Show patches with: State = Action Required       |    Archived = No       |   98 patches
Patch Series A/R/T S/W/F Date Submitter Delegate State
[01/25] libselinux: sidtab_hash(): do not discard const qualifier libselinux: misc compiler and static analyzer findings - - - --- 2021-05-03 Christian Göttsche New
[02/25] libselinux: selinux_file_context_cmp(): do not discard const qualifier libselinux: misc compiler and static analyzer findings - - - --- 2021-05-03 Christian Göttsche New
[03/25] libselinux: label_common(): do not discard const qualifier libselinux: misc compiler and static analyzer findings - - - --- 2021-05-03 Christian Göttsche New
[04/25] libselinux: Sha1Finalise(): do not discard const qualifier libselinux: misc compiler and static analyzer findings - - - --- 2021-05-03 Christian Göttsche New
[05/25] libselinux: sefcontext_compile: mark local variable static libselinux: misc compiler and static analyzer findings - - - --- 2021-05-03 Christian Göttsche New
[06/25] libselinux: avcstat: use standard length modifier for unsigned long long libselinux: misc compiler and static analyzer findings - - - --- 2021-05-03 Christian Göttsche New
[07/25] libselinux: selinux_restorecon: mark local variable static libselinux: misc compiler and static analyzer findings - - - --- 2021-05-03 Christian Göttsche New
[08/25] libselinux: selabel_get_digests_all_partial_matches: free memory after FTS_D block libselinux: misc compiler and static analyzer findings - - - --- 2021-05-03 Christian Göttsche New
[09/11] pragma once: convert scripts/selinux/genheaders/genheaders.c Untitled series #439529 - - - --- 2021-02-28 Alexey Dobriyan pcmoore New
[09/25] libselinux: getconlist: free memory on multiple level arguments libselinux: misc compiler and static analyzer findings - - - --- 2021-05-03 Christian Göttsche New
[1/2] libsepol/cil: Fix name resolution involving inherited blocks [1/2] libsepol/cil: Fix name resolution involving inherited blocks - - - --- 2021-05-06 James Carter New
[1/2] vfs,LSM: introduce the FS_HANDLES_LSM_OPTS flag vfs/security/NFS/btrfs: clean up and fix LSM option handling - - - --- 2021-04-09 Ondrej Mosnacek pcmoore New
[1/3] libselinux: avc_destroy(3) closes status page libselinux: quirks of the status page - - - --- 2021-05-10 Christian Göttsche New
[1/3] libsepol/cil: Make name resolution in macros work as documented [1/3] libsepol/cil: Make name resolution in macros work as documented - - - --- 2021-05-07 James Carter New
[1/3] libsepol/cil: Refactor helper function for cil_gen_node() [1/3] libsepol/cil: Refactor helper function for cil_gen_node() - - - --- 2021-03-22 James Carter New
[1/5,v2] libsepol/cil: Make name resolution in macros work as documented secilc/cil: Fix name resolution for macro calls - - - --- 2021-05-11 James Carter New
[1/5] libsepol/cil: Fix instances where an error returns SEPOL_OK Fix bugs identified by the secilc-fuzzer - - - --- 2021-04-28 James Carter New
[10/25] libselinux: exclude_non_seclabel_mounts(): drop unused variable libselinux: misc compiler and static analyzer findings - - - --- 2021-05-03 Christian Göttsche New
[11/25] libselinux: context_new(): drop dead assignment libselinux: misc compiler and static analyzer findings - - - --- 2021-05-03 Christian Göttsche New
[12/25] libselinux: label_x::init(): drop dead assignment libselinux: misc compiler and static analyzer findings - - - --- 2021-05-03 Christian Göttsche New
[13/25] libselinux: label_media::init(): drop dead assignment libselinux: misc compiler and static analyzer findings - - - --- 2021-05-03 Christian Göttsche New
[14/25] libselinux: setexecfilecon(): drop dead assignment libselinux: misc compiler and static analyzer findings - - - --- 2021-05-03 Christian Göttsche New
[15/25] libselinux: getdefaultcon: free memory on multiple same arguments libselinux: misc compiler and static analyzer findings - - - --- 2021-05-03 Christian Göttsche New
[16/25] libselinux: store_stem(): do not free possible non-heap object libselinux: misc compiler and static analyzer findings - - - --- 2021-05-03 Christian Göttsche New
