Show patches with: none      |   5081 patches
« 1 2 3 450 51 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
[v9,1/3] Add a new LSM-supporting anonymous inode interface SELinux support for anonymous inodes and UFFD - - - --- 2020-09-23 Lokesh Gidra Superseded
[v4,6/6] IMA: validate supported kernel data sources before measurement IMA: Infrastructure for measurement of critical kernel data - - - --- 2020-09-23 Tushar Sugandhi Changes Requested
[v4,5/6] IMA: add hook to measure critical data from kernel components IMA: Infrastructure for measurement of critical kernel data - - - --- 2020-09-23 Tushar Sugandhi Changes Requested
[v4,4/6] IMA: add policy to measure critical data from kernel components IMA: Infrastructure for measurement of critical kernel data - - - --- 2020-09-23 Tushar Sugandhi Changes Requested
[v4,3/6] IMA: update process_buffer_measurement to measure buffer hash IMA: Infrastructure for measurement of critical kernel data - - - --- 2020-09-23 Tushar Sugandhi Changes Requested
[v4,2/6] IMA: conditionally allow empty rule data IMA: Infrastructure for measurement of critical kernel data - - - --- 2020-09-23 Tushar Sugandhi Changes Requested
[v4,1/6] IMA: generalize keyring specific measurement constructs IMA: Infrastructure for measurement of critical kernel data - - - --- 2020-09-23 Tushar Sugandhi Changes Requested
[V2,1/1] selinux-testsuite: Update SCTP asconf client/server [V2,1/1] selinux-testsuite: Update SCTP asconf client/server 1 - - --- 2020-09-22 Richard Haines omos Accepted
ip.7: Document IP_PASSSEC for UDP sockets ip.7: Document IP_PASSSEC for UDP sockets - 1 - --- 2020-09-17 Stephen Smalley sds Accepted
lsm_selinux: Convert to Markdown lsm_selinux: Convert to Markdown - - - --- 2020-09-16 Richard Haines Accepted
libsepol/cil: Fix neverallow checking involving classmaps libsepol/cil: Fix neverallow checking involving classmaps 1 - - --- 2020-09-15 James Carter Accepted
[2/2] libselinux: Change userspace AVC setenforce and policy load messages to audit format. [1/2] libselinux: Add additional log callback details in man page for auditing. 1 - - --- 2020-09-15 Chris PeBenito Accepted
[1/2] libselinux: Add additional log callback details in man page for auditing. [1/2] libselinux: Add additional log callback details in man page for auditing. 1 - - --- 2020-09-15 Chris PeBenito Accepted
socket.7,ip.7: Document SO_PEERSEC for AF_INET sockets socket.7,ip.7: Document SO_PEERSEC for AF_INET sockets - - - --- 2020-09-15 Stephen Smalley Accepted
[RFC,1/1] libselinux: Revise userspace AVC avc_log() for auditable events. [RFC,1/1] libselinux: Revise userspace AVC avc_log() for auditable events. - - - --- 2020-09-15 Chris PeBenito Superseded
[v2] socket.7,unix.7: add initial description for SO_PEERSEC [v2] socket.7,unix.7: add initial description for SO_PEERSEC - 1 - --- 2020-09-14 Stephen Smalley Accepted
[v4] selinux: Add helper functions to get and set checkreqprot [v4] selinux: Add helper functions to get and set checkreqprot 1 - - --- 2020-09-14 Lakshmi Ramasubramanian Accepted
[RFC] selinux: allow dontauditx rules to take effect without allowx [RFC] selinux: allow dontauditx rules to take effect without allowx - - - --- 2020-09-12 bauen1 Changes Requested
[v4] cil_access_vector_rules: allowx, auditallowx and dontauditx fixes [v4] cil_access_vector_rules: allowx, auditallowx and dontauditx fixes 1 - - --- 2020-09-12 Dominick Grift jwcart2 Accepted
[v2,1/1] libselinux: Fix selabel_lookup() for the root dir. [v2,1/1] libselinux: Fix selabel_lookup() for the root dir. 1 - - --- 2020-09-11 Chris PeBenito Accepted
[1/1] libselinux: Fix selabel_lookup() for the root dir. [1/1] libselinux: Fix selabel_lookup() for the root dir. 1 - - --- 2020-09-11 Chris PeBenito Superseded
[v3] selinux: Add helper functions to get and set checkreqprot [v3] selinux: Add helper functions to get and set checkreqprot - - - --- 2020-09-11 Lakshmi Ramasubramanian Superseded
socket.7,unix.7: add initial description for SO_PEERSEC socket.7,unix.7: add initial description for SO_PEERSEC - - - --- 2020-09-10 Stephen Smalley Superseded
