Security Enhanced Linux (SELINUX)

Date Index

[Prev Page][Next Page]

Re: [PATCH] Makefile: always include and link with DESTDIR, (continued)
- Re: [PATCH] Makefile: always include and link with DESTDIR, Nicolas Iooss
  - Re: [PATCH] Makefile: always include and link with DESTDIR, Christian Göttsche
[PATCH] python/audit2allow: close file stream on error, Christian Göttsche
- Re: [PATCH] python/audit2allow: close file stream on error, James Carter
  - Re: [PATCH] python/audit2allow: close file stream on error, James Carter
ANN: SELinux userspace 3.4 release, Petr Lautrbach
[GIT PULL] SELinux fixes for v5.18 (#1), Paul Moore
- Re: [GIT PULL] SELinux fixes for v5.18 (#1), pr-tracker-bot
[ANNOUNCE][CFP] Linux Security Summit Europe 2022, Reshetova, Elena
[PATCH] selinux: add __randomize_layout to selinux_audit_data, GONG, Ruiqi
- Re: [PATCH] selinux: add __randomize_layout to selinux_audit_data, Paul Moore
  - Re: [PATCH] selinux: add __randomize_layout to selinux_audit_data, Gong Ruiqi
    - Re: [PATCH] selinux: add __randomize_layout to selinux_audit_data, Paul Moore
      - Re: [PATCH] selinux: add __randomize_layout to selinux_audit_data, Paul Moore
[PATCH 1/2] libselinux: restorecon: add fallback for pre 3.6 Linux, Christian Göttsche
- [PATCH 2/2] libselinux: restorecon: avoid printing NULL pointer, Christian Göttsche
  - Re: [PATCH 2/2] libselinux: restorecon: avoid printing NULL pointer, James Carter
    - Re: [PATCH 2/2] libselinux: restorecon: avoid printing NULL pointer, Christian Göttsche
  - [PATCH v2] libselinux: restorecon: avoid printing NULL pointer, Christian Göttsche
    - Re: [PATCH v2] libselinux: restorecon: avoid printing NULL pointer, Nicolas Iooss
      - Re: [PATCH v2] libselinux: restorecon: avoid printing NULL pointer, James Carter
        
        Re: [PATCH v2] libselinux: restorecon: avoid printing NULL pointer, Nicolas Iooss
- Re: [PATCH 1/2] libselinux: restorecon: add fallback for pre 3.6 Linux, James Carter
[PATCH] ci: declare git repository a safe directory, Christian Göttsche
- Re: [PATCH] ci: declare git repository a safe directory, Petr Lautrbach
  - Re: [PATCH] ci: declare git repository a safe directory, Petr Lautrbach
[PATCH] selinux: fix bad cleanup on error in hashtab_duplicate(), Ondrej Mosnacek
- Re: [PATCH] selinux: fix bad cleanup on error in hashtab_duplicate(), Paul Moore
[PATCH userspace v4 0/2] Support the 'self' keyword in type transitions, Ondrej Mosnacek
- [PATCH userspace v4 1/2] libsepol/cil: add support for self keyword in type transitions, Ondrej Mosnacek
- [PATCH userspace v4 2/2] libsepol,checkpolicy: add support for self keyword in type transitions, Ondrej Mosnacek
- Re: [PATCH userspace v4 0/2] Support the 'self' keyword in type transitions, James Carter
  - Re: [PATCH userspace v4 0/2] Support the 'self' keyword in type transitions, James Carter
[PATCH] libselinux: preserve errno in selinux_log(), Christian Göttsche
- Re: [PATCH] libselinux: preserve errno in selinux_log(), James Carter
  - Re: [PATCH] libselinux: preserve errno in selinux_log(), James Carter
[RFC PATCH 1/4] libselinux: simplify policy path logic to avoid uninitialized read, Christian Göttsche
- [RFC PATCH 2/4] libselinux: add header guard for internal header, Christian Göttsche
- [RFC PATCH 3/4] libselinux: introduce strlcpy, Christian Göttsche
- [RFC PATCH 4/4] libselinux: check for truncations, Christian Göttsche
  - Re: [RFC PATCH 4/4] libselinux: check for truncations, James Carter
  - [RFC PATCH v2 4/4] libselinux: check for truncations, Christian Göttsche
    - [PATCH v3 4/4] libselinux: check for truncations, Christian Göttsche
  - [PATCH v4 4/4] libselinux: check for truncations, Christian Göttsche
- Re: [RFC PATCH 1/4] libselinux: simplify policy path logic to avoid uninitialized read, James Carter
  - Re: [RFC PATCH 1/4] libselinux: simplify policy path logic to avoid uninitialized read, James Carter
[PATCH] libselinux: free memory in error branch, Christian Göttsche
- Re: [PATCH] libselinux: free memory in error branch, James Carter
  - Re: [PATCH] libselinux: free memory in error branch, James Carter
[PATCH userspace v3 0/2] Support the 'self' keyword in type transitions, Ondrej Mosnacek
- [PATCH userspace v3 1/2] libsepol/cil: add support for self keyword in type transitions, Ondrej Mosnacek
- [PATCH userspace v3 2/2] libsepol,checkpolicy: add support for self keyword in type transitions, Ondrej Mosnacek
  - Re: [PATCH userspace v3 2/2] libsepol,checkpolicy: add support for self keyword in type transitions, James Carter
    - Re: [PATCH userspace v3 2/2] libsepol,checkpolicy: add support for self keyword in type transitions, Ondrej Mosnacek
[PATCH] gettext: set _ on module level instead of builtins namespace, Vit Mojzis
- Re: [PATCH] gettext: set _ on module level instead of builtins namespace, James Carter
  - Re: [PATCH] gettext: set _ on module level instead of builtins namespace, James Carter
[PATCH] libselinux/utils: print errno on failure, Christian Göttsche
- Re: [PATCH] libselinux/utils: print errno on failure, James Carter
  - Re: [PATCH] libselinux/utils: print errno on failure, Christian Göttsche
- Re: [PATCH] libselinux/utils: print errno on failure, James Carter
  - Re: [PATCH] libselinux/utils: print errno on failure, James Carter
[PATCH] libselinux: update man page of setfilecon(3) family about context parameter, Christian Göttsche
- Re: [PATCH] libselinux: update man page of setfilecon(3) family about context parameter, Petr Lautrbach
  - Re: [PATCH] libselinux: update man page of setfilecon(3) family about context parameter, Petr Lautrbach
[RFC PATCH] libselinux: emulate O_PATH support in fgetfilecon/fsetfilecon, Christian Göttsche
- [RFC PATCH 2/4] libselinux: restorecon: misc tweaks, Christian Göttsche
  - [RFC PATCH 3/4] libselinux: restorecon: forward error if not ENOENT, Christian Göttsche
    - Re: [RFC PATCH 3/4] libselinux: restorecon: forward error if not ENOENT, James Carter
      - Re: [RFC PATCH 3/4] libselinux: restorecon: forward error if not ENOENT, James Carter
  - [RFC PATCH 4/4] libselinux: restorecon: pin file to avoid TOCTOU issues, Christian Göttsche
    - Re: [RFC PATCH 4/4] libselinux: restorecon: pin file to avoid TOCTOU issues, James Carter
      - Re: [RFC PATCH 4/4] libselinux: restorecon: pin file to avoid TOCTOU issues, James Carter
        
        Re: [RFC PATCH 4/4] libselinux: restorecon: pin file to avoid TOCTOU issues, Christian Göttsche
        
        Re: [RFC PATCH 4/4] libselinux: restorecon: pin file to avoid TOCTOU issues, James Carter
  - Re: [RFC PATCH 2/4] libselinux: restorecon: misc tweaks, James Carter
    - Re: [RFC PATCH 2/4] libselinux: restorecon: misc tweaks, James Carter
- Re: [RFC PATCH] libselinux: emulate O_PATH support in fgetfilecon/fsetfilecon, James Carter
  - Re: [RFC PATCH] libselinux: emulate O_PATH support in fgetfilecon/fsetfilecon, James Carter
ANN: SELinux userspace 3.4-rc3 release candidate, Petr Lautrbach
- Re: ANN: SELinux userspace 3.4-rc3 release candidate, Christian Göttsche
[PATCH 00/32] Introduce flexible array struct memcpy() helpers, Kees Cook
- [PATCH 01/32] netlink: Avoid memcpy() across flexible array boundary, Kees Cook
  - Re: [PATCH 01/32] netlink: Avoid memcpy() across flexible array boundary, Gustavo A. R. Silva
    - Re: [PATCH 01/32] netlink: Avoid memcpy() across flexible array boundary, Kees Cook
- [PATCH 02/32] Introduce flexible array struct memcpy() helpers, Kees Cook
  - Re: [PATCH 02/32] Introduce flexible array struct memcpy() helpers, Johannes Berg
    - Re: [PATCH 02/32] Introduce flexible array struct memcpy() helpers, Kees Cook
      - RE: [PATCH 02/32] Introduce flexible array struct memcpy() helpers, David Laight
      - Re: [PATCH 02/32] Introduce flexible array struct memcpy() helpers, Johannes Berg
        
