Show patches with: Archived = No       |   7684 patches
« 1 2 3 476 77 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
selinux: clean up dead code after removing runtime disable selinux: clean up dead code after removing runtime disable - - - --- 2023-03-23 Lukas Bulwahn pcmoore New
selinux: update the file list in MAINTAINERS selinux: update the file list in MAINTAINERS - - - --- 2023-03-21 Paul Moore pcmoore Accepted
[userspace] scripts/ci: install rdma-core-devel for selinux-testsuite [userspace] scripts/ci: install rdma-core-devel for selinux-testsuite 1 - - --- 2023-03-20 Ondrej Mosnacek omos Accepted
selinux: remove the runtime disable functionality selinux: remove the runtime disable functionality 1 1 - --- 2023-03-17 Paul Moore pcmoore Accepted
[v2] selinux: remove the 'checkreqprot' functionality [v2] selinux: remove the 'checkreqprot' functionality 1 - - --- 2023-03-16 Paul Moore pcmoore Accepted
selinux: remove the 'checkreqprot' functionality selinux: remove the 'checkreqprot' functionality 1 - - --- 2023-03-16 Paul Moore pcmoore Superseded
[v7,10/11] SELinux: Add selfattr hooks Untitled series #730534 - - - --- 2023-03-15 Casey Schaufler pcmoore New
[testsuite] tests/atsecure: avoid running bash under test domains [testsuite] tests/atsecure: avoid running bash under test domains - - - --- 2023-03-14 Ondrej Mosnacek omos Accepted
[RFC,v2] selinux: cache access vector decisions in the inode security blob [RFC,v2] selinux: cache access vector decisions in the inode security blob - - - --- 2023-03-14 Stephen Smalley pcmoore New
[v8,6/6] evm: Support multiple LSMs providing an xattr evm: Do HMAC of multiple per LSM xattrs for new inodes - 2 - --- 2023-03-14 Roberto Sassu pcmoore New
[v8,5/6] evm: Align evm_inode_init_security() definition with LSM infrastructure evm: Do HMAC of multiple per LSM xattrs for new inodes - 2 - --- 2023-03-14 Roberto Sassu pcmoore New
[v8,4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook evm: Do HMAC of multiple per LSM xattrs for new inodes - 2 - --- 2023-03-14 Roberto Sassu pcmoore New
[v8,3/6] security: Remove security_old_inode_init_security() evm: Do HMAC of multiple per LSM xattrs for new inodes - 2 - --- 2023-03-14 Roberto Sassu pcmoore New
[v8,2/6] ocfs2: Switch to security_inode_init_security() evm: Do HMAC of multiple per LSM xattrs for new inodes 1 2 - --- 2023-03-14 Roberto Sassu pcmoore New
[v8,1/6] reiserfs: Switch to security_inode_init_security() evm: Do HMAC of multiple per LSM xattrs for new inodes - 2 - --- 2023-03-14 Roberto Sassu pcmoore New
[RFC] selinux: cache access vector decisions in the inode security blob [RFC] selinux: cache access vector decisions in the inode security blob - - - --- 2023-03-10 Stephen Smalley pcmoore Superseded
[testsuite] defconfig: add FAT and GRE config options [testsuite] defconfig: add FAT and GRE config options - - - --- 2023-03-10 Stephen Smalley omos Accepted
[RFC,9/9,v2] secilc/docs: Add deny rule to CIL documentation Add CIL Deny Rule - - - --- 2023-03-09 James Carter bachradsusi New
[RFC,8/9,v2] secilc/test: Add deny rule tests Add CIL Deny Rule - - - --- 2023-03-09 James Carter bachradsusi New
[RFC,7/9,v2] secilc/secil2tree: Add option to write CIL AST after post processing Add CIL Deny Rule - - - --- 2023-03-09 James Carter bachradsusi New
[RFC,6/9,v2] libsepol: Export the cil_write_post_ast function Add CIL Deny Rule - - - --- 2023-03-09 James Carter bachradsusi New
[RFC,5/9,v2] libsepol/cil: Add cil_write_post_ast function Add CIL Deny Rule - - - --- 2023-03-09 James Carter bachradsusi New
[RFC,4/9,v2] libsepol/cil: Process deny rules Add CIL Deny Rule - - - --- 2023-03-09 James Carter bachradsusi New
[RFC,3/9,v2] libsepol/cil: Add cil_tree_node_remove function Add CIL Deny Rule - - - --- 2023-03-09 James Carter bachradsusi New
[RFC,2/9,v2] libsepol/cil: Add cil_list_is_empty macro Add CIL Deny Rule - - - --- 2023-03-09 James Carter bachradsusi New
