Security Enhanced Linux (SELINUX)

Date Index

[Prev Page][Next Page]

Re: [PATCH] selinux: fix race condition when computing ocontext SIDs, (continued)
[PATCH] libsemanage: Fix USE_AFTER_FREE (CWE-672) in semanage_direct_write_langext(), Petr Lautrbach
- Re: [PATCH] libsemanage: Fix USE_AFTER_FREE (CWE-672) in semanage_direct_write_langext(), James Carter
  - Re: [PATCH] libsemanage: Fix USE_AFTER_FREE (CWE-672) in semanage_direct_write_langext(), James Carter
[PATCH -next] selinux: correct the return value when loads initial sids, Xiu Jianfeng
- Re: [PATCH -next] selinux: correct the return value when loads initial sids, Paul Moore
  - Re: [PATCH -next] selinux: correct the return value when loads initial sids, xiujianfeng
libsepol CVE patch issue, Garrett Tucker
- Re: libsepol CVE patch issue, James Carter
  - Re: libsepol CVE patch issue, Garrett Tucker
[PATCH v4 0/3] ima: Provide more info about buffer measurement, Roberto Sassu
- [PATCH v4 1/3] ima: Introduce ima_get_current_hash_algo(), Roberto Sassu
  - Re: [PATCH v4 1/3] ima: Introduce ima_get_current_hash_algo(), Mimi Zohar
    - RE: [PATCH v4 1/3] ima: Introduce ima_get_current_hash_algo(), Roberto Sassu
- [PATCH v4 3/3] ima: Add digest and digest_len params to the functions to measure a buffer, Roberto Sassu
- [PATCH v4 2/3] ima: Return int in the functions to measure a buffer, Roberto Sassu
[PATCH v28 00/25] LSM: Module stacking for AppArmor, Casey Schaufler
- [PATCH v28 01/25] LSM: Infrastructure management of the sock security, Casey Schaufler
- <Possible follow-ups>
- [PATCH v28 00/25] LSM: Module stacking for AppArmor, Casey Schaufler
  - [PATCH v28 01/25] LSM: Infrastructure management of the sock security, Casey Schaufler
  - [PATCH v28 02/25] LSM: Add the lsmblob data structure., Casey Schaufler
  - [PATCH v28 03/25] LSM: provide lsm name and id slot mappings, Casey Schaufler
  - [PATCH v28 04/25] IMA: avoid label collisions with stacked LSMs, Casey Schaufler
  - [PATCH v28 05/25] LSM: Use lsmblob in security_audit_rule_match, Casey Schaufler
  - [PATCH v28 06/25] LSM: Use lsmblob in security_kernel_act_as, Casey Schaufler
  - [PATCH v28 07/25] LSM: Use lsmblob in security_secctx_to_secid, Casey Schaufler
  - [PATCH v28 08/25] LSM: Use lsmblob in security_secid_to_secctx, Casey Schaufler
  - [PATCH v28 09/25] LSM: Use lsmblob in security_ipc_getsecid, Casey Schaufler
  - [PATCH v28 10/25] LSM: Use lsmblob in security_task_getsecid, Casey Schaufler
  - [PATCH v28 11/25] LSM: Use lsmblob in security_inode_getsecid, Casey Schaufler
  - [PATCH v28 12/25] LSM: Use lsmblob in security_cred_getsecid, Casey Schaufler
    - Re: [PATCH v28 12/25] LSM: Use lsmblob in security_cred_getsecid, kernel test robot
  - [PATCH v28 13/25] IMA: Change internal interfaces to use lsmblobs, Casey Schaufler
  - [PATCH v28 14/25] LSM: Specify which LSM to display, Casey Schaufler
  - [PATCH v28 15/25] LSM: Ensure the correct LSM context releaser, Casey Schaufler
  - [PATCH v28 16/25] LSM: Use lsmcontext in security_secid_to_secctx, Casey Schaufler
  - [PATCH v28 17/25] LSM: Use lsmcontext in security_inode_getsecctx, Casey Schaufler
  - [PATCH v28 18/25] LSM: security_secid_to_secctx in netlink netfilter, Casey Schaufler
  - [PATCH v28 19/25] NET: Store LSM netlabel data in a lsmblob, Casey Schaufler
  - [PATCH v28 20/25] LSM: Verify LSM display sanity in binder, Casey Schaufler
  - [PATCH v28 21/25] audit: support non-syscall auxiliary records, Casey Schaufler
    - Re: [PATCH v28 21/25] audit: support non-syscall auxiliary records, kernel test robot
  - [PATCH v28 22/25] Audit: Add record for multiple process LSM attributes, Casey Schaufler
    - Re: [PATCH v28 22/25] Audit: Add record for multiple process LSM attributes, Paul Moore
      - Re: [PATCH v28 22/25] Audit: Add record for multiple process LSM attributes, Casey Schaufler
        
        Re: [PATCH v28 22/25] Audit: Add record for multiple process LSM attributes, Paul Moore
        
        Re: [PATCH v28 22/25] Audit: Add record for multiple process LSM attributes, Casey Schaufler
        
        Re: [PATCH v28 22/25] Audit: Add record for multiple process LSM attributes, Paul Moore
        
        Re: [PATCH v28 22/25] Audit: Add record for multiple process LSM attributes, Casey Schaufler
        
        Re: [PATCH v28 22/25] Audit: Add record for multiple process LSM attributes, Paul Moore
        
        Re: [PATCH v28 22/25] Audit: Add record for multiple process LSM attributes, Casey Schaufler
        
        Re: [PATCH v28 22/25] Audit: Add record for multiple process LSM attributes, Paul Moore
        
        Re: [PATCH v28 22/25] Audit: Add record for multiple process LSM attributes, Casey Schaufler
        
        Re: [PATCH v28 22/25] Audit: Add record for multiple process LSM attributes, Casey Schaufler
        
        Re: [PATCH v28 22/25] Audit: Add record for multiple process LSM attributes, Paul Moore
        
        Re: [PATCH v28 22/25] Audit: Add record for multiple process LSM attributes, Casey Schaufler
        
        Re: [PATCH v28 22/25] Audit: Add record for multiple process LSM attributes, Casey Schaufler
        
        Re: [PATCH v28 22/25] Audit: Add record for multiple process LSM attributes, Paul Moore
        
        Re: [PATCH v28 22/25] Audit: Add record for multiple process LSM attributes, Casey Schaufler
        
        Re: [PATCH v28 22/25] Audit: Add record for multiple process LSM attributes, Paul Moore
  - [PATCH v28 23/25] Audit: Add record for multiple object LSM attributes, Casey Schaufler
  - [PATCH v28 24/25] LSM: Add /proc attr entry for full LSM context, Casey Schaufler
  - [PATCH v28 25/25] AppArmor: Remove the exclusive flag, Casey Schaufler
AVC denied for docker while trying to set labels for tmpfs mounts, Sujithra P
- Re: AVC denied for docker while trying to set labels for tmpfs mounts, Paul Moore
  - Re: AVC denied for docker while trying to set labels for tmpfs mounts, Sujithra P
    - Re: AVC denied for docker while trying to set labels for tmpfs mounts, Daniel Walsh
      - Re: AVC denied for docker while trying to set labels for tmpfs mounts, Sujithra P
[PATCH RFC 6/9] veth: use skb_prepare_for_gro(), Paolo Abeni
[PATCH RFC 5/9] skbuff: introduce has_sk state bit., Paolo Abeni
[PATCH RFC 9/9] sk_buff: access secmark via getter/setter, Paolo Abeni
[PATCH RFC 8/9] sk_buff: move vlan field after tail., Paolo Abeni
[PATCH RFC 7/9] sk_buff: move inner header fields after tail, Paolo Abeni
[PATCH RFC 4/9] net: optimize GRO for the common case., Paolo Abeni
[PATCH RFC 2/9] sk_buff: track dst status in skb->_state, Paolo Abeni
[PATCH RFC 3/9] sk_buff: move the active_extensions into the state bitfield, Paolo Abeni
[PATCH RFC 1/9] sk_buff: track nfct status in newly added skb->_state, Paolo Abeni
[PATCH RFC 0/9] sk_buff: optimize layout for GRO, Paolo Abeni
- Re: [PATCH RFC 0/9] sk_buff: optimize layout for GRO, Casey Schaufler
  - Re: [PATCH RFC 0/9] sk_buff: optimize layout for GRO, Paolo Abeni
    - Re: [PATCH RFC 0/9] sk_buff: optimize layout for GRO, Casey Schaufler
      - Re: [PATCH RFC 0/9] sk_buff: optimize layout for GRO, Paolo Abeni
        