selinux: access policycaps with READ_ONCE/WRITE_ONCE selinux: access policycaps with READ_ONCE/WRITE_ONCE - - - --- 2020-09-10 Stephen Smalley Accepted
[v3] cil_access_vector_rules: allowx, auditallowx and dontauditx fixes [v3] cil_access_vector_rules: allowx, auditallowx and dontauditx fixes - - - --- 2020-09-10 Dominick Grift Superseded
[v2] cil_access_vector_rules: fixes a typo, clarifies auditallowx/dontauditx [v2] cil_access_vector_rules: fixes a typo, clarifies auditallowx/dontauditx - - - --- 2020-09-10 Dominick Grift Superseded
cil_access_vector_rules: fixes a typo cil_access_vector_rules: fixes a typo - - - --- 2020-09-10 Dominick Grift jwcart2 New
[v2] selinux: Add helper functions to get and set checkreqprot [v2] selinux: Add helper functions to get and set checkreqprot 1 - - --- 2020-09-09 Lakshmi Ramasubramanian Changes Requested
[v2] libsepol/cil: Validate constraint expressions before adding to binary policy [v2] libsepol/cil: Validate constraint expressions before adding to binary policy 1 - - --- 2020-09-09 James Carter Accepted
[v2] libsepol/cil: Validate conditional expressions before adding to binary policy [v2] libsepol/cil: Validate conditional expressions before adding to binary policy 1 - - --- 2020-09-09 James Carter Accepted
libsepol/cil: Validate conditional expressions before adding to binary policy libsepol/cil: Validate conditional expressions before adding to binary policy - - - --- 2020-09-09 James Carter Superseded
libsepol/cil: Validate constraint expressions before adding to binary policy libsepol/cil: Validate constraint expressions before adding to binary policy - - - --- 2020-09-09 James Carter Superseded
selinux: Add helper functions to get and set checkreqprot selinux: Add helper functions to get and set checkreqprot - - - --- 2020-09-09 Lakshmi Ramasubramanian Superseded
[v2] libsepol/cil: Give an error when constraint expressions exceed max depth [v2] libsepol/cil: Give an error when constraint expressions exceed max depth - - - --- 2020-09-09 James Carter Superseded
[22/22] xperm_rules: Tidy up formatting SELinux Notebook: Convert batch 3 to markdown/tidy up - - - --- 2020-09-09 Richard Haines Accepted
[21/22] xen_statements: Tidy up formatting SELinux Notebook: Convert batch 3 to markdown/tidy up - - - --- 2020-09-09 Richard Haines Accepted
[20/22] x_windows: Tidy up formatting SELinux Notebook: Convert batch 3 to markdown/tidy up - - - --- 2020-09-09 Richard Haines Accepted
[19/22] vm_support: Tidy up formatting SELinux Notebook: Convert batch 3 to markdown/tidy up - - - --- 2020-09-09 Richard Haines Accepted
[18/22] userspace_libraries: Tidy up formatting, add toc SELinux Notebook: Convert batch 3 to markdown/tidy up - - - --- 2020-09-09 Richard Haines Accepted
[17/22] users: Tidy up formatting SELinux Notebook: Convert batch 3 to markdown/tidy up - - - --- 2020-09-09 Richard Haines Accepted
[16/22] user_statements:: Tidy up formatting SELinux Notebook: Convert batch 3 to markdown/tidy up - - - --- 2020-09-09 Richard Haines Accepted
[15/22] types_of_policy: Convert to markdown SELinux Notebook: Convert batch 3 to markdown/tidy up - - - --- 2020-09-09 Richard Haines Accepted
[14/22] type_statements: Add toc, tidy up formatting SELinux Notebook: Convert batch 3 to markdown/tidy up - - - --- 2020-09-09 Richard Haines Accepted
[13/22] type_enforcement: Convert to markdown SELinux Notebook: Convert batch 3 to markdown/tidy up - - - --- 2020-09-09 Richard Haines Accepted
[12/22] toc: Tidy up formatting SELinux Notebook: Convert batch 3 to markdown/tidy up - - - --- 2020-09-09 Richard Haines Accepted
[11/22] subjects: Convert to markdown SELinux Notebook: Convert batch 3 to markdown/tidy up - - - --- 2020-09-09 Richard Haines Accepted
[10/22] sid_statement: Convert to markdown SELinux Notebook: Convert batch 3 to markdown/tidy up - - - --- 2020-09-09 Richard Haines Accepted
[09/22] selinux_overview: Convert to markdown SELinux Notebook: Convert batch 3 to markdown/tidy up - - - --- 2020-09-09 Richard Haines Accepted
