29,01/28] LSM: Infrastructure management of the sock security - - - --- 2021-09-24 Casey Schaufler pcmoore New
[v29,26/28] Audit: Add record for multiple object security contexts [v29,01/28] LSM: Infrastructure management of the sock security - - - --- 2021-09-24 Casey Schaufler pcmoore New
[v29,27/28] LSM: Add /proc attr entry for full LSM context [v29,01/28] LSM: Infrastructure management of the sock security - 1 - --- 2021-09-24 Casey Schaufler pcmoore New
[v29,28/28] AppArmor: Remove the exclusive flag [v29,01/28] LSM: Infrastructure management of the sock security 2 1 - --- 2021-09-24 Casey Schaufler pcmoore New
[1/2] fuse: Add a flag FUSE_SECURITY_CTX fuse: Send file/inode security context during creation - - - --- 2021-09-24 Vivek Goyal pcmoore New
[2/2] fuse: Send security context of inode on file creation fuse: Send file/inode security context during creation - - - --- 2021-09-24 Vivek Goyal pcmoore New
[userspace] GitHub Actions: do not use macOS latest runner for now [userspace] GitHub Actions: do not use macOS latest runner for now 1 - - --- 2021-09-27 Nicolas Iooss New
[userspace] README: update continuous integration badges [userspace] README: update continuous integration badges 1 - - --- 2021-09-27 Nicolas Iooss New
lsm: security_task_getsecid_subj() -> security_current_getsecid_subj() lsm: security_task_getsecid_subj() -> security_current_getsecid_subj() - - - --- 2021-09-29 Paul Moore pcmoore New
security: Return xattr name from security_dentry_init_security() security: Return xattr name from security_dentry_init_security() - 1 - --- 2021-09-30 Vivek Goyal pcmoore New
[v2,1/2] fuse: Add a flag FUSE_SECURITY_CTX fuse: Send file/inode security context during creation - - - --- 2021-10-12 Vivek Goyal pcmoore New
[v2,2/2] fuse: Send security context of inode on file creation fuse: Send file/inode security context during creation - - - --- 2021-10-12 Vivek Goyal pcmoore New
libselinux: use dummy variable to silence glibc 2.34 warnings libselinux: use dummy variable to silence glibc 2.34 warnings - - - --- 2021-10-15 Christian Göttsche New
[userspace,v3,1/7] label_file: fix a data race Parallel setfiles/restorecon - - - --- 2021-10-19 Ondrej Mosnacek New
[userspace,v3,2/7] selinux_restorecon: simplify fl_head allocation by using calloc() Parallel setfiles/restorecon - - - --- 2021-10-19 Ondrej Mosnacek New
[userspace,v3,3/7] selinux_restorecon: protect file_spec list with a mutex Parallel setfiles/restorecon - - - --- 2021-10-19 Ondrej Mosnacek New
[userspace,v3,4/7] libselinux: make selinux_log() thread-safe Parallel setfiles/restorecon - - - --- 2021-10-19 Ondrej Mosnacek New
[userspace,v3,5/7] selinux_restorecon: add a global mutex to synchronize progress output Parallel setfiles/restorecon - - - --- 2021-10-19 Ondrej Mosnacek New
[userspace,v3,6/7] selinux_restorecon: introduce selinux_restorecon_parallel(3) Parallel setfiles/restorecon - - - --- 2021-10-19 Ondrej Mosnacek New
[userspace,v3,7/7] setfiles/restorecon: support parallel relabeling Parallel setfiles/restorecon - - - --- 2021-10-19 Ondrej Mosnacek New
[v2,1/3] libsepol: do not pass NULL to memcpy [v2,1/3] libsepol: do not pass NULL to memcpy - - - --- 2021-10-19 Christian Göttsche New
[v2,2/3] libsemanage: do not sort empty records [v2,1/3] libsepol: do not pass NULL to memcpy - - - --- 2021-10-19 Christian Göttsche New
[v2,3/3] libsemanage/tests: free memory [v2,1/3] libsepol: do not pass NULL to memcpy - - - --- 2021-10-19 Christian Göttsche New
[v2] libselinux: use valid address to silence glibc 2.34 warnings [v2] libselinux: use valid address to silence glibc 2.34 warnings - - - --- 2021-10-21 Christian Göttsche New
libsepol: avoid passing NULL pointer to memcpy libsepol: avoid passing NULL pointer to memcpy - - - --- 2021-10-21 Christian Göttsche New
[testsuite] tests/sctp: add client peeloff tests [testsuite] tests/sctp: add client peeloff tests - - - --- 2021-10-21 Ondrej Mosnacek New
sctp: initialize endpoint LSM labels also on the client side sctp: initialize endpoint LSM labels also on the client side - - - --- 2021-10-21 Ondrej Mosnacek New
[net,1/4] security: pass asoc to sctp_assoc_request and sctp_sk_clone security: fixups for the security hooks in sctp - - - --- 2021-10-22 Xin Long New
[net,2/4] security: call security_sctp_assoc_request in sctp_sf_do_5_1D_ce security: fixups for the security hooks in sctp - - - --- 2021-10-22 Xin Long New
[net,3/4] security: add sctp_assoc_established hook security: fixups for the security hooks in sctp - - - --- 2021-10-22 Xin Long New
[net,4/4] security: implement sctp_assoc_established hook in selinux security: fixups for the security hooks in sctp - - - --- 2021-10-22 Xin Long New