SELinux Development list

Show patches with: none | 8415 patches

« 1 2 3 4 … 84 85 »

Patch	Series	A/R/T	S/W/F	Date	Submitter	Delegate	State
[RFC,1/2] security: Remove security_add_mnt_opt() as it's unused	[RFC,1/2] security: Remove security_add_mnt_opt() as it's unused	- - -	---	2021-12-08	David Howells	pcmoore	In Next
[linux-next] selinux: remove redundant variables rc	[linux-next] selinux: remove redundant variables rc	- - -	---	2022-08-30	CGEL		In Next
[SYSTEMD,1/7] selinux: add function name to audit data	Re-add SELinux checks for unit install operations	- - -	---	2021-08-05	Christian Göttsche		Handled Elsewhere
[SYSTEMD,2/7] selinux: improve debug log format	Re-add SELinux checks for unit install operations	- - -	---	2021-08-05	Christian Göttsche		Handled Elsewhere
[SYSTEMD,3/7] selinux: mark _mac_selinux_generic_access_check with leading underscore	Re-add SELinux checks for unit install operations	- - -	---	2021-08-05	Christian Göttsche		Handled Elsewhere
[SYSTEMD,4/7] core: add support for MAC checks on unit install operations	Re-add SELinux checks for unit install operations	- - -	---	2021-08-05	Christian Göttsche		Handled Elsewhere
[SYSTEMD,5/7] core: implement the sd-bus generic callback for SELinux	Re-add SELinux checks for unit install operations	- - -	---	2021-08-05	Christian Göttsche		Handled Elsewhere
[SYSTEMD,6/7] core: avoid bypasses in D-BUS SELinux filter	Re-add SELinux checks for unit install operations	- - -	---	2021-08-05	Christian Göttsche		Handled Elsewhere
[SYSTEMD,7/7] core: tweak job_type_to_access_method SELinux permissions	Re-add SELinux checks for unit install operations	- - -	---	2021-08-05	Christian Göttsche		Handled Elsewhere
[4.4,1/2] binder: use euid from cred instead of using task	[4.4,1/2] binder: use euid from cred instead of using task	1 - -	---	2021-11-10	Todd Kjos	pcmoore	Handled Elsewhere
[4.4,2/2] binder: use cred instead of task for selinux checks	[4.4,1/2] binder: use euid from cred instead of using task	1 - -	---	2021-11-10	Todd Kjos	pcmoore	Handled Elsewhere
[4.9,1/2] binder: use euid from cred instead of using task	[4.9,1/2] binder: use euid from cred instead of using task	1 - -	---	2021-11-10	Todd Kjos	pcmoore	Handled Elsewhere
[4.9,2/2] binder: use cred instead of task for selinux checks	[4.9,1/2] binder: use euid from cred instead of using task	1 - -	---	2021-11-10	Todd Kjos	pcmoore	Handled Elsewhere
[4.14,1/2] binder: use euid from cred instead of using task	[4.14,1/2] binder: use euid from cred instead of using task	1 - -	---	2021-11-10	Todd Kjos	pcmoore	Handled Elsewhere
[4.14,2/2] binder: use cred instead of task for selinux checks	[4.14,1/2] binder: use euid from cred instead of using task	1 - -	---	2021-11-10	Todd Kjos	pcmoore	Handled Elsewhere
[4.19,1/2] binder: use euid from cred instead of using task	[4.19,1/2] binder: use euid from cred instead of using task	1 - -	---	2021-11-10	Todd Kjos	pcmoore	Handled Elsewhere
[4.19,2/2] binder: use cred instead of task for selinux checks	[4.19,1/2] binder: use euid from cred instead of using task	1 - -	---	2021-11-10	Todd Kjos	pcmoore	Handled Elsewhere
[5.4,1/3] binder: use euid from cred instead of using task	[5.4,1/3] binder: use euid from cred instead of using task	1 - -	---	2021-11-10	Todd Kjos	pcmoore	Handled Elsewhere
[5.4,2/3] binder: use cred instead of task for selinux checks	[5.4,1/3] binder: use euid from cred instead of using task	1 - -	---	2021-11-10	Todd Kjos	pcmoore	Handled Elsewhere
[5.4,3/3] binder: use cred instead of task for getsecid	[5.4,1/3] binder: use euid from cred instead of using task	1 - -	---	2021-11-10	Todd Kjos	pcmoore	Handled Elsewhere
