Show patches with: none      |   7312 patches
« 1 2 3 473 74 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
selinux: add __randomize_layout to selinux_audit_data selinux: add __randomize_layout to selinux_audit_data - - - --- 2022-05-18 GONG, Ruiqi pcmoore Accepted
[RFC,v2,4/4] libselinux: check for truncations Untitled series #642403 - - - --- 2022-05-17 Christian Göttsche New
[2/2] libselinux: restorecon: avoid printing NULL pointer [1/2] libselinux: restorecon: add fallback for pre 3.6 Linux - - - --- 2022-05-17 Christian Göttsche New
[1/2] libselinux: restorecon: add fallback for pre 3.6 Linux [1/2] libselinux: restorecon: add fallback for pre 3.6 Linux - - - --- 2022-05-17 Christian Göttsche New
ci: declare git repository a safe directory ci: declare git repository a safe directory 1 - - --- 2022-05-17 Christian Göttsche Accepted
selinux: fix bad cleanup on error in hashtab_duplicate() selinux: fix bad cleanup on error in hashtab_duplicate() - - - --- 2022-05-17 Ondrej Mosnacek pcmoore Accepted
[userspace,v4,2/2] libsepol,checkpolicy: add support for self keyword in type transitions Support the 'self' keyword in type transitions - - - --- 2022-05-13 Ondrej Mosnacek Accepted
[userspace,v4,1/2] libsepol/cil: add support for self keyword in type transitions Support the 'self' keyword in type transitions - - - --- 2022-05-13 Ondrej Mosnacek Accepted
[RFC,4/4] libselinux: restorecon: pin file to avoid TOCTOU issues [RFC] libselinux: emulate O_PATH support in fgetfilecon/fsetfilecon 1 - - --- 2022-05-11 Christian Göttsche Accepted
[RFC,3/4] libselinux: restorecon: forward error if not ENOENT [RFC] libselinux: emulate O_PATH support in fgetfilecon/fsetfilecon 1 - - --- 2022-05-11 Christian Göttsche Accepted
[RFC,2/4] libselinux: restorecon: misc tweaks [RFC] libselinux: emulate O_PATH support in fgetfilecon/fsetfilecon 1 - - --- 2022-05-11 Christian Göttsche Accepted
libselinux: preserve errno in selinux_log() libselinux: preserve errno in selinux_log() 1 - - --- 2022-05-11 Christian Göttsche Accepted
[RFC,4/4] libselinux: check for truncations [RFC,1/4] libselinux: simplify policy path logic to avoid uninitialized read - - - --- 2022-05-10 Christian Göttsche Superseded
[RFC,3/4] libselinux: introduce strlcpy [RFC,1/4] libselinux: simplify policy path logic to avoid uninitialized read - - - --- 2022-05-10 Christian Göttsche New
[RFC,2/4] libselinux: add header guard for internal header [RFC,1/4] libselinux: simplify policy path logic to avoid uninitialized read - - - --- 2022-05-10 Christian Göttsche New
[RFC,1/4] libselinux: simplify policy path logic to avoid uninitialized read [RFC,1/4] libselinux: simplify policy path logic to avoid uninitialized read 1 - - --- 2022-05-10 Christian Göttsche New
libselinux: free memory in error branch libselinux: free memory in error branch 1 - - --- 2022-05-10 Christian Göttsche Accepted
[userspace,v3,2/2] libsepol,checkpolicy: add support for self keyword in type transitions Support the 'self' keyword in type transitions - - - --- 2022-05-10 Ondrej Mosnacek Accepted
[userspace,v3,1/2] libsepol/cil: add support for self keyword in type transitions Support the 'self' keyword in type transitions - - - --- 2022-05-10 Ondrej Mosnacek Accepted
gettext: set _ on module level instead of builtins namespace gettext: set _ on module level instead of builtins namespace 1 - - --- 2022-05-06 Vit Mojzis Accepted
[RFC] libselinux: emulate O_PATH support in fgetfilecon/fsetfilecon [RFC] libselinux: emulate O_PATH support in fgetfilecon/fsetfilecon 1 - - --- 2022-05-05 Christian Göttsche Accepted
libselinux/utils: print errno on failure libselinux/utils: print errno on failure 1 - - --- 2022-05-05 Christian Göttsche Accepted
libselinux: update man page of setfilecon(3) family about context parameter libselinux: update man page of setfilecon(3) family about context parameter 1 - - --- 2022-05-05 Christian Göttsche Accepted