        Re: [PATCH 02/32] Introduce flexible array struct memcpy() helpers, Keith Packard
        
        Re: [PATCH 02/32] Introduce flexible array struct memcpy() helpers, Kees Cook
        
        Re: [PATCH 02/32] Introduce flexible array struct memcpy() helpers, Keith Packard
        
        Re: [PATCH 02/32] Introduce flexible array struct memcpy() helpers, Johannes Berg
        
        RE: [PATCH 02/32] Introduce flexible array struct memcpy() helpers, David Laight
        
        Re: [PATCH 02/32] Introduce flexible array struct memcpy() helpers, Kees Cook
- [PATCH 07/32] iwlwifi: calib: Use mem_to_flex_dup() with struct iwl_calib_result, Kees Cook
- [PATCH 05/32] brcmfmac: Use mem_to_flex_dup() with struct brcmf_fweh_queue_item, Kees Cook
- [PATCH 23/32] Bluetooth: Use mem_to_flex_dup() with struct hci_op_configure_data_path, Kees Cook
- [PATCH 12/32] cfg80211: Use mem_to_flex_dup() with struct cfg80211_bss_ies, Kees Cook
  - Re: [PATCH 12/32] cfg80211: Use mem_to_flex_dup() with struct cfg80211_bss_ies, Johannes Berg
    - Re: [PATCH 12/32] cfg80211: Use mem_to_flex_dup() with struct cfg80211_bss_ies, Kees Cook
- [PATCH 06/32] iwlwifi: calib: Prepare to use mem_to_flex_dup(), Kees Cook
- [PATCH 11/32] nl80211: Use mem_to_flex_dup() with struct cfg80211_cqm_config, Kees Cook
- [PATCH 08/32] iwlwifi: mvm: Use mem_to_flex_dup() with struct ieee80211_key_conf, Kees Cook
- [PATCH 10/32] wcn36xx: Use mem_to_flex_dup() with struct wcn36xx_hal_ind_msg, Kees Cook
  - Re: [PATCH 10/32] wcn36xx: Use mem_to_flex_dup() with struct wcn36xx_hal_ind_msg, Kalle Valo
    - Re: [PATCH 10/32] wcn36xx: Use mem_to_flex_dup() with struct wcn36xx_hal_ind_msg, Kees Cook
- [PATCH 26/32] ima: Use mem_to_flex_dup() with struct modsig, Kees Cook
- [PATCH 04/32] fortify: Add run-time WARN for cross-field memcpy(), Kees Cook
- [PATCH 03/32] flex_array: Add Kunit tests, Kees Cook
  - Re: [PATCH 03/32] flex_array: Add Kunit tests, David Gow
    - Re: [PATCH 03/32] flex_array: Add Kunit tests, Kees Cook
  - Re: [PATCH 03/32] flex_array: Add Kunit tests, Daniel Latypov
- [PATCH 16/32] 802/mrp: Use mem_to_flex_dup() with struct mrp_attr, Kees Cook
- [PATCH 14/32] af_unix: Use mem_to_flex_dup() with struct unix_address, Kees Cook
- [PATCH 21/32] soc: qcom: apr: Use mem_to_flex_dup() with struct apr_rx_buf, Kees Cook
- [PATCH 19/32] afs: Use mem_to_flex_dup() with struct afs_acl, Kees Cook
- [PATCH 25/32] Drivers: hv: utils: Use mem_to_flex_dup() with struct cn_msg, Kees Cook
- [PATCH 29/32] xtensa: Use mem_to_flex_dup() with struct property, Kees Cook
  - Re: [PATCH 29/32] xtensa: Use mem_to_flex_dup() with struct property, Rob Herring
- [PATCH 15/32] 802/garp: Use mem_to_flex_dup() with struct garp_attr, Kees Cook
- [PATCH 18/32] firewire: Use __mem_to_flex_dup() with struct iso_interrupt_event, Kees Cook
- [PATCH 20/32] ASoC: sigmadsp: Use mem_to_flex_dup() with struct sigmadsp_data, Kees Cook
  - Re: [PATCH 20/32] ASoC: sigmadsp: Use mem_to_flex_dup() with struct sigmadsp_data, Mark Brown
- [PATCH 17/32] net/flow_offload: Use mem_to_flex_dup() with struct flow_action_cookie, Kees Cook
- [PATCH 13/32] mac80211: Use mem_to_flex_dup() with several structs, Kees Cook
- [PATCH 09/32] p54: Use mem_to_flex_dup() with struct p54_cal_database, Kees Cook
- [PATCH 22/32] atags_proc: Use mem_to_flex_dup() with struct buffer, Kees Cook
- [PATCH 27/32] KEYS: Use mem_to_flex_dup() with struct user_key_payload, Kees Cook
- [PATCH 24/32] IB/hfi1: Use mem_to_flex_dup() for struct tid_rb_node, Kees Cook
- [PATCH 28/32] selinux: Use mem_to_flex_dup() with xfrm and sidtab, Kees Cook
  - Re: [PATCH 28/32] selinux: Use mem_to_flex_dup() with xfrm and sidtab, Paul Moore
    - Re: [PATCH 28/32] selinux: Use mem_to_flex_dup() with xfrm and sidtab, Gustavo A. R. Silva
      - Re: [PATCH 28/32] selinux: Use mem_to_flex_dup() with xfrm and sidtab, Paul Moore
        
        Re: [PATCH 28/32] selinux: Use mem_to_flex_dup() with xfrm and sidtab, Kees Cook
        
        Re: [PATCH 28/32] selinux: Use mem_to_flex_dup() with xfrm and sidtab, Paul Moore
        
