Show patches with: Archived = No       |   8772 patches
« 1 2 ... 3 4 587 88 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
[UTIL-LINUX] sulogin: relabel terminal according to SELinux policy [UTIL-LINUX] sulogin: relabel terminal according to SELinux policy - 1 - --- 2023-12-13 Christian Göttsche Handled Elsewhere
[v2] libsepol: Use a dynamic buffer in sepol_av_to_string() [v2] libsepol: Use a dynamic buffer in sepol_av_to_string() - - - --- 2023-12-12 James Carter bachradsusi Accepted
[v5,4/4] vduse: Add LSM hook to check Virtio device type vduse: add support for networking devices - - - --- 2023-12-12 Maxime Coquelin pcmoore Handled Elsewhere
[v5,3/4] vduse: enable Virtio-net device type vduse: add support for networking devices 1 1 - --- 2023-12-12 Maxime Coquelin pcmoore Handled Elsewhere
[v5,2/4] vduse: Temporarily disable control queue features vduse: add support for networking devices - - - --- 2023-12-12 Maxime Coquelin pcmoore Handled Elsewhere
[v5,1/4] vduse: validate block features only with block devices vduse: add support for networking devices 1 1 - --- 2023-12-12 Maxime Coquelin pcmoore Handled Elsewhere
libsepol: Use a dynamic buffer in sepol_av_to_string() libsepol: Use a dynamic buffer in sepol_av_to_string() - - - --- 2023-12-11 James Carter bachradsusi Superseded
[3/3] libselinux: state setexecfilecon(3) sets errno on failure [1/3] libselinux: update const qualifier of parameters in man pages - - - --- 2023-12-11 Christian Göttsche Accepted
[2/3] libselinux: always set errno on context translation failure [1/3] libselinux: update const qualifier of parameters in man pages - - - --- 2023-12-11 Christian Göttsche Accepted
[1/3] libselinux: update const qualifier of parameters in man pages [1/3] libselinux: update const qualifier of parameters in man pages 1 - - --- 2023-12-11 Christian Göttsche Accepted
libsepol: validate empty common classes in scope indices libsepol: validate empty common classes in scope indices 1 - - --- 2023-12-11 Christian Göttsche Accepted
[RFC] libsepol: handle long permission names in sepol_av_to_string() [RFC] libsepol: handle long permission names in sepol_av_to_string() - - - --- 2023-12-11 Christian Göttsche bachradsusi New
[3/3] libsepol: extended permission formatting cleanup [1/3] libsepol: constify tokenized input - - - --- 2023-12-11 Christian Göttsche Accepted
[2/3] libsepol: avoid integer overflow in add_i_to_a() [1/3] libsepol: constify tokenized input - - - --- 2023-12-11 Christian Göttsche Accepted
[1/3] libsepol: constify tokenized input [1/3] libsepol: constify tokenized input 1 - - --- 2023-12-11 Christian Göttsche Accepted
libsepol: validate common classes in scope indices libsepol: validate common classes in scope indices - - - --- 2023-12-08 Christian Göttsche bachradsusi New
[v2] checkpolicy/dispol: misc updates [v2] checkpolicy/dispol: misc updates 1 - - --- 2023-12-07 Christian Göttsche bachradsusi Accepted
[RFC] libsepol: validate permission identifier length [RFC] libsepol: validate permission identifier length - - - --- 2023-12-07 Christian Göttsche bachradsusi New
mm: fix VMA heap bounds checking mm: fix VMA heap bounds checking - - - --- 2023-12-07 Kefeng Wang pcmoore Handled Elsewhere
[v2] selinux: remove the wrong comment about multithreaded process handling [v2] selinux: remove the wrong comment about multithreaded process handling - - - --- 2023-12-07 Munehisa Kamata pcmoore Accepted
python: Harden more tools agains "rogue" modules python: Harden more tools agains "rogue" modules 1 - - --- 2023-12-06 Vit Mojzis bachradsusi Accepted
[11/11] hlist-bl: introduced nested locking for dm-snap vfs: inode cache scalability improvements - - - --- 2023-12-06 Dave Chinner pcmoore Handled Elsewhere
[10/11] list_bl: don't use bit locks for PREEMPT_RT or lockdep vfs: inode cache scalability improvements - 1 - --- 2023-12-06 Dave Chinner pcmoore Handled Elsewhere
[09/11] hash-bl: explicitly initialise hash-bl heads vfs: inode cache scalability improvements - - - --- 2023-12-06 Dave Chinner pcmoore Handled Elsewhere
[08/11] vfs: inode cache conversion to hash-bl vfs: inode cache scalability improvements - 1 - --- 2023-12-06 Dave Chinner pcmoore Handled Elsewhere