[17/25] libselinux: matchmediacon(): close file on error libselinux: misc compiler and static analyzer findings - - - --- 2021-05-03 Christian Göttsche New
[18/25] libselinux: init_selinux_config(): free resources on error libselinux: misc compiler and static analyzer findings - - - --- 2021-05-03 Christian Göttsche New
[19/25] libselinux: label_file::init(): do not pass NULL to strdup libselinux: misc compiler and static analyzer findings - - - --- 2021-05-03 Christian Göttsche New
[2/2] secilc/docs: Document the order that inherited rules are resolved in [1/2] libsepol/cil: Fix name resolution involving inherited blocks - - - --- 2021-05-06 James Carter New
[2/2] selinux: fix SECURITY_LSM_NATIVE_LABELS flag handling on double mount vfs/security/NFS/btrfs: clean up and fix LSM option handling - - - --- 2021-04-09 Ondrej Mosnacek pcmoore New
[2/3] libselinux: make selinux_status_open(3) reentrant libselinux: quirks of the status page - - - --- 2021-05-10 Christian Göttsche New
[2/3] libsepol/cil: Copy and resolve macro calls in one pass [1/3] libsepol/cil: Make name resolution in macros work as documented - - - --- 2021-05-07 James Carter New
[2/3] libsepol/cil: Create function cil_add_decl_to_symtab() and refactor libsepol/cil: Allow permission expressions when using map classes - - - --- 2021-03-22 James Carter New
[2/5,v2] libsepol/cil: Do not add NULL node when inserting key into symtab secilc/cil: Fix name resolution for macro calls - - - --- 2021-05-11 James Carter New
[2/5] libsepol/cil: Detect degenerate inheritance and exit with an error Fix bugs identified by the secilc-fuzzer - - - --- 2021-04-28 James Carter New
[20/25] libselinux: matchpathcon: free memory on realloc failure libselinux: misc compiler and static analyzer findings - - - --- 2021-05-03 Christian Göttsche New
[21/25] libselinux: label_db::db_init(): open file with CLOEXEC mode libselinux: misc compiler and static analyzer findings - - - --- 2021-05-03 Christian Göttsche New
[22/25] libselinux: drop redundant casts to the same type libselinux: misc compiler and static analyzer findings - - - --- 2021-05-03 Christian Göttsche New
[23/25] libselinux: sidtab_sid_stats(): unify parameter name libselinux: misc compiler and static analyzer findings - - - --- 2021-05-03 Christian Göttsche New
[24/25] libselinux: regex: unify parameter names libselinux: misc compiler and static analyzer findings - - - --- 2021-05-03 Christian Göttsche New
[25/25] libselinux: label_file.c: fix indent libselinux: misc compiler and static analyzer findings - - - --- 2021-05-03 Christian Göttsche New
[3/3] libselinux: do not use status page fallback mode internally libselinux: quirks of the status page - - - --- 2021-05-10 Christian Göttsche New
[3/3] libsepol/cil: Move check for the shadowing of macro parameters libsepol/cil: Allow permission expressions when using map classes - - - --- 2021-03-22 James Carter New
[3/3] secilc/docs: Relocate and reword macro call name resolution order [1/3] libsepol/cil: Make name resolution in macros work as documented - - - --- 2021-05-07 James Carter New
[3/5,v2] libsepo/cil: Refactor macro call resolution secilc/cil: Fix name resolution for macro calls - - - --- 2021-05-11 James Carter New
[3/5] libsepol/cil: Check datum in ordered list for expected flavor Fix bugs identified by the secilc-fuzzer - - - --- 2021-04-28 James Carter New
[4/5,v2] libsepol/cil: Do not resolve arguments to declarations in the call secilc/cil: Fix name resolution for macro calls - - - --- 2021-05-11 James Carter New
[4/5] libsepol/cil: Check for self-referential loops in sets Fix bugs identified by the secilc-fuzzer 1 - - --- 2021-04-28 James Carter New
[5/5,v2] secilc/docs: Relocate and reword macro call name resolution order secilc/cil: Fix name resolution for macro calls - - - --- 2021-05-11 James Carter New
[5/5] libsepol/cil: Return an error if a call argument fails to resolve Fix bugs identified by the secilc-fuzzer - - - --- 2021-04-28 James Carter New
[RESEND,v5] proc: Allow pid_revalidate() during LOOKUP_RCU [RESEND,v5] proc: Allow pid_revalidate() during LOOKUP_RCU - - - --- 2021-04-16 Stephen Brennan pcmoore New
