Show patches with: Archived = No       |   6129 patches
« 1 2 3 461 62 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
[v2] selinux-notebook: describe nosuid and NNP transitions [v2] selinux-notebook: describe nosuid and NNP transitions - - - --- 2021-06-27 Topi Miettinen pcmoore Accepted
libsepol/cil: make array cil_sym_sizes const libsepol/cil: make array cil_sym_sizes const 1 - - --- 2021-06-26 Nicolas Iooss New
[RFC,01/12] ima: Add digest, algo, measured parameters to ima_measure_critical_data() [RFC,01/12] ima: Add digest, algo, measured parameters to ima_measure_critical_data() - - - --- 2021-06-25 Roberto Sassu Not Applicable
[4/4] libsepol/cil: Add support for using qualified names to secil2conf [1/4] libsepol/cil: Provide option to allow qualified names in declarations - - - --- 2021-06-24 James Carter New
[3/4] libsepol/cil: Add support for using qualified names to secil2tree [1/4] libsepol/cil: Provide option to allow qualified names in declarations - - - --- 2021-06-24 James Carter New
[2/4] secilc: Add support for using qualified names to secilc [1/4] libsepol/cil: Provide option to allow qualified names in declarations - - - --- 2021-06-24 James Carter New
[1/4] libsepol/cil: Provide option to allow qualified names in declarations [1/4] libsepol/cil: Provide option to allow qualified names in declarations - - - --- 2021-06-24 James Carter New
[2/2] libsepol/cil: Only reset AST if optional has a declaration [1/2] libsepol/cil: Add function to determine if a subtree has a declaration - - - --- 2021-06-24 James Carter New
[1/2] libsepol/cil: Add function to determine if a subtree has a declaration [1/2] libsepol/cil: Add function to determine if a subtree has a declaration 1 - - --- 2021-06-24 James Carter New
[RFC] userfaultfd: open userfaultfds with O_RDONLY [RFC] userfaultfd: open userfaultfds with O_RDONLY - - - --- 2021-06-24 Ondrej Mosnacek pcmoore New
[5/5,v2] libsepol/cil: Improve degenerate inheritance check Another round of secilc-fuzzer problems fixed - - - --- 2021-06-21 James Carter New
[4/5,v2] libsepol/cil: Reduce the initial symtab sizes for blocks Another round of secilc-fuzzer problems fixed 1 - - --- 2021-06-21 James Carter New
[3/5,v2] libsepol/cil: Check for empty list when marking neverallow attributes Another round of secilc-fuzzer problems fixed 1 - - --- 2021-06-21 James Carter New
[2/5,v2] libsepol/cil: Fix syntax checking of defaultrange rule Another round of secilc-fuzzer problems fixed - - - --- 2021-06-21 James Carter New
[1/5,v2] libsepol/cil: Properly check for loops in sets Another round of secilc-fuzzer problems fixed 1 - - --- 2021-06-21 James Carter New
[SELinux-notebook] computing_security_contexts.md: clarify mount options with comma [SELinux-notebook] computing_security_contexts.md: clarify mount options with comma - - - --- 2021-06-21 Dominick Grift Rejected
[v2] evm: Check xattr size discrepancy between kernel and user [v2] evm: Check xattr size discrepancy between kernel and user - - - --- 2021-06-21 Roberto Sassu Accepted
evm: Check xattr size misalignment between kernel and user evm: Check xattr size misalignment between kernel and user - - - --- 2021-06-21 Roberto Sassu Superseded
libsepol/cil: Allow duplicate optional blocks in most cases libsepol/cil: Allow duplicate optional blocks in most cases 1 - - --- 2021-06-17 James Carter New
libsepol: Quote paths when generating policy.conf from binary policy libsepol: Quote paths when generating policy.conf from binary policy 1 - - --- 2021-06-16 James Carter New
fs: Return raw xattr for security.* if there is size disagreement with LSMs fs: Return raw xattr for security.* if there is size disagreement with LSMs - - 1 --- 2021-06-16 Roberto Sassu pcmoore Changes Requested
[v3] lockdown,selinux: fix wrong subject in some SELinux lockdown checks [v3] lockdown,selinux: fix wrong subject in some SELinux lockdown checks 2 - - --- 2021-06-16 Ondrej Mosnacek pcmoore New
