Show patches with: none      |   8933 patches
« 1 2 3 489 90 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
ima: Avoid blocking in RCU read-side critical section ima: Avoid blocking in RCU read-side critical section - - - --- 2024-04-17 Guozihua (Scott) New
[v2] libsepol: validate class permissions [v2] libsepol: validate class permissions 1 - - --- 2024-04-15 Christian Göttsche New
github: bump Python and Ruby versions github: bump Python and Ruby versions - - - --- 2024-04-08 Christian Göttsche New
[RFC,3/3] newrole: use ROWHAMMER resistant values [RFC,1/3] newrole: constant time password comparison - - - --- 2024-04-08 Christian Göttsche New
[RFC,2/3] newrole: cleanse shadow data hold by libc [RFC,1/3] newrole: constant time password comparison - - - --- 2024-04-08 Christian Göttsche New
[RFC,1/3] newrole: constant time password comparison [RFC,1/3] newrole: constant time password comparison - - - --- 2024-04-08 Christian Göttsche New
[4/4] checkpolicy: drop global policyvers variable [1/4] libsepol: improve policy lookup failure message - - - --- 2024-04-08 Christian Göttsche New
[3/4] checkpolicy: declare file local variable static [1/4] libsepol: improve policy lookup failure message - - - --- 2024-04-08 Christian Göttsche New
[2/4] checkpolicy/tests: add test for splitting xperm rule [1/4] libsepol: improve policy lookup failure message - - - --- 2024-04-08 Christian Göttsche New
[1/4] libsepol: improve policy lookup failure message [1/4] libsepol: improve policy lookup failure message - - - --- 2024-04-08 Christian Göttsche New
libsepol: validate class permissions libsepol: validate class permissions - - - --- 2024-04-08 Christian Göttsche New
[1/2] selinux: constify source policy in cond_policydb_dup() [1/2] selinux: constify source policy in cond_policydb_dup() - - - --- 2024-04-05 Christian Göttsche New
[2/2] selinux: add support for xperms in conditional policies [1/2] selinux: constify source policy in cond_policydb_dup() - - - --- 2024-04-05 Christian Göttsche New
[v2] selinux: pre-allocate the status page [v2] selinux: pre-allocate the status page - - - --- 2024-04-05 Christian Göttsche New
selinux: avoid printk_ratelimit() selinux: avoid printk_ratelimit() - - - --- 2024-04-05 Christian Göttsche New
netlink: Remove the include of files doesn't exist netlink: Remove the include of files doesn't exist - - - --- 2024-04-05 I Hsin Cheng New
selinux: clarify return code in filename_trans_read_helper_compat() selinux: clarify return code in filename_trans_read_helper_compat() - - - --- 2024-04-04 Ondrej Mosnacek pcmoore Accepted
[GIT,PULL] selinux/selinux-pr-20240402 [GIT,PULL] selinux/selinux-pr-20240402 - - - --- 2024-04-03 Paul Moore pcmoore Accepted
libsepol: constify function pointer arrays libsepol: constify function pointer arrays 1 - - --- 2024-04-02 Christian Göttsche bachradsusi Accepted
[6/6] checkpolicy: free complete role_allow_rule on error [1/6] checkpolicy: include <ctype.h> for isprint(3) - - - --- 2024-04-02 Christian Göttsche bachradsusi Accepted
[5/6] checkpolicy: drop union stack_item_u [1/6] checkpolicy: include <ctype.h> for isprint(3) - - - --- 2024-04-02 Christian Göttsche bachradsusi Accepted
[4/6] checkpolicy: drop never read member [1/6] checkpolicy: include <ctype.h> for isprint(3) - - - --- 2024-04-02 Christian Göttsche bachradsusi Accepted
[3/6] libsepol: validate access vector permissions [1/6] checkpolicy: include <ctype.h> for isprint(3) - - - --- 2024-04-02 Christian Göttsche bachradsusi Accepted
[2/6] checkpolicy/fuzz: override YY_FATAL_ERROR [1/6] checkpolicy: include <ctype.h> for isprint(3) - - - --- 2024-04-02 Christian Göttsche bachradsusi Accepted
[1/6] checkpolicy: include <ctype.h> for isprint(3) [1/6] checkpolicy: include <ctype.h> for isprint(3) 1 - - --- 2024-04-02 Christian Göttsche bachradsusi Accepted
libsepol/cil: Check common perms when verifiying "all" libsepol/cil: Check common perms when verifiying "all" - - - --- 2024-04-01 James Carter bachradsusi Accepted
[2/2] checkpolicy: update error diagnostic [1/2] checkpolicy: free identifiers on invalid typebounds - - - --- 2024-03-30 Christian Göttsche bachradsusi Accepted
