Show patches with: none      |   4097 patches
« 1 2 3 440 41 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
[2/2] setfiles: Add -E option to treat conflicting specifications as errors. [1/2] libselinux: Add selinux_restorecon option to treat conflicting specifications as an error. - - - 0 0 0 2020-04-02 Chris PeBenito New
[1/2] libselinux: Add selinux_restorecon option to treat conflicting specifications as an error. [1/2] libselinux: Add selinux_restorecon option to treat conflicting specifications as an error. - - - 0 0 0 2020-04-02 Chris PeBenito New
selinux-testsuite: Add notify gitignore file selinux-testsuite: Add notify gitignore file 1 - - 0 0 0 2020-04-02 Richard Haines omos New
[v8,12/12] doc/admin-guide: update kernel.rst with CAP_PERFMON information Introduce CAP_PERFMON to secure system performance monitoring and observability - - - 0 0 0 2020-04-02 Alexey Budankov New
[v8,11/12] doc/admin-guide: update perf-security.rst with CAP_PERFMON information Introduce CAP_PERFMON to secure system performance monitoring and observability - - - 0 0 0 2020-04-02 Alexey Budankov New
[v8,10/12] drivers/oprofile: open access for CAP_PERFMON privileged process Introduce CAP_PERFMON to secure system performance monitoring and observability 1 - - 0 0 0 2020-04-02 Alexey Budankov New
[v8,09/12] drivers/perf: open access for CAP_PERFMON privileged process Introduce CAP_PERFMON to secure system performance monitoring and observability 2 1 - 0 0 0 2020-04-02 Alexey Budankov New
[v8,08/12] parisc/perf: open access for CAP_PERFMON privileged process Introduce CAP_PERFMON to secure system performance monitoring and observability 2 1 - 0 0 0 2020-04-02 Alexey Budankov New
[v8,07/12] powerpc/perf: open access for CAP_PERFMON privileged process Introduce CAP_PERFMON to secure system performance monitoring and observability 2 1 - 0 0 0 2020-04-02 Alexey Budankov New
[v8,06/12] trace/bpf_trace: open access for CAP_PERFMON privileged process Introduce CAP_PERFMON to secure system performance monitoring and observability 2 1 - 0 0 0 2020-04-02 Alexey Budankov New
[v8,05/12] drm/i915/perf: open access for CAP_PERFMON privileged process Introduce CAP_PERFMON to secure system performance monitoring and observability 1 1 - 0 0 0 2020-04-02 Alexey Budankov New
[v8,04/12] perf tool: extend Perf tool with CAP_PERFMON capability support Introduce CAP_PERFMON to secure system performance monitoring and observability 2 1 - 0 0 0 2020-04-02 Alexey Budankov New
[v8,03/12] perf/core: open access to probes for CAP_PERFMON privileged process Introduce CAP_PERFMON to secure system performance monitoring and observability 1 1 - 0 0 0 2020-04-02 Alexey Budankov New
[v8,02/12] perf/core: open access to the core for CAP_PERFMON privileged process Introduce CAP_PERFMON to secure system performance monitoring and observability - 1 - 0 0 0 2020-04-02 Alexey Budankov New
[v8,01/12] capabilities: introduce CAP_PERFMON to kernel and user space Introduce CAP_PERFMON to secure system performance monitoring and observability 4 - - 0 0 0 2020-04-02 Alexey Budankov New
[v5,3/3] Wire UFFD up to SELinux SELinux support for anonymous inodes and UFFD - - - 0 0 0 2020-04-01 Daniel Colascione New
[v5,2/3] Teach SELinux about anonymous inodes SELinux support for anonymous inodes and UFFD - - - 0 0 0 2020-04-01 Daniel Colascione New
[v5,1/3] Add a new LSM-supporting anonymous inode interface SELinux support for anonymous inodes and UFFD - - - 0 0 0 2020-04-01 Daniel Colascione New
libselinux: mount selinuxfs nodev,noexec,nosuid libselinux: mount selinuxfs nodev,noexec,nosuid - - - 0 0 0 2020-03-28 Topi Miettinen New