[3/3] secilc/test: Add test for anonymous args Fix problems with CIL's handling of anonymous call arguments - - - --- 2021-06-15 James Carter New
[2/3] libsepol/cil: Account for anonymous category sets in an expression Fix problems with CIL's handling of anonymous call arguments - - - --- 2021-06-15 James Carter New
[1/3] libsepol/cil: Fix anonymous IP address call arguments Fix problems with CIL's handling of anonymous call arguments - - - --- 2021-06-15 James Carter New
[5/5] libsepol/cil: Improve degenerate inheritance check Another round of secilc-fuzzer problems fixed - - - --- 2021-06-14 James Carter New
[4/5] libsepol/cil: Reduce the initial symtab sizes for blocks Another round of secilc-fuzzer problems fixed 1 - - --- 2021-06-14 James Carter New
[3/5] libsepol/cil: Check for empty list when marking neverallow attributes Another round of secilc-fuzzer problems fixed 1 - - --- 2021-06-14 James Carter New
[2/5] libsepol/cil: Fix syntax checking of defaultrange rule Another round of secilc-fuzzer problems fixed - - - --- 2021-06-14 James Carter New
[1/5] libsepol/cil: Properly check for loops in sets Another round of secilc-fuzzer problems fixed 1 - - --- 2021-06-14 James Carter New
libsemanage: fix use-after-free in parse_module_store() libsemanage: fix use-after-free in parse_module_store() - - - --- 2021-06-14 HuaxinLu Not Applicable
libsemanage: fix use-after-free in parse_module_store() libsemanage: fix use-after-free in parse_module_store() 1 - - --- 2021-06-14 HuaxinLu Accepted
selinux.8: document how mount flag nosuid affects SELinux selinux.8: document how mount flag nosuid affects SELinux 1 - - --- 2021-06-12 Topi Miettinen Accepted
mount.2: document SELinux use of MS_NOSUID mount flag mount.2: document SELinux use of MS_NOSUID mount flag - - - --- 2021-06-12 Topi Miettinen Accepted
selinux-notebook: describe nosuid and NNP transitions selinux-notebook: describe nosuid and NNP transitions - - - --- 2021-06-12 Topi Miettinen pcmoore Changes Requested
[-next,v2] selinux: Fix kernel-doc [-next,v2] selinux: Fix kernel-doc - - - --- 2021-06-11 Yang Li pcmoore Accepted
[v27,25/25] AppArmor: Remove the exclusive flag [v27,01/25] LSM: Infrastructure management of the sock security 2 1 - --- 2021-06-11 Casey Schaufler pcmoore New
[v27,24/25] LSM: Add /proc attr entry for full LSM context [v27,01/25] LSM: Infrastructure management of the sock security - 1 - --- 2021-06-11 Casey Schaufler pcmoore New
[v27,23/25] Audit: Add record for multiple object LSM attributes [v27,01/25] LSM: Infrastructure management of the sock security - - - --- 2021-06-11 Casey Schaufler pcmoore New
[v27,22/25] Audit: Add record for multiple process LSM attributes [v27,01/25] LSM: Infrastructure management of the sock security - - - --- 2021-06-11 Casey Schaufler pcmoore New
[v27,21/25] audit: add support for non-syscall auxiliary records [v27,01/25] LSM: Infrastructure management of the sock security - - - --- 2021-06-11 Casey Schaufler pcmoore New
[v27,20/25] LSM: Verify LSM display sanity in binder [v27,01/25] LSM: Infrastructure management of the sock security 2 2 - --- 2021-06-11 Casey Schaufler pcmoore New
[v27,19/25] NET: Store LSM netlabel data in a lsmblob [v27,01/25] LSM: Infrastructure management of the sock security 2 2 - --- 2021-06-11 Casey Schaufler pcmoore New
[v27,18/25] LSM: security_secid_to_secctx in netlink netfilter [v27,01/25] LSM: Infrastructure management of the sock security 2 2 - --- 2021-06-11 Casey Schaufler pcmoore New
[v27,17/25] LSM: Use lsmcontext in security_inode_getsecctx [v27,01/25] LSM: Infrastructure management of the sock security 3 1 - --- 2021-06-11 Casey Schaufler pcmoore New
[v27,16/25] LSM: Use lsmcontext in security_secid_to_secctx [v27,01/25] LSM: Infrastructure management of the sock security 2 1 - --- 2021-06-11 Casey Schaufler pcmoore New