[07/11] hlist-bl: add hlist_bl_fake() vfs: inode cache scalability improvements - - - --- 2023-12-06 Dave Chinner pcmoore Handled Elsewhere
[06/11] vfs: factor out inode hash head calculation vfs: inode cache scalability improvements 1 - - --- 2023-12-06 Dave Chinner pcmoore Handled Elsewhere
[05/11] selinux: use dlist for isec inode list vfs: inode cache scalability improvements 1 - - --- 2023-12-06 Dave Chinner pcmoore Handled Elsewhere
[04/11] lib/dlock-list: Make sibling CPUs share the same linked list vfs: inode cache scalability improvements - 2 - --- 2023-12-06 Dave Chinner pcmoore Handled Elsewhere
[03/11] vfs: Use dlock list for superblock's inode list vfs: inode cache scalability improvements - - - --- 2023-12-06 Dave Chinner pcmoore Handled Elsewhere
[02/11] vfs: Remove unnecessary list_for_each_entry_safe() variants vfs: inode cache scalability improvements 1 1 - --- 2023-12-06 Dave Chinner pcmoore Handled Elsewhere
[01/11] lib/dlock-list: Distributed and lock-protected lists vfs: inode cache scalability improvements - 1 - --- 2023-12-06 Dave Chinner pcmoore Handled Elsewhere
[v6] checkpolicy,libsepol: add prefix/suffix matching to filename type transitions [v6] checkpolicy,libsepol: add prefix/suffix matching to filename type transitions 1 1 - --- 2023-12-05 Juraj Marcin bachradsusi New
[userspace] Add CPPFLAGS to Makefiles [userspace] Add CPPFLAGS to Makefiles 1 - - --- 2023-12-04 Cameron Williams bachradsusi Accepted
[2/2] Revert "libsepol: rename struct member" [1/2] Revert "libsepol/tests: rename bool indentifiers" - - - --- 2023-12-04 Petr Lautrbach bachradsusi Rejected
[1/2] Revert "libsepol/tests: rename bool indentifiers" [1/2] Revert "libsepol/tests: rename bool indentifiers" - - - --- 2023-12-04 Petr Lautrbach bachradsusi Rejected
libsemanage: fix src/genhomedircon.c build on `gcc-14` (`-Werror=alloc-size`) libsemanage: fix src/genhomedircon.c build on `gcc-14` (`-Werror=alloc-size`) 1 - - --- 2023-12-04 Sergei Trofimovich bachradsusi Accepted
[v2,3/3] io_uring/cmd: inline io_uring_cmd_get_task clean up io_uring cmd header structure - 1 - --- 2023-12-01 Pavel Begunkov pcmoore Handled Elsewhere
[v2,2/3] io_uring/cmd: inline io_uring_cmd_do_in_task_lazy clean up io_uring cmd header structure - 1 - --- 2023-12-01 Pavel Begunkov pcmoore Handled Elsewhere
[v2,1/3] io_uring: split out cmd api into a separate header clean up io_uring cmd header structure - 1 - --- 2023-12-01 Pavel Begunkov pcmoore Handled Elsewhere
[v7,23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache Untitled series #805803 - - - --- 2023-11-30 Roberto Sassu pcmoore Handled Elsewhere
[v7,22/23] integrity: Remove 'integrity' LSM and move integrity functions to 'ima' LSM Untitled series #805803 - - - --- 2023-11-30 Roberto Sassu pcmoore Handled Elsewhere
[v7,21/23] evm: Move to LSM infrastructure Untitled series #805803 - - - --- 2023-11-30 Roberto Sassu pcmoore Handled Elsewhere
[v7,20/23] ima: Move IMA-Appraisal to LSM infrastructure Untitled series #805803 - 2 - --- 2023-11-30 Roberto Sassu pcmoore Handled Elsewhere
[v7,19/23] ima: Move to LSM infrastructure Untitled series #805803 1 - - --- 2023-11-30 Roberto Sassu pcmoore Handled Elsewhere
selinux: bring the comment about multithreaded process handling back selinux: bring the comment about multithreaded process handling back - - - --- 2023-11-30 Munehisa Kamata pcmoore Changes Requested
libsepol/cil: Clear AST node after destroying bad filecon rule libsepol/cil: Clear AST node after destroying bad filecon rule - - - --- 2023-11-29 James Carter bachradsusi Accepted
[7/7] libsepol: reject linking modules with no avrules [1/7] libsepol: validate conditional type rules have a simple default type - - - --- 2023-11-28 Christian Göttsche bachradsusi Accepted
[6/7] libsepol/fuzz: handle empty and non kernel policies [1/7] libsepol: validate conditional type rules have a simple default type - - - --- 2023-11-28 Christian Göttsche bachradsusi Accepted
[5/7] libsepol: reject invalid class datums [1/7] libsepol: validate conditional type rules have a simple default type - - - --- 2023-11-28 Christian Göttsche bachradsusi Accepted