        Re: [PATCH RFC 0/9] sk_buff: optimize layout for GRO, Paul Moore
        
        Re: [PATCH RFC 0/9] sk_buff: optimize layout for GRO, Florian Westphal
        
        Re: [PATCH RFC 0/9] sk_buff: optimize layout for GRO, Paul Moore
        
        Re: [PATCH RFC 0/9] sk_buff: optimize layout for GRO, Florian Westphal
        
        Re: [PATCH RFC 0/9] sk_buff: optimize layout for GRO, Casey Schaufler
        
        Re: [PATCH RFC 0/9] sk_buff: optimize layout for GRO, Florian Westphal
        
        Re: [PATCH RFC 0/9] sk_buff: optimize layout for GRO, Casey Schaufler
        
        Re: [PATCH RFC 0/9] sk_buff: optimize layout for GRO, Paul Moore
        
        Re: [PATCH RFC 0/9] sk_buff: optimize layout for GRO, Paolo Abeni
Re: issues about selinux namespace, xiujianfeng
- Re: issues about selinux namespace, Paul Moore
  - Re: issues about selinux namespace, xiujianfeng
  - [RFC PATCH 0/1] SELinux-namespaces, Igor Baranov
    - [RFC PATCH 1/1] selinuxns: Replace state pointer with namespace id, Igor Baranov
    - Re: [RFC PATCH 0/1] SELinux-namespaces, Casey Schaufler
    - Re: [RFC PATCH 0/1] SELinux-namespaces, Paul Moore
      - [RFC PATCH 0/7] SELinux-namespace, Alexander Kozhevnikov
        
        [RFC PATCH 1/7] LSM: Infrastructure management of the superblock, Alexander Kozhevnikov
        
        [RFC PATCH 3/7] SELINUXNS: Fix initilization of the superblock security under spinlock, Alexander Kozhevnikov
        
        [RFC PATCH 2/7] selinux: support per-namespace superblock security structures, Alexander Kozhevnikov
        
        [RFC PATCH 4/7] SELINUXNS: Namespacing for xattrs, Alexander Kozhevnikov
        
        [RFC PATCH 5/7] SELINUXNS: Migrate all open files and all vma to new namespace, Alexander Kozhevnikov
        
        [RFC PATCH 6/7] SELINUXNS: Fixing superblock security structure memory leakage, Alexander Kozhevnikov
        
        [RFC PATCH 7/7] SELINUXNS: Fixing concurrency issues, Alexander Kozhevnikov
[PATCH 1/6] scripts/run-scan-build: update, Christian Göttsche
- [PATCH 2/6] secilc: fix memory leaks in secilc, Christian Göttsche
- [PATCH 3/6] secilc: fix memory leaks in secilc2conf, Christian Göttsche
- [PATCH 5/6] policycoreutils: free memory of allocated context in run_init, Christian Göttsche
- [PATCH 4/6] policycoreutils: free memory on lstat failure in sestatus, Christian Göttsche
- [PATCH 6/6] policycoreutils: free memory of allocated context in newrole, Christian Göttsche
- Re: [PATCH 1/6] scripts/run-scan-build: update, James Carter
  - Re: [PATCH 1/6] scripts/run-scan-build: update, James Carter
[PATCH] libselinux/utils: drop requirement to combine compiling and linking, Christian Göttsche
- Re: [PATCH] libselinux/utils: drop requirement to combine compiling and linking, Nicolas Iooss
- [PATCH v2] libselinux/utils: drop requirement to combine compiling and linking, Christian Göttsche
  - Re: [PATCH v2] libselinux/utils: drop requirement to combine compiling and linking, Petr Lautrbach
[PATCH v2] lsm_audit,selinux: return early for possible NULL audit buffers, Austin Kim
- Re: [PATCH v2] lsm_audit,selinux: return early for possible NULL audit buffers, Paul Moore
  - Re: [PATCH v2] lsm_audit,selinux: return early for possible NULL audit buffers, Austin Kim
[PATCH] libsepol/cil: move the fuzz target and build script to the selinux repository, Evgeny Vereshchagin
- Re: [PATCH] libsepol/cil: move the fuzz target and build script to the selinux repository, Nicolas Iooss
  - [PATCH v2] libsepol/cil: move the fuzz target and build script to the selinux repository, Evgeny Vereshchagin
    - Re: [PATCH v2] libsepol/cil: move the fuzz target and build script to the selinux repository, Nicolas Iooss
      - Re: [PATCH v2] libsepol/cil: move the fuzz target and build script to the selinux repository, James Carter
[PATCH] lsm_audit,selinux: add exception handling for possible NULL audit buffers, Austin Kim
- Re: [PATCH] lsm_audit,selinux: add exception handling for possible NULL audit buffers, Paul Moore
  - Re: [PATCH] lsm_audit,selinux: add exception handling for possible NULL audit buffers, Austin Kim
[PATCH v2] libselinux: add lock callbacks, Seth Moore
- Re: [PATCH v2] libselinux: add lock callbacks, Nicolas Iooss
- Re: [PATCH v2] libselinux: add lock callbacks, Christian Göttsche
  - Re: [PATCH v2] libselinux: add lock callbacks, Seth Moore
[PATCH v2] libsepol/cil: Fix handling category sets in an expression, James Carter
- Re: [PATCH v2] libsepol/cil: Fix handling category sets in an expression, Nicolas Iooss
  - Re: [PATCH v2] libsepol/cil: Fix handling category sets in an expression, Nicolas Iooss
[PATCH] libsepol/cil: do not allow \0 in quoted strings, Nicolas Iooss
- Re: [PATCH] libsepol/cil: do not allow \0 in quoted strings, James Carter
  - Re: [PATCH] libsepol/cil: do not allow \0 in quoted strings, Nicolas Iooss
[PATCH 1/2] ci: turn on CIFuzz, Evgeny Vereshchagin
- [PATCH 2/2] README: add OSS-Fuzz/CIFuzz badges, Evgeny Vereshchagin
- Re: [PATCH 1/2] ci: turn on CIFuzz, Nicolas Iooss
  - Re: [PATCH 1/2] ci: turn on CIFuzz, Nicolas Iooss
[PATCH] libselinux: add lock callbacks, Seth Moore
- Re: [PATCH] libselinux: add lock callbacks, Nicolas Iooss
  - Re: [PATCH] libselinux: add lock callbacks, Seth Moore
[PATCH] libsepol/cil: Fix handling category sets in an expression, James Carter
- Re: [PATCH] libsepol/cil: Fix handling category sets in an expression, Nicolas Iooss
  - Re: [PATCH] libsepol/cil: Fix handling category sets in an expression, James Carter
[RFC PATCH v2 0/1] Relax restrictions on user.* xattr, Vivek Goyal
- [PATCH v2 1/1] xattr: Allow user.* xattr on symlink and special files, Vivek Goyal
  - Re: [PATCH v2 1/1] xattr: Allow user.* xattr on symlink and special files, Christian Brauner
    - Re: [PATCH v2 1/1] xattr: Allow user.* xattr on symlink and special files, Vivek Goyal
      - Re: [PATCH v2 1/1] xattr: Allow user.* xattr on symlink and special files, Casey Schaufler
        
        Re: [PATCH v2 1/1] xattr: Allow user.* xattr on symlink and special files, Vivek Goyal
        
        Re: [PATCH v2 1/1] xattr: Allow user.* xattr on symlink and special files, Bruce Fields
        
        Re: [PATCH v2 1/1] xattr: Allow user.* xattr on symlink and special files, Vivek Goyal
        
        Re: [PATCH v2 1/1] xattr: Allow user.* xattr on symlink and special files, J. Bruce Fields
        
        Re: [PATCH v2 1/1] xattr: Allow user.* xattr on symlink and special files, Vivek Goyal
        
        Re: [PATCH v2 1/1] xattr: Allow user.* xattr on symlink and special files, J. Bruce Fields
        
        Re: [PATCH v2 1/1] xattr: Allow user.* xattr on symlink and special files, Vivek Goyal
        