[08/22] selinux_cmds: Convert to markdown SELinux Notebook: Convert batch 3 to markdown/tidy up - - - --- 2020-09-09 Richard Haines Accepted
[07/22] security_context: Convert to markdown SELinux Notebook: Convert batch 3 to markdown/tidy up - - - --- 2020-09-09 Richard Haines Accepted
[06/22] postgresql: Tidy up formatting SELinux Notebook: Convert batch 3 to markdown/tidy up - - - --- 2020-09-09 Richard Haines Accepted
[05/22] policy_validation_example: Tidy up formatting SELinux Notebook: Convert batch 3 to markdown/tidy up - - - --- 2020-09-09 Richard Haines Accepted
[04/22] policy_config_files: Tidy up formatting SELinux Notebook: Convert batch 3 to markdown/tidy up - - - --- 2020-09-09 Richard Haines Accepted
[03/22] object_classes_permissions: : Tidy up formatting SELinux Notebook: Convert batch 3 to markdown/tidy up - - - --- 2020-09-09 Richard Haines Accepted
[02/22] mls_statements: Convert to markdown SELinux Notebook: Convert batch 3 to markdown/tidy up - - - --- 2020-09-09 Richard Haines Accepted
[01/22] kernel_policy_language: Tidy up formatting SELinux Notebook: Convert batch 3 to markdown/tidy up - - - --- 2020-09-09 Richard Haines Accepted
[v2] cil_network_labeling_statements: fixes nodecon examples [v2] cil_network_labeling_statements: fixes nodecon examples 1 - - --- 2020-09-08 Dominick Grift jwcart2 Accepted
[V2] network_support: Update LibreSwan configuration [V2] network_support: Update LibreSwan configuration - - - --- 2020-09-08 Richard Haines Accepted
SELinux: Measure state and hash of policy using IMA SELinux: Measure state and hash of policy using IMA - - - --- 2020-09-07 Lakshmi Ramasubramanian Superseded
cil_network_labeling_statements: fixes nodecon examples cil_network_labeling_statements: fixes nodecon examples - - - --- 2020-09-07 Dominick Grift Superseded
network_support: Update LibreSwan configuration network_support: Update LibreSwan configuration - - - --- 2020-09-06 Richard Haines Superseded
[RFC] xperm_rules: add two notes [RFC] xperm_rules: add two notes - - - --- 2020-09-04 Christian Göttsche pcmoore Accepted
[RFC] sched: only issue an audit on privileged operation [RFC] sched: only issue an audit on privileged operation - - - --- 2020-09-04 Christian Göttsche pcmoore New
libsepol/cil: Give an error when constraint expressions exceed max depth libsepol/cil: Give an error when constraint expressions exceed max depth 1 - - --- 2020-09-03 James Carter Changes Requested
[testsuite] tests/Makefile: add kernel version check for watchkey [testsuite] tests/Makefile: add kernel version check for watchkey 1 - - --- 2020-09-03 Ondrej Mosnacek omos Accepted
[12/13] rbac: Minor format fix SELinux Notebook: Convert batch 2 to markdown - - - --- 2020-09-02 Richard Haines Accepted
[11/13] polyinstantiation: Convert to markdown SELinux Notebook: Convert batch 2 to markdown - - - --- 2020-09-02 Richard Haines Accepted
[10/13] policy_store_config_files: Add TOC and tidy up formatting SELinux Notebook: Convert batch 2 to markdown - - - --- 2020-09-02 Richard Haines Accepted
[09/13] policy_languages: Tidy up SELinux Notebook: Convert batch 2 to markdown - - - --- 2020-09-02 Richard Haines Accepted
[08/13] policy_config_statements: Convert to markdown SELinux Notebook: Convert batch 2 to markdown - - - --- 2020-09-02 Richard Haines Accepted
[06/13] objects: Convert to markdown SELinux Notebook: Convert batch 2 to markdown - - - --- 2020-09-02 Richard Haines Accepted
[05/13] network_support: Convert to markdown SELinux Notebook: Convert batch 2 to markdown - - - --- 2020-09-02 Richard Haines Accepted
[04/13] network_statements: Convert to markdown SELinux Notebook: Convert batch 2 to markdown - - - --- 2020-09-02 Richard Haines Accepted
[03/13] modular_policy_statements: Convert to markdown SELinux Notebook: Convert batch 2 to markdown - - - --- 2020-09-02 Richard Haines Accepted
[02/13] mac: Tidy formatting SELinux Notebook: Convert batch 2 to markdown - - - --- 2020-09-02 Richard Haines Accepted