[4/7] checkpolicy/dispol: misc updates [1/7] libsepol: validate conditional type rules have a simple default type - - - --- 2023-11-28 Christian Göttsche bachradsusi Accepted
[3/7] checkpolicy/dismod: avoid duplicate initialization and fix module linking [1/7] libsepol: validate conditional type rules have a simple default type - - - --- 2023-11-28 Christian Göttsche bachradsusi Accepted
[2/7] libsepol: use correct type to avoid truncations [1/7] libsepol: validate conditional type rules have a simple default type - - - --- 2023-11-28 Christian Göttsche bachradsusi Accepted
[1/7] libsepol: validate conditional type rules have a simple default type [1/7] libsepol: validate conditional type rules have a simple default type 1 - - --- 2023-11-28 Christian Göttsche bachradsusi Accepted
libsepol: simplify string formatting libsepol: simplify string formatting 1 - - --- 2023-11-28 Christian Göttsche bachradsusi Accepted
[testsuite] defconfig: add NF_TABLES dependency for netlink_socket tests to pass [testsuite] defconfig: add NF_TABLES dependency for netlink_socket tests to pass - 1 - --- 2023-11-27 Alan Wandke omos Accepted
[v5] checkpolicy,libsepol: add prefix/suffix matching to filename type transitions [v5] checkpolicy,libsepol: add prefix/suffix matching to filename type transitions - 1 - --- 2023-11-24 Juraj Marcin bachradsusi Superseded
[v2] sepolicy: port to dnf4 python API [v2] sepolicy: port to dnf4 python API 1 - - --- 2023-11-22 Petr Lautrbach bachradsusi Accepted
[v4] checkpolicy,libsepol: add prefix/suffix matching to filename type transitions [v4] checkpolicy,libsepol: add prefix/suffix matching to filename type transitions - 1 - --- 2023-11-21 Juraj Marcin bachradsusi New
[v4] selinux: add prefix/suffix matching to filename type transitions [v4] selinux: add prefix/suffix matching to filename type transitions - 2 - --- 2023-11-21 Juraj Marcin pcmoore Changes Requested
[v6,25/25] security: Enforce ordering of 'ima' and 'evm' LSMs security: Move IMA and EVM to the LSM infrastructure - - - --- 2023-11-20 Roberto Sassu pcmoore Handled Elsewhere
[v6,24/25] integrity: Remove LSM security: Move IMA and EVM to the LSM infrastructure - - - --- 2023-11-20 Roberto Sassu pcmoore Handled Elsewhere
[v6,23/25] evm: Remove dependency on 'integrity' LSM security: Move IMA and EVM to the LSM infrastructure - - - --- 2023-11-20 Roberto Sassu pcmoore Handled Elsewhere
[v6,22/25] ima: Remove dependency on 'integrity' LSM security: Move IMA and EVM to the LSM infrastructure - - - --- 2023-11-20 Roberto Sassu pcmoore Handled Elsewhere
[v6,21/25] evm: Move to LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - - - --- 2023-11-20 Roberto Sassu pcmoore Handled Elsewhere
[v6,20/25] ima: Move IMA-Appraisal to LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - - - --- 2023-11-20 Roberto Sassu pcmoore Handled Elsewhere
[v6,19/25] ima: Move to LSM infrastructure security: Move IMA and EVM to the LSM infrastructure 1 - - --- 2023-11-20 Roberto Sassu pcmoore Handled Elsewhere
[v6,18/25] security: Introduce key_post_create_or_update hook security: Move IMA and EVM to the LSM infrastructure 1 2 - --- 2023-11-20 Roberto Sassu pcmoore Handled Elsewhere
[v6,17/25] security: Introduce inode_post_remove_acl hook security: Move IMA and EVM to the LSM infrastructure 1 2 - --- 2023-11-20 Roberto Sassu pcmoore Handled Elsewhere
[v6,16/25] security: Introduce inode_post_set_acl hook security: Move IMA and EVM to the LSM infrastructure 1 2 - --- 2023-11-20 Roberto Sassu pcmoore Handled Elsewhere
[v6,15/25] security: Introduce inode_post_create_tmpfile hook security: Move IMA and EVM to the LSM infrastructure 1 1 - --- 2023-11-20 Roberto Sassu pcmoore Handled Elsewhere
[v6,14/25] security: Introduce path_post_mknod hook security: Move IMA and EVM to the LSM infrastructure 1 - - --- 2023-11-20 Roberto Sassu pcmoore Handled Elsewhere
[v6,13/25] security: Introduce file_release hook security: Move IMA and EVM to the LSM infrastructure - - - --- 2023-11-20 Roberto Sassu pcmoore Handled Elsewhere
[v6,12/25] security: Introduce file_post_open hook security: Move IMA and EVM to the LSM infrastructure 1 2 - --- 2023-11-20 Roberto Sassu pcmoore Handled Elsewhere