        Re: [PATCH 28/32] selinux: Use mem_to_flex_dup() with xfrm and sidtab, Gustavo A. R. Silva
- [PATCH 31/32] xenbus: Use mem_to_flex_dup() with struct read_buffer, Kees Cook
- [PATCH 32/32] esas2r: Use __mem_to_flex() with struct atto_ioctl, Kees Cook
- [PATCH 30/32] usb: gadget: f_fs: Use mem_to_flex_dup() with struct ffs_buffer, Kees Cook
- Re: [PATCH 19/32] afs: Use mem_to_flex_dup() with struct afs_acl, David Howells
  - Re: [PATCH 19/32] afs: Use mem_to_flex_dup() with struct afs_acl, Kees Cook
- Re: [PATCH 00/32] Introduce flexible array struct memcpy() helpers, David Howells
[PATCH] fsnotify: add generic perm check for unlink/rmdir, Guowei Du
- Re: [PATCH] fsnotify: add generic perm check for unlink/rmdir, Jan Kara
  - Re: [PATCH] fsnotify: add generic perm check for unlink/rmdir, Amir Goldstein
    - Re: [PATCH] fsnotify: add generic perm check for unlink/rmdir, Jan Kara
  - Message not available
    - Re: [PATCH] fsnotify: add generic perm check for unlink/rmdir, Jan Kara
- Re: [PATCH] fsnotify: add generic perm check for unlink/rmdir, kernel test robot
- Re: [PATCH] fsnotify: add generic perm check for unlink/rmdir, kernel test robot
- Re: [PATCH] fsnotify: add generic perm check for unlink/rmdir, kernel test robot
- Re: [PATCH] fsnotify: add generic perm check for unlink/rmdir, Paul Moore
[PATCH] gui: Make sure sepolicy calls are translated properly, Vit Mojzis
- Re: [PATCH] gui: Make sure sepolicy calls are translated properly, Vit Mojzis
[PATCH v2 0/5] selinux_restorecon(3), setfiles(8): skip relabeling errors, Laszlo Ersek
- [PATCH v2 2/5] setfiles: remove useless assignment and comment (after RHBZ#1926386), Laszlo Ersek
- [PATCH v2 1/5] setfiles: fix up inconsistent indentation, Laszlo Ersek
- [PATCH v2 4/5] selinux_restorecon: introduce SELINUX_RESTORECON_COUNT_ERRORS, Laszlo Ersek
- [PATCH v2 3/5] setfiles: remove useless "iamrestorecon" checks in option parsing, Laszlo Ersek
- [PATCH v2 5/5] setfiles: introduce the -C option for distinguishing file tree walk errors, Laszlo Ersek
- Re: [PATCH v2 0/5] selinux_restorecon(3), setfiles(8): skip relabeling errors, Petr Lautrbach
  - Re: [PATCH v2 0/5] selinux_restorecon(3), setfiles(8): skip relabeling errors, Laszlo Ersek
- <Possible follow-ups>
- Re: [PATCH v2 0/5] selinux_restorecon(3), setfiles(8): skip relabeling errors, Petr Lautrbach
[PATCH] selinux: include necessary headers in headers, Christian Göttsche
- Re: [PATCH] selinux: include necessary headers in headers, Paul Moore
[PATCH] selinux: avoid extra semicolon, Christian Göttsche
- Re: [PATCH] selinux: avoid extra semicolon, Paul Moore
[PATCH] selinux: fix indentation level of mls_ops block, Christian Göttsche
- Re: [PATCH] selinux: fix indentation level of mls_ops block, Paul Moore
[PATCH] selinux: update parameter documentation, Christian Göttsche
- Re: [PATCH] selinux: update parameter documentation, Paul Moore
[PATCH] selinux: use unsigned char for boolean values, Christian Göttsche
- Re: [PATCH] selinux: use unsigned char for boolean values, Paul Moore
[PATCH] selinux: resolve checkpatch errors, Christian Göttsche
- Re: [PATCH] selinux: resolve checkpatch errors, Paul Moore
[PATCH v4] firmware_loader: use kernel credentials when reading firmware, Thiébaud Weksteen
- Re: [PATCH v4] firmware_loader: use kernel credentials when reading firmware, Paul Moore
- Re: [PATCH v4] firmware_loader: use kernel credentials when reading firmware, Luis Chamberlain
[PATCH] libselinux/utils/getsebool: add options to display en-/disabled booleans, Christian Göttsche
- Re: [PATCH] libselinux/utils/getsebool: add options to display en-/disabled booleans, Petr Lautrbach
  - Re: [PATCH] libselinux/utils/getsebool: add options to display en-/disabled booleans, Christian Göttsche
    - Re: [PATCH] libselinux/utils/getsebool: add options to display en-/disabled booleans, Petr Lautrbach
[PATCH] Update missing sandbox translations, Petr Lautrbach
- Re: [PATCH] Update missing sandbox translations, James Carter
  - Re: [PATCH] Update missing sandbox translations, Petr Lautrbach
[PATCH for-3.5 0/5] selinux_restorecon(3), setfiles(8): skip relabeling errors, Laszlo Ersek
- [PATCH for-3.5 1/5] setfiles: fix up inconsistent indentation, Laszlo Ersek
- [PATCH for-3.5 3/5] setfiles: remove useless "iamrestorecon" checks in option parsing, Laszlo Ersek
  - Re: [PATCH for-3.5 3/5] setfiles: remove useless "iamrestorecon" checks in option parsing, Daniel Burgener
- [PATCH for-3.5 2/5] setfiles: remove useless assignment and comment (after RHBZ#1926386), Laszlo Ersek
- [PATCH for-3.5 4/5] selinux_restorecon: introduce SELINUX_RESTORECON_COUNT_ERRORS, Laszlo Ersek
  - Re: [PATCH for-3.5 4/5] selinux_restorecon: introduce SELINUX_RESTORECON_COUNT_ERRORS, Petr Lautrbach
    - Re: [PATCH for-3.5 4/5] selinux_restorecon: introduce SELINUX_RESTORECON_COUNT_ERRORS, Laszlo Ersek
- [PATCH for-3.5 5/5] setfiles: introduce the -C option for distinguishing file tree walk errors, Laszlo Ersek
- Re: [PATCH for-3.5 0/5] selinux_restorecon(3), setfiles(8): skip relabeling errors, Richard W.M. Jones
  - Re: [PATCH for-3.5 0/5] selinux_restorecon(3), setfiles(8): skip relabeling errors, Laszlo Ersek
[PATCH v3] firmware_loader: use kernel credentials when reading firmware, Thiébaud Weksteen
- Re: [PATCH v3] firmware_loader: use kernel credentials when reading firmware, Greg Kroah-Hartman
  - Re: [PATCH v3] firmware_loader: use kernel credentials when reading firmware, Thiébaud Weksteen
    - Re: [PATCH v3] firmware_loader: use kernel credentials when reading firmware, Greg Kroah-Hartman
[PATCH] checkpolicy: mention class name on invalid permission, Christian Göttsche
- Re: [PATCH] checkpolicy: mention class name on invalid permission, Petr Lautrbach
  - Re: [PATCH] checkpolicy: mention class name on invalid permission, Petr Lautrbach
[PATCH userspace v2 0/2] Support the 'self' keyword in type transitions, Ondrej Mosnacek
- [PATCH userspace v2 1/2] libsepol/cil: add support for self keyword in type transitions, Ondrej Mosnacek
- [PATCH userspace v2 2/2] libsepol,checkpolicy: add support for self keyword in type transitions, Ondrej Mosnacek
  - Re: [PATCH userspace v2 2/2] libsepol,checkpolicy: add support for self keyword in type transitions, James Carter
  - Re: [PATCH userspace v2 2/2] libsepol,checkpolicy: add support for self keyword in type transitions, James Carter
    - Re: [PATCH userspace v2 2/2] libsepol,checkpolicy: add support for self keyword in type transitions, Ondrej Mosnacek
      - Re: [PATCH userspace v2 2/2] libsepol,checkpolicy: add support for self keyword in type transitions, James Carter
        