[1/2] checkpolicy: free identifiers on invalid typebounds [1/2] checkpolicy: free identifiers on invalid typebounds 1 - - --- 2024-03-30 Christian Göttsche bachradsusi Accepted
selinux: pre-allocate the status page selinux: pre-allocate the status page - - - --- 2024-03-28 Christian Göttsche pcmoore Under Review
selinux: avoid dereference of garbage after mount failure selinux: avoid dereference of garbage after mount failure - - - --- 2024-03-28 Christian Göttsche pcmoore Accepted
selinux: update numeric format specifiers for ebitmaps selinux: update numeric format specifiers for ebitmaps - - - --- 2024-03-27 Christian Göttsche pcmoore Accepted
selinux: fix pr_err() format specifier in ebitmap_read() selinux: fix pr_err() format specifier in ebitmap_read() - - - --- 2024-03-27 Paul Moore pcmoore Rejected
[v2] libselinux: avoid logs in get_ordered_context_list() without policy [v2] libselinux: avoid logs in get_ordered_context_list() without policy - - - --- 2024-03-22 Christian Göttsche bachradsusi Accepted
[2/2] checkpolicy: handle unprintable token [1/2] checkpolicy: use YYerror only when available - - - --- 2024-03-22 Christian Göttsche bachradsusi Accepted
[1/2] checkpolicy: use YYerror only when available [1/2] checkpolicy: use YYerror only when available 1 - - --- 2024-03-22 Christian Göttsche bachradsusi Accepted
[v2] libselinux: avoid logs in get_ordered_context_list() without policy [v2] libselinux: avoid logs in get_ordered_context_list() without policy 1 - - --- 2024-03-22 Christian Göttsche bachradsusi Accepted
[PR#420,v4] audit2allow: CIL output mode [PR#420,v4] audit2allow: CIL output mode 1 - - --- 2024-03-19 Topi Miettinen Accepted
[v2,1/2] selinux: dump statistics for more hash tables [v2,1/2] selinux: dump statistics for more hash tables - - - --- 2024-03-15 Christian Göttsche pcmoore Accepted
[v2,2/2] selinux: improve symtab string hashing [v2,1/2] selinux: dump statistics for more hash tables - - - --- 2024-03-15 Christian Göttsche pcmoore Accepted
[v3] selinux: optimize ebitmap_and() [v3] selinux: optimize ebitmap_and() - - - --- 2024-03-15 Christian Göttsche pcmoore Under Review
[RFC,2/2] selinux: wire up new execstack LSM hook Untitled series #835707 - - - --- 2024-03-15 Christian Göttsche pcmoore New
selinux: use u32 as bit type in ebitmap code selinux: use u32 as bit type in ebitmap code - - - --- 2024-03-15 Christian Göttsche pcmoore Accepted
[1/2] selinux: avoid identifier using reserved name [1/2] selinux: avoid identifier using reserved name - - - --- 2024-03-15 Christian Göttsche pcmoore Rejected
[2/2] selinux: make more use of current_sid() [1/2] selinux: avoid identifier using reserved name - - - --- 2024-03-15 Christian Göttsche pcmoore Accepted
[v2] selinux: reject invalid ebitmaps [v2] selinux: reject invalid ebitmaps - - - --- 2024-03-15 Christian Göttsche pcmoore Accepted
libselinux: avoid logs in get_ordered_context_list() without policy libselinux: avoid logs in get_ordered_context_list() without policy - - - --- 2024-03-15 Christian Göttsche bachradsusi Accepted
[01/10] capability: introduce new capable flag CAP_OPT_NOAUDIT_ONDENY [01/10] capability: introduce new capable flag CAP_OPT_NOAUDIT_ONDENY - 1 - --- 2024-03-15 Christian Göttsche pcmoore Handled Elsewhere
libselinux, libsepol: Add CFLAGS and LDFLAGS to Makefile checks libselinux, libsepol: Add CFLAGS and LDFLAGS to Makefile checks - - - --- 2024-03-13 James Carter bachradsusi Accepted
[5/5] libselinux/utils/selabel_digest: pass BASEONLY only for file backend [1/5] libselinux/utils/selabel_digest: drop unsupported option -d - - - --- 2024-03-13 Christian Göttsche bachradsusi Accepted
[4/5] libselinux: free data on selabel open failure [1/5] libselinux/utils/selabel_digest: drop unsupported option -d - - - --- 2024-03-13 Christian Göttsche bachradsusi Accepted
[3/5] libselinux/utils/selabel_digest: avoid buffer overflow [1/5] libselinux/utils/selabel_digest: drop unsupported option -d - - - --- 2024-03-13 Christian Göttsche bachradsusi Accepted