[RFC,1/9,v2] libsepol/cil: Parse and add deny rule to AST, but do not process Add CIL Deny Rule - - - --- 2023-03-09 James Carter bachradsusi New
[userspace] libsemanage: include more parameters in the module checksum [userspace] libsemanage: include more parameters in the module checksum 1 - - --- 2023-03-09 Ondrej Mosnacek bachradsusi Accepted
[v3,3/3] libselinux: performance optimization for duplicate detection Improve efficiency of detecting duplicate in libselinux - - - --- 2023-03-08 wanghuizhao bachradsusi New
[v3,2/3] libselinux: adapting hashtab to libselinux Improve efficiency of detecting duplicate in libselinux - - - --- 2023-03-08 wanghuizhao bachradsusi New
[v3,1/3] libselinux: migrating hashtab from policycoreutils Improve efficiency of detecting duplicate in libselinux - - - --- 2023-03-08 wanghuizhao bachradsusi New
[RFC] selinux: uninline unlikely parts of avc_has_perm_noaudit() [RFC] selinux: uninline unlikely parts of avc_has_perm_noaudit() - - - --- 2023-03-07 Paul Moore pcmoore Accepted
[28/28] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache security: Move IMA and EVM to the LSM infrastructure - - - --- 2023-03-03 Roberto Sassu pcmoore Handled Elsewhere
[27/28] integrity: Move integrity functions to the LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - - - --- 2023-03-03 Roberto Sassu pcmoore Handled Elsewhere
[26/28] evm: Move to LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - - - --- 2023-03-03 Roberto Sassu pcmoore Handled Elsewhere
[25/28] ima: Move IMA-Appraisal to LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - - - --- 2023-03-03 Roberto Sassu pcmoore Handled Elsewhere
[24/28] ima: Move to LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - - - --- 2023-03-03 Roberto Sassu pcmoore Handled Elsewhere
[23/28] security: Introduce LSM_ORDER_LAST security: Move IMA and EVM to the LSM infrastructure - - - --- 2023-03-03 Roberto Sassu pcmoore Handled Elsewhere
[22/28] security: Introduce key_post_create_or_update hook security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore Handled Elsewhere
[21/28] security: Introduce inode_post_remove_acl hook security: Move IMA and EVM to the LSM infrastructure - - - --- 2023-03-03 Roberto Sassu pcmoore Handled Elsewhere
[20/28] security: Introduce inode_post_set_acl hook security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore Handled Elsewhere
[19/28] security: Introduce inode_post_create_tmpfile hook security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore Handled Elsewhere
[18/28] security: Introduce path_post_mknod hook security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore Handled Elsewhere
[17/28] security: Introduce file_pre_free_security hook security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore Handled Elsewhere
[16/28] security: Introduce file_post_open hook security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore Handled Elsewhere
[15/28] security: Introduce inode_post_removexattr hook security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore Handled Elsewhere
[14/28] security: Introduce inode_post_setattr hook security: Move IMA and EVM to the LSM infrastructure - 2 - --- 2023-03-03 Roberto Sassu pcmoore Handled Elsewhere
[13/28] security: Align inode_setattr hook definition with EVM security: Move IMA and EVM to the LSM infrastructure 1 1 - --- 2023-03-03 Roberto Sassu pcmoore Handled Elsewhere
[12/28] fs: Fix description of vfs_tmpfile() security: Move IMA and EVM to the LSM infrastructure 1 - - --- 2023-03-03 Roberto Sassu pcmoore Handled Elsewhere
[11/28] evm: Complete description of evm_inode_setattr() security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore Handled Elsewhere
[10/28] evm: Align evm_inode_post_setxattr() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore Handled Elsewhere