        Re: [PATCH v2 1/1] xattr: Allow user.* xattr on symlink and special files, Casey Schaufler
        
        Re: [PATCH v2 1/1] xattr: Allow user.* xattr on symlink and special files, Vivek Goyal
        
        Re: [PATCH v2 1/1] xattr: Allow user.* xattr on symlink and special files, Theodore Ts'o
        
        Re: [PATCH v2 1/1] xattr: Allow user.* xattr on symlink and special files, Vivek Goyal
        
        Re: [Virtio-fs] [PATCH v2 1/1] xattr: Allow user.* xattr on symlink and special files, Greg Kurz
        
        Re: [Virtio-fs] [PATCH v2 1/1] xattr: Allow user.* xattr on symlink and special files, Casey Schaufler
- Re: [RFC PATCH v2 0/1] Relax restrictions on user.* xattr, Daniel Walsh
[PATCH] libsepol/cil: Only expand anonymous category sets in an expression, James Carter
- Re: [PATCH] libsepol/cil: Only expand anonymous category sets in an expression, James Carter
[PATCH 01/13] checkpolicy: pass CFLAGS at link stage, Christian Göttsche
- [PATCH 03/13] checkpolicy: simplify assignment, Christian Göttsche
- [PATCH 02/13] checkpolicy: drop -pipe compile option, Christian Göttsche
- [PATCH 04/13] checkpolicy: drop dead condition, Christian Göttsche
- [PATCH 05/13] checkpolicy: use correct format specifier for unsigned, Christian Göttsche
- [PATCH 06/13] checkpolicy: follow declaration-after-statement, Christian Göttsche
  - Re: [PATCH 06/13] checkpolicy: follow declaration-after-statement, Nicolas Iooss
    - Re: [PATCH 06/13] checkpolicy: follow declaration-after-statement, Nicolas Iooss
- [PATCH 08/13] checkpolicy: check before potential NULL dereference, Christian Göttsche
- [PATCH 07/13] checkpolicy: remove dead assignments, Christian Göttsche
- [PATCH 09/13] checkpolicy: avoid potential use of uninitialized variable, Christian Göttsche
- [PATCH 10/13] checkpolicy: drop redundant cast to the same type, Christian Göttsche
- [PATCH 11/13] checkpolicy: parse_util drop unused declaration, Christian Göttsche
- [PATCH 12/13] checkpolicy/test: mark file local functions static, Christian Göttsche
- [PATCH 13/13] checkpolicy: mark read-only parameters in policy define const, Christian Göttsche
[PATCH AUTOSEL 4.4 17/31] selinux: use __GFP_NOWARN with GFP_NOWAIT in the AVC, Sasha Levin
[PATCH AUTOSEL 5.10 077/137] selinux: use __GFP_NOWARN with GFP_NOWAIT in the AVC, Sasha Levin
[PATCH AUTOSEL 4.9 19/35] selinux: use __GFP_NOWARN with GFP_NOWAIT in the AVC, Sasha Levin
[PATCH AUTOSEL 4.14 26/45] selinux: use __GFP_NOWARN with GFP_NOWAIT in the AVC, Sasha Levin
[PATCH AUTOSEL 4.19 30/55] selinux: use __GFP_NOWARN with GFP_NOWAIT in the AVC, Sasha Levin
[PATCH AUTOSEL 5.4 40/74] selinux: use __GFP_NOWARN with GFP_NOWAIT in the AVC, Sasha Levin
[PATCH AUTOSEL 5.12 086/160] selinux: use __GFP_NOWARN with GFP_NOWAIT in the AVC, Sasha Levin
[PATCH AUTOSEL 5.13 101/189] selinux: use __GFP_NOWARN with GFP_NOWAIT in the AVC, Sasha Levin
[PATCH v3 0/3] ima: Provide more info about buffer measurement, Roberto Sassu
- [PATCH v3 1/3] ima: Introduce ima_get_current_hash_algo(), Roberto Sassu
- [PATCH v3 2/3] ima: Return int in the functions to measure a buffer, Roberto Sassu
  - Re: [PATCH v3 2/3] ima: Return int in the functions to measure a buffer, Lakshmi Ramasubramanian
  - Re: [PATCH v3 2/3] ima: Return int in the functions to measure a buffer, Mimi Zohar
    - RE: [PATCH v3 2/3] ima: Return int in the functions to measure a buffer, Roberto Sassu
      - Re: [PATCH v3 2/3] ima: Return int in the functions to measure a buffer, Mimi Zohar
- [PATCH v3 3/3] ima: Add digest and digest_len params to the functions to measure a buffer, Roberto Sassu
  - Re: [PATCH v3 3/3] ima: Add digest and digest_len params to the functions to measure a buffer, Lakshmi Ramasubramanian
  - Re: [PATCH v3 3/3] ima: Add digest and digest_len params to the functions to measure a buffer, Paul Moore
  - Re: [PATCH v3 3/3] ima: Add digest and digest_len params to the functions to measure a buffer, Mimi Zohar
[PATCH 1/6] libsepol: silence -Wextra-semi-stmt warning, Nicolas Iooss
- [PATCH 2/6] libselinux: silence -Wextra-semi-stmt warning, Nicolas Iooss
- [PATCH 3/6] libsemanage: silence -Wextra-semi-stmt warning, Nicolas Iooss
- [PATCH 4/6] checkpolicy: silence -Wextra-semi-stmt warning, Nicolas Iooss
- [PATCH 6/6] mcstrans: silence -Wextra-semi-stmt warning, Nicolas Iooss
- [PATCH 5/6] policycoreutils: silence -Wextra-semi-stmt warning, Nicolas Iooss
- Re: [PATCH 1/6] libsepol: silence -Wextra-semi-stmt warning, James Carter
  - Re: [PATCH 1/6] libsepol: silence -Wextra-semi-stmt warning, James Carter
Re: [syzbot] general protection fault in legacy_parse_param, Dmitry Vyukov
- Re: [syzbot] general protection fault in legacy_parse_param, Casey Schaufler
  - Re: [syzbot] general protection fault in legacy_parse_param, Paul Moore
    - Re: [syzbot] general protection fault in legacy_parse_param, Dmitry Vyukov
      - Re: [syzbot] general protection fault in legacy_parse_param, Paul Moore
        
        Re: [syzbot] general protection fault in legacy_parse_param, Christian Brauner
        
        Re: [syzbot] general protection fault in legacy_parse_param, Casey Schaufler
        
        Re: [syzbot] general protection fault in legacy_parse_param, Christian Brauner
- <Possible follow-ups>
- Re: [syzbot] general protection fault in legacy_parse_param, syzbot
- Re: [syzbot] general protection fault in legacy_parse_param, syzbot
  - Re: [syzbot] general protection fault in legacy_parse_param, Christian Brauner
    - Re: [syzbot] general protection fault in legacy_parse_param, Casey Schaufler
      - Re: [syzbot] general protection fault in legacy_parse_param, Casey Schaufler
        