[v2,2/2] libsepol: implement POLICYDB_VERSION_COMP_FTRANS userspace: Implement new format of filename trans rules 1 - - 0 0 0 2020-03-28 Ondrej Mosnacek New
[v2,1/2] libsepol,checkpolicy: optimize storage of filename transitions userspace: Implement new format of filename trans rules 1 - - 0 0 0 2020-03-28 Ondrej Mosnacek New
selinux: implement new format of filename transitions selinux: implement new format of filename transitions - - - 0 0 0 2020-03-27 Ondrej Mosnacek New
[V2,2/2] selinux-testsuite: Use native filesystem for tests - Part 2 selinux-testsuite: Use native filesystem for tests 1 - - 0 0 0 2020-03-25 Richard Haines New
[V2,1/2] selinux-testsuite: Use native filesystem for tests - Part 1 selinux-testsuite: Use native filesystem for tests 1 - - 0 0 0 2020-03-25 Richard Haines New
[v1] perf tool: make Perf tool aware of SELinux access control [v1] perf tool: make Perf tool aware of SELinux access control - - - 0 0 0 2020-03-13 Alexey Budankov New
[RFC,5/5] selinux-testsuite: add testing for unprivileged sandboxing capability [RFC,1/5] selinux-testsuite: add tests/sandbox/nodir_no_allow.cil - - - 0 0 0 2020-03-13 Stephen Smalley New
[RFC,4/5] selinux-testsuite: add tests/sandbox/rxdir_rx_allow.cil [RFC,1/5] selinux-testsuite: add tests/sandbox/nodir_no_allow.cil - - - 0 0 0 2020-03-13 Stephen Smalley New
[RFC,3/5] selinux-testsuite: add tests/sandbox/rxdir_no_allow.cil [RFC,1/5] selinux-testsuite: add tests/sandbox/nodir_no_allow.cil - - - 0 0 0 2020-03-13 Stephen Smalley New
[RFC,2/5] selinux-testsuite: add tests/sandbox/nodir_rx_allow.cil [RFC,1/5] selinux-testsuite: add tests/sandbox/nodir_no_allow.cil - - - 0 0 0 2020-03-13 Stephen Smalley New
[RFC,1/5] selinux-testsuite: add tests/sandbox/nodir_no_allow.cil [RFC,1/5] selinux-testsuite: add tests/sandbox/nodir_no_allow.cil - - - 0 0 0 2020-03-13 Stephen Smalley New
[RFC] libsepol,secilc,policycoreutils: add unprivileged sandboxing capability [RFC] libsepol,secilc,policycoreutils: add unprivileged sandboxing capability - - - 0 0 0 2020-03-13 Stephen Smalley New
[RFC] selinux: add unprivileged sandboxing capability [RFC] selinux: add unprivileged sandboxing capability - - - 0 0 0 2020-03-13 Stephen Smalley New
libselinux/getconlist: add verbose switch to print more information libselinux/getconlist: add verbose switch to print more information - - - 0 0 0 2020-02-19 Christian Göttsche New
security/selinux: Add support for new key permissions security/selinux: Add support for new key permissions - - - 0 0 0 2020-02-03 Richard Haines New
[v2] mcstrans: start early and stop late [v2] mcstrans: start early and stop late - - - 0 0 0 2019-12-11 Dominick Grift New
[RFC,v3] security,capability: pass object information to security_capable [RFC,v3] security,capability: pass object information to security_capable - - - 0 0 0 2019-08-15 Aaron Goidel New
[RFC] audit, security: allow LSMs to selectively enable audit collection [RFC] audit, security: allow LSMs to selectively enable audit collection - - - 0 0 0 2019-08-15 Aaron Goidel New
[v4,21/21] fuse: Allow user namespace mounts 1 - - 0 0 0 2016-04-26 Seth Forshee New
[v4,20/21] fuse: Restrict allow_other to the superblock's namespace or a descendant 2 - - 0 0 0 2016-04-26 Seth Forshee New
[v4,19/21] fuse: Support fuse filesystems outside of init_user_ns - - - 0 0 0 2016-04-26 Seth Forshee New
[v4,18/21] fuse: Add support for pid namespaces 1 - - 0 0 0 2016-04-26 Seth Forshee New
[v4,17/21] capabilities: Allow privileged user in s_user_ns to set security.* xattrs 2 - - 0 0 0 2016-04-26 Seth Forshee New
[v4,16/21] fs: Allow superblock owner to access do_remount_sb() 2 - - 0 0 0 2016-04-26 Seth Forshee New
[v4,15/21] fs: Don't remove suid for CAP_FSETID in s_user_ns 1 - - 0 0 0 2016-04-26 Seth Forshee New