[2/5] libselinux/utils/selabel_digest: cleanup [1/5] libselinux/utils/selabel_digest: drop unsupported option -d - - - --- 2024-03-13 Christian Göttsche bachradsusi Accepted
[1/5] libselinux/utils/selabel_digest: drop unsupported option -d [1/5] libselinux/utils/selabel_digest: drop unsupported option -d 1 - - --- 2024-03-13 Christian Göttsche bachradsusi Accepted
[GIT,PULL] selinux/selinux-pr-20240312 [GIT,PULL] selinux/selinux-pr-20240312 - - - --- 2024-03-12 Paul Moore pcmoore Accepted
[v2] libsepol: Fix buffer overflow when using sepol_av_to_string() [v2] libsepol: Fix buffer overflow when using sepol_av_to_string() - - - --- 2024-03-11 James Carter bachradsusi Accepted
[5/5] checkpolicy/fuzz: scan Xen policies [1/5] checkpolicy/fuzz: drop redundant notdefined check - - - --- 2024-03-11 Christian Göttsche bachradsusi Accepted
[4/5] libsepol: reject MLS support in pre-MLS policies [1/5] checkpolicy/fuzz: drop redundant notdefined check - - - --- 2024-03-11 Christian Göttsche bachradsusi Accepted
[3/5] checkpolicy: return YYerror on invalid character [1/5] checkpolicy/fuzz: drop redundant notdefined check - - - --- 2024-03-11 Christian Göttsche bachradsusi Accepted
[2/5] checkpolicy: clone level only once [1/5] checkpolicy/fuzz: drop redundant notdefined check - - - --- 2024-03-11 Christian Göttsche bachradsusi Accepted
[1/5] checkpolicy/fuzz: drop redundant notdefined check [1/5] checkpolicy/fuzz: drop redundant notdefined check 1 - - --- 2024-03-11 Christian Göttsche bachradsusi Accepted
libsepol: Fix buffer overflow when using sepol_av_to_string() libsepol: Fix buffer overflow when using sepol_av_to_string() - - - --- 2024-03-11 James Carter bachradsusi Accepted
checkpolicy/fuzz: Update check_level() to use notdefined field checkpolicy/fuzz: Update check_level() to use notdefined field - - - --- 2024-03-06 James Carter Accepted
[v5] selinux: add prefix/suffix matching to filename type transitions [v5] selinux: add prefix/suffix matching to filename type transitions - 1 - --- 2024-03-05 Juraj Marcin pcmoore Under Review
selinux: improve error checking in sel_write_load() selinux: improve error checking in sel_write_load() - - - --- 2024-03-05 Paul Moore pcmoore Accepted
[PR#420,v3] audit2allow: CIL output mode [PR#420,v3] audit2allow: CIL output mode - - - --- 2024-03-02 Topi Miettinen bachradsusi Superseded
libselinux/src/Makefile: fix reallocarray strlcpy detection libselinux/src/Makefile: fix reallocarray strlcpy detection - - - --- 2024-03-01 Jordan Williams bachradsusi New
libsepoll/src/Makefile: Fix reallocarray detection when cross-compiling libsepoll/src/Makefile: Fix reallocarray detection when cross-compiling - - - --- 2024-02-29 Winfried bachradsusi New
[v3] checkpolicy, libsepol: Fix potential double free of mls_level_t [v3] checkpolicy, libsepol: Fix potential double free of mls_level_t - - - --- 2024-02-28 James Carter bachradsusi Accepted
selinux: cleanup selinux_lsm_getattr() selinux: cleanup selinux_lsm_getattr() - - - --- 2024-02-23 Paul Moore pcmoore Accepted
[FYI] tracing/treewide: Remove second parameter of __assign_str() [FYI] tracing/treewide: Remove second parameter of __assign_str() - - - --- 2024-02-23 Steven Rostedt Handled Elsewhere
[21/21] selinux: fix style issues in security/selinux/ss/symtab.c selinux: fix style issues in security/selinux/ss - - - --- 2024-02-22 Paul Moore pcmoore Accepted
[20/21] selinux: fix style issues in security/selinux/ss/symtab.h selinux: fix style issues in security/selinux/ss - - - --- 2024-02-22 Paul Moore pcmoore Accepted
[19/21] selinux: fix style issues in security/selinux/ss/sidtab.c selinux: fix style issues in security/selinux/ss - - - --- 2024-02-22 Paul Moore pcmoore Accepted
[18/21] selinux: fix style issues in security/selinux/ss/sidtab.h selinux: fix style issues in security/selinux/ss - - - --- 2024-02-22 Paul Moore pcmoore Accepted
[17/21] selinux: fix style issues in security/selinux/ss/services.h selinux: fix style issues in security/selinux/ss - - - --- 2024-02-22 Paul Moore pcmoore Accepted