        Re: [syzbot] general protection fault in legacy_parse_param, Christian Brauner
        
        Re: [syzbot] general protection fault in legacy_parse_param, Casey Schaufler
        
        Re: [syzbot] general protection fault in legacy_parse_param, Christian Brauner
[PATCH] libsepol/cil: do not override previous results of __cil_verify_classperms, Nicolas Iooss
- Re: [PATCH] libsepol/cil: do not override previous results of __cil_verify_classperms, James Carter
  - Re: [PATCH] libsepol/cil: do not override previous results of __cil_verify_classperms, James Carter
[PATCH] libsepol: avoid unsigned integer overflow, Christian Göttsche
- [PATCH v2] libsepol: avoid unsigned integer overflow, Christian Göttsche
  - Re: [PATCH v2] libsepol: avoid unsigned integer overflow, Nicolas Iooss
    - Re: [PATCH v2] libsepol: avoid unsigned integer overflow, Christian Göttsche
- [PATCH v3] libsepol: avoid unsigned integer overflow, Christian Göttsche
  - Re: [PATCH v3] libsepol: avoid unsigned integer overflow, Nicolas Iooss
    - Re: [PATCH v3] libsepol: avoid unsigned integer overflow, Nicolas Iooss
[PATCH] libselinux/utils/getseuser.c: fix build with gcc 4.8, Fabrice Fontaine
- Re: [PATCH] libselinux/utils/getseuser.c: fix build with gcc 4.8, Nicolas Iooss
  - Re: [PATCH] libselinux/utils/getseuser.c: fix build with gcc 4.8, Nicolas Iooss
[PATCH v2 0/3] ima: Provide more info about buffer measurement, Roberto Sassu
- [PATCH v2 1/3] ima: Introduce ima_get_current_hash_algo(), Roberto Sassu
  - Re: [PATCH v2 1/3] ima: Introduce ima_get_current_hash_algo(), Lakshmi Ramasubramanian
- [PATCH v2 2/3] ima: Return int in the functions to measure a buffer, Roberto Sassu
  - Re: [PATCH v2 2/3] ima: Return int in the functions to measure a buffer, Lakshmi Ramasubramanian
    - RE: [PATCH v2 2/3] ima: Return int in the functions to measure a buffer, Roberto Sassu
- [PATCH v2 3/3] ima: Add digest and digest_len params to the functions to measure a buffer, Roberto Sassu
  - Re: [PATCH v2 3/3] ima: Add digest and digest_len params to the functions to measure a buffer, Lakshmi Ramasubramanian
    - RE: [PATCH v2 3/3] ima: Add digest and digest_len params to the functions to measure a buffer, Roberto Sassu
[PATCH] libsepol/cil: Improve checking for bad inheritance patterns, James Carter
- Re: [PATCH] libsepol/cil: Improve checking for bad inheritance patterns, Nicolas Iooss
  - Re: [PATCH] libsepol/cil: Improve checking for bad inheritance patterns, James Carter
    - Re: [PATCH] libsepol/cil: Improve checking for bad inheritance patterns, James Carter
[PATCH 0/3] ima: Provide more info about buffer measurement, Roberto Sassu
- [PATCH 1/3] ima: Introduce ima_get_current_hash_algo(), Roberto Sassu
- [PATCH 2/3] ima: Return int in the functions to measure a buffer, Roberto Sassu
- [PATCH 3/3] ima: Add digest parameter to the functions to measure a buffer, Roberto Sassu
  - Re: [PATCH 3/3] ima: Add digest parameter to the functions to measure a buffer, Lakshmi Ramasubramanian
    - RE: [PATCH 3/3] ima: Add digest parameter to the functions to measure a buffer, Roberto Sassu
[GIT PULL] SELinux patches for v5.14, Paul Moore
- Re: [GIT PULL] SELinux patches for v5.14, pr-tracker-bot
[PATCH 1/4 v2] libsepol/cil: Provide option to allow qualified names in declarations, James Carter
- [PATCH 2/4 v2] secilc: Add support for using qualified names to secilc, James Carter
- [PATCH 3/4 v2] libsepol/cil: Add support for using qualified names to secil2tree, James Carter
- [PATCH 4/4 v2] libsepol/cil: Add support for using qualified names to secil2conf, James Carter
- Re: [PATCH 1/4 v2] libsepol/cil: Provide option to allow qualified names in declarations, Nicolas Iooss
  - Re: [PATCH 1/4 v2] libsepol/cil: Provide option to allow qualified names in declarations, Nicolas Iooss
[PATCH v2] selinux-notebook: describe nosuid and NNP transitions, Topi Miettinen
- Re: [PATCH v2] selinux-notebook: describe nosuid and NNP transitions, Paul Moore
[PATCH] libsepol/cil: make array cil_sym_sizes const, Nicolas Iooss
- Re: [PATCH] libsepol/cil: make array cil_sym_sizes const, James Carter
  - Re: [PATCH] libsepol/cil: make array cil_sym_sizes const, Nicolas Iooss
RE: [RFC PATCH 0/1] xattr: Allow user.* xattr on symlink/special files if caller has CAP_SYS_RESOURCE, Schaufler, Casey
- Re: [RFC PATCH 0/1] xattr: Allow user.* xattr on symlink/special files if caller has CAP_SYS_RESOURCE, Dr. David Alan Gilbert
- Re: [RFC PATCH 0/1] xattr: Allow user.* xattr on symlink/special files if caller has CAP_SYS_RESOURCE, Vivek Goyal
  - Re: [RFC PATCH 0/1] xattr: Allow user.* xattr on symlink/special files if caller has CAP_SYS_RESOURCE, Daniel Walsh
    - Re: [RFC PATCH 0/1] xattr: Allow user.* xattr on symlink/special files if caller has CAP_SYS_RESOURCE, Casey Schaufler
      - Re: [RFC PATCH 0/1] xattr: Allow user.* xattr on symlink/special files if caller has CAP_SYS_RESOURCE, Dr. David Alan Gilbert
        
        Re: [RFC PATCH 0/1] xattr: Allow user.* xattr on symlink/special files if caller has CAP_SYS_RESOURCE, Casey Schaufler
        
        Re: [RFC PATCH 0/1] xattr: Allow user.* xattr on symlink/special files if caller has CAP_SYS_RESOURCE, Dr. David Alan Gilbert
        
        Re: [RFC PATCH 0/1] xattr: Allow user.* xattr on symlink/special files if caller has CAP_SYS_RESOURCE, Casey Schaufler
        
        Re: [RFC PATCH 0/1] xattr: Allow user.* xattr on symlink/special files if caller has CAP_SYS_RESOURCE, Vivek Goyal
        
        Re: [RFC PATCH 0/1] xattr: Allow user.* xattr on symlink/special files if caller has CAP_SYS_RESOURCE, Casey Schaufler
        
        Re: [RFC PATCH 0/1] xattr: Allow user.* xattr on symlink/special files if caller has CAP_SYS_RESOURCE, Dr. David Alan Gilbert
        
        Re: [RFC PATCH 0/1] xattr: Allow user.* xattr on symlink/special files if caller has CAP_SYS_RESOURCE, Casey Schaufler
        
        Re: [RFC PATCH 0/1] xattr: Allow user.* xattr on symlink/special files if caller has CAP_SYS_RESOURCE, Vivek Goyal
        
        Re: [RFC PATCH 0/1] xattr: Allow user.* xattr on symlink/special files if caller has CAP_SYS_RESOURCE, Daniel Walsh
        
        Re: [RFC PATCH 0/1] xattr: Allow user.* xattr on symlink/special files if caller has CAP_SYS_RESOURCE, Theodore Ts'o
        
        Re: [RFC PATCH 0/1] xattr: Allow user.* xattr on symlink/special files if caller has CAP_SYS_RESOURCE, Dr. David Alan Gilbert
        
        Re: [RFC PATCH 0/1] xattr: Allow user.* xattr on symlink/special files if caller has CAP_SYS_RESOURCE, Theodore Ts'o
        
        Re: [RFC PATCH 0/1] xattr: Allow user.* xattr on symlink/special files if caller has CAP_SYS_RESOURCE, Dr. David Alan Gilbert
        
        Re: [RFC PATCH 0/1] xattr: Allow user.* xattr on symlink/special files if caller has CAP_SYS_RESOURCE, Theodore Ts'o
        
        Re: [RFC PATCH 0/1] xattr: Allow user.* xattr on symlink/special files if caller has CAP_SYS_RESOURCE, Vivek Goyal
        
        Re: [RFC PATCH 0/1] xattr: Allow user.* xattr on symlink/special files if caller has CAP_SYS_RESOURCE, Dr. David Alan Gilbert
        
        Re: [RFC PATCH 0/1] xattr: Allow user.* xattr on symlink/special files if caller has CAP_SYS_RESOURCE, Vivek Goyal
        
        Re: [RFC PATCH 0/1] xattr: Allow user.* xattr on symlink/special files if caller has CAP_SYS_RESOURCE, Vivek Goyal
        
        Re: [RFC PATCH 0/1] xattr: Allow user.* xattr on symlink/special files if caller has CAP_SYS_RESOURCE, Casey Schaufler
        
        Re: [RFC PATCH 0/1] xattr: Allow user.* xattr on symlink/special files if caller has CAP_SYS_RESOURCE, Vivek Goyal
        
        Re: [RFC PATCH 0/1] xattr: Allow user.* xattr on symlink/special files if caller has CAP_SYS_RESOURCE, Vivek Goyal
        