[v4,14/21] fs: Allow superblock owner to change ownership of inodes with unmappable ids 1 - - 0 0 0 2016-04-26 Seth Forshee New
[v4,13/21] fs: Update posix_acl support to handle user namespace mounts 1 - - 0 0 0 2016-04-26 Seth Forshee New
[v4,12/21] fs: Refuse uid/gid changes which don't map into s_user_ns 1 - - 0 0 0 2016-04-26 Seth Forshee New
[v4,11/21] cred: Reject inodes with invalid ids in set_create_file_as() 1 - - 0 0 0 2016-04-26 Seth Forshee New
[v4,10/21] fs: Check for invalid i_uid in may_follow_link() 1 1 - 0 0 0 2016-04-26 Seth Forshee New
[v4,09/21] Smack: Handle labels consistently in untrusted mounts 1 - - 0 0 0 2016-04-26 Seth Forshee New
[v4,08/21] userns: Replace in_userns with current_in_userns 2 - - 0 0 0 2016-04-26 Seth Forshee New
[v4,07/21] selinux: Add support for unprivileged mounts from user namespaces 2 - - 0 0 0 2016-04-26 Seth Forshee New
[v4,06/21] fs: Treat foreign mounts as nosuid 2 - - 0 0 0 2016-04-26 Seth Forshee New
[v4,05/21] block_dev: Check permissions towards block device inode when mounting 1 - - 0 0 0 2016-04-26 Seth Forshee New
[v4,04/21] block_dev: Support checking inode permissions in lookup_bdev() 1 - - 0 0 0 2016-04-26 Seth Forshee New
[v4,03/21] fs: Allow sysfs and cgroupfs to share super blocks between user namespaces 1 - - 0 0 0 2016-04-26 Seth Forshee New
[v4,02/21] fs: Remove check of s_user_ns for existing mounts in fs_fully_visible() - - - 0 0 0 2016-04-26 Seth Forshee New
[v4,01/21] fs: fix a posible leak of allocated superblock 1 - - 0 0 0 2016-04-26 Seth Forshee New
[v4,19/21] fuse: Support fuse filesystems outside of init_user_ns - - - 0 0 0 2016-04-26 Seth Forshee New
[v4,18/21] fuse: Add support for pid namespaces 1 - - 0 0 0 2016-04-26 Seth Forshee New
[v4,16/21] fs: Allow superblock owner to access do_remount_sb() 2 - - 0 0 0 2016-04-26 Seth Forshee New
[v4,14/21] fs: Allow superblock owner to change ownership of inodes with unmappable ids 1 - - 0 0 0 2016-04-26 Seth Forshee New
[v4,13/21] fs: Update posix_acl support to handle user namespace mounts 1 - - 0 0 0 2016-04-26 Seth Forshee New
[v4,11/21] cred: Reject inodes with invalid ids in set_create_file_as() 1 - - 0 0 0 2016-04-26 Seth Forshee New
[v4,10/21] fs: Check for invalid i_uid in may_follow_link() 1 - - 0 0 0 2016-04-26 Seth Forshee New
[v4,08/21] userns: Replace in_userns with current_in_userns 2 - - 0 0 0 2016-04-26 Seth Forshee New
[v4,04/21] block_dev: Support checking inode permissions in lookup_bdev() 1 - - 0 0 0 2016-04-26 Seth Forshee New
[v4,02/21] fs: Remove check of s_user_ns for existing mounts in fs_fully_visible() - - - 0 0 0 2016-04-26 Seth Forshee New
[GIT,PULL] SELinux patches for v5.7 [GIT,PULL] SELinux patches for v5.7 - - - 0 0 0 2020-03-31 Paul Moore Accepted
selinux: clean up indentation issue with assignment statement selinux: clean up indentation issue with assignment statement - - - 0 0 0 2020-03-27 Colin King Accepted
[2/2] cil: re-enable DISABLE_SYMVER define [1/2] cil: rm dead dso.h file - - - 0 0 0 2020-03-26 William Roberts Accepted
[1/2] cil: rm dead dso.h file [1/2] cil: rm dead dso.h file - - - 0 0 0 2020-03-26 William Roberts Accepted
tree-wide: replace last occurrences of security_context_t tree-wide: replace last occurrences of security_context_t 1 - - 0 0 0 2020-03-23 Christian Göttsche Accepted
checkpolicy: add missing forward declaration checkpolicy: add missing forward declaration 1 - - 0 0 0 2020-03-23 Christian Göttsche Accepted
[4/4] libsemanage: cleanup linker map file [1/4] libsemanage: drop hidden 1 - - 0 0 0 2020-03-23 William Roberts Accepted
[3/4] libsemanage: update linker script [1/4] libsemanage: drop hidden - - - 0 0 0 2020-03-23 William Roberts Accepted