[09/28] evm: Align evm_inode_setxattr() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore Handled Elsewhere
[08/28] evm: Align evm_inode_post_setattr() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore Handled Elsewhere
[07/28] ima: Align ima_post_read_file() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore Handled Elsewhere
[06/28] ima: Align ima_inode_removexattr() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore Handled Elsewhere
[05/28] ima: Align ima_inode_setxattr() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore Handled Elsewhere
[04/28] ima: Align ima_file_mprotect() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore Handled Elsewhere
[03/28] ima: Align ima_post_create_tmpfile() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore Handled Elsewhere
[02/28] ima: Align ima_post_path_mknod() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore Handled Elsewhere
[01/28] ima: Align ima_inode_post_setattr() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 1 - --- 2023-03-03 Roberto Sassu pcmoore Handled Elsewhere
[testsuite,3/3] tests/infiniband*: simplify test activation Infiniband test fixes/improvements - - - --- 2023-03-03 Ondrej Mosnacek omos Accepted
[testsuite,2/3] policy: allow test_ibpkey_access_t to use RDMA netlink sockets Infiniband test fixes/improvements - - - --- 2023-03-03 Ondrej Mosnacek omos Accepted
[testsuite,1/3] policy: make sure test_ibpkey_access_t can lock enough memory Infiniband test fixes/improvements - - - --- 2023-03-03 Ondrej Mosnacek omos Accepted
[2/6] libsepol/cil: Add notself and other support to CIL Untitled series #725826 - - - --- 2023-03-01 James Carter Not Applicable
[testsuite] tests/file: make the SIGIO tests work with CONFIG_LEGACY_TIOCSTI=n [testsuite] tests/file: make the SIGIO tests work with CONFIG_LEGACY_TIOCSTI=n - 1 - --- 2023-03-01 Ondrej Mosnacek omos Accepted
[testsuite,3/3] tests/infiniband*: simplify test activation Infiniband test fixes/improvements - - - --- 2023-02-28 Ondrej Mosnacek omos Superseded
[testsuite,2/3] policy: allow test_ibpkey_access_t to use RDMA netlink sockets Infiniband test fixes/improvements - - - --- 2023-02-28 Ondrej Mosnacek omos Superseded
[testsuite,1/3] policy: make sure test_ibpkey_access_t can lock enough memory Infiniband test fixes/improvements - - - --- 2023-02-28 Ondrej Mosnacek omos Superseded
[UTIL-LINUX] mount: add rootcontext=@target [UTIL-LINUX] mount: add rootcontext=@target - - - --- 2023-02-21 Christian Göttsche New
[v2] kernel/sys.c: fix and improve control flow in __sys_setres[ug]id() [v2] kernel/sys.c: fix and improve control flow in __sys_setres[ug]id() - - - --- 2023-02-17 Ondrej Mosnacek pcmoore Handled Elsewhere
[v2,3/3] libselinux: performance optimization for duplicate detection Improve efficiency of detecting duplicate in libselinux - - - --- 2023-02-17 wanghuizhao bachradsusi Superseded
[v2,2/3] libselinux: adapting hashtab to libselinux Improve efficiency of detecting duplicate in libselinux - - - --- 2023-02-17 wanghuizhao bachradsusi Superseded
[v2,1/3] libselinux: migrating hashtab from policycoreutils Improve efficiency of detecting duplicate in libselinux - - - --- 2023-02-17 wanghuizhao bachradsusi Superseded
selinux: allow to opt-out from skipping kernel sockets in sock_has_perm() selinux: allow to opt-out from skipping kernel sockets in sock_has_perm() - - - --- 2023-02-15 Ondrej Mosnacek pcmoore Rejected
kernel/sys.c: fix and improve control flow in __sys_setres[ug]id() kernel/sys.c: fix and improve control flow in __sys_setres[ug]id() - - - --- 2023-02-15 Ondrej Mosnacek pcmoore Handled Elsewhere
[2/2] libselinux: performance optimization for duplicate detection Improve efficiency of detecting duplicate in libselinux - - - --- 2023-02-09 wanghuizhao bachradsusi Changes Requested
[1/2] libselinux: migrating hashtab from policycoreutils Improve efficiency of detecting duplicate in libselinux - - - --- 2023-02-09 wanghuizhao bachradsusi Changes Requested