        Re: [RFC PATCH 0/1] xattr: Allow user.* xattr on symlink/special files if caller has CAP_SYS_RESOURCE, Theodore Ts'o
      - Re: [RFC PATCH 0/1] xattr: Allow user.* xattr on symlink/special files if caller has CAP_SYS_RESOURCE, Vivek Goyal
      - Re: [RFC PATCH 0/1] xattr: Allow user.* xattr on symlink/special files if caller has CAP_SYS_RESOURCE, Daniel Walsh
[RFC][PATCH 01/12] ima: Add digest, algo, measured parameters to ima_measure_critical_data(), Roberto Sassu
- Re: [RFC][PATCH 01/12] ima: Add digest, algo, measured parameters to ima_measure_critical_data(), Mimi Zohar
[PATCH 1/4] libsepol/cil: Provide option to allow qualified names in declarations, James Carter
- [PATCH 2/4] secilc: Add support for using qualified names to secilc, James Carter
- [PATCH 3/4] libsepol/cil: Add support for using qualified names to secil2tree, James Carter
- [PATCH 4/4] libsepol/cil: Add support for using qualified names to secil2conf, James Carter
- Re: [PATCH 1/4] libsepol/cil: Provide option to allow qualified names in declarations, Dominick Grift
  - Re: [PATCH 1/4] libsepol/cil: Provide option to allow qualified names in declarations, James Carter
    - Re: [PATCH 1/4] libsepol/cil: Provide option to allow qualified names in declarations, Dominick Grift
- Re: [PATCH 1/4] libsepol/cil: Provide option to allow qualified names in declarations, Nicolas Iooss
  - Re: [PATCH 1/4] libsepol/cil: Provide option to allow qualified names in declarations, James Carter
    - Re: [PATCH 1/4] libsepol/cil: Provide option to allow qualified names in declarations, Nicolas Iooss
[PATCH 1/2] libsepol/cil: Add function to determine if a subtree has a declaration, James Carter
- [PATCH 2/2] libsepol/cil: Only reset AST if optional has a declaration, James Carter
- Re: [PATCH 1/2] libsepol/cil: Add function to determine if a subtree has a declaration, Nicolas Iooss
  - Re: [PATCH 1/2] libsepol/cil: Add function to determine if a subtree has a declaration, Nicolas Iooss
[RFC PATCH] userfaultfd: open userfaultfds with O_RDONLY, Ondrej Mosnacek
- Re: [RFC PATCH] userfaultfd: open userfaultfds with O_RDONLY, Ondrej Mosnacek
[PATCH 0/5 v2] Another round of secilc-fuzzer problems fixed, James Carter
- [PATCH 2/5 v2] libsepol/cil: Fix syntax checking of defaultrange rule, James Carter
- [PATCH 1/5 v2] libsepol/cil: Properly check for loops in sets, James Carter
- [PATCH 3/5 v2] libsepol/cil: Check for empty list when marking neverallow attributes, James Carter
- [PATCH 5/5 v2] libsepol/cil: Improve degenerate inheritance check, James Carter
- [PATCH 4/5 v2] libsepol/cil: Reduce the initial symtab sizes for blocks, James Carter
- Re: [PATCH 0/5 v2] Another round of secilc-fuzzer problems fixed, Nicolas Iooss
  - Re: [PATCH 0/5 v2] Another round of secilc-fuzzer problems fixed, James Carter
[SELinux-notebook PATCH] computing_security_contexts.md: clarify mount options with comma, Dominick Grift
- Re: [SELinux-notebook PATCH] computing_security_contexts.md: clarify mount options with comma, Dominick Grift
[PATCH v2] evm: Check xattr size discrepancy between kernel and user, Roberto Sassu
- Re: [PATCH v2] evm: Check xattr size discrepancy between kernel and user, Mimi Zohar
[PATCH] evm: Check xattr size misalignment between kernel and user, Roberto Sassu
- Re: [PATCH] evm: Check xattr size misalignment between kernel and user, Mimi Zohar
[PATCH] libsepol/cil: Allow duplicate optional blocks in most cases, James Carter
- Re: [PATCH] libsepol/cil: Allow duplicate optional blocks in most cases, Nicolas Iooss
  - Re: [PATCH] libsepol/cil: Allow duplicate optional blocks in most cases, James Carter
    - Re: [PATCH] libsepol/cil: Allow duplicate optional blocks in most cases, James Carter
[PATCH] libsepol: Quote paths when generating policy.conf from binary policy, James Carter
- Re: [PATCH] libsepol: Quote paths when generating policy.conf from binary policy, Petr Lautrbach
  - Re: [PATCH] libsepol: Quote paths when generating policy.conf from binary policy, James Carter
[PATCH v3] lockdown,selinux: fix wrong subject in some SELinux lockdown checks, Ondrej Mosnacek
- Re: [PATCH v3] lockdown,selinux: fix wrong subject in some SELinux lockdown checks, Paul Moore
  - Re: [PATCH v3] lockdown,selinux: fix wrong subject in some SELinux lockdown checks, Ondrej Mosnacek
    - Re: [PATCH v3] lockdown,selinux: fix wrong subject in some SELinux lockdown checks, Paul Moore
- Re: [PATCH v3] lockdown,selinux: fix wrong subject in some SELinux lockdown checks, Dan Williams
  - Re: [PATCH v3] lockdown,selinux: fix wrong subject in some SELinux lockdown checks, Ondrej Mosnacek
    - Re: [PATCH v3] lockdown,selinux: fix wrong subject in some SELinux lockdown checks, Paul Moore
      - Re: [PATCH v3] lockdown,selinux: fix wrong subject in some SELinux lockdown checks, Dan Williams
        
        Re: [PATCH v3] lockdown,selinux: fix wrong subject in some SELinux lockdown checks, Paul Moore
- Re: [PATCH v3] lockdown,selinux: fix wrong subject in some SELinux lockdown checks, Thomas Gleixner
  - Re: [PATCH v3] lockdown,selinux: fix wrong subject in some SELinux lockdown checks, Paul Moore
- Re: [PATCH v3] lockdown,selinux: fix wrong subject in some SELinux lockdown checks, Steffen Klassert
[PATCH 0/3] Fix problems with CIL's handling of anonymous call arguments, James Carter
- [PATCH 2/3] libsepol/cil: Account for anonymous category sets in an expression, James Carter
- [PATCH 1/3] libsepol/cil: Fix anonymous IP address call arguments, James Carter
- [PATCH 3/3] secilc/test: Add test for anonymous args, James Carter
- Re: [PATCH 0/3] Fix problems with CIL's handling of anonymous call arguments, Nicolas Iooss
  - Re: [PATCH 0/3] Fix problems with CIL's handling of anonymous call arguments, James Carter
Re: [PATCH] proc: Track /proc/$pid/attr/ opener mm_struct, Kees Cook
- Re: [PATCH] proc: Track /proc/$pid/attr/ opener mm_struct, Kees Cook
  - Re: [PATCH] proc: Track /proc/$pid/attr/ opener mm_struct, Linus Torvalds
  - Message not available
    - Re: [PATCH] proc: Track /proc/$pid/attr/ opener mm_struct, Kees Cook
      - Re: [PATCH] proc: Track /proc/$pid/attr/ opener mm_struct, youling 257
        