[32/32] esas2r: Use __mem_to_flex() with struct atto_ioctl Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[31/32] xenbus: Use mem_to_flex_dup() with struct read_buffer Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[30/32] usb: gadget: f_fs: Use mem_to_flex_dup() with struct ffs_buffer Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[29/32] xtensa: Use mem_to_flex_dup() with struct property Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[28/32] selinux: Use mem_to_flex_dup() with xfrm and sidtab Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore New
[27/32] KEYS: Use mem_to_flex_dup() with struct user_key_payload Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[26/32] ima: Use mem_to_flex_dup() with struct modsig Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[25/32] Drivers: hv: utils: Use mem_to_flex_dup() with struct cn_msg Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[24/32] IB/hfi1: Use mem_to_flex_dup() for struct tid_rb_node Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[23/32] Bluetooth: Use mem_to_flex_dup() with struct hci_op_configure_data_path Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[22/32] atags_proc: Use mem_to_flex_dup() with struct buffer Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[21/32] soc: qcom: apr: Use mem_to_flex_dup() with struct apr_rx_buf Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[20/32] ASoC: sigmadsp: Use mem_to_flex_dup() with struct sigmadsp_data Introduce flexible array struct memcpy() helpers 1 - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[19/32] afs: Use mem_to_flex_dup() with struct afs_acl Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[18/32] firewire: Use __mem_to_flex_dup() with struct iso_interrupt_event Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[17/32] net/flow_offload: Use mem_to_flex_dup() with struct flow_action_cookie Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[16/32] 802/mrp: Use mem_to_flex_dup() with struct mrp_attr Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[15/32] 802/garp: Use mem_to_flex_dup() with struct garp_attr Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[14/32] af_unix: Use mem_to_flex_dup() with struct unix_address Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[13/32] mac80211: Use mem_to_flex_dup() with several structs Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[12/32] cfg80211: Use mem_to_flex_dup() with struct cfg80211_bss_ies Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[11/32] nl80211: Use mem_to_flex_dup() with struct cfg80211_cqm_config Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[10/32] wcn36xx: Use mem_to_flex_dup() with struct wcn36xx_hal_ind_msg Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[09/32] p54: Use mem_to_flex_dup() with struct p54_cal_database Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[08/32] iwlwifi: mvm: Use mem_to_flex_dup() with struct ieee80211_key_conf Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[07/32] iwlwifi: calib: Use mem_to_flex_dup() with struct iwl_calib_result Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[06/32] iwlwifi: calib: Prepare to use mem_to_flex_dup() Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[05/32] brcmfmac: Use mem_to_flex_dup() with struct brcmf_fweh_queue_item Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[04/32] fortify: Add run-time WARN for cross-field memcpy() Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[03/32] flex_array: Add Kunit tests Introduce flexible array struct memcpy() helpers - 1 - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[02/32] Introduce flexible array struct memcpy() helpers Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
[01/32] netlink: Avoid memcpy() across flexible array boundary Introduce flexible array struct memcpy() helpers - - - --- 2022-05-04 Kees Cook pcmoore Handled Elsewhere