[5.10,1/3] binder: use euid from cred instead of using task	[5.10,1/3] binder: use euid from cred instead of using task	1 - -	---	2021-11-10	Todd Kjos	pcmoore	Handled Elsewhere
[5.10,2/3] binder: use cred instead of task for selinux checks	[5.10,1/3] binder: use euid from cred instead of using task	1 - -	---	2021-11-10	Todd Kjos	pcmoore	Handled Elsewhere
[5.10,3/3] binder: use cred instead of task for getsecid	[5.10,1/3] binder: use euid from cred instead of using task	1 - -	---	2021-11-10	Todd Kjos	pcmoore	Handled Elsewhere
[RFC] capability: add capable_or to test for multiple caps with exactly one audit message	[RFC] capability: add capable_or to test for multiple caps with exactly one audit message	- - -	---	2021-11-16	Christian Göttsche	pcmoore	Handled Elsewhere
[RFC,2/2] capability: use new capable_or functionality	[RFC,1/2] capability: add capable_or to test for multiple caps with exactly one audit message	- - -	---	2022-02-17	Christian Göttsche	pcmoore	Handled Elsewhere
[RFC,1/2] capability: add capable_or to test for multiple caps with exactly one audit message	[RFC,1/2] capability: add capable_or to test for multiple caps with exactly one audit message	- - -	---	2022-02-17	Christian Göttsche	pcmoore	Handled Elsewhere
userfaultfd, capability: introduce CAP_USERFAULTFD	userfaultfd, capability: introduce CAP_USERFAULTFD	- - -	---	2022-02-24	Axel Rasmussen	pcmoore	Handled Elsewhere
[RESEND] xfs: don't generate selinux audit messages for capability testing	[RESEND] xfs: don't generate selinux audit messages for capability testing	1 2 -	---	2022-03-01	Darrick J. Wong	pcmoore	Handled Elsewhere
[v4] firmware_loader: use kernel credentials when reading firmware	[v4] firmware_loader: use kernel credentials when reading firmware	1 1 -	---	2022-05-02	Thiébaud Weksteen	pcmoore	Handled Elsewhere
[v2,RFC] sched: only perform capability check on privileged operation	[v2,RFC] sched: only perform capability check on privileged operation	- - -	---	2022-05-02	Christian Göttsche	pcmoore	Handled Elsewhere
[01/32] netlink: Avoid memcpy() across flexible array boundary	Introduce flexible array struct memcpy() helpers	- - -	---	2022-05-04	Kees Cook	pcmoore	Handled Elsewhere
[02/32] Introduce flexible array struct memcpy() helpers	Introduce flexible array struct memcpy() helpers	- - -	---	2022-05-04	Kees Cook	pcmoore	Handled Elsewhere
[03/32] flex_array: Add Kunit tests	Introduce flexible array struct memcpy() helpers	- 1 -	---	2022-05-04	Kees Cook	pcmoore	Handled Elsewhere
[04/32] fortify: Add run-time WARN for cross-field memcpy()	Introduce flexible array struct memcpy() helpers	- - -	---	2022-05-04	Kees Cook	pcmoore	Handled Elsewhere
[05/32] brcmfmac: Use mem_to_flex_dup() with struct brcmf_fweh_queue_item	Introduce flexible array struct memcpy() helpers	- - -	---	2022-05-04	Kees Cook	pcmoore	Handled Elsewhere
[06/32] iwlwifi: calib: Prepare to use mem_to_flex_dup()	Introduce flexible array struct memcpy() helpers	- - -	---	2022-05-04	Kees Cook	pcmoore	Handled Elsewhere
[07/32] iwlwifi: calib: Use mem_to_flex_dup() with struct iwl_calib_result	Introduce flexible array struct memcpy() helpers	- - -	---	2022-05-04	Kees Cook	pcmoore	Handled Elsewhere
[08/32] iwlwifi: mvm: Use mem_to_flex_dup() with struct ieee80211_key_conf	Introduce flexible array struct memcpy() helpers	- - -	---	2022-05-04	Kees Cook	pcmoore	Handled Elsewhere
[09/32] p54: Use mem_to_flex_dup() with struct p54_cal_database	Introduce flexible array struct memcpy() helpers	- - -	---	2022-05-04	Kees Cook	pcmoore	Handled Elsewhere