[RESEND,v5] proc: Allow pid_revalidate() during LOOKUP_RCU [RESEND,v5] proc: Allow pid_revalidate() during LOOKUP_RCU - - - --- 2021-02-04 Stephen Brennan pcmoore New
[RFC,1/1] selinux-testsuite: Reduce sctp test runtime selinux-testsuite: Reduce sctp test runtime - - - --- 2020-11-04 Richard Haines omos Under Review
[userspace] fixfiles: do not exclude /dev and /run in -C mode [userspace] fixfiles: do not exclude /dev and /run in -C mode 1 - - --- 2021-03-01 Ondrej Mosnacek New
[V2,1/1] selinux-testsuite: Add btrfs support for filesystem tests selinux-testsuite: Add btrfs support for filesystem tests - - - --- 2020-11-03 Richard Haines omos Queued
[v2] debugfs: fix security_locked_down() call for SELinux [v2] debugfs: fix security_locked_down() call for SELinux - - - --- 2021-05-07 Ondrej Mosnacek pcmoore New
[v2] libselinux: selinux_check_passwd_access_internal(): respect deny_unknown [v2] libselinux: selinux_check_passwd_access_internal(): respect deny_unknown - - - --- 2021-05-10 Christian Göttsche New
[v2] libsepol/cil: Check for self-referential loops in sets [v2] libsepol/cil: Check for self-referential loops in sets - - - --- 2021-05-04 James Carter New
[V2] libsepol/cil: Exit with an error if declaration name is a reserved word [V2] libsepol/cil: Exit with an error if declaration name is a reserved word - - - --- 2021-03-22 James Carter New
[v2] libsepol/cil: fix out-of-bound read of a file context pattern ending with "\" [v2] libsepol/cil: fix out-of-bound read of a file context pattern ending with "\" - - - --- 2021-03-18 Nicolas Iooss New
[v25,01/25] LSM: Infrastructure management of the sock security [v25,01/25] LSM: Infrastructure management of the sock security 2 2 - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,02/25] LSM: Add the lsmblob data structure. [v25,01/25] LSM: Infrastructure management of the sock security 3 - - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,03/25] LSM: provide lsm name and id slot mappings [v25,01/25] LSM: Infrastructure management of the sock security - - - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,04/25] IMA: avoid label collisions with stacked LSMs [v25,01/25] LSM: Infrastructure management of the sock security - - - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,05/25] LSM: Use lsmblob in security_audit_rule_match [v25,01/25] LSM: Infrastructure management of the sock security 2 2 - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,06/25] LSM: Use lsmblob in security_kernel_act_as [v25,01/25] LSM: Infrastructure management of the sock security 2 2 - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,07/25] LSM: Use lsmblob in security_secctx_to_secid [v25,01/25] LSM: Infrastructure management of the sock security - - - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,08/25] LSM: Use lsmblob in security_secid_to_secctx [v25,01/25] LSM: Infrastructure management of the sock security - - - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,09/25] LSM: Use lsmblob in security_ipc_getsecid [v25,01/25] LSM: Infrastructure management of the sock security 2 2 - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,10/25] LSM: Use lsmblob in security_task_getsecid [v25,01/25] LSM: Infrastructure management of the sock security 2 2 - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,11/25] LSM: Use lsmblob in security_inode_getsecid [v25,01/25] LSM: Infrastructure management of the sock security 2 2 - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,12/25] LSM: Use lsmblob in security_cred_getsecid [v25,01/25] LSM: Infrastructure management of the sock security 2 2 - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,13/25] IMA: Change internal interfaces to use lsmblobs [v25,01/25] LSM: Infrastructure management of the sock security 1 2 - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,14/25] LSM: Specify which LSM to display [v25,01/25] LSM: Infrastructure management of the sock security - - - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,15/25] LSM: Ensure the correct LSM context releaser [v25,01/25] LSM: Infrastructure management of the sock security 1 2 - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,16/25] LSM: Use lsmcontext in security_secid_to_secctx [v25,01/25] LSM: Infrastructure management of the sock security 2 1 - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,17/25] LSM: Use lsmcontext in security_inode_getsecctx [v25,01/25] LSM: Infrastructure management of the sock security 3 1 - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,18/25] LSM: security_secid_to_secctx in netlink netfilter [v25,01/25] LSM: Infrastructure management of the sock security 2 2 - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,19/25] NET: Store LSM netlabel data in a lsmblob [v25,01/25] LSM: Infrastructure management of the sock security 2 2 - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,20/25] LSM: Verify LSM display sanity in binder [v25,01/25] LSM: Infrastructure management of the sock security 2 2 - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,21/25] audit: add support for non-syscall auxiliary records [v25,01/25] LSM: Infrastructure management of the sock security - - - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,22/25] Audit: Add new record for multiple process LSM attributes [v25,01/25] LSM: Infrastructure management of the sock security - - - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,23/25] Audit: Add a new record for multiple object LSM attributes [v25,01/25] LSM: Infrastructure management of the sock security - - - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,24/25] LSM: Add /proc attr entry for full LSM context [v25,01/25] LSM: Infrastructure management of the sock security - 1 - --- 2021-03-09 Casey Schaufler pcmoore New
[v25,25/25] AppArmor: Remove the exclusive flag [v25,01/25] LSM: Infrastructure management of the sock security 2 1 - --- 2021-03-09 Casey Schaufler pcmoore New
[v3,1/6] reiserfs: Add missing calls to reiserfs_security_free() evm: Prepare for moving to the LSM infrastructure - - - --- 2021-04-27 Roberto Sassu pcmoore New
[v3,2/6] security: Rewrite security_old_inode_init_security() evm: Prepare for moving to the LSM infrastructure - - - --- 2021-04-27 Roberto Sassu pcmoore New
[v3,3/6] security: Pass xattrs allocated by LSMs to the inode_init_security hook evm: Prepare for moving to the LSM infrastructure - - - --- 2021-04-27 Roberto Sassu pcmoore New
[v3,4/6] security: Support multiple LSMs implementing the inode_init_security hook evm: Prepare for moving to the LSM infrastructure - - - --- 2021-04-27 Roberto Sassu pcmoore New
[v3,5/6] evm: Align evm_inode_init_security() definition with LSM infrastructure evm: Prepare for moving to the LSM infrastructure - - - --- 2021-04-27 Roberto Sassu pcmoore New
[v3,6/6] evm: Support multiple LSMs providing an xattr evm: Prepare for moving to the LSM infrastructure - - - --- 2021-04-27 Roberto Sassu pcmoore New
checkpolicy: fix the leak memory when uses xperms checkpolicy: fix the leak memory when uses xperms - - - --- 2021-05-10 liwugang New
libselinux: selinux_check_passwd_access_internal(): respect deny_unknown libselinux: selinux_check_passwd_access_internal(): respect deny_unknown 1 - - --- 2021-05-03 Christian Göttsche New
libselinux: silence -Wstringop-overflow warning from gcc 10.3.1 libselinux: silence -Wstringop-overflow warning from gcc 10.3.1 1 - - --- 2021-04-30 Nicolas Iooss New
libsepol/cil: Allow permission expressions when using map classes libsepol/cil: Allow permission expressions when using map classes - - - --- 2021-03-22 James Carter New
libsepol/cil: Allow permission expressions when using map classes libsepol/cil: Allow permission expressions when using map classes - - - --- 2021-03-22 James Carter New
lockdown,selinux: fix bogus SELinux lockdown permission checks lockdown,selinux: fix bogus SELinux lockdown permission checks - - - --- 2021-05-07 Ondrej Mosnacek pcmoore New
RTIC: selinux: ARM64: Move selinux_state to a separate page RTIC: selinux: ARM64: Move selinux_state to a separate page 1 - - --- 2021-02-16 Preeti Nagar pcmoore New
serial: core: fix suspicious security_locked_down() call serial: core: fix suspicious security_locked_down() call 1 - - --- 2021-05-07 Ondrej Mosnacek pcmoore New