Security Enhanced Linux (SELINUX)

Date Index

[Prev Page][Next Page]

Re: [PATCH v2] fs,security: Fix file_set_fowner LSM hook inconsistencies, (continued)
- Re: [PATCH v2] fs,security: Fix file_set_fowner LSM hook inconsistencies, Paul Moore
  - Re: [PATCH v2] fs,security: Fix file_set_fowner LSM hook inconsistencies, Mickaël Salaün
    - Re: [PATCH v2] fs,security: Fix file_set_fowner LSM hook inconsistencies, Paul Moore
      - Re: [PATCH v2] fs,security: Fix file_set_fowner LSM hook inconsistencies, Mickaël Salaün
        
        Re: [PATCH v2] fs,security: Fix file_set_fowner LSM hook inconsistencies, Paul Moore
        
        Re: [PATCH v2] fs,security: Fix file_set_fowner LSM hook inconsistencies, Mateusz Guzik
        
        Re: [PATCH v2] fs,security: Fix file_set_fowner LSM hook inconsistencies, Mickaël Salaün
        
        Re: [PATCH v2] fs,security: Fix file_set_fowner LSM hook inconsistencies, Paul Moore
[PATCH] libsepol/cil: Allow dotted names in aliasactual rules, James Carter
- Re: [PATCH] libsepol/cil: Allow dotted names in aliasactual rules, Dominick Grift
- Re: [PATCH] libsepol/cil: Allow dotted names in aliasactual rules, James Carter
  - Re: [PATCH] libsepol/cil: Allow dotted names in aliasactual rules, James Carter
[PATCH] fs,security: Fix file_set_fowner LSM hook inconsistencies, Mickaël Salaün
- Re: [PATCH] fs,security: Fix file_set_fowner LSM hook inconsistencies, Paul Moore
- Re: [PATCH] fs,security: Fix file_set_fowner LSM hook inconsistencies, kernel test robot
- Re: [PATCH] fs,security: Fix file_set_fowner LSM hook inconsistencies, kernel test robot
- Re: [PATCH] fs,security: Fix file_set_fowner LSM hook inconsistencies, kernel test robot
- Re: [PATCH] fs,security: Fix file_set_fowner LSM hook inconsistencies, kernel test robot
[PATCH v6 0/9] Improve the copy of task comm, Yafang Shao
- [PATCH v6 1/9] Get rid of __get_task_comm(), Yafang Shao
  - Re: [PATCH v6 1/9] Get rid of __get_task_comm(), Alejandro Colomar
    - Re: [PATCH v6 1/9] Get rid of __get_task_comm(), Yafang Shao
- [PATCH v6 2/9] auditsc: Replace memcpy() with strscpy(), Yafang Shao
- [PATCH v6 3/9] security: Replace memcpy() with get_task_comm(), Yafang Shao
- [PATCH v6 4/9] bpftool: Ensure task comm is always NUL-terminated, Yafang Shao
- [PATCH v6 5/9] mm/util: Fix possible race condition in kstrdup(), Yafang Shao
- [PATCH v6 6/9] mm/util: Deduplicate code in {kstrdup,kstrndup,kmemdup_nul}, Yafang Shao
- [PATCH v6 7/9] tracing: Replace strncpy() with strscpy(), Yafang Shao
  - Re: [PATCH v6 7/9] tracing: Replace strncpy() with strscpy(), Justin Stitt
    - Re: [PATCH v6 7/9] tracing: Replace strncpy() with strscpy(), Justin Stitt
      - Re: [PATCH v6 7/9] tracing: Replace strncpy() with strscpy(), Yafang Shao
- [PATCH v6 8/9] net: Replace strcpy() with strscpy(), Yafang Shao
- [PATCH v6 9/9] drm: Replace strcpy() with strscpy(), Yafang Shao
no period allowed in typealiasactual libsepol 3.7, Dominick Grift
- Re: no period allowed in typealiasactual libsepol 3.7, James Carter
[PATCH 0/2] selinux: Do not include <linux/*.h> from host programs (+ extra clean-up), Masahiro Yamada
- [PATCH 1/2] selinux: do not include <linux/*.h> headers from host programs, Masahiro Yamada
  - Re: [PATCH 1/2] selinux: do not include <linux/*.h> headers from host programs, Paul Moore
- [PATCH 2/2] selinux: move genheaders to security/selinux/, Masahiro Yamada
  - Re: [PATCH 2/2] selinux: move genheaders to security/selinux/, Paul Moore
    - Re: [PATCH 2/2] selinux: move genheaders to security/selinux/, Masahiro Yamada
      - Re: [PATCH 2/2] selinux: move genheaders to security/selinux/, Paul Moore
        