[16/21] selinux: fix style issues in security/selinux/ss/policydb.c selinux: fix style issues in security/selinux/ss - - - --- 2024-02-22 Paul Moore pcmoore Accepted
[15/21] selinux: fix style issues in security/selinux/ss/policydb.h selinux: fix style issues in security/selinux/ss - - - --- 2024-02-22 Paul Moore pcmoore Accepted
[14/21] selinux: fix style issues in security/selinux/ss/mls_types.h selinux: fix style issues in security/selinux/ss - - - --- 2024-02-22 Paul Moore pcmoore Accepted
[13/21] selinux: fix style issues in security/selinux/ss/mls.c selinux: fix style issues in security/selinux/ss - - - --- 2024-02-22 Paul Moore pcmoore Accepted
[12/21] selinux: fix style issues in security/selinux/ss/mls.h selinux: fix style issues in security/selinux/ss - - - --- 2024-02-22 Paul Moore pcmoore Accepted
[11/21] selinux: fix style issues in security/selinux/ss/hashtab.c selinux: fix style issues in security/selinux/ss - - - --- 2024-02-22 Paul Moore pcmoore Accepted
[10/21] selinux: fix style issues in security/selinux/ss/hashtab.h selinux: fix style issues in security/selinux/ss - - - --- 2024-02-22 Paul Moore pcmoore Accepted
[09/21] selinux: fix style issues in security/selinux/ss/ebitmap.c selinux: fix style issues in security/selinux/ss - - - --- 2024-02-22 Paul Moore pcmoore Accepted
[08/21] selinux: fix style issues in security/selinux/ss/ebitmap.h selinux: fix style issues in security/selinux/ss - - - --- 2024-02-22 Paul Moore pcmoore Accepted
[07/21] selinux: fix style issues in security/selinux/ss/context.h selinux: fix style issues in security/selinux/ss - - - --- 2024-02-22 Paul Moore pcmoore Accepted
[06/21] selinux: fix style issues in security/selinux/ss/context.h selinux: fix style issues in security/selinux/ss - - - --- 2024-02-22 Paul Moore pcmoore Accepted
[05/21] selinux: fix style issues in security/selinux/ss/constraint.h selinux: fix style issues in security/selinux/ss - - - --- 2024-02-22 Paul Moore pcmoore Accepted
[04/21] selinux: fix style issues in security/selinux/ss/conditional.c selinux: fix style issues in security/selinux/ss - - - --- 2024-02-22 Paul Moore pcmoore Accepted
[03/21] selinux: fix style issues in security/selinux/ss/conditional.h selinux: fix style issues in security/selinux/ss - - - --- 2024-02-22 Paul Moore pcmoore Accepted
[02/21] selinux: fix style issues in security/selinux/ss/avtab.c selinux: fix style issues in security/selinux/ss - - - --- 2024-02-22 Paul Moore pcmoore Accepted
[01/21] selinux: fix style issues in security/selinux/ss/avtab.h selinux: fix style issues in security/selinux/ss - - - --- 2024-02-22 Paul Moore pcmoore Accepted
sepolgen: adjust parse for refpolicy sepolgen: adjust parse for refpolicy 1 - - --- 2024-02-22 Christian Göttsche bachradsusi Accepted
[v2,25/25] vfs: return -EOPNOTSUPP for fscaps from vfs_*xattr() fs: use type-safe uid representation for filesystem capabilities - - - --- 2024-02-21 Seth Forshee pcmoore Handled Elsewhere
[v2,24/25] commoncap: use vfs fscaps interfaces fs: use type-safe uid representation for filesystem capabilities - - - --- 2024-02-21 Seth Forshee pcmoore Handled Elsewhere
[v2,23/25] commoncap: remove cap_inode_getsecurity() fs: use type-safe uid representation for filesystem capabilities 1 - - --- 2024-02-21 Seth Forshee pcmoore Handled Elsewhere
[v2,22/25] fs: use vfs interfaces for capabilities xattrs fs: use type-safe uid representation for filesystem capabilities - - - --- 2024-02-21 Seth Forshee pcmoore Handled Elsewhere
[v2,21/25] ovl: use vfs_{get,set}_fscaps() for copy-up fs: use type-safe uid representation for filesystem capabilities - 1 - --- 2024-02-21 Seth Forshee pcmoore Handled Elsewhere
[v2,20/25] ovl: add fscaps handlers fs: use type-safe uid representation for filesystem capabilities - - - --- 2024-02-21 Seth Forshee pcmoore Handled Elsewhere
[v2,19/25] fs: add vfs_remove_fscaps() fs: use type-safe uid representation for filesystem capabilities - - - --- 2024-02-21 Seth Forshee pcmoore Handled Elsewhere
[v2,18/25] fs: add vfs_set_fscaps() fs: use type-safe uid representation for filesystem capabilities - - - --- 2024-02-21 Seth Forshee pcmoore Handled Elsewhere
« 1 2 3 489 90 »