        Re: [PATCH userspace v2 2/2] libsepol,checkpolicy: add support for self keyword in type transitions, Ondrej Mosnacek
[PATCH userspace 0/2] Support the 'self' keyword in type transitions, Ondrej Mosnacek
- [PATCH userspace 1/2] libsepol/cil: add support for self keyword in type transitions, Ondrej Mosnacek
- [PATCH userspace 2/2] libsepol,checkpolicy: add support for self keyword in type transitions, Ondrej Mosnacek
  - Re: [PATCH userspace 2/2] libsepol,checkpolicy: add support for self keyword in type transitions, Dominick Grift
  - Re: [PATCH userspace 2/2] libsepol,checkpolicy: add support for self keyword in type transitions, Christian Göttsche
    - Re: [PATCH userspace 2/2] libsepol,checkpolicy: add support for self keyword in type transitions, Ondrej Mosnacek
- Re: [PATCH userspace 0/2] Support the 'self' keyword in type transitions, Christian Göttsche
  - Re: [PATCH userspace 0/2] Support the 'self' keyword in type transitions, Ondrej Mosnacek
[PATCH v2] firmware_loader: use kernel credentials when reading firmware, Thiébaud Weksteen
- Re: [PATCH v2] firmware_loader: use kernel credentials when reading firmware, Luis Chamberlain
  - Re: [PATCH v2] firmware_loader: use kernel credentials when reading firmware, Thiébaud Weksteen
    - Re: [PATCH v2] firmware_loader: use kernel credentials when reading firmware, Luis Chamberlain
- Re: [PATCH v2] firmware_loader: use kernel credentials when reading firmware, Qian Cai
  - Re: [PATCH v2] firmware_loader: use kernel credentials when reading firmware, Greg Kroah-Hartman
    - Re: [PATCH v2] firmware_loader: use kernel credentials when reading firmware, Thiébaud Weksteen
SELinux userspace 3.4-rc2 release candidate, Petr Lautrbach
[PATCH testsuite 0/2] FIOQSIZE followup fixes, Ondrej Mosnacek
- [PATCH testsuite 1/2] policy/test_ioctl_xperms.te: add ioctl numbers for other arches, Ondrej Mosnacek
- [PATCH testsuite 2/2] tests/ioctl: adjust size of variable passed to ioctl(2), Ondrej Mosnacek
- Re: [PATCH testsuite 0/2] FIOQSIZE followup fixes, Ondrej Mosnacek
[PATCH v35 00/29] LSM: Module stacking for AppArmor, Casey Schaufler
- [PATCH v35 02/29] LSM: Infrastructure management of the sock security, Casey Schaufler
- [PATCH v35 01/29] integrity: disassociate ima_filter_rule from security_audit_rule, Casey Schaufler
  - Re: [PATCH v35 01/29] integrity: disassociate ima_filter_rule from security_audit_rule, John Johansen
- [PATCH v35 05/29] IMA: avoid label collisions with stacked LSMs, Casey Schaufler
  - Re: [PATCH v35 05/29] IMA: avoid label collisions with stacked LSMs, John Johansen
- [PATCH v35 04/29] LSM: provide lsm name and id slot mappings, Casey Schaufler
  - Re: [PATCH v35 04/29] LSM: provide lsm name and id slot mappings, John Johansen
- [PATCH v35 03/29] LSM: Add the lsmblob data structure., Casey Schaufler
  - Re: [PATCH v35 03/29] LSM: Add the lsmblob data structure., John Johansen
- [PATCH v35 06/29] LSM: Use lsmblob in security_audit_rule_match, Casey Schaufler
  - Re: [PATCH v35 06/29] LSM: Use lsmblob in security_audit_rule_match, John Johansen
- [PATCH v35 07/29] LSM: Use lsmblob in security_kernel_act_as, Casey Schaufler
- [PATCH v35 08/29] LSM: Use lsmblob in security_secctx_to_secid, Casey Schaufler
  - Re: [PATCH v35 08/29] LSM: Use lsmblob in security_secctx_to_secid, John Johansen
- [PATCH v35 11/29] LSM: Use lsmblob in security_current_getsecid, Casey Schaufler
- [PATCH v35 09/29] LSM: Use lsmblob in security_secid_to_secctx, Casey Schaufler
- [PATCH v35 10/29] LSM: Use lsmblob in security_ipc_getsecid, Casey Schaufler
- [PATCH v35 14/29] LSM: Specify which LSM to display, Casey Schaufler
- [PATCH v35 12/29] LSM: Use lsmblob in security_inode_getsecid, Casey Schaufler
- [PATCH v35 13/29] LSM: Use lsmblob in security_cred_getsecid, Casey Schaufler
  - Re: [PATCH v35 13/29] LSM: Use lsmblob in security_cred_getsecid, kernel test robot
  - Re: [PATCH v35 13/29] LSM: Use lsmblob in security_cred_getsecid, kernel test robot
  - Re: [PATCH v35 13/29] LSM: Use lsmblob in security_cred_getsecid, kernel test robot
- [PATCH v35 15/29] LSM: Ensure the correct LSM context releaser, Casey Schaufler
- [PATCH v35 16/29] LSM: Use lsmcontext in security_secid_to_secctx, Casey Schaufler
- [PATCH v35 17/29] LSM: Use lsmcontext in security_inode_getsecctx, Casey Schaufler
- [PATCH v35 20/29] binder: Pass LSM identifier for confirmation, Casey Schaufler
- [PATCH v35 18/29] LSM: security_secid_to_secctx in netlink netfilter, Casey Schaufler
- [PATCH v35 19/29] NET: Store LSM netlabel data in a lsmblob, Casey Schaufler
- [PATCH v35 22/29] Audit: Keep multiple LSM data in audit_names, Casey Schaufler
  - Re: [PATCH v35 22/29] Audit: Keep multiple LSM data in audit_names, John Johansen
    - Re: [PATCH v35 22/29] Audit: Keep multiple LSM data in audit_names, Paul Moore
- [PATCH v35 21/29] LSM: Extend security_secid_to_secctx to include module selection, Casey Schaufler
  - Re: [PATCH v35 21/29] LSM: Extend security_secid_to_secctx to include module selection, John Johansen
- [PATCH v35 23/29] Audit: Create audit_stamp structure, Casey Schaufler
  - Re: [PATCH v35 23/29] Audit: Create audit_stamp structure, John Johansen
    - Re: [PATCH v35 23/29] Audit: Create audit_stamp structure, Paul Moore
      - Re: [PATCH v35 23/29] Audit: Create audit_stamp structure, John Johansen
        