        Re: [PATCH 2/2] selinux: move genheaders to security/selinux/, Masahiro Yamada
        
        Re: [PATCH 2/2] selinux: move genheaders to security/selinux/, Paul Moore
        
        Re: [PATCH 2/2] selinux: move genheaders to security/selinux/, Masahiro Yamada
        
        Re: [PATCH 2/2] selinux: move genheaders to security/selinux/, Paul Moore
[PATCH] selinux: revert our use of vma_is_initial_heap(), Paul Moore
- Re: [PATCH] selinux: revert our use of vma_is_initial_heap(), Paul Moore
- Re: [PATCH] selinux: revert our use of vma_is_initial_heap(), Paul Moore
[PATCH] Revert "selinux: use vma_is_initial_stack() and vma_is_initial_heap()", Kefeng Wang
- Re: [PATCH] Revert "selinux: use vma_is_initial_stack() and vma_is_initial_heap()", Stephen Smalley
  - Re: [PATCH] Revert "selinux: use vma_is_initial_stack() and vma_is_initial_heap()", Paul Moore
    - Re: [PATCH] Revert "selinux: use vma_is_initial_stack() and vma_is_initial_heap()", Stephen Smalley
      - Re: [PATCH] Revert "selinux: use vma_is_initial_stack() and vma_is_initial_heap()", Paul Moore
[PATCH 1/1] selinux: add the processing of the failure of avc_add_xperms_decision(), thunder . leizhen
- Re: [PATCH 1/1] selinux: add the processing of the failure of avc_add_xperms_decision(), Stephen Smalley
- Re: [PATCH 1/1] selinux: add the processing of the failure of avc_add_xperms_decision(), Paul Moore
[PATCH 00/12] Enable build system on macOS hosts, Daniel Gomez via B4 Relay
- [PATCH 01/12] scripts: subarch.include: fix SUBARCH on MacOS hosts, Daniel Gomez via B4 Relay
  - Re: [PATCH 01/12] scripts: subarch.include: fix SUBARCH on MacOS hosts, Nicolas Schier
  - Re: [PATCH 01/12] scripts: subarch.include: fix SUBARCH on MacOS hosts, Masahiro Yamada
    - Re: [PATCH 01/12] scripts: subarch.include: fix SUBARCH on MacOS hosts, Daniel Gomez (Samsung)
      - Re: [PATCH 01/12] scripts: subarch.include: fix SUBARCH on MacOS hosts, Daniel Gomez (Samsung)
- [PATCH 02/12] kbuild: add header_install dependency to scripts, Daniel Gomez via B4 Relay
  - Re: [PATCH 02/12] kbuild: add header_install dependency to scripts, Nicolas Schier
- [PATCH 03/12] file2alias: fix uuid_t definitions for macos, Daniel Gomez via B4 Relay
  - Re: [PATCH 03/12] file2alias: fix uuid_t definitions for macos, Nicolas Schier
    - Re: [PATCH 03/12] file2alias: fix uuid_t definitions for macos, Daniel Gomez
- [PATCH 04/12] drm/xe: xe_gen_wa_oob: fix program_invocation_short_name for macos, Daniel Gomez via B4 Relay
  - Re: [PATCH 04/12] drm/xe: xe_gen_wa_oob: fix program_invocation_short_name for macos, Lucas De Marchi
    - Re: [PATCH 04/12] drm/xe: xe_gen_wa_oob: fix program_invocation_short_name for macos, Daniel Gomez
      - Re: [PATCH 04/12] drm/xe: xe_gen_wa_oob: fix program_invocation_short_name for macos, Lucas De Marchi
- [PATCH 06/12] selinux/genheaders: include bitsperlong and posix_types headers, Daniel Gomez via B4 Relay
  - Re: [PATCH 06/12] selinux/genheaders: include bitsperlong and posix_types headers, Paul Moore
  - Re: [PATCH 06/12] selinux/genheaders: include bitsperlong and posix_types headers, Nicolas Schier
    - Re: [PATCH 06/12] selinux/genheaders: include bitsperlong and posix_types headers, Masahiro Yamada
      - Re: [PATCH 06/12] selinux/genheaders: include bitsperlong and posix_types headers, Paul Moore
    - Re: [PATCH 06/12] selinux/genheaders: include bitsperlong and posix_types headers, Daniel Gomez
      - Re: [PATCH 06/12] selinux/genheaders: include bitsperlong and posix_types headers, Nicolas Schier
- [PATCH 10/12] scripts/mod: add byteswap support, Daniel Gomez via B4 Relay
- [PATCH 07/12] selinux/mdp: include bitsperlong and posix_types headers, Daniel Gomez via B4 Relay
- [PATCH 05/12] accessiblity/speakup: genmap and makemapdata require linux/version.h, Daniel Gomez via B4 Relay
  - Re: [PATCH 05/12] accessiblity/speakup: genmap and makemapdata require linux/version.h, Masahiro Yamada
- [PATCH 08/12] include: add elf.h support, Daniel Gomez via B4 Relay
  - Re: [PATCH 08/12] include: add elf.h support, Greg Kroah-Hartman
    - Re: [PATCH 08/12] include: add elf.h support, Daniel Gomez
      - Re: [PATCH 08/12] include: add elf.h support, Greg Kroah-Hartman
        