fsnotify: add generic perm check for unlink/rmdir fsnotify: add generic perm check for unlink/rmdir - - - --- 2022-05-03 Guowei Du pcmoore Changes Requested
gui: Make sure sepolicy calls are translated properly gui: Make sure sepolicy calls are translated properly - - - --- 2022-05-03 Vit Mojzis Changes Requested
[v2,5/5] setfiles: introduce the -C option for distinguishing file tree walk errors selinux_restorecon(3), setfiles(8): skip relabeling errors - - - --- 2022-05-03 Laszlo Ersek Accepted
[v2,4/5] selinux_restorecon: introduce SELINUX_RESTORECON_COUNT_ERRORS selinux_restorecon(3), setfiles(8): skip relabeling errors - - - --- 2022-05-03 Laszlo Ersek Accepted
[v2,3/5] setfiles: remove useless "iamrestorecon" checks in option parsing selinux_restorecon(3), setfiles(8): skip relabeling errors - 1 - --- 2022-05-03 Laszlo Ersek Accepted
[v2,2/5] setfiles: remove useless assignment and comment (after RHBZ#1926386) selinux_restorecon(3), setfiles(8): skip relabeling errors - - - --- 2022-05-03 Laszlo Ersek Accepted
[v2,1/5] setfiles: fix up inconsistent indentation selinux_restorecon(3), setfiles(8): skip relabeling errors - - - --- 2022-05-03 Laszlo Ersek Accepted
[v2,1/8] capability: add capable_or to test for multiple caps with exactly one audit message [v2,1/8] capability: add capable_or to test for multiple caps with exactly one audit message - - - --- 2022-05-02 Christian Göttsche pcmoore New
[v2,8/8] net: use new capable_or functionality [v2,1/8] capability: add capable_or to test for multiple caps with exactly one audit message - 1 - --- 2022-05-02 Christian Göttsche pcmoore New
[v2,7/8] kernel/bpf: use new capable_or functionality [v2,1/8] capability: add capable_or to test for multiple caps with exactly one audit message - - - --- 2022-05-02 Christian Göttsche pcmoore New
[v2,6/8] kernel: use new capable_or functionality [v2,1/8] capability: add capable_or to test for multiple caps with exactly one audit message - - - --- 2022-05-02 Christian Göttsche pcmoore New
[v2,5/8] fs: use new capable_or functionality [v2,1/8] capability: add capable_or to test for multiple caps with exactly one audit message - - - --- 2022-05-02 Christian Göttsche pcmoore New
[v2,4/8] drivers: use new capable_or functionality [v2,1/8] capability: add capable_or to test for multiple caps with exactly one audit message 1 1 - --- 2022-05-02 Christian Göttsche pcmoore New
[v2,3/8] block: use new capable_or functionality [v2,1/8] capability: add capable_or to test for multiple caps with exactly one audit message - - - --- 2022-05-02 Christian Göttsche pcmoore New
[v2,2/8] capability: use new capable_or functionality [v2,1/8] capability: add capable_or to test for multiple caps with exactly one audit message - - - --- 2022-05-02 Christian Göttsche pcmoore New
[v2,RFC] sched: only perform capability check on privileged operation [v2,RFC] sched: only perform capability check on privileged operation - - - --- 2022-05-02 Christian Göttsche pcmoore New
[v3] selinux: declare data arrays const [v3] selinux: declare data arrays const - - - --- 2022-05-02 Christian Göttsche pcmoore Accepted
selinux: include necessary headers in headers selinux: include necessary headers in headers - - - --- 2022-05-02 Christian Göttsche pcmoore Accepted
selinux: avoid extra semicolon selinux: avoid extra semicolon - - - --- 2022-05-02 Christian Göttsche pcmoore Accepted
selinux: fix indentation level of mls_ops block selinux: fix indentation level of mls_ops block - - - --- 2022-05-02 Christian Göttsche pcmoore Accepted
selinux: update parameter documentation selinux: update parameter documentation - - - --- 2022-05-02 Christian Göttsche pcmoore Accepted
selinux: use unsigned char for boolean values selinux: use unsigned char for boolean values - - - --- 2022-05-02 Christian Göttsche pcmoore New
selinux: resolve checkpatch errors selinux: resolve checkpatch errors - - - --- 2022-05-02 Christian Göttsche pcmoore Accepted