        Re: [PATCH] proc: Track /proc/$pid/attr/ opener mm_struct, Linus Torvalds
        
        Re: [PATCH] proc: Track /proc/$pid/attr/ opener mm_struct, Kees Cook
        
        Re: [PATCH] proc: Track /proc/$pid/attr/ opener mm_struct, Greg KH
        
        Re: [PATCH] proc: Track /proc/$pid/attr/ opener mm_struct, youling 257
- Re: [PATCH] proc: Track /proc/$pid/attr/ opener mm_struct, Casey Schaufler
[PATCH 0/5] Another round of secilc-fuzzer problems fixed, James Carter
- [PATCH 3/5] libsepol/cil: Check for empty list when marking neverallow attributes, James Carter
  - Re: [PATCH 3/5] libsepol/cil: Check for empty list when marking neverallow attributes, Nicolas Iooss
- [PATCH 1/5] libsepol/cil: Properly check for loops in sets, James Carter
  - Re: [PATCH 1/5] libsepol/cil: Properly check for loops in sets, Nicolas Iooss
- [PATCH 2/5] libsepol/cil: Fix syntax checking of defaultrange rule, James Carter
  - Re: [PATCH 2/5] libsepol/cil: Fix syntax checking of defaultrange rule, Nicolas Iooss
    - Re: [PATCH 2/5] libsepol/cil: Fix syntax checking of defaultrange rule, James Carter
- [PATCH 4/5] libsepol/cil: Reduce the initial symtab sizes for blocks, James Carter
  - Re: [PATCH 4/5] libsepol/cil: Reduce the initial symtab sizes for blocks, Nicolas Iooss
- [PATCH 5/5] libsepol/cil: Improve degenerate inheritance check, James Carter
  - Re: [PATCH 5/5] libsepol/cil: Improve degenerate inheritance check, Nicolas Iooss
    - Re: [PATCH 5/5] libsepol/cil: Improve degenerate inheritance check, James Carter
[PATCH] libsemanage: fix use-after-free in parse_module_store(), HuaxinLu
- Re: [PATCH] libsemanage: fix use-after-free in parse_module_store(), James Carter
  - Re: [PATCH] libsemanage: fix use-after-free in parse_module_store(), Petr Lautrbach
- <Possible follow-ups>
- [PATCH] libsemanage: fix use-after-free in parse_module_store(), HuaxinLu
[PATCH] selinux.8: document how mount flag nosuid affects SELinux, Topi Miettinen
- Re: [PATCH] selinux.8: document how mount flag nosuid affects SELinux, Petr Lautrbach
[patch] mount.2: document SELinux use of MS_NOSUID mount flag, Topi Miettinen
- Re: [patch] mount.2: document SELinux use of MS_NOSUID mount flag, Michael Kerrisk (man-pages)
[PATCH] selinux-notebook: describe nosuid and NNP transitions, Topi Miettinen
- Re: [PATCH] selinux-notebook: describe nosuid and NNP transitions, Paul Moore
  - Re: [PATCH] selinux-notebook: describe nosuid and NNP transitions, Topi Miettinen
    - Re: [PATCH] selinux-notebook: describe nosuid and NNP transitions, Paul Moore
      - Re: [PATCH] selinux-notebook: describe nosuid and NNP transitions, Topi Miettinen
        
        Re: [PATCH] selinux-notebook: describe nosuid and NNP transitions, Topi Miettinen
        
        Re: [PATCH] selinux-notebook: describe nosuid and NNP transitions, Paul Moore
[PATCH -next v2] selinux: Fix kernel-doc, Yang Li
- Re: [PATCH -next v2] selinux: Fix kernel-doc, Paul Moore
Size mismatch between vfs_getxattr_alloc() and vfs_getxattr(), Roberto Sassu
- [PATCH] fs: Return raw xattr for security.* if there is size disagreement with LSMs, Roberto Sassu
  - Re: [PATCH] fs: Return raw xattr for security.* if there is size disagreement with LSMs, Stefan Berger
    - RE: [PATCH] fs: Return raw xattr for security.* if there is size disagreement with LSMs, Roberto Sassu
      - Re: [PATCH] fs: Return raw xattr for security.* if there is size disagreement with LSMs, Mimi Zohar
        
        RE: [PATCH] fs: Return raw xattr for security.* if there is size disagreement with LSMs, Roberto Sassu
        
        Re: [PATCH] fs: Return raw xattr for security.* if there is size disagreement with LSMs, Paul Moore
        
        Re: [PATCH] fs: Return raw xattr for security.* if there is size disagreement with LSMs, Mimi Zohar
        
        RE: [PATCH] fs: Return raw xattr for security.* if there is size disagreement with LSMs, Roberto Sassu
        
        Re: [PATCH] fs: Return raw xattr for security.* if there is size disagreement with LSMs, Paul Moore
        