        Re: [PATCH v35 23/29] Audit: Create audit_stamp structure, Paul Moore
        
        Re: [PATCH v35 23/29] Audit: Create audit_stamp structure, Casey Schaufler
        
        Re: [PATCH v35 23/29] Audit: Create audit_stamp structure, Paul Moore
        
        Re: [PATCH v35 23/29] Audit: Create audit_stamp structure, Casey Schaufler
- [PATCH v35 24/29] LSM: Add a function to report multiple LSMs, Casey Schaufler
  - Re: [PATCH v35 24/29] LSM: Add a function to report multiple LSMs, Paul Moore
  - Re: [PATCH v35 24/29] LSM: Add a function to report multiple LSMs, John Johansen
- [PATCH v35 25/29] Audit: Allow multiple records in an audit_buffer, Casey Schaufler
  - Re: [PATCH v35 25/29] Audit: Allow multiple records in an audit_buffer, Paul Moore
  - Re: [PATCH v35 25/29] Audit: Allow multiple records in an audit_buffer, John Johansen
    - Re: [PATCH v35 25/29] Audit: Allow multiple records in an audit_buffer, Paul Moore
      - Re: [PATCH v35 25/29] Audit: Allow multiple records in an audit_buffer, John Johansen
- [PATCH v35 26/29] Audit: Add record for multiple task security contexts, Casey Schaufler
  - Re: [PATCH v35 26/29] Audit: Add record for multiple task security contexts, Paul Moore
  - Re: [PATCH v35 26/29] Audit: Add record for multiple task security contexts, John Johansen
    - Re: [PATCH v35 26/29] Audit: Add record for multiple task security contexts, Paul Moore
      - Re: [PATCH v35 26/29] Audit: Add record for multiple task security contexts, John Johansen
- [PATCH v35 27/29] Audit: Add record for multiple object contexts, Casey Schaufler
  - Re: [PATCH v35 27/29] Audit: Add record for multiple object contexts, Paul Moore
  - Re: [PATCH v35 27/29] Audit: Add record for multiple object contexts, John Johansen
    - Re: [PATCH v35 27/29] Audit: Add record for multiple object contexts, Paul Moore
      - Re: [PATCH v35 27/29] Audit: Add record for multiple object contexts, John Johansen
- [PATCH v35 28/29] LSM: Add /proc attr entry for full LSM context, Casey Schaufler
  - Re: [PATCH v35 28/29] LSM: Add /proc attr entry for full LSM context, John Johansen
- [PATCH v35 29/29] AppArmor: Remove the exclusive flag, Casey Schaufler
[PATCH] selinux: don't sleep when CONFIG_SECURITY_SELINUX_CHECKREQPROT_VALUE is true, Paul Moore
- Re: [PATCH] selinux: don't sleep when CONFIG_SECURITY_SELINUX_CHECKREQPROT_VALUE is true, Paul Moore
  - Re: [PATCH] selinux: don't sleep when CONFIG_SECURITY_SELINUX_CHECKREQPROT_VALUE is true, Paul Moore
    - Re: [PATCH] selinux: don't sleep when CONFIG_SECURITY_SELINUX_CHECKREQPROT_VALUE is true, Paul Moore
boot failures as of "selinux: checkreqprot is deprecated, add some ssleep() discomfort", J. Bruce Fields
- Re: boot failures as of "selinux: checkreqprot is deprecated, add some ssleep() discomfort", Paul Moore
  - Re: boot failures as of "selinux: checkreqprot is deprecated, add some ssleep() discomfort", J. Bruce Fields
    - Re: boot failures as of "selinux: checkreqprot is deprecated, add some ssleep() discomfort", Paul Moore
      - Re: boot failures as of "selinux: checkreqprot is deprecated, add some ssleep() discomfort", J. Bruce Fields
[PATCH 1/5] libsepol/test Include policydb.h header for policydb_t declaration, James Carter
- [PATCH 4/5] libsemanage/tests: Declare file local functions as static, James Carter
- [PATCH 5/5] libsemanage/tests: Remove unused functions, James Carter
- [PATCH 3/5] libsepol/test: Declare file local functions as static, James Carter
- [PATCH 2/5] libsepol/test: Include paired headers for prototypes, James Carter
- Re: [PATCH 1/5] libsepol/test Include policydb.h header for policydb_t declaration, Petr Lautrbach
  - Re: [PATCH 1/5] libsepol/test Include policydb.h header for policydb_t declaration, James Carter
[PATCH testsuite 0/2] Make SCTP and Bluetooth support optional, Ondrej Mosnacek
- [PATCH testsuite 1/2] tests/extended_socket_class: make Bluetooth support optional, Ondrej Mosnacek
- [PATCH testsuite 2/2] tests: check more thoroughly for SCTP support, Ondrej Mosnacek
- Re: [PATCH testsuite 0/2] Make SCTP and Bluetooth support optional, Ondrej Mosnacek
[PATCH] libsepol/tests: adjust IPv6 netmasks, Christian Göttsche
- Re: [PATCH] libsepol/tests: adjust IPv6 netmasks, James Carter
  - Re: [PATCH] libsepol/tests: adjust IPv6 netmasks, James Carter
[PATCH 1/3] libselinux: correct parameter type in selabel_open(3), Christian Göttsche
- [PATCH 3/3] libselinux: correctly hash specfiles larger than 4G, Christian Göttsche
- [PATCH 2/3] libselinux: free memory on selabel_open(3) failure, Christian Göttsche
- Re: [PATCH 1/3] libselinux: correct parameter type in selabel_open(3), James Carter
  - Re: [PATCH 1/3] libselinux: correct parameter type in selabel_open(3), James Carter
    - Re: [PATCH 1/3] libselinux: correct parameter type in selabel_open(3), James Carter
[PATCH testsuite v4] tests/sctp: add client peeloff tests, Ondrej Mosnacek
- Message not available
  - Re: [PATCH testsuite v4] tests/sctp: add client peeloff tests, Ondrej Mosnacek
[PATCH 1/5] libsepol/cil: declare file local function pointer static, Christian Göttsche
- [PATCH 5/5] libsemanage: avoid double fclose, Christian Göttsche
- [PATCH 2/5] libsepol: check correct pointer for oom, Christian Göttsche
- [PATCH 3/5] libsepol: drop unnecessary const discarding casts, Christian Göttsche
- [PATCH 4/5] libselinux: limit has buffer size, Christian Göttsche
  - Re: [PATCH 4/5] libselinux: limit has buffer size, Christian Göttsche
- Re: [PATCH 1/5] libsepol/cil: declare file local function pointer static, James Carter
  - Re: [PATCH 1/5] libsepol/cil: declare file local function pointer static, James Carter
[PATCH] Correct misc typos, Christian Göttsche
- Re: [PATCH] Correct misc typos, James Carter
  - Re: [PATCH] Correct misc typos, James Carter
- <Possible follow-ups>
- [PATCH] Correct misc typos, Christian Göttsche
  - Re: [PATCH] Correct misc typos, James Carter
    - Re: [PATCH] Correct misc typos, James Carter
[PATCH v34 00/29] LSM: Module stacking for AppArmor, Casey Schaufler
- [PATCH v34 01/29] integrity: disassociate ima_filter_rule from security_audit_rule, Casey Schaufler
- [PATCH v34 02/29] LSM: Infrastructure management of the sock security, Casey Schaufler
- [PATCH v34 05/29] IMA: avoid label collisions with stacked LSMs, Casey Schaufler
- [PATCH v34 03/29] LSM: Add the lsmblob data structure., Casey Schaufler
- [PATCH v34 08/29] LSM: Use lsmblob in security_secctx_to_secid, Casey Schaufler
- [PATCH v34 07/29] LSM: Use lsmblob in security_kernel_act_as, Casey Schaufler
- [PATCH v34 06/29] LSM: Use lsmblob in security_audit_rule_match, Casey Schaufler
- [PATCH v34 04/29] LSM: provide lsm name and id slot mappings, Casey Schaufler
- [PATCH v34 09/29] LSM: Use lsmblob in security_secid_to_secctx, Casey Schaufler
- [PATCH v34 10/29] LSM: Use lsmblob in security_ipc_getsecid, Casey Schaufler
- [PATCH v34 11/29] LSM: Use lsmblob in security_current_getsecid, Casey Schaufler
  - Re: [PATCH v34 11/29] LSM: Use lsmblob in security_current_getsecid, kernel test robot
  - Re: [PATCH v34 11/29] LSM: Use lsmblob in security_current_getsecid, kernel test robot
- [PATCH v34 12/29] LSM: Use lsmblob in security_inode_getsecid, Casey Schaufler
- [PATCH v34 13/29] LSM: Use lsmblob in security_cred_getsecid, Casey Schaufler
  - Re: [PATCH v34 13/29] LSM: Use lsmblob in security_cred_getsecid, kernel test robot
- [PATCH v34 14/29] LSM: Specify which LSM to display, Casey Schaufler
- [PATCH v34 16/29] LSM: Use lsmcontext in security_secid_to_secctx, Casey Schaufler
- [PATCH v34 15/29] LSM: Ensure the correct LSM context releaser, Casey Schaufler
- [PATCH v34 17/29] LSM: Use lsmcontext in security_inode_getsecctx, Casey Schaufler
- [PATCH v34 22/29] Audit: Keep multiple LSM data in audit_names, Casey Schaufler
- [PATCH v34 19/29] NET: Store LSM netlabel data in a lsmblob, Casey Schaufler
- [PATCH v34 20/29] binder: Pass LSM identifier for confirmation, Casey Schaufler
- [PATCH v34 23/29] Audit: Create audit_stamp structure, Casey Schaufler
- [PATCH v34 21/29] LSM: Extend security_secid_to_secctx to include module selection, Casey Schaufler
- [PATCH v34 18/29] LSM: security_secid_to_secctx in netlink netfilter, Casey Schaufler
- [PATCH v34 26/29] Audit: Add record for multiple task security contexts, Casey Schaufler
- [PATCH v34 25/29] Audit: Allow multiple records in an audit_buffer, Casey Schaufler
- [PATCH v34 24/29] LSM: Add a function to report multiple LSMs, Casey Schaufler
- [PATCH v34 29/29] AppArmor: Remove the exclusive flag, Casey Schaufler
- [PATCH v34 27/29] Audit: Add record for multiple object contexts, Casey Schaufler
- [PATCH v34 28/29] LSM: Add /proc attr entry for full LSM context, Casey Schaufler
- <Possible follow-ups>
- [PATCH v34 00/29] LSM: Module stacking for AppArmor, Casey Schaufler
  - [PATCH v34 02/29] LSM: Infrastructure management of the sock security, Casey Schaufler
  - [PATCH v34 03/29] LSM: Add the lsmblob data structure., Casey Schaufler
  - [PATCH v34 01/29] integrity: disassociate ima_filter_rule from security_audit_rule, Casey Schaufler
  - [PATCH v34 04/29] LSM: provide lsm name and id slot mappings, Casey Schaufler
  - [PATCH v34 08/29] LSM: Use lsmblob in security_secctx_to_secid, Casey Schaufler
  - [PATCH v34 05/29] IMA: avoid label collisions with stacked LSMs, Casey Schaufler
  - [PATCH v34 07/29] LSM: Use lsmblob in security_kernel_act_as, Casey Schaufler
  - [PATCH v34 11/29] LSM: Use lsmblob in security_current_getsecid, Casey Schaufler
  - [PATCH v34 09/29] LSM: Use lsmblob in security_secid_to_secctx, Casey Schaufler
  - [PATCH v34 10/29] LSM: Use lsmblob in security_ipc_getsecid, Casey Schaufler
  - [PATCH v34 06/29] LSM: Use lsmblob in security_audit_rule_match, Casey Schaufler
  - [PATCH v34 12/29] LSM: Use lsmblob in security_inode_getsecid, Casey Schaufler
  - [PATCH v34 14/29] LSM: Specify which LSM to display, Casey Schaufler
  - [PATCH v34 18/29] LSM: security_secid_to_secctx in netlink netfilter, Casey Schaufler
  - [PATCH v34 17/29] LSM: Use lsmcontext in security_inode_getsecctx, Casey Schaufler
  - [PATCH v34 22/29] Audit: Keep multiple LSM data in audit_names, Casey Schaufler
  - [PATCH v34 13/29] LSM: Use lsmblob in security_cred_getsecid, Casey Schaufler
  - [PATCH v34 15/29] LSM: Ensure the correct LSM context releaser, Casey Schaufler
  - [PATCH v34 26/29] Audit: Add record for multiple task security contexts, Casey Schaufler
  - [PATCH v34 21/29] LSM: Extend security_secid_to_secctx to include module selection, Casey Schaufler
  - [PATCH v34 25/29] Audit: Allow multiple records in an audit_buffer, Casey Schaufler
  - [PATCH v34 20/29] binder: Pass LSM identifier for confirmation, Casey Schaufler
  - [PATCH v34 19/29] NET: Store LSM netlabel data in a lsmblob, Casey Schaufler
  - [PATCH v34 24/29] LSM: Add a function to report multiple LSMs, Casey Schaufler
  - [PATCH v34 16/29] LSM: Use lsmcontext in security_secid_to_secctx, Casey Schaufler
  - [PATCH v34 23/29] Audit: Create audit_stamp structure, Casey Schaufler
  - [PATCH v34 28/29] LSM: Add /proc attr entry for full LSM context, Casey Schaufler
  - [PATCH v34 27/29] Audit: Add record for multiple object contexts, Casey Schaufler
  - [PATCH v34 29/29] AppArmor: Remove the exclusive flag, Casey Schaufler
  - Re: [PATCH v34 00/29] LSM: Module stacking for AppArmor, Casey Schaufler
ANN: SELinux userspace 3.4-rc1 release candidate, Petr Lautrbach
- [HEADS UP MISSING PATCH] Update python library and binding versions to 3.4-rc1, Petr Lautrbach
Re: [PATCH V3 Notebook] How to add a new policy capability, Paul Moore
[PATCH] policycoreutils: drop usage of egrep in fixfiles, Christian Göttsche
- Re: [PATCH] policycoreutils: drop usage of egrep in fixfiles, Petr Lautrbach
  - Re: [PATCH] policycoreutils: drop usage of egrep in fixfiles, James Carter
[PATCH] github: add some basic GH Actions to build the notebook, Paul Moore
- Re: [PATCH] github: add some basic GH Actions to build the notebook, Paul Moore
Re: [PATCH Notebook] checkreqprot is being deprecated, Paul Moore
Re: [PATCH Notebook] SELINUX=disabled is being deprecated, Paul Moore
Re: [PATCH Notebook] Reference Policy: Module versioning now optional, Paul Moore
Re: [PATCH V2 Notebook] How to add a new policy capability, Daniel Burgener
Re: [PATCH net] sctp: use the correct skb for security_sctp_assoc_request, Ondrej Mosnacek
- Re: [PATCH net] sctp: use the correct skb for security_sctp_assoc_request, Xin Long
  - Re: [PATCH net] sctp: use the correct skb for security_sctp_assoc_request, Ondrej Mosnacek
    - Re: [PATCH net] sctp: use the correct skb for security_sctp_assoc_request, Xin Long
      - Re: [PATCH net] sctp: use the correct skb for security_sctp_assoc_request, Ondrej Mosnacek
        