[10/32] wcn36xx: Use mem_to_flex_dup() with struct wcn36xx_hal_ind_msg	Introduce flexible array struct memcpy() helpers	- - -	---	2022-05-04	Kees Cook	pcmoore	Handled Elsewhere
[11/32] nl80211: Use mem_to_flex_dup() with struct cfg80211_cqm_config	Introduce flexible array struct memcpy() helpers	- - -	---	2022-05-04	Kees Cook	pcmoore	Handled Elsewhere
[12/32] cfg80211: Use mem_to_flex_dup() with struct cfg80211_bss_ies	Introduce flexible array struct memcpy() helpers	- - -	---	2022-05-04	Kees Cook	pcmoore	Handled Elsewhere
[13/32] mac80211: Use mem_to_flex_dup() with several structs	Introduce flexible array struct memcpy() helpers	- - -	---	2022-05-04	Kees Cook	pcmoore	Handled Elsewhere
[14/32] af_unix: Use mem_to_flex_dup() with struct unix_address	Introduce flexible array struct memcpy() helpers	- - -	---	2022-05-04	Kees Cook	pcmoore	Handled Elsewhere
[15/32] 802/garp: Use mem_to_flex_dup() with struct garp_attr	Introduce flexible array struct memcpy() helpers	- - -	---	2022-05-04	Kees Cook	pcmoore	Handled Elsewhere
[16/32] 802/mrp: Use mem_to_flex_dup() with struct mrp_attr	Introduce flexible array struct memcpy() helpers	- - -	---	2022-05-04	Kees Cook	pcmoore	Handled Elsewhere
[17/32] net/flow_offload: Use mem_to_flex_dup() with struct flow_action_cookie	Introduce flexible array struct memcpy() helpers	- - -	---	2022-05-04	Kees Cook	pcmoore	Handled Elsewhere
[18/32] firewire: Use __mem_to_flex_dup() with struct iso_interrupt_event	Introduce flexible array struct memcpy() helpers	- - -	---	2022-05-04	Kees Cook	pcmoore	Handled Elsewhere
[19/32] afs: Use mem_to_flex_dup() with struct afs_acl	Introduce flexible array struct memcpy() helpers	- - -	---	2022-05-04	Kees Cook	pcmoore	Handled Elsewhere
[20/32] ASoC: sigmadsp: Use mem_to_flex_dup() with struct sigmadsp_data	Introduce flexible array struct memcpy() helpers	1 - -	---	2022-05-04	Kees Cook	pcmoore	Handled Elsewhere
[21/32] soc: qcom: apr: Use mem_to_flex_dup() with struct apr_rx_buf	Introduce flexible array struct memcpy() helpers	- - -	---	2022-05-04	Kees Cook	pcmoore	Handled Elsewhere
[22/32] atags_proc: Use mem_to_flex_dup() with struct buffer	Introduce flexible array struct memcpy() helpers	- - -	---	2022-05-04	Kees Cook	pcmoore	Handled Elsewhere
[23/32] Bluetooth: Use mem_to_flex_dup() with struct hci_op_configure_data_path	Introduce flexible array struct memcpy() helpers	- - -	---	2022-05-04	Kees Cook	pcmoore	Handled Elsewhere
[24/32] IB/hfi1: Use mem_to_flex_dup() for struct tid_rb_node	Introduce flexible array struct memcpy() helpers	- - -	---	2022-05-04	Kees Cook	pcmoore	Handled Elsewhere
[25/32] Drivers: hv: utils: Use mem_to_flex_dup() with struct cn_msg	Introduce flexible array struct memcpy() helpers	- - -	---	2022-05-04	Kees Cook	pcmoore	Handled Elsewhere
[26/32] ima: Use mem_to_flex_dup() with struct modsig	Introduce flexible array struct memcpy() helpers	- - -	---	2022-05-04	Kees Cook	pcmoore	Handled Elsewhere
[27/32] KEYS: Use mem_to_flex_dup() with struct user_key_payload	Introduce flexible array struct memcpy() helpers	- - -	---	2022-05-04	Kees Cook	pcmoore	Handled Elsewhere
[29/32] xtensa: Use mem_to_flex_dup() with struct property	Introduce flexible array struct memcpy() helpers	- - -	---	2022-05-04	Kees Cook	pcmoore	Handled Elsewhere
[30/32] usb: gadget: f_fs: Use mem_to_flex_dup() with struct ffs_buffer	Introduce flexible array struct memcpy() helpers	- - -	---	2022-05-04	Kees Cook	pcmoore	Handled Elsewhere
[31/32] xenbus: Use mem_to_flex_dup() with struct read_buffer	Introduce flexible array struct memcpy() helpers	- - -	---	2022-05-04	Kees Cook	pcmoore	Handled Elsewhere