[v6,11/25] security: Introduce inode_post_removexattr hook security: Move IMA and EVM to the LSM infrastructure - 2 - --- 2023-11-20 Roberto Sassu pcmoore Handled Elsewhere
[v6,10/25] security: Introduce inode_post_setattr hook security: Move IMA and EVM to the LSM infrastructure 1 2 - --- 2023-11-20 Roberto Sassu pcmoore Handled Elsewhere
[v6,09/25] security: Align inode_setattr hook definition with EVM security: Move IMA and EVM to the LSM infrastructure 1 2 - --- 2023-11-20 Roberto Sassu pcmoore Handled Elsewhere
[v6,08/25] evm: Align evm_inode_post_setxattr() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 3 - --- 2023-11-20 Roberto Sassu pcmoore Handled Elsewhere
[v6,07/25] evm: Align evm_inode_setxattr() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 3 - --- 2023-11-20 Roberto Sassu pcmoore Handled Elsewhere
[v6,06/25] evm: Align evm_inode_post_setattr() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 3 - --- 2023-11-20 Roberto Sassu pcmoore Handled Elsewhere
[v6,05/25] ima: Align ima_post_read_file() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 3 - --- 2023-11-20 Roberto Sassu pcmoore Handled Elsewhere
[v6,04/25] ima: Align ima_inode_removexattr() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 3 - --- 2023-11-20 Roberto Sassu pcmoore Handled Elsewhere
[v6,03/25] ima: Align ima_inode_setxattr() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 3 - --- 2023-11-20 Roberto Sassu pcmoore Handled Elsewhere
[v6,02/25] ima: Align ima_file_mprotect() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 3 - --- 2023-11-20 Roberto Sassu pcmoore Handled Elsewhere
[v6,01/25] ima: Align ima_inode_post_setattr() definition with LSM infrastructure security: Move IMA and EVM to the LSM infrastructure - 3 - --- 2023-11-20 Roberto Sassu pcmoore Handled Elsewhere
sepolicy: port to dnf4 python API sepolicy: port to dnf4 python API 1 - - --- 2023-11-20 Petr Lautrbach bachradsusi Superseded
[v2,2/2] libsepol: avoid fixed sized format buffer for xperms [v2,1/2] libsepol: avoid fixed sized format buffer for xperms 1 - - --- 2023-11-20 Christian Göttsche bachradsusi Accepted
[v2,1/2] libsepol: avoid fixed sized format buffer for xperms [v2,1/2] libsepol: avoid fixed sized format buffer for xperms - - - --- 2023-11-20 Christian Göttsche bachradsusi Accepted
[2/2] libsepol: avoid fixed sized format buffer for xperms [1/2] libsepol: avoid fixed sized format buffer for xperms - - - --- 2023-11-20 Christian Göttsche bachradsusi Accepted
[1/2] libsepol: avoid fixed sized format buffer for xperms [1/2] libsepol: avoid fixed sized format buffer for xperms - - - --- 2023-11-20 Christian Göttsche bachradsusi Accepted
[v2] libsepol: add check for category value before printing [v2] libsepol: add check for category value before printing 1 - - --- 2023-11-15 l00564439 bachradsusi Accepted
MAINTAINERS: update the SELinux entry MAINTAINERS: update the SELinux entry - - - --- 2023-11-15 Paul Moore pcmoore Accepted
[v3] selinux: introduce an initial SID for early boot processes [v3] selinux: introduce an initial SID for early boot processes - 1 1 --- 2023-11-14 Ondrej Mosnacek pcmoore Accepted
[RFC] selinux: assorted hash table improvements [RFC] selinux: assorted hash table improvements - - - --- 2023-11-14 Paul Moore pcmoore New
[v1] libsepol: add check for category value before printing [v1] libsepol: add check for category value before printing - - - --- 2023-11-13 l00564439 bachradsusi Accepted
libsepol: add check for category value before printing libsepol: add check for category value before printing - - - --- 2023-11-13 l00564439 bachradsusi Superseded
libsepol: validate common classes have at least one permissions libsepol: validate common classes have at least one permissions 1 - - --- 2023-11-13 Christian Göttsche bachradsusi Accepted
selinux: update filenametr_hash() to use full_name_hash() selinux: update filenametr_hash() to use full_name_hash() - - - --- 2023-11-11 Paul Moore pcmoore Accepted
github: bump action dependencies github: bump action dependencies 1 - - --- 2023-11-09 Christian Göttsche bachradsusi Accepted
libsepol: update policy capabilities array libsepol: update policy capabilities array 1 - - --- 2023-11-09 Christian Göttsche bachradsusi Accepted
« 1 2 ... 3 4 587 88 »