        Re: [PATCH net] sctp: use the correct skb for security_sctp_assoc_request, Xin Long
[PATCH] firmware_loader: use kernel credentials when reading firmware, Thiébaud Weksteen
- Re: [PATCH] firmware_loader: use kernel credentials when reading firmware, Greg Kroah-Hartman
  - Re: [PATCH] firmware_loader: use kernel credentials when reading firmware, Thiébaud Weksteen
- Re: [PATCH] firmware_loader: use kernel credentials when reading firmware, Greg Kroah-Hartman
- Re: [PATCH] firmware_loader: use kernel credentials when reading firmware, John Stultz
[PATCH] sepolgen: Update permission map, Petr Lautrbach
- Re: [PATCH] sepolgen: Update permission map, Karl MacMillan
[PATCH v2] libsepol: Replace calls to mallocarray() with calls to calloc(), James Carter
- Re: [PATCH v2] libsepol: Replace calls to mallocarray() with calls to calloc(), James Carter
[PATCH 1/3] libsemanage: Fix USE_AFTER_FREE (CWE-672) in semanage_direct_get_module_info(), Petr Lautrbach
- [PATCH 2/3] semodule_package: Close leaking fd, Petr Lautrbach
- [PATCH 3/3] mcstrans: Fir RESOURCE_LEAK and USE_AFTER_FREE coverity scan defects, Petr Lautrbach
- Re: [PATCH 1/3] libsemanage: Fix USE_AFTER_FREE (CWE-672) in semanage_direct_get_module_info(), James Carter
  - Re: [PATCH 1/3] libsemanage: Fix USE_AFTER_FREE (CWE-672) in semanage_direct_get_module_info(), Petr Lautrbach
[PATCH] policycoreutils/setfiles: Improve description of -d switch, Petr Lautrbach
- Re: [PATCH] policycoreutils/setfiles: Improve description of -d switch, James Carter
  - [PATCH v2] setfiles.8: -q is deprecated and has no effect, Petr Lautrbach
    - Re: [PATCH v2] setfiles.8: -q is deprecated and has no effect, James Carter
      - Re: [PATCH v2] setfiles.8: -q is deprecated and has no effect, Petr Lautrbach
    - [PATCH v3] setfiles.8: -q is deprecated and has no effect, Petr Lautrbach
      - Re: [PATCH v3] setfiles.8: -q is deprecated and has no effect, James Carter
        
        Re: [PATCH v3] setfiles.8: -q is deprecated and has no effect, James Carter
Translate or not?, Petr Lautrbach
- [PATCH] Split po/ translation files into the relevant sub-directories, Petr Lautrbach
  - Re: [PATCH] Split po/ translation files into the relevant sub-directories, James Carter
    - Re: [PATCH] Split po/ translation files into the relevant sub-directories, Petr Lautrbach
[PATCH 4/5] selinux: Remove redundant assignments, Michal Orzel
- <Possible follow-ups>
- Re: [PATCH 4/5] selinux: Remove redundant assignments, Paul Moore
[RFC PATCH 1/4] libsepol/cil: declare file local functions static, Christian Göttsche
- [RFC PATCH 3/4] libsepol/cil: post process pirqcon rules, Christian Göttsche
  - Re: [RFC PATCH 3/4] libsepol/cil: post process pirqcon rules, James Carter
- [RFC PATCH 2/4] libsepol/cil: drop unused function cil_tree_error, Christian Göttsche
  - Re: [RFC PATCH 2/4] libsepol/cil: drop unused function cil_tree_error, James Carter
- [RFC PATCH 4/4] Enable missing prototypes, Christian Göttsche
  - Re: [RFC PATCH 4/4] Enable missing prototypes, James Carter
- Re: [RFC PATCH 1/4] libsepol/cil: declare file local functions static, James Carter
- [PATCH v2 1/6] libsepol/cil: declare file local functions static, Christian Göttsche
  - [PATCH v2 6/6] Enable missing prototypes, Christian Göttsche
    - Re: [PATCH v2 6/6] Enable missing prototypes, James Carter
  - [PATCH v2 5/6] libsemanage: ignore missing prototypes in swig generated code, Christian Göttsche
  - [PATCH v2 4/6] libsepol/cil: comment out unused function __cil_verify_rule, Christian Göttsche
    - Re: [PATCH v2 4/6] libsepol/cil: comment out unused function __cil_verify_rule, James Carter
      - Re: [PATCH v2 4/6] libsepol/cil: comment out unused function __cil_verify_rule, James Carter
  - [PATCH v2 3/6] libsepol/cil: post process pirqcon rules, Christian Göttsche
    - Re: [PATCH v2 3/6] libsepol/cil: post process pirqcon rules, Petr Lautrbach
  - [PATCH v2 2/6] libsepol/cil: drop unused function cil_tree_error, Christian Göttsche
    - Re: [PATCH v2 2/6] libsepol/cil: drop unused function cil_tree_error, Petr Lautrbach
  - Re: [PATCH v2 1/6] libsepol/cil: declare file local functions static, Petr Lautrbach
[PATCH] libselinux/utils: check for valid contexts to improve error causes, Christian Göttsche
- Re: [PATCH] libselinux/utils: check for valid contexts to improve error causes, James Carter
- [PATCH v2] libselinux/utils: check for valid contexts to improve error causes, Christian Göttsche
  - Re: [PATCH v2] libselinux/utils: check for valid contexts to improve error causes, James Carter
    - Re: [PATCH v2] libselinux/utils: check for valid contexts to improve error causes, James Carter
[PATCH 1/2] libsepol: mark immutable mls and context parameter const, Christian Göttsche
- [PATCH 2/2] libsepol: mark immutable common helper parameter const, Christian Göttsche
- Re: [PATCH 1/2] libsepol: mark immutable mls and context parameter const, James Carter
  - Re: [PATCH 1/2] libsepol: mark immutable mls and context parameter const, Petr Lautrbach
[PATCH] libsepol: add missing oom checks, Christian Göttsche
- Re: [PATCH] libsepol: add missing oom checks, James Carter
  - Re: [PATCH] libsepol: add missing oom checks, Petr Lautrbach
[PATCH] libsepol/cil: silence GCC 12 array-bounds false positive, Christian Göttsche
- Re: [PATCH] libsepol/cil: silence GCC 12 array-bounds false positive, James Carter
  - Re: [PATCH] libsepol/cil: silence GCC 12 array-bounds false positive, Petr Lautrbach
[PATCH] libsepol: Replace calls to mallocarray() with calls to calloc(), James Carter
Lets start with 3.4 userspace release, Petr Lautrbach
- Re: Lets start with 3.4 userspace release, James Carter
  - Re: Lets start with 3.4 userspace release, Petr Lautrbach
    - Re: Lets start with 3.4 userspace release, Christian Göttsche
[PATCH AUTOSEL 4.9 1/8] selinux: use correct type for context length, Sasha Levin
[PATCH AUTOSEL 4.14 1/8] selinux: use correct type for context length, Sasha Levin
[PATCH AUTOSEL 4.19 01/12] selinux: use correct type for context length, Sasha Levin
[PATCH AUTOSEL 5.4 01/16] LSM: general protection fault in legacy_parse_param, Sasha Levin
- [PATCH AUTOSEL 5.4 05/16] selinux: use correct type for context length, Sasha Levin
[PATCH AUTOSEL 5.15 01/29] LSM: general protection fault in legacy_parse_param, Sasha Levin
- [PATCH AUTOSEL 5.15 11/29] selinux: use correct type for context length, Sasha Levin
- [PATCH AUTOSEL 5.15 13/29] selinux: allow FIOCLEX and FIONCLEX with policy capability, Sasha Levin
[PATCH AUTOSEL 5.10 01/21] LSM: general protection fault in legacy_parse_param, Sasha Levin
- [PATCH AUTOSEL 5.10 06/21] selinux: use correct type for context length, Sasha Levin
- [PATCH AUTOSEL 5.10 07/21] selinux: allow FIOCLEX and FIONCLEX with policy capability, Sasha Levin
[PATCH AUTOSEL 5.16 01/35] LSM: general protection fault in legacy_parse_param, Sasha Levin
- [PATCH AUTOSEL 5.16 17/35] selinux: allow FIOCLEX and FIONCLEX with policy capability, Sasha Levin
- [PATCH AUTOSEL 5.16 14/35] selinux: use correct type for context length, Sasha Levin
[PATCH AUTOSEL 5.17 01/43] LSM: general protection fault in legacy_parse_param, Sasha Levin
- [PATCH AUTOSEL 5.17 15/43] selinux: use correct type for context length, Sasha Levin
- [PATCH AUTOSEL 5.17 22/43] selinux: allow FIOCLEX and FIONCLEX with policy capability, Sasha Levin
[PATCH] Add a file describing the security vulnerability handling process, James Carter
- Re: [PATCH] Add a file describing the security vulnerability handling process, Petr Lautrbach
  - Re: [PATCH] Add a file describing the security vulnerability handling process, James Carter
    - Re: [PATCH] Add a file describing the security vulnerability handling process, Paul Moore
[PATCH] libsemanage: Fallback to semanage_copy_dir when rename() failed, Petr Lautrbach
- Re: [PATCH] libsemanage: Fallback to semanage_copy_dir when rename() failed, Ondrej Mosnacek
  - [PATCH v2] libsemanage: Fall back to semanage_copy_dir when rename() fails, Petr Lautrbach
    - [PATCH v3] libsemanage: Fall back to semanage_copy_dir when rename() fails, Petr Lautrbach
      - Re: [PATCH v3] libsemanage: Fall back to semanage_copy_dir when rename() fails, Ondrej Mosnacek
        