[01/13] libselinux_functions: Convert to markdown SELinux Notebook: Convert batch 2 to markdown - - - --- 2020-09-02 Richard Haines Accepted
[RFC] sched: do not issue an audit on unprivileged operation [RFC] sched: do not issue an audit on unprivileged operation - - - --- 2020-09-02 Christian Göttsche Superseded
newrole: support cross-compilation with PAM and audit newrole: support cross-compilation with PAM and audit 1 - - --- 2020-09-01 Dominick Grift Accepted
Optimize the calculation of security.sehash Optimize the calculation of security.sehash - - - --- 2020-09-01 liwugang Changes Requested
[RFC] newrole: do not rely on hard-coded audith and pamh paths [RFC] newrole: do not rely on hard-coded audith and pamh paths - - - --- 2020-09-01 Dominick Grift Superseded
[v2,3/3] IMA: Support early boot measurement of critical data IMA: Generalize early boot data measurement - - - --- 2020-08-28 Lakshmi Ramasubramanian Superseded
[v2,2/3] IMA: Support measurement of generic data during early boot IMA: Generalize early boot data measurement - - - --- 2020-08-28 Lakshmi Ramasubramanian Superseded
[v2,1/3] IMA: Generalize early boot measurement of asymmetric keys IMA: Generalize early boot data measurement - - - --- 2020-08-28 Lakshmi Ramasubramanian Superseded
[v3,6/6] IMA: validate supported kernel data sources before measurement IMA: Infrastructure for measurement of critical kernel data - - - --- 2020-08-28 Tushar Sugandhi Superseded
[v3,5/6] IMA: add hook to measure critical data from kernel components IMA: Infrastructure for measurement of critical kernel data - - - --- 2020-08-28 Tushar Sugandhi Superseded
[v3,4/6] IMA: add policy to measure critical data from kernel components IMA: Infrastructure for measurement of critical kernel data - - - --- 2020-08-28 Tushar Sugandhi Superseded
[v3,3/6] IMA: update process_buffer_measurement to measure buffer hash IMA: Infrastructure for measurement of critical kernel data - - - --- 2020-08-28 Tushar Sugandhi Superseded
[v3,2/6] IMA: change process_buffer_measurement return type from void to int IMA: Infrastructure for measurement of critical kernel data - - - --- 2020-08-28 Tushar Sugandhi Superseded
[v3,1/6] IMA: generalize keyring specific measurement constructs IMA: Infrastructure for measurement of critical kernel data - - - --- 2020-08-28 Tushar Sugandhi Superseded
[v3] selinux: simplify away security_policydb_len() [v3] selinux: simplify away security_policydb_len() 1 - - --- 2020-08-27 Ondrej Mosnacek Accepted
[1/1] libselinux: Add new log callback levels for enforcing and policy load notices. [1/1] libselinux: Add new log callback levels for enforcing and policy load notices. 1 - - --- 2020-08-27 Chris PeBenito Accepted
[testsuite] travis: add nftables to dependencies to run more tests [testsuite] travis: add nftables to dependencies to run more tests 1 - - --- 2020-08-27 Ondrej Mosnacek omos Accepted
[testsuite] tests/sctp: bump connect timeout to 4 seconds [testsuite] tests/sctp: bump connect timeout to 4 seconds 1 - - --- 2020-08-27 Ondrej Mosnacek omos Accepted
[v8,3/3] Wire UFFD up to SELinux SELinux support for anonymous inodes and UFFD - - - --- 2020-08-27 Lokesh Gidra Superseded
[v8,2/3] Teach SELinux about anonymous inodes SELinux support for anonymous inodes and UFFD 2 - - --- 2020-08-27 Lokesh Gidra Superseded
[v8,1/3] Add a new LSM-supporting anonymous inode interface SELinux support for anonymous inodes and UFFD - - - --- 2020-08-27 Lokesh Gidra Superseded
[v2] selinux: move policy mutex to selinux_state, use in lockdep checks [v2] selinux: move policy mutex to selinux_state, use in lockdep checks - 1 - --- 2020-08-26 Stephen Smalley Accepted
[v20,23/23] AppArmor: Remove the exclusive flag LSM: Module stacking for AppArmor 1 2 - --- 2020-08-26 Casey Schaufler Superseded
[v20,22/23] LSM: Add /proc attr entry for full LSM context LSM: Module stacking for AppArmor - 1 - --- 2020-08-26 Casey Schaufler Superseded
[v20,21/23] Audit: Add a new record for multiple object LSM attributes LSM: Module stacking for AppArmor - - - --- 2020-08-26 Casey Schaufler Superseded
« 1 2 3 450 51 »