        Re: [PATCH 08/12] include: add elf.h support, Nicolas Schier
        
        Re: [PATCH 08/12] include: add elf.h support, Daniel Gomez
        
        Re: [PATCH 08/12] include: add elf.h support, Nicolas Schier
        
        Re: [PATCH 08/12] include: add elf.h support, Masahiro Yamada
        
        Re: [PATCH 08/12] include: add elf.h support, Daniel Gomez
        
        Re: [PATCH 08/12] include: add elf.h support, Masahiro Yamada
        
        Re: [PATCH 08/12] include: add elf.h support, Daniel Gomez
- [PATCH 12/12] scripts/kallsyms: add compatibility support for macos, Daniel Gomez via B4 Relay
- [PATCH 09/12] include: add endian.h support, Daniel Gomez via B4 Relay
- [PATCH 11/12] tty/vt: conmakehash requires linux/limits.h, Daniel Gomez via B4 Relay
  - Re: [PATCH 11/12] tty/vt: conmakehash requires linux/limits.h, Masahiro Yamada
    - Re: [PATCH 11/12] tty/vt: conmakehash requires linux/limits.h, Daniel Gomez (Samsung)
- Re: [PATCH 00/12] Enable build system on macOS hosts, Greg Kroah-Hartman
  - Re: [PATCH 00/12] Enable build system on macOS hosts, Daniel Gomez
    - Re: [PATCH 00/12] Enable build system on macOS hosts, Greg Kroah-Hartman
      - Re: [PATCH 00/12] Enable build system on macOS hosts, Barry Song
        
        Re: [PATCH 00/12] Enable build system on macOS hosts, Klaus Jensen
      - Re: [PATCH 00/12] Enable build system on macOS hosts, Daniel Gomez
        
        Re: [PATCH 00/12] Enable build system on macOS hosts, Greg Kroah-Hartman
[PATCH 1/1] selinux: Fix potential counting error in avc_add_xperms_decision(), thunder . leizhen
- Re: [PATCH 1/1] selinux: Fix potential counting error in avc_add_xperms_decision(), Stephen Smalley
  - Re: [PATCH 1/1] selinux: Fix potential counting error in avc_add_xperms_decision(), Paul Moore
    - Re: [PATCH 1/1] selinux: Fix potential counting error in avc_add_xperms_decision(), Leizhen (ThunderTown)
- Re: [PATCH] selinux: Fix potential counting error in avc_add_xperms_decision(), Markus Elfring
  - Re: [PATCH] selinux: Fix potential counting error in avc_add_xperms_decision(), Leizhen (ThunderTown)
    - Re: [PATCH] selinux: Fix potential counting error in avc_add_xperms_decision(), Leizhen (ThunderTown)
      - Re: [PATCH] selinux: Fix potential counting error in avc_add_xperms_decision(), Markus Elfring
        