        Re: [PATCH v3] libsemanage: Fall back to semanage_copy_dir when rename() fails, Petr Lautrbach
    - [PATCH v2 3/3] mcstrans: Fir RESOURCE_LEAK and USE_AFTER_FREE coverity scan defects, Petr Lautrbach
[GIT PULL] SELinux patches for v5.18, Paul Moore
- Re: [GIT PULL] SELinux patches for v5.18, pr-tracker-bot
[PATCH] optional statement is not valid in if and require statement, Dominick Grift
- [PATCH v2] optional statement is not valid in if and require statement, Dominick Grift
  - Re: [PATCH v2] optional statement is not valid in if and require statement, James Carter
  - Re: [PATCH v2] optional statement is not valid in if and require statement, Paul Moore
Pwnkit and SELinux, Daniel Burgener
- Re: Pwnkit and SELinux, Paul Moore
[PATCH] libsepol: Validate conditional expressions, James Carter
- Re: [PATCH] libsepol: Validate conditional expressions, James Carter
[PATCH] libsepol: Use calloc when initializing bool_val_to_struct array, James Carter
- Re: [PATCH] libsepol: Use calloc when initializing bool_val_to_struct array, Christian Göttsche
  - Re: [PATCH] libsepol: Use calloc when initializing bool_val_to_struct array, James Carter
- Re: [PATCH] libsepol: Use calloc when initializing bool_val_to_struct array, Joshua Brindle
  - Re: [PATCH] libsepol: Use calloc when initializing bool_val_to_struct array, James Carter
    - Re: [PATCH] libsepol: Use calloc when initializing bool_val_to_struct array, Joshua Brindle
      - Re: [PATCH] libsepol: Use calloc when initializing bool_val_to_struct array, James Carter
        
        Re: [PATCH] libsepol: Use calloc when initializing bool_val_to_struct array, Joshua Brindle
  - Re: [PATCH] libsepol: Use calloc when initializing bool_val_to_struct array, William Roberts
Re: [PATCH 03/17] io_uring: add infra and support for IORING_OP_URING_CMD, Paul Moore
- Re: [PATCH 03/17] io_uring: add infra and support for IORING_OP_URING_CMD, Luis Chamberlain
  - Re: [PATCH 03/17] io_uring: add infra and support for IORING_OP_URING_CMD, Paul Moore
[PATCH] gui: do not recreate /etc/selinux/config, Mikhail Novosyolov
- Re: [PATCH] gui: do not recreate /etc/selinux/config, Petr Lautrbach
[PATCH] libselinux: Close leaked FILEs, Petr Lautrbach
- Re: [PATCH] libselinux: Close leaked FILEs, James Carter
  - Re: [PATCH] libselinux: Close leaked FILEs, James Carter
[PATCH v33 00/29] LSM: Module stacking for AppArmor, Casey Schaufler
- [PATCH v33 01/29] integrity: disassociate ima_filter_rule from security_audit_rule, Casey Schaufler
  - Re: [PATCH v33 01/29] integrity: disassociate ima_filter_rule from security_audit_rule, kernel test robot
- [PATCH v33 02/29] LSM: Infrastructure management of the sock security, Casey Schaufler
- [PATCH v33 03/29] LSM: Add the lsmblob data structure., Casey Schaufler
- [PATCH v33 04/29] LSM: provide lsm name and id slot mappings, Casey Schaufler
- [PATCH v33 05/29] IMA: avoid label collisions with stacked LSMs, Casey Schaufler
- [PATCH v33 07/29] LSM: Use lsmblob in security_kernel_act_as, Casey Schaufler
- [PATCH v33 08/29] LSM: Use lsmblob in security_secctx_to_secid, Casey Schaufler
- [PATCH v33 06/29] LSM: Use lsmblob in security_audit_rule_match, Casey Schaufler
- [PATCH v33 10/29] LSM: Use lsmblob in security_ipc_getsecid, Casey Schaufler
- [PATCH v33 11/29] LSM: Use lsmblob in security_current_getsecid, Casey Schaufler
- [PATCH v33 09/29] LSM: Use lsmblob in security_secid_to_secctx, Casey Schaufler
- [PATCH v33 14/29] LSM: Specify which LSM to display, Casey Schaufler
- [PATCH v33 12/29] LSM: Use lsmblob in security_inode_getsecid, Casey Schaufler
- [PATCH v33 13/29] LSM: Use lsmblob in security_cred_getsecid, Casey Schaufler
  - Re: [PATCH v33 13/29] LSM: Use lsmblob in security_cred_getsecid, kernel test robot
  - Re: [PATCH v33 13/29] LSM: Use lsmblob in security_cred_getsecid, kernel test robot
  - Re: [PATCH v33 13/29] LSM: Use lsmblob in security_cred_getsecid, kernel test robot
- [PATCH v33 15/29] LSM: Ensure the correct LSM context releaser, Casey Schaufler
- [PATCH v33 20/29] binder: Pass LSM identifier for confirmation, Casey Schaufler
- [PATCH v33 19/29] NET: Store LSM netlabel data in a lsmblob, Casey Schaufler
- [PATCH v33 17/29] LSM: Use lsmcontext in security_inode_getsecctx, Casey Schaufler
- [PATCH v33 16/29] LSM: Use lsmcontext in security_secid_to_secctx, Casey Schaufler
- [PATCH v33 18/29] LSM: security_secid_to_secctx in netlink netfilter, Casey Schaufler
- [PATCH v33 21/29] LSM: Extend security_secid_to_secctx to include module selection, Casey Schaufler
- [PATCH v33 22/29] Audit: Keep multiple LSM data in audit_names, Casey Schaufler
- [PATCH v33 23/29] Audit: Create audit_stamp structure, Casey Schaufler
- [PATCH v33 24/29] LSM: Add a function to report multiple LSMs, Casey Schaufler
- [PATCH v33 26/29] Audit: Add record for multiple task security contexts, Casey Schaufler
  - Re: [PATCH v33 26/29] Audit: Add record for multiple task security contexts, Paul Moore
    - Re: [PATCH v33 26/29] Audit: Add record for multiple task security contexts, Casey Schaufler
- [PATCH v33 25/29] Audit: Allow multiple records in an audit_buffer, Casey Schaufler
  - Re: [PATCH v33 25/29] Audit: Allow multiple records in an audit_buffer, Paul Moore
    - Re: [PATCH v33 25/29] Audit: Allow multiple records in an audit_buffer, Casey Schaufler
- [PATCH v33 29/29] AppArmor: Remove the exclusive flag, Casey Schaufler
- [PATCH v33 28/29] LSM: Add /proc attr entry for full LSM context, Casey Schaufler
- [PATCH v33 27/29] Audit: Add record for multiple object security contexts, Casey Schaufler
  - Re: [PATCH v33 27/29] Audit: Add record for multiple object security contexts, Paul Moore
    - Re: [PATCH v33 27/29] Audit: Add record for multiple object security contexts, Casey Schaufler
      - Re: [PATCH v33 27/29] Audit: Add record for multiple object security contexts, Paul Moore
[PATCH] libsepol/cil: Write a message when a log message is truncated, James Carter
- Re: [PATCH] libsepol/cil: Write a message when a log message is truncated, James Carter
Re: [PATCH v1] fs: Fix inconsistent f_mode, Paul Moore
- Re: [PATCH v1] fs: Fix inconsistent f_mode, John Johansen
  - Re: [PATCH v1] fs: Fix inconsistent f_mode, Paul Moore
    - Re: [PATCH v1] fs: Fix inconsistent f_mode, Tetsuo Handa
      - Re: [PATCH v1] fs: Fix inconsistent f_mode, Paul Moore
        