[v27,15/25] LSM: Ensure the correct LSM context releaser [v27,01/25] LSM: Infrastructure management of the sock security 2 2 - --- 2021-06-11 Casey Schaufler pcmoore New
[v27,14/25] LSM: Specify which LSM to display [v27,01/25] LSM: Infrastructure management of the sock security - - - --- 2021-06-11 Casey Schaufler pcmoore New
[v27,13/25] IMA: Change internal interfaces to use lsmblobs [v27,01/25] LSM: Infrastructure management of the sock security 1 2 - --- 2021-06-11 Casey Schaufler pcmoore New
[v27,12/25] LSM: Use lsmblob in security_cred_getsecid [v27,01/25] LSM: Infrastructure management of the sock security 2 2 - --- 2021-06-11 Casey Schaufler pcmoore New
[v27,11/25] LSM: Use lsmblob in security_inode_getsecid [v27,01/25] LSM: Infrastructure management of the sock security 2 2 - --- 2021-06-11 Casey Schaufler pcmoore New
[v27,10/25] LSM: Use lsmblob in security_task_getsecid [v27,01/25] LSM: Infrastructure management of the sock security 2 2 - --- 2021-06-11 Casey Schaufler pcmoore New
[v27,09/25] LSM: Use lsmblob in security_ipc_getsecid [v27,01/25] LSM: Infrastructure management of the sock security 2 2 - --- 2021-06-11 Casey Schaufler pcmoore New
[v27,08/25] LSM: Use lsmblob in security_secid_to_secctx [v27,01/25] LSM: Infrastructure management of the sock security - - - --- 2021-06-11 Casey Schaufler pcmoore New
[v27,07/25] LSM: Use lsmblob in security_secctx_to_secid [v27,01/25] LSM: Infrastructure management of the sock security - - - --- 2021-06-11 Casey Schaufler pcmoore New
[v27,06/25] LSM: Use lsmblob in security_kernel_act_as [v27,01/25] LSM: Infrastructure management of the sock security 2 2 - --- 2021-06-11 Casey Schaufler pcmoore New
[v27,05/25] LSM: Use lsmblob in security_audit_rule_match [v27,01/25] LSM: Infrastructure management of the sock security 2 2 - --- 2021-06-11 Casey Schaufler pcmoore New
[v27,04/25] IMA: avoid label collisions with stacked LSMs [v27,01/25] LSM: Infrastructure management of the sock security - - - --- 2021-06-11 Casey Schaufler pcmoore New
[v27,03/25] LSM: provide lsm name and id slot mappings [v27,01/25] LSM: Infrastructure management of the sock security - - - --- 2021-06-11 Casey Schaufler pcmoore New
[v27,02/25] LSM: Add the lsmblob data structure. [v27,01/25] LSM: Infrastructure management of the sock security 3 - - --- 2021-06-11 Casey Schaufler pcmoore New
[v27,01/25] LSM: Infrastructure management of the sock security [v27,01/25] LSM: Infrastructure management of the sock security 2 2 - --- 2021-06-11 Casey Schaufler pcmoore New
[2/2] kill unused 'flags' argument in avc_has_perm_flags() and avc_audit() [1/2] selinux: slow_avc_audit has become non-blocking - - - --- 2021-06-10 Al Viro pcmoore Changes Requested
[1/2] selinux: slow_avc_audit has become non-blocking [1/2] selinux: slow_avc_audit has become non-blocking - - - --- 2021-06-10 Al Viro pcmoore Accepted
[-next] selinux: Fix kernel-doc [-next] selinux: Fix kernel-doc - - - --- 2021-06-10 Yang Li pcmoore Changes Requested
selinux: use __GFP_NOWARN with GFP_NOWAIT selinux: use __GFP_NOWARN with GFP_NOWAIT - - - --- 2021-06-09 Minchan Kim pcmoore Accepted
libsepol: quote paths in CIL conversion libsepol: quote paths in CIL conversion 1 - - --- 2021-06-08 Christian Göttsche Accepted
[23/23] libsepol: declare read-only arrays const libsepol: miscellaneous cleanup 1 - - --- 2021-06-08 Christian Göttsche New
[22/23] libsepol: declare file local variable static libsepol: miscellaneous cleanup 1 - - --- 2021-06-08 Christian Göttsche New
[21/23] libsepol: drop unnecessary casts libsepol: miscellaneous cleanup 1 - - --- 2021-06-08 Christian Göttsche New
[20/23] libsepol: drop repeated semicolons libsepol: miscellaneous cleanup 1 - - --- 2021-06-08 Christian Göttsche New
[19/23] libsepol/cil: avoid using maybe uninitialized variables libsepol: miscellaneous cleanup 1 - - --- 2021-06-08 Christian Göttsche New