[32/32] esas2r: Use __mem_to_flex() with struct atto_ioctl	Introduce flexible array struct memcpy() helpers	- - -	---	2022-05-04	Kees Cook	pcmoore	Handled Elsewhere
[v2] cred: Propagate security_prepare_creds() error code	[v2] cred: Propagate security_prepare_creds() error code	2 1 -	---	2022-05-25	Frederick Lawler	pcmoore	Handled Elsewhere
[RFC] f*xattr: allow O_PATH descriptors	[RFC] f*xattr: allow O_PATH descriptors	- 1 -	---	2022-06-07	Christian Göttsche	pcmoore	Handled Elsewhere
[v3] cred: Propagate security_prepare_creds() error code	[v3] cred: Propagate security_prepare_creds() error code	2 1 -	---	2022-06-08	Frederick Lawler	pcmoore	Handled Elsewhere
[v3,RFC] sched: only perform capability check on privileged operation	[v3,RFC] sched: only perform capability check on privileged operation	- - -	---	2022-06-15	Christian Göttsche	pcmoore	Handled Elsewhere
[v3,2/8] capability: use new capable_any functionality	[v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message	- - -	---	2022-06-15	Christian Göttsche	pcmoore	Handled Elsewhere
[v3,3/8] block: use new capable_any functionality	[v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message	- 1 -	---	2022-06-15	Christian Göttsche	pcmoore	Handled Elsewhere
[v3,4/8] drivers: use new capable_any functionality	[v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message	- 1 -	---	2022-06-15	Christian Göttsche	pcmoore	Handled Elsewhere
[v3,5/8] fs: use new capable_any functionality	[v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message	- - -	---	2022-06-15	Christian Göttsche	pcmoore	Handled Elsewhere
[v3,6/8] kernel: use new capable_any functionality	[v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message	- - -	---	2022-06-15	Christian Göttsche	pcmoore	Handled Elsewhere
[v3,7/8] bpf: use new capable_any functionality	[v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message	- - -	---	2022-06-15	Christian Göttsche	pcmoore	Handled Elsewhere
[v3,8/8] net: use new capable_any functionality	[v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message	- - -	---	2022-06-15	Christian Göttsche	pcmoore	Handled Elsewhere
[v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message	[v3,1/8] capability: add any wrapper to test for multiple caps with exactly one audit message	- 1 -	---	2022-06-15	Christian Göttsche	pcmoore	Handled Elsewhere
[v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule	[v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule	1 1 -	---	2022-06-28	Casey Schaufler	pcmoore	Handled Elsewhere
[v37,02/33] LSM: Infrastructure management of the sock security	[v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule	2 2 -	---	2022-06-28	Casey Schaufler	pcmoore	Handled Elsewhere
[v37,03/33] LSM: Add the lsmblob data structure.	[v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule	- 2 -	---	2022-06-28	Casey Schaufler	pcmoore	Handled Elsewhere
[v37,04/33] LSM: provide lsm name and id slot mappings	[v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule	1 1 -	---	2022-06-28	Casey Schaufler	pcmoore	Handled Elsewhere
[v37,05/33] IMA: avoid label collisions with stacked LSMs	[v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule	- - -	---	2022-06-28	Casey Schaufler	pcmoore	Handled Elsewhere
[v37,06/33] LSM: Use lsmblob in security_audit_rule_match	[v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule	1 1 -	---	2022-06-28	Casey Schaufler	pcmoore	Handled Elsewhere
[v37,07/33] LSM: Use lsmblob in security_kernel_act_as	[v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule	2 2 -	---	2022-06-28	Casey Schaufler	pcmoore	Handled Elsewhere