        Re: [PATCH v1] fs: Fix inconsistent f_mode, Mickaël Salaün
      - Re: [PATCH v1] fs: Fix inconsistent f_mode, Al Viro
    - Re: [PATCH v1] fs: Fix inconsistent f_mode, Al Viro
[RFC PATCH] selinux: checkreqprot is deprecated, add some ssleep() discomfort, Paul Moore
- Re: [RFC PATCH] selinux: checkreqprot is deprecated, add some ssleep() discomfort, Paul Moore
- Re: [RFC PATCH] selinux: checkreqprot is deprecated, add some ssleep() discomfort, Paul Moore
[PATCH 1/2] libsepol: reject xperm av rules in conditional statements, Christian Göttsche
- [PATCH 2/2] libsepol: validate boolean datum arrays, Christian Göttsche
- Re: [PATCH 1/2] libsepol: reject xperm av rules in conditional statements, James Carter
  - Re: [PATCH 1/2] libsepol: reject xperm av rules in conditional statements, James Carter
libsemanage rename calls fail on containers, Joseph Marrero Corchado
Recently fixed neverallowx checks report (range 0x), bauen1
- Re: Recently fixed neverallowx checks report (range 0x), James Carter
[PATCH] libsepol: Shorten the policy capability enum names, Richard Haines
- Re: [PATCH] libsepol: Shorten the policy capability enum names, James Carter
  - Re: [PATCH] libsepol: Shorten the policy capability enum names, James Carter
[PATCH] libsepol: Do a more thorough validation of constraints, James Carter
- Re: [PATCH] libsepol: Do a more thorough validation of constraints, James Carter
[PATCH] libsepol: fix reallocarray imports, Thiébaud Weksteen
- Re: [PATCH] libsepol: fix reallocarray imports, James Carter
  - Re: [PATCH] libsepol: fix reallocarray imports, James Carter
[PATCH] semanage-fcontext.8: Drop extra )s after FILE_SPEC, Petr Lautrbach
- Re: [PATCH] semanage-fcontext.8: Drop extra )s after FILE_SPEC, James Carter
  - Re: [PATCH] semanage-fcontext.8: Drop extra )s after FILE_SPEC, James Carter
[PATCH] selinux: shorten the policy capability enum names, Paul Moore
- Re: [PATCH] selinux: shorten the policy capability enum names, Paul Moore
[PATCH] docs: selinux: add '=' signs to kernel boot options, Randy Dunlap
- Re: [PATCH] docs: selinux: add '=' signs to kernel boot options, Paul Moore
  - Re: [PATCH] docs: selinux: add '=' signs to kernel boot options, Paul Moore
    - Re: [PATCH] docs: selinux: add '=' signs to kernel boot options, Jonathan Corbet
      - Re: [PATCH] docs: selinux: add '=' signs to kernel boot options, Paul Moore
[PATCH RESEND] xfs: don't generate selinux audit messages for capability testing, Darrick J. Wong
- Re: [PATCH RESEND] xfs: don't generate selinux audit messages for capability testing, Serge E. Hallyn
  - Re: [PATCH RESEND] xfs: don't generate selinux audit messages for capability testing, Darrick J. Wong
    - Re: [PATCH RESEND] xfs: don't generate selinux audit messages for capability testing, Serge E. Hallyn
- Re: [PATCH RESEND] xfs: don't generate selinux audit messages for capability testing, Ondrej Mosnacek
- Re: [PATCH RESEND] xfs: don't generate selinux audit messages for capability testing, Eric Sandeen
  - Re: [PATCH RESEND] xfs: don't generate selinux audit messages for capability testing, Darrick J. Wong
Re: [PATCH] docs: fix 'make htmldocs' warning in SCTP.rst, Paul Moore
[PATCH V2] libsepol: Add 'ioctl_skip_cloexec' policy capability, Richard Haines
- Re: [PATCH V2] libsepol: Add 'ioctl_skip_cloexec' policy capability, James Carter
  - Re: [PATCH V2] libsepol: Add 'ioctl_skip_cloexec' policy capability, James Carter
[PATCH V4] security/selinux: Always allow FIOCLEX and FIONCLEX, Richard Haines
- Re: [PATCH V4] security/selinux: Always allow FIOCLEX and FIONCLEX, Paul Moore
[PATCH] userfaultfd, capability: introduce CAP_USERFAULTFD, Axel Rasmussen
- Re: [PATCH] userfaultfd, capability: introduce CAP_USERFAULTFD, Casey Schaufler
- Re: [PATCH] userfaultfd, capability: introduce CAP_USERFAULTFD, Casey Schaufler
  - Re: [PATCH] userfaultfd, capability: introduce CAP_USERFAULTFD, Axel Rasmussen
    - Re: [PATCH] userfaultfd, capability: introduce CAP_USERFAULTFD, Casey Schaufler
      - Re: [PATCH] userfaultfd, capability: introduce CAP_USERFAULTFD, Peter Xu
        
        Re: [PATCH] userfaultfd, capability: introduce CAP_USERFAULTFD, Axel Rasmussen
        
        Re: [PATCH] userfaultfd, capability: introduce CAP_USERFAULTFD, Casey Schaufler
[PATCH Notebook] policy_config_statements.md: How to add a new capability, Richard Haines
- Re: [PATCH Notebook] policy_config_statements.md: How to add a new capability, Paul Moore
  - Re: [PATCH Notebook] policy_config_statements.md: How to add a new capability, Paul Moore
[PATCH testsuite] tests/ioctl: Update ioctl tests, Richard Haines
- Re: [PATCH testsuite] tests/ioctl: Update ioctl tests, Ondrej Mosnacek
[PATCH] libsepol: Add 'ioctl_skip_cloexec' policy capability, Richard Haines
[PATCH V3] security/selinux: Always allow FIOCLEX and FIONCLEX, Richard Haines
- Re: [PATCH V3] security/selinux: Always allow FIOCLEX and FIONCLEX, Paul Moore
  - Re: [PATCH V3] security/selinux: Always allow FIOCLEX and FIONCLEX, Ondrej Mosnacek
    - Re: [PATCH V3] security/selinux: Always allow FIOCLEX and FIONCLEX, Paul Moore
[GIT PULL] SELinux fixes for v5.17 (#2), Paul Moore
- Re: [GIT PULL] SELinux fixes for v5.17 (#2), pr-tracker-bot
[PATCH 1/4] newrole: add Makefile target to test build options, Christian Göttsche
- [PATCH 2/4] newrole: silence compiler warnings, Christian Göttsche
- [PATCH 3/4] newrole: check for crypt(3) failure, Christian Göttsche
- [PATCH 4/4] newrole: ensure password memory erasure, Christian Göttsche
- Re: [PATCH 1/4] newrole: add Makefile target to test build options, James Carter
  - Re: [PATCH 1/4] newrole: add Makefile target to test build options, James Carter
[PATCH] libsepol: validate expressions by evaluating, Christian Göttsche
- [PATCH v2] libsepol: validate expressions by evaluating, Christian Göttsche

[Index of Archives] [Selinux Refpolicy] [Fedora Users] [Fedora Desktop] [Kernel] [KDE Users] [Gnome Users]