[2/4] libsemanage/Makefile: add -fno-semantic-interposition [1/4] libsemanage: drop hidden - - - 0 0 0 2020-03-23 William Roberts Accepted
[1/4] libsemanage: drop hidden [1/4] libsemanage: drop hidden - - - 0 0 0 2020-03-23 William Roberts Accepted
cil: drop remaining dso.h include cil: drop remaining dso.h include 2 - - 0 0 0 2020-03-19 William Roberts Accepted
[v4] Add tests for default_range glblub [v4] Add tests for default_range glblub - - - 0 0 0 2020-03-19 Joshua Brindle Accepted
libsepol: set correct second argument of (t1 == t2) constraint libsepol: set correct second argument of (t1 == t2) constraint 1 - - 0 0 0 2020-03-19 Christian Göttsche Accepted
[v2] secilc: add basic test for policy optimization [v2] secilc: add basic test for policy optimization 1 - - 0 0 0 2020-03-16 Ondrej Mosnacek Accepted
[testsuite] tests/bpf: ask for unlimited RLIMIT_MEMLOCK [testsuite] tests/bpf: ask for unlimited RLIMIT_MEMLOCK 1 - - 0 0 0 2020-03-12 Ondrej Mosnacek Accepted
MAINTAINERS: Update my email address MAINTAINERS: Update my email address - - - 0 0 0 2020-03-11 Stephen Smalley Accepted
[v2,3/3] lbespol: remove wild cards in mapfile [v2,1/3] libsepol/dso: drop hidden_proto and hidden_def 1 - - 0 0 0 2020-03-10 William Roberts Accepted
[v2,2/3] libsepol/Makefile: add -fno-semantic-interposition [v2,1/3] libsepol/dso: drop hidden_proto and hidden_def - - - 0 0 0 2020-03-10 William Roberts Accepted
[v2,1/3] libsepol/dso: drop hidden_proto and hidden_def [v2,1/3] libsepol/dso: drop hidden_proto and hidden_def - - - 0 0 0 2020-03-10 William Roberts Accepted
checkpolicy: Treat invalid characters as an error checkpolicy: Treat invalid characters as an error 1 - - 0 0 0 2020-03-10 Daniel Burgener Accepted
selinux: avtab_init() and cond_policydb_init() return void selinux: avtab_init() and cond_policydb_init() return void - 1 - 0 0 0 2020-03-05 Paul Moore Accepted
checkpolicy: Add --werror flag to checkmodule and checkpolicy to treat warnings as errors. checkpolicy: Add --werror flag to checkmodule and checkpolicy to treat warnings as errors. 1 - - 0 0 0 2020-03-05 Daniel Burgener Accepted
[RFC,v2] libsepol/cil: raise default attrs_expand_size to 2 [RFC,v2] libsepol/cil: raise default attrs_expand_size to 2 1 - - 0 0 0 2020-03-05 Ondrej Mosnacek Accepted
libsepol/cil: Do not check flavor when checking for duplicate parameters libsepol/cil: Do not check flavor when checking for duplicate parameters 1 - - 0 0 0 2020-03-04 James Carter omos Accepted
libsepol/cil: Check if name is a macro parameter first libsepol/cil: Check if name is a macro parameter first 1 - - 0 0 0 2020-03-04 James Carter omos Accepted
NFS: Ensure security label is set for root inode NFS: Ensure security label is set for root inode 1 - 1 0 0 0 2020-03-03 Scott Mayhew Accepted
selinux: clean up error path in policydb_init() selinux: clean up error path in policydb_init() 1 - - 0 0 0 2020-03-03 Ondrej Mosnacek Accepted
Revert "libsepol: cache ebitmap cardinality value" Revert "libsepol: cache ebitmap cardinality value" 1 - - 0 0 0 2020-03-03 Ondrej Mosnacek Accepted
[v4,4/4] libselinux: drop symbols from map [v4,1/4] dso: drop hidden_proto and hidden_def - - - 0 0 0 2020-03-02 William Roberts Accepted
[v4,3/4] Makefile: add linker script to minimize exports [v4,1/4] dso: drop hidden_proto and hidden_def - - - 0 0 0 2020-03-02 William Roberts Accepted
[v4,2/4] Makefile: add -fno-semantic-interposition [v4,1/4] dso: drop hidden_proto and hidden_def - - - 0 0 0 2020-03-02 William Roberts Accepted
[v4,1/4] dso: drop hidden_proto and hidden_def [v4,1/4] dso: drop hidden_proto and hidden_def - - - 0 0 0 2020-03-02 William Roberts Accepted
« 1 2 3 440 41 »