[v37,08/33] LSM: Use lsmblob in security_secctx_to_secid	[v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule	1 1 -	---	2022-06-28	Casey Schaufler	pcmoore	Handled Elsewhere
[v37,09/33] LSM: Use lsmblob in security_secid_to_secctx	[v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule	1 1 -	---	2022-06-28	Casey Schaufler	pcmoore	Handled Elsewhere
[v37,10/33] LSM: Use lsmblob in security_ipc_getsecid	[v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule	2 2 -	---	2022-06-28	Casey Schaufler	pcmoore	Handled Elsewhere
[v37,11/33] LSM: Use lsmblob in security_current_getsecid	[v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule	2 2 -	---	2022-06-28	Casey Schaufler	pcmoore	Handled Elsewhere
[v37,12/33] LSM: Use lsmblob in security_inode_getsecid	[v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule	2 2 -	---	2022-06-28	Casey Schaufler	pcmoore	Handled Elsewhere
[v37,13/33] LSM: Use lsmblob in security_cred_getsecid	[v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule	2 2 -	---	2022-06-28	Casey Schaufler	pcmoore	Handled Elsewhere
[v37,14/33] LSM: Specify which LSM to display	[v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule	- - -	---	2022-06-28	Casey Schaufler	pcmoore	Handled Elsewhere
[v37,15/33] LSM: Ensure the correct LSM context releaser	[v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule	3 2 -	---	2022-06-28	Casey Schaufler	pcmoore	Handled Elsewhere
[v37,16/33] LSM: Use lsmcontext in security_secid_to_secctx	[v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule	- - -	---	2022-06-28	Casey Schaufler	pcmoore	Handled Elsewhere
[v37,17/33] LSM: Use lsmcontext in security_inode_getsecctx	[v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule	3 2 -	---	2022-06-28	Casey Schaufler	pcmoore	Handled Elsewhere
[v37,18/33] LSM: Use lsmcontext in security_dentry_init_security	[v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule	- - -	---	2022-06-28	Casey Schaufler	pcmoore	Handled Elsewhere
[v37,19/33] LSM: security_secid_to_secctx in netlink netfilter	[v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule	3 2 -	---	2022-06-28	Casey Schaufler	pcmoore	Handled Elsewhere
[v37,20/33] NET: Store LSM netlabel data in a lsmblob	[v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule	2 2 -	---	2022-06-28	Casey Schaufler	pcmoore	Handled Elsewhere
[v37,21/33] binder: Pass LSM identifier for confirmation	[v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule	- - -	---	2022-06-28	Casey Schaufler	pcmoore	Handled Elsewhere
[v37,22/33] LSM: security_secid_to_secctx module selection	[v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule	- - -	---	2022-06-28	Casey Schaufler	pcmoore	Handled Elsewhere
[v37,23/33] Audit: Keep multiple LSM data in audit_names	[v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule	1 - -	---	2022-06-28	Casey Schaufler	pcmoore	Handled Elsewhere
[v37,24/33] Audit: Create audit_stamp structure	[v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule	1 - -	---	2022-06-28	Casey Schaufler	pcmoore	Handled Elsewhere
[v37,25/33] LSM: Add a function to report multiple LSMs	[v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule	1 1 -	---	2022-06-28	Casey Schaufler	pcmoore	Handled Elsewhere
[v37,26/33] Audit: Allow multiple records in an audit_buffer	[v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule	- - -	---	2022-06-28	Casey Schaufler	pcmoore	Handled Elsewhere
[v37,27/33] Audit: Add record for multiple task security contexts	[v37,01/33] integrity: disassociate ima_filter_rule from security_audit_rule	1 - -	---	2022-06-28	Casey Schaufler	pcmoore	Handled Elsewhere

« 1 2 3 4 … 84 85 »