        Re: [PATCH] selinux: Fix potential counting error in avc_add_xperms_decision(), Leizhen (ThunderTown)
[PATCH v2 0/2] get rid of cred_transfer, Jann Horn
- [PATCH v2 2/2] security: remove unused cred_alloc_blank/cred_transfer helpers, Jann Horn
  - Re: [PATCH v2 2/2] security: remove unused cred_alloc_blank/cred_transfer helpers, Jarkko Sakkinen
- [PATCH v2 1/2] KEYS: use synchronous task work for changing parent credentials, Jann Horn
  - Re: [PATCH v2 1/2] KEYS: use synchronous task work for changing parent credentials, Jarkko Sakkinen
  - Re: [PATCH v2 1/2] KEYS: use synchronous task work for changing parent credentials, Paul Moore
    - Re: [PATCH v2 1/2] KEYS: use synchronous task work for changing parent credentials, Jann Horn
- Can KEYCTL_SESSION_TO_PARENT be dropped entirely? -- was Re: [PATCH v2 1/2] KEYS: use synchronous task work for changing parent credentials, David Howells
  - Re: Can KEYCTL_SESSION_TO_PARENT be dropped entirely? -- was Re: [PATCH v2 1/2] KEYS: use synchronous task work for changing parent credentials, Jann Horn
    - Re: Can KEYCTL_SESSION_TO_PARENT be dropped entirely? -- was Re: [PATCH v2 1/2] KEYS: use synchronous task work for changing parent credentials, Jarkko Sakkinen
    - Re: Can KEYCTL_SESSION_TO_PARENT be dropped entirely? -- was Re: [PATCH v2 1/2] KEYS: use synchronous task work for changing parent credentials, Paul Moore
      - Re: Can KEYCTL_SESSION_TO_PARENT be dropped entirely? -- was Re: [PATCH v2 1/2] KEYS: use synchronous task work for changing parent credentials, Paul Moore
        
        Re: Can KEYCTL_SESSION_TO_PARENT be dropped entirely? -- was Re: [PATCH v2 1/2] KEYS: use synchronous task work for changing parent credentials, Jann Horn
[PATCH v5 0/9] Improve the copy of task comm, Yafang Shao
- [PATCH v5 1/9] fs/exec: Drop task_lock() inside __get_task_comm(), Yafang Shao
- [PATCH v5 2/9] auditsc: Replace memcpy() with __get_task_comm(), Yafang Shao
- [PATCH v5 3/9] security: Replace memcpy() with __get_task_comm(), Yafang Shao
- [PATCH v5 4/9] bpftool: Ensure task comm is always NUL-terminated, Yafang Shao
- [PATCH v5 5/9] mm/util: Fix possible race condition in kstrdup(), Yafang Shao
- [PATCH v5 6/9] mm/util: Deduplicate code in {kstrdup,kstrndup,kmemdup_nul}, Yafang Shao
- [PATCH v5 7/9] tracing: Replace strncpy() with __get_task_comm(), Yafang Shao
- [PATCH v5 8/9] net: Replace strcpy() with __get_task_comm(), Yafang Shao
- [PATCH v5 9/9] drm: Replace strcpy() with __get_task_comm(), Yafang Shao
- Re: [PATCH v5 0/9] Improve the copy of task comm, Linus Torvalds
  - Re: [PATCH v5 0/9] Improve the copy of task comm, Yafang Shao
    - Re: [PATCH v5 0/9] Improve the copy of task comm, Linus Torvalds
      - Re: [PATCH v5 0/9] Improve the copy of task comm, Yafang Shao
- <Possible follow-ups>
- Re: [PATCH v5 0/9] Improve the copy of task comm, Alejandro Colomar
  - Re: [PATCH v5 0/9] Improve the copy of task comm, Yafang Shao
    - Re: [PATCH v5 0/9] Improve the copy of task comm, Alejandro Colomar
[PATCH RFC] security/KEYS: get rid of cred_alloc_blank and cred_transfer, Jann Horn
- Re: [PATCH RFC] security/KEYS: get rid of cred_alloc_blank and cred_transfer, Jarkko Sakkinen
  - Re: [PATCH RFC] security/KEYS: get rid of cred_alloc_blank and cred_transfer, Jann Horn
    - Re: [PATCH RFC] security/KEYS: get rid of cred_alloc_blank and cred_transfer, Jarkko Sakkinen
monolithic policy on a volatile root, Dominick Grift
- Re: monolithic policy on a volatile root, Stephen Smalley
  - Re: monolithic policy on a volatile root, Stephen Smalley
    - Re: monolithic policy on a volatile root, Dominick Grift
    - Re: monolithic policy on a volatile root, Dominick Grift
  - Re: monolithic policy on a volatile root, Petr Lautrbach
[PATCH v1 1/2] sepolgen: initialize gen_cil, dmitry . sharshakov
- [PATCH v1 2/2] policygen: respect CIL option when generating comments, dmitry . sharshakov
- Re: [PATCH v1 1/2] sepolgen: initialize gen_cil, James Carter
  - Re: [PATCH v1 1/2] sepolgen: initialize gen_cil, James Carter
SELinux namespaces re-base, Stephen Smalley
- Re: SELinux namespaces re-base, Stephen Smalley
  - Re: SELinux namespaces re-base, Stephen Smalley
    - Re: SELinux namespaces re-base, Stephen Smalley
      - Re: SELinux namespaces re-base, Stephen Smalley
        