        Re: [PATCH] fs: Return raw xattr for security.* if there is size disagreement with LSMs, Mimi Zohar
[PATCH v27 00/25] LSM: Module stacking for AppArmor, Casey Schaufler
- [PATCH v27 01/25] LSM: Infrastructure management of the sock security, Casey Schaufler
- [PATCH v27 02/25] LSM: Add the lsmblob data structure., Casey Schaufler
- [PATCH v27 03/25] LSM: provide lsm name and id slot mappings, Casey Schaufler
- [PATCH v27 04/25] IMA: avoid label collisions with stacked LSMs, Casey Schaufler
- [PATCH v27 05/25] LSM: Use lsmblob in security_audit_rule_match, Casey Schaufler
- [PATCH v27 06/25] LSM: Use lsmblob in security_kernel_act_as, Casey Schaufler
- [PATCH v27 07/25] LSM: Use lsmblob in security_secctx_to_secid, Casey Schaufler
- [PATCH v27 08/25] LSM: Use lsmblob in security_secid_to_secctx, Casey Schaufler
- [PATCH v27 09/25] LSM: Use lsmblob in security_ipc_getsecid, Casey Schaufler
- [PATCH v27 10/25] LSM: Use lsmblob in security_task_getsecid, Casey Schaufler
- [PATCH v27 11/25] LSM: Use lsmblob in security_inode_getsecid, Casey Schaufler
- [PATCH v27 12/25] LSM: Use lsmblob in security_cred_getsecid, Casey Schaufler
- [PATCH v27 13/25] IMA: Change internal interfaces to use lsmblobs, Casey Schaufler
- [PATCH v27 14/25] LSM: Specify which LSM to display, Casey Schaufler
- [PATCH v27 15/25] LSM: Ensure the correct LSM context releaser, Casey Schaufler
- [PATCH v27 16/25] LSM: Use lsmcontext in security_secid_to_secctx, Casey Schaufler
- [PATCH v27 17/25] LSM: Use lsmcontext in security_inode_getsecctx, Casey Schaufler
- [PATCH v27 18/25] LSM: security_secid_to_secctx in netlink netfilter, Casey Schaufler
- [PATCH v27 19/25] NET: Store LSM netlabel data in a lsmblob, Casey Schaufler
- [PATCH v27 20/25] LSM: Verify LSM display sanity in binder, Casey Schaufler
- [PATCH v27 21/25] audit: add support for non-syscall auxiliary records, Casey Schaufler
  - Re: [PATCH v27 21/25] audit: add support for non-syscall auxiliary records, kernel test robot
  - Re: [PATCH v27 21/25] audit: add support for non-syscall auxiliary records, kernel test robot
- [PATCH v27 22/25] Audit: Add record for multiple process LSM attributes, Casey Schaufler
- [PATCH v27 23/25] Audit: Add record for multiple object LSM attributes, Casey Schaufler
- [PATCH v27 24/25] LSM: Add /proc attr entry for full LSM context, Casey Schaufler
- [PATCH v27 25/25] AppArmor: Remove the exclusive flag, Casey Schaufler
[PATCH 1/2] selinux: slow_avc_audit has become non-blocking, Al Viro
- [PATCH 2/2] kill unused 'flags' argument in avc_has_perm_flags() and avc_audit(), Al Viro
  - Re: [PATCH 2/2] kill unused 'flags' argument in avc_has_perm_flags() and avc_audit(), Paul Moore
- Re: [PATCH 1/2] selinux: slow_avc_audit has become non-blocking, Paul Moore
  - Re: [PATCH 1/2] selinux: slow_avc_audit has become non-blocking, Al Viro
    - Re: [PATCH 1/2] selinux: slow_avc_audit has become non-blocking, Paul Moore
      - Re: [PATCH 1/2] selinux: slow_avc_audit has become non-blocking, Paul Moore
[PATCH -next] selinux: Fix kernel-doc, Yang Li
- Re: [PATCH -next] selinux: Fix kernel-doc, Paul Moore
[PATCH] selinux: use __GFP_NOWARN with GFP_NOWAIT, Minchan Kim
- Re: [PATCH] selinux: use __GFP_NOWARN with GFP_NOWAIT, Andrew Morton
  - Re: [PATCH] selinux: use __GFP_NOWARN with GFP_NOWAIT, Paul Moore
    - Re: [PATCH] selinux: use __GFP_NOWARN with GFP_NOWAIT, Paul Moore
[PATCH] libsepol: quote paths in CIL conversion, Christian Göttsche
- Re: [PATCH] libsepol: quote paths in CIL conversion, James Carter
  - Re: [PATCH] libsepol: quote paths in CIL conversion, James Carter
[PATCH 00/23] libsepol: miscellaneous cleanup, Christian Göttsche
- [PATCH 03/23] libsepol: remove unused functions, Christian Göttsche
  - Re: [PATCH 03/23] libsepol: remove unused functions, James Carter
- [PATCH 10/23] libsepol: mark read-only parameters of ebitmap interfaces const, Christian Göttsche
  - Re: [PATCH 10/23] libsepol: mark read-only parameters of ebitmap interfaces const, James Carter
- [PATCH 13/23] libsepol: assure string NUL-termination, Christian Göttsche
  - Re: [PATCH 13/23] libsepol: assure string NUL-termination, James Carter
  - [PATCH v2 3/3] libsepol: assure string NUL-termination of ibdev_name, Christian Göttsche
    - Re: [PATCH v2 3/3] libsepol: assure string NUL-termination of ibdev_name, Nicolas Iooss
      - Re: [PATCH v2 3/3] libsepol: assure string NUL-termination of ibdev_name, Nicolas Iooss
- [PATCH 20/23] libsepol: drop repeated semicolons, Christian Göttsche
  - Re: [PATCH 20/23] libsepol: drop repeated semicolons, James Carter
- [PATCH 01/23] libsepol: fix typos, Christian Göttsche
  - Re: [PATCH 01/23] libsepol: fix typos, James Carter
- [PATCH 02/23] libsepol: resolve missing prototypes, Christian Göttsche
  - Re: [PATCH 02/23] libsepol: resolve missing prototypes, James Carter
- [PATCH 05/23] libsepol: avoid implicit conversions, Christian Göttsche
  - Re: [PATCH 05/23] libsepol: avoid implicit conversions, Ondrej Mosnacek
  - [PATCH v2 2/3] libsepol: avoid implicit conversions, Christian Göttsche
    - Re: [PATCH v2 2/3] libsepol: avoid implicit conversions, Nicolas Iooss
      - Re: [PATCH v2 2/3] libsepol: avoid implicit conversions, Nicolas Iooss
- [PATCH 15/23] libsepol/cil: silence cast warning, Christian Göttsche
  - Re: [PATCH 15/23] libsepol/cil: silence cast warning, James Carter
- [PATCH 18/23] libsepol/cil: drop unnecessary casts, Christian Göttsche
  - Re: [PATCH 18/23] libsepol/cil: drop unnecessary casts, James Carter
- [PATCH 17/23] libsepol/cil: drop dead store, Christian Göttsche
  - Re: [PATCH 17/23] libsepol/cil: drop dead store, James Carter
- [PATCH 08/23] libsepol/cil: follow declaration-after-statement, Christian Göttsche
  - Re: [PATCH 08/23] libsepol/cil: follow declaration-after-statement, James Carter
- [PATCH 14/23] libsepol: remove dead stores, Christian Göttsche
- [PATCH 04/23] libsepol: ignore UBSAN false-positives, Christian Göttsche
  - Re: [PATCH 04/23] libsepol: ignore UBSAN false-positives, Ondrej Mosnacek
  - Re: [PATCH 04/23] libsepol: ignore UBSAN false-positives, James Carter
  - [PATCH v2 1/3] libsepol: ignore UBSAN false-positives, Christian Göttsche
    - Re: [PATCH v2 1/3] libsepol: ignore UBSAN false-positives, Nicolas Iooss
      - Re: [PATCH v2 1/3] libsepol: ignore UBSAN false-positives, Nicolas Iooss
- [PATCH 06/23] libsepol: avoid unsigned integer overflow, Christian Göttsche
  - Re: [PATCH 06/23] libsepol: avoid unsigned integer overflow, James Carter
- [PATCH 07/23] libsepol: follow declaration-after-statement, Christian Göttsche
  - Re: [PATCH 07/23] libsepol: follow declaration-after-statement, James Carter
- [PATCH 11/23] libsepol: mark read-only parameters of type_set_ interfaces const, Christian Göttsche
  - Re: [PATCH 11/23] libsepol: mark read-only parameters of type_set_ interfaces const, James Carter
- [PATCH 09/23] libsepol: remove dead stores, Christian Göttsche
- [PATCH 12/23] libsepol: do not allocate memory of size 0, Christian Göttsche
  - Re: [PATCH 12/23] libsepol: do not allocate memory of size 0, James Carter
- [PATCH 16/23] libsepol/cil: drop extra semicolon, Christian Göttsche
  - Re: [PATCH 16/23] libsepol/cil: drop extra semicolon, James Carter
- [PATCH 19/23] libsepol/cil: avoid using maybe uninitialized variables, Christian Göttsche
  - Re: [PATCH 19/23] libsepol/cil: avoid using maybe uninitialized variables, James Carter
- [PATCH 21/23] libsepol: drop unnecessary casts, Christian Göttsche
  - Re: [PATCH 21/23] libsepol: drop unnecessary casts, James Carter
- [PATCH 22/23] libsepol: declare file local variable static, Christian Göttsche
  - Re: [PATCH 22/23] libsepol: declare file local variable static, James Carter
- [PATCH 23/23] libsepol: declare read-only arrays const, Christian Göttsche
  - Re: [PATCH 23/23] libsepol: declare read-only arrays const, James Carter
- Re: [PATCH 00/23] libsepol: miscellaneous cleanup, James Carter
[PATCH] libselinux: fix typo, Christian Göttsche
- Re: [PATCH] libselinux: fix typo, Petr Lautrbach
  - Re: [PATCH] libselinux: fix typo, Petr Lautrbach
SELinux IRC channel moved to Libera, Jason Zaman
[PATCH] selinux: remove duplicated LABEL_INITIALIZED check routine, Austin Kim
- Re: [PATCH] selinux: remove duplicated LABEL_INITIALIZED check routine, Paul Moore
  - Re: [PATCH] selinux: remove duplicated LABEL_INITIALIZED check routine, Austin Kim
[PATCH] libselinux: improve getcon(3) man page, Christian Göttsche
- Re: [PATCH] libselinux: improve getcon(3) man page, Petr Lautrbach
  - Re: [PATCH] libselinux: improve getcon(3) man page, Petr Lautrbach
[PATCH] libselinux: selinux_status_open: return 1 in fallback mode, Christian Göttsche
- Re: [PATCH] libselinux: selinux_status_open: return 1 in fallback mode, Petr Lautrbach
  - Re: [PATCH] libselinux: selinux_status_open: return 1 in fallback mode, Petr Lautrbach
[pcmoore-selinux:working-io_uring 9/9] security/smack/smack_lsm.c:4702:5: warning: no previous prototype for function 'smack_uring_override_creds', kernel test robot
- Re: [pcmoore-selinux:working-io_uring 9/9] security/smack/smack_lsm.c:4702:5: warning: no previous prototype for function 'smack_uring_override_creds', Paul Moore
  - Re: [pcmoore-selinux:working-io_uring 9/9] security/smack/smack_lsm.c:4702:5: warning: no previous prototype for function 'smack_uring_override_creds', Casey Schaufler
    - Re: [pcmoore-selinux:working-io_uring 9/9] security/smack/smack_lsm.c:4702:5: warning: no previous prototype for function 'smack_uring_override_creds', Paul Moore
[pcmoore-selinux:working-io_uring 9/9] security/smack/smack_lsm.c:4702:5: warning: no previous prototype for 'smack_uring_override_creds', kernel test robot
[pcmoore-selinux:working-io_uring 8/9] security/selinux/hooks.c:7146:5: warning: no previous prototype for function 'selinux_uring_override_creds', kernel test robot
selinux_check_access is not thread-safe, Seth Moore
- Re: selinux_check_access is not thread-safe, Stephen Smalley
[pcmoore-selinux:working-io_uring 2/9] fs/io_uring.c:6110:3: error: implicit declaration of function 'audit_uring_entry'; did you mean 'audit_syscall_entry'?, kernel test robot
[pcmoore-selinux:working-io_uring 2/9] fs/io_uring.c:6110:3: error: implicit declaration of function 'audit_uring_entry', kernel test robot
[RFC PATCH 0/9] Add LSM access controls and auditing to io_uring, Paul Moore
- [RFC PATCH 1/9] audit: prepare audit_context for use in calling contexts beyond syscalls, Paul Moore
- [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Paul Moore
  - Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Pavel Begunkov
    - Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Paul Moore
      - Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Pavel Begunkov
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Paul Moore
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Pavel Begunkov
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Paul Moore
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Jens Axboe
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Paul Moore
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Pavel Begunkov
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Paul Moore
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Steve Grubb
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Stefan Metzmacher
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Victor Stewart
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Casey Schaufler
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Richard Guy Briggs
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Jens Axboe
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Richard Guy Briggs
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Jens Axboe
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Jens Axboe
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Jens Axboe
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Jens Axboe
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Paul Moore
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Pavel Begunkov
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Paul Moore
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Jens Axboe
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Paul Moore
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Paul Moore
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Pavel Begunkov
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Richard Guy Briggs
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Pavel Begunkov
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Paul Moore
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Pavel Begunkov
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Casey Schaufler
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Jens Axboe
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Paul Moore
        