[18/23] libsepol/cil: drop unnecessary casts libsepol: miscellaneous cleanup 1 - - --- 2021-06-08 Christian Göttsche New
[17/23] libsepol/cil: drop dead store libsepol: miscellaneous cleanup 1 - - --- 2021-06-08 Christian Göttsche New
[16/23] libsepol/cil: drop extra semicolon libsepol: miscellaneous cleanup 1 - - --- 2021-06-08 Christian Göttsche New
[15/23] libsepol/cil: silence cast warning libsepol: miscellaneous cleanup 1 - - --- 2021-06-08 Christian Göttsche New
[14/23] libsepol: remove dead stores libsepol: miscellaneous cleanup - - - --- 2021-06-08 Christian Göttsche New
[13/23] libsepol: assure string NUL-termination libsepol: miscellaneous cleanup - - - --- 2021-06-08 Christian Göttsche New
[12/23] libsepol: do not allocate memory of size 0 libsepol: miscellaneous cleanup 1 - - --- 2021-06-08 Christian Göttsche New
[11/23] libsepol: mark read-only parameters of type_set_ interfaces const libsepol: miscellaneous cleanup 1 - - --- 2021-06-08 Christian Göttsche New
[10/23] libsepol: mark read-only parameters of ebitmap interfaces const libsepol: miscellaneous cleanup 1 - - --- 2021-06-08 Christian Göttsche New
[09/23] libsepol: remove dead stores libsepol: miscellaneous cleanup - - - --- 2021-06-08 Christian Göttsche New
[08/23] libsepol/cil: follow declaration-after-statement libsepol: miscellaneous cleanup 1 - - --- 2021-06-08 Christian Göttsche New
[07/23] libsepol: follow declaration-after-statement libsepol: miscellaneous cleanup 1 - - --- 2021-06-08 Christian Göttsche New
[06/23] libsepol: avoid unsigned integer overflow libsepol: miscellaneous cleanup 1 - - --- 2021-06-08 Christian Göttsche New
[05/23] libsepol: avoid implicit conversions libsepol: miscellaneous cleanup - - - --- 2021-06-08 Christian Göttsche New
[04/23] libsepol: ignore UBSAN false-positives libsepol: miscellaneous cleanup - - - --- 2021-06-08 Christian Göttsche New
[03/23] libsepol: remove unused functions libsepol: miscellaneous cleanup 1 - - --- 2021-06-08 Christian Göttsche New
[02/23] libsepol: resolve missing prototypes libsepol: miscellaneous cleanup 1 - - --- 2021-06-08 Christian Göttsche New
[01/23] libsepol: fix typos libsepol: miscellaneous cleanup 1 - - --- 2021-06-08 Christian Göttsche New
libselinux: fix typo libselinux: fix typo 1 - - --- 2021-06-08 Christian Göttsche Accepted
selinux: remove duplicated LABEL_INITIALIZED check routine selinux: remove duplicated LABEL_INITIALIZED check routine - - - --- 2021-06-02 Austin Kim Rejected
libselinux: improve getcon(3) man page libselinux: improve getcon(3) man page 1 - - --- 2021-06-01 Christian Göttsche Accepted
[v2] checkpolicy: fix the leak memory when uses xperms [v2] checkpolicy: fix the leak memory when uses xperms - - 1 --- 2021-06-01 liwugang New
libselinux: selinux_status_open: return 1 in fallback mode libselinux: selinux_status_open: return 1 in fallback mode 1 - - --- 2021-06-01 Christian Göttsche Accepted
[2/2] audit: block PERM fields being used with io_uring filtering [1/2] audit: add filtering for io_uring records, addendum - - - --- 2021-05-31 Richard Guy Briggs Not Applicable
[1/2] audit: add filtering for io_uring records, addendum [1/2] audit: add filtering for io_uring records, addendum - - - --- 2021-05-31 Richard Guy Briggs Not Applicable
[RFC,9/9] Smack: Brutalist io_uring support with debug Add LSM access controls and auditing to io_uring - - - --- 2021-05-21 Paul Moore pcmoore New
[RFC,8/9] selinux: add support for the io_uring access controls Add LSM access controls and auditing to io_uring - - - --- 2021-05-21 Paul Moore pcmoore New
[RFC,7/9] lsm,io_uring: add LSM hooks to io_uring Add LSM access controls and auditing to io_uring - - - --- 2021-05-21 Paul Moore pcmoore New
[RFC,6/9] io_uring: convert io_uring to the secure anon inode interface Add LSM access controls and auditing to io_uring - - - --- 2021-05-21 Paul Moore pcmoore New
« 1 2 3 461 62 »