[v4] firmware_loader: use kernel credentials when reading firmware [v4] firmware_loader: use kernel credentials when reading firmware 1 1 - --- 2022-05-02 Thiébaud Weksteen pcmoore Handled Elsewhere
libselinux/utils/getsebool: add options to display en-/disabled booleans libselinux/utils/getsebool: add options to display en-/disabled booleans - - - --- 2022-04-28 Christian Göttsche New
[for-3.5,5/5] setfiles: introduce the -C option for distinguishing file tree walk errors selinux_restorecon(3), setfiles(8): skip relabeling errors - - - --- 2022-04-28 Laszlo Ersek Superseded
[for-3.5,4/5] selinux_restorecon: introduce SELINUX_RESTORECON_COUNT_ERRORS selinux_restorecon(3), setfiles(8): skip relabeling errors - - - --- 2022-04-28 Laszlo Ersek Superseded
[for-3.5,3/5] setfiles: remove useless "iamrestorecon" checks in option parsing selinux_restorecon(3), setfiles(8): skip relabeling errors - 1 - --- 2022-04-28 Laszlo Ersek Superseded
[for-3.5,2/5] setfiles: remove useless assignment and comment (after RHBZ#1926386) selinux_restorecon(3), setfiles(8): skip relabeling errors - - - --- 2022-04-28 Laszlo Ersek Superseded
[for-3.5,1/5] setfiles: fix up inconsistent indentation selinux_restorecon(3), setfiles(8): skip relabeling errors - - - --- 2022-04-28 Laszlo Ersek Superseded
[v3] firmware_loader: use kernel credentials when reading firmware [v3] firmware_loader: use kernel credentials when reading firmware - - - --- 2022-04-28 Thiébaud Weksteen pcmoore Superseded
checkpolicy: mention class name on invalid permission checkpolicy: mention class name on invalid permission 1 - - --- 2022-04-26 Christian Göttsche Accepted
[userspace,v2,2/2] libsepol,checkpolicy: add support for self keyword in type transitions Support the 'self' keyword in type transitions - - - --- 2022-04-26 Ondrej Mosnacek Accepted
[userspace,v2,1/2] libsepol/cil: add support for self keyword in type transitions Support the 'self' keyword in type transitions - - - --- 2022-04-26 Ondrej Mosnacek Accepted
[userspace,2/2] libsepol,checkpolicy: add support for self keyword in type transitions Support the 'self' keyword in type transitions - - - --- 2022-04-22 Ondrej Mosnacek Superseded
[userspace,1/2] libsepol/cil: add support for self keyword in type transitions Support the 'self' keyword in type transitions - - - --- 2022-04-22 Ondrej Mosnacek Superseded
[v2] firmware_loader: use kernel credentials when reading firmware [v2] firmware_loader: use kernel credentials when reading firmware - 1 - --- 2022-04-22 Thiébaud Weksteen pcmoore Superseded
[testsuite,2/2] tests/ioctl: adjust size of variable passed to ioctl(2) FIOQSIZE followup fixes - - - --- 2022-04-21 Ondrej Mosnacek omos Accepted
[testsuite,1/2] policy/test_ioctl_xperms.te: add ioctl numbers for other arches FIOQSIZE followup fixes - - - --- 2022-04-21 Ondrej Mosnacek omos Accepted
[v35,29/29] AppArmor: Remove the exclusive flag [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule 2 1 - --- 2022-04-18 Casey Schaufler pcmoore Changes Requested
[v35,28/29] LSM: Add /proc attr entry for full LSM context [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-04-18 Casey Schaufler pcmoore Changes Requested
[v35,27/29] Audit: Add record for multiple object contexts [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule 1 - - --- 2022-04-18 Casey Schaufler pcmoore Changes Requested
[v35,26/29] Audit: Add record for multiple task security contexts [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-04-18 Casey Schaufler pcmoore Changes Requested
[v35,25/29] Audit: Allow multiple records in an audit_buffer [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule 1 - - --- 2022-04-18 Casey Schaufler pcmoore Changes Requested
[v35,24/29] LSM: Add a function to report multiple LSMs [v35,01/29] integrity: disassociate ima_filter_rule from security_audit_rule 1 1 - --- 2022-04-18 Casey Schaufler pcmoore Changes Requested
« 1 2 3 473 74 »