[v2,2/2] libselinux: getcon.3: add note about PID races libselinux: add getpidprevcon 1 - - --- 2023-02-01 Christian Göttsche bachradsusi Accepted
[v2,1/2] libselinux: add getpidprevcon [v2,1/2] libselinux: add getpidprevcon 1 - - --- 2023-02-01 Christian Göttsche bachradsusi Accepted
[v2] python/sepolicy: Cache conditional rule queries [v2] python/sepolicy: Cache conditional rule queries 1 - - --- 2023-01-30 Vit Mojzis bachradsusi Accepted
Looking at profile data once again - avc lookup Looking at profile data once again - avc lookup - - - --- 2023-01-28 Linus Torvalds pcmoore Superseded
[v2,6/6] mm: export dump_mm() introduce vm_flags modifier functions 2 - - --- 2023-01-25 Suren Baghdasaryan Handled Elsewhere
[v2,5/6] mm: introduce mod_vm_flags_nolock and use it in untrack_pfn introduce vm_flags modifier functions - - - --- 2023-01-25 Suren Baghdasaryan Handled Elsewhere
[v2,4/6] mm: replace vma->vm_flags indirect modification in ksm_madvise introduce vm_flags modifier functions 2 - - --- 2023-01-25 Suren Baghdasaryan Handled Elsewhere
[v2,3/6] mm: replace vma->vm_flags direct modifications with modifier calls introduce vm_flags modifier functions 3 - - --- 2023-01-25 Suren Baghdasaryan Handled Elsewhere
[v2,2/6] mm: replace VM_LOCKED_CLEAR_MASK with VM_LOCKED_MASK introduce vm_flags modifier functions 2 - - --- 2023-01-25 Suren Baghdasaryan Handled Elsewhere
[v2,1/6] mm: introduce vma->vm_flags modifier functions introduce vm_flags modifier functions 2 - - --- 2023-01-25 Suren Baghdasaryan Handled Elsewhere
python/sepolicy: Cache conditional rule queries python/sepolicy: Cache conditional rule queries - - - --- 2023-01-24 Vit Mojzis Superseded
[net-next,v6,2/2] selftests/net: Cover the IP_LOCAL_PORT_RANGE socket option Add IP_LOCAL_PORT_RANGE socket option - 1 - --- 2023-01-24 Jakub Sitnicki pcmoore Handled Elsewhere
[net-next,v6,1/2] inet: Add IP_LOCAL_PORT_RANGE socket option Add IP_LOCAL_PORT_RANGE socket option - 3 - --- 2023-01-24 Jakub Sitnicki pcmoore Handled Elsewhere
[net-next,v5,2/2] selftests/net: Cover the IP_LOCAL_PORT_RANGE socket option Add IP_LOCAL_PORT_RANGE socket option - 1 - --- 2023-01-24 Jakub Sitnicki pcmoore Handled Elsewhere
[net-next,v5,1/2] inet: Add IP_LOCAL_PORT_RANGE socket option Add IP_LOCAL_PORT_RANGE socket option - 2 - --- 2023-01-24 Jakub Sitnicki pcmoore Handled Elsewhere
[v2,4/4] security: binder: Add binder object flags to selinux_binder_transfer_file Track exported dma-buffers with memcg - - - --- 2023-01-23 T.J. Mercier pcmoore Changes Requested
[v2,3/4] binder: Add flags to relinquish ownership of fds Track exported dma-buffers with memcg 1 - - --- 2023-01-23 T.J. Mercier pcmoore Changes Requested
[v2,2/4] dmabuf: Add cgroup charge transfer function Track exported dma-buffers with memcg - - - --- 2023-01-23 T.J. Mercier pcmoore Changes Requested
[v2,1/4] memcg: Track exported dma-buffers Track exported dma-buffers with memcg - - - --- 2023-01-23 T.J. Mercier pcmoore Changes Requested
[net-next,v4,2/2] selftests/net: Cover the IP_LOCAL_PORT_RANGE socket option Add IP_LOCAL_PORT_RANGE socket option - 1 - --- 2023-01-23 Jakub Sitnicki Handled Elsewhere
[net-next,v4,1/2] inet: Add IP_LOCAL_PORT_RANGE socket option Add IP_LOCAL_PORT_RANGE socket option - 2 - --- 2023-01-23 Jakub Sitnicki Handled Elsewhere
[3/3] libselinux: use a static match_data if single threaded improve performance of pcre matches - - - --- 2023-01-23 Carlo Marcelo Arenas Belón bachradsusi New
[2/3] libselinux: improve performance with pcre matches improve performance of pcre matches - - - --- 2023-01-23 Carlo Marcelo Arenas Belón bachradsusi New
[1/3] scripts: respect an initial LD_LIBRARY_PATH with env_use_destdir improve performance of pcre matches - - - --- 2023-01-23 Carlo Marcelo Arenas Belón bachradsusi New
« 1 2 3 476 77 »