        Re: [RFC PATCH 2/9] audit,io_uring,io-wq: add some basic audit support to io_uring, Paul Moore
  - Re: [RFC PATCH 2/9] audit, io_uring, io-wq: add some basic audit support to io_uring, Richard Guy Briggs
    - Re: [RFC PATCH 2/9] audit, io_uring, io-wq: add some basic audit support to io_uring, Paul Moore
      - Re: [RFC PATCH 2/9] audit, io_uring, io-wq: add some basic audit support to io_uring, Richard Guy Briggs
        
        Re: [RFC PATCH 2/9] audit, io_uring, io-wq: add some basic audit support to io_uring, Paul Moore
- [RFC PATCH 3/9] audit: dev/test patch to force io_uring auditing, Paul Moore
- [RFC PATCH 4/9] audit: add filtering for io_uring records, Paul Moore
  - Re: [RFC PATCH 4/9] audit: add filtering for io_uring records, Richard Guy Briggs
    - Re: [RFC PATCH 4/9] audit: add filtering for io_uring records, Paul Moore
      - Re: [RFC PATCH 4/9] audit: add filtering for io_uring records, Richard Guy Briggs
        
        Re: [RFC PATCH 4/9] audit: add filtering for io_uring records, Paul Moore
        
        Re: [RFC PATCH 4/9] audit: add filtering for io_uring records, Richard Guy Briggs
        
        Re: [RFC PATCH 4/9] audit: add filtering for io_uring records, Paul Moore
      - [PATCH 1/2] audit: add filtering for io_uring records, addendum, Richard Guy Briggs
        
        Re: [PATCH 1/2] audit: add filtering for io_uring records, addendum, kernel test robot
        
        Re: [PATCH 1/2] audit: add filtering for io_uring records, addendum, kernel test robot
        
        Re: [PATCH 1/2] audit: add filtering for io_uring records, addendum, Paul Moore
        
        Re: [PATCH 1/2] audit: add filtering for io_uring records, addendum, Richard Guy Briggs
        
        Re: [PATCH 1/2] audit: add filtering for io_uring records, addendum, Paul Moore
      - [PATCH 2/2] audit: block PERM fields being used with io_uring filtering, Richard Guy Briggs
- [RFC PATCH 5/9] fs: add anon_inode_getfile_secure() similar to anon_inode_getfd_secure(), Paul Moore
- [RFC PATCH 6/9] io_uring: convert io_uring to the secure anon inode interface, Paul Moore
- [RFC PATCH 7/9] lsm,io_uring: add LSM hooks to io_uring, Paul Moore
  - Re: [RFC PATCH 7/9] lsm,io_uring: add LSM hooks to io_uring, Stefan Metzmacher
    - Re: [RFC PATCH 7/9] lsm,io_uring: add LSM hooks to io_uring, Paul Moore
- [RFC PATCH 8/9] selinux: add support for the io_uring access controls, Paul Moore
- [RFC PATCH 9/9] Smack: Brutalist io_uring support with debug, Paul Moore
- Re: [RFC PATCH 0/9] Add LSM access controls and auditing to io_uring, Tetsuo Handa
  - Re: [RFC PATCH 0/9] Add LSM access controls and auditing to io_uring, Paul Moore
- Re: [RFC PATCH 0/9] Add LSM access controls and auditing to io_uring, Jeff Moyer
  - Re: [RFC PATCH 0/9] Add LSM access controls and auditing to io_uring, Paul Moore
    - Re: [RFC PATCH 0/9] Add LSM access controls and auditing to io_uring, Jeff Moyer
      - Re: [RFC PATCH 0/9] Add LSM access controls and auditing to io_uring, Paul Moore
[PATCH v2 0/2] vfs/security/NFS/btrfs: clean up and fix LSM option handling, Ondrej Mosnacek
- [PATCH v2 1/2] vfs,LSM: introduce the FS_HANDLES_LSM_OPTS flag, Ondrej Mosnacek
  - Re: [PATCH v2 1/2] vfs,LSM: introduce the FS_HANDLES_LSM_OPTS flag, Olga Kornievskaia
    - Re: [PATCH v2 1/2] vfs,LSM: introduce the FS_HANDLES_LSM_OPTS flag, Stephen Smalley
- [PATCH v2 2/2] selinux: fix SECURITY_LSM_NATIVE_LABELS flag handling on double mount, Ondrej Mosnacek
[PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Ondrej Mosnacek
- Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Michael Ellerman
  - Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Ondrej Mosnacek
    - Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, James Morris
      - Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Paul Moore
- Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Paul Moore
  - Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Daniel Borkmann
    - Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Jiri Olsa
    - Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Daniel Borkmann
      - Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Jiri Olsa
      - Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Jiri Olsa
        
        Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Daniel Borkmann
      - Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Ondrej Mosnacek
        
        Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Daniel Borkmann
        
        Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Paul Moore
    - Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Paul Moore
      - Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Daniel Borkmann
        
        Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Paul Moore
        
        Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Paul Moore
        
        Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Daniel Borkmann
        
        Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Paul Moore
        
        Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Daniel Borkmann
        
        Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Paul Moore
        
        Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Daniel Borkmann
        
        Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Paul Moore
        
        Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Daniel Borkmann
        
        Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Paul Moore
        
        Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Alexei Starovoitov
        
        Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Casey Schaufler
        
        Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Linus Torvalds
        
        Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Paul Moore
        
        Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Paul Moore
  - Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Ondrej Mosnacek
    - Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Paul Moore
      - Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Ondrej Mosnacek
        
        Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Paul Moore
- Re: [PATCH v2] lockdown,selinux: avoid bogus SELinux lockdown permission checks, Steven Rostedt
Relative filename in semanage args ?, Bill Dietrich
[PATCH v26 00/25] LSM: Module stacking for AppArmor, Casey Schaufler
- [PATCH v26 01/25] LSM: Infrastructure management of the sock security, Casey Schaufler
- [PATCH v26 02/25] LSM: Add the lsmblob data structure., Casey Schaufler
  - Re: [PATCH v26 02/25] LSM: Add the lsmblob data structure., Mickaël Salaün
    - Re: [PATCH v26 02/25] LSM: Add the lsmblob data structure., Casey Schaufler
      - Re: [PATCH v26 02/25] LSM: Add the lsmblob data structure., Mickaël Salaün
- [PATCH v26 03/25] LSM: provide lsm name and id slot mappings, Casey Schaufler
  - Re: [PATCH v26 03/25] LSM: provide lsm name and id slot mappings, Kees Cook
  - Re: [PATCH v26 03/25] LSM: provide lsm name and id slot mappings, Paul Moore
- [PATCH v26 04/25] IMA: avoid label collisions with stacked LSMs, Casey Schaufler
  - Re: [PATCH v26 04/25] IMA: avoid label collisions with stacked LSMs, Kees Cook
- [PATCH v26 05/25] LSM: Use lsmblob in security_audit_rule_match, Casey Schaufler
- [PATCH v26 06/25] LSM: Use lsmblob in security_kernel_act_as, Casey Schaufler
- [PATCH v26 07/25] LSM: Use lsmblob in security_secctx_to_secid, Casey Schaufler
  - Re: [PATCH v26 07/25] LSM: Use lsmblob in security_secctx_to_secid, Kees Cook
  - Re: [PATCH v26 07/25] LSM: Use lsmblob in security_secctx_to_secid, Paul Moore
- [PATCH v26 08/25] LSM: Use lsmblob in security_secid_to_secctx, Casey Schaufler
  - Re: [PATCH v26 08/25] LSM: Use lsmblob in security_secid_to_secctx, Kees Cook

[Index of Archives] [Selinux Refpolicy] [Fedora Users] [Fedora Desktop] [Kernel] [KDE Users] [Gnome Users]

Powered by Linux