        Re: SELinux namespaces re-base, Stephen Smalley
        
        Re: SELinux namespaces re-base, Stephen Smalley
        
        Re: SELinux namespaces re-base, Stephen Smalley
        
        Re: SELinux namespaces re-base, Stephen Smalley
        
        Re: SELinux namespaces re-base, Stephen Smalley
        
        Re: SELinux namespaces re-base, Stephen Smalley
        
        Re: SELinux namespaces re-base, Stephen Smalley
        
        Re: SELinux namespaces re-base, Paul Moore
        
        Re: SELinux namespaces re-base, Casey Schaufler
        
        Re: SELinux namespaces re-base, Stephen Smalley
        
        Re: SELinux namespaces re-base, Stephen Smalley
        
        Re: SELinux namespaces re-base, Stephen Smalley
        
        Re: SELinux namespaces re-base, Stephen Smalley
        
        Re: SELinux namespaces re-base, Stephen Smalley
        
        Re: SELinux namespaces re-base, Stephen Smalley
        
        Re: SELinux namespaces re-base, Stephen Smalley
        
        Re: SELinux namespaces re-base, Topi Miettinen
        
        Re: SELinux namespaces re-base, Stephen Smalley
        
        Re: SELinux namespaces re-base, Stephen Smalley
        
        Re: SELinux namespaces re-base, Stephen Smalley
        
        Re: SELinux namespaces re-base, Stephen Smalley
        
        Re: SELinux namespaces re-base, Stephen Smalley
        
        Re: SELinux namespaces re-base, Stephen Smalley
        
        Re: SELinux namespaces re-base, Stephen Smalley
        
        Re: SELinux namespaces re-base, Stephen Smalley
        
        Re: SELinux namespaces re-base, Stephen Smalley
        
        Re: SELinux namespaces re-base, Stephen Smalley
        
        Re: SELinux namespaces re-base, Stephen Smalley
        
        Re: SELinux namespaces re-base, Stephen Smalley
        
        Re: SELinux namespaces re-base, Stephen Smalley
        
        Message not available
        Re: SELinux namespaces re-base, Stephen Smalley
        
        Re: SELinux namespaces re-base, Stephen Smalley
- Re: SELinux namespaces re-base, Paul Moore
[PATCH resend v4 00/11] Improve the copy of task comm, Yafang Shao
- [PATCH v4 01/11] fs/exec: Drop task_lock() inside __get_task_comm(), Yafang Shao
- [PATCH v4 02/11] auditsc: Replace memcpy() with __get_task_comm(), Yafang Shao
- [PATCH v4 03/11] security: Replace memcpy() with __get_task_comm(), Yafang Shao
- [PATCH v4 04/11] bpftool: Ensure task comm is always NUL-terminated, Yafang Shao
- [PATCH v4 05/11] mm/util: Fix possible race condition in kstrdup(), Yafang Shao
- [PATCH v4 06/11] mm/util: Deduplicate code in {kstrdup,kstrndup,kmemdup_nul}, Yafang Shao
- [PATCH v4 07/11] mm/kmemleak: Replace strncpy() with __get_task_comm(), Yafang Shao
- [PATCH v4 08/11] tsacct: Replace strncpy() with __get_task_comm(), Yafang Shao
- [PATCH v4 09/11] tracing: Replace strncpy() with __get_task_comm(), Yafang Shao
- [PATCH v4 10/11] net: Replace strcpy() with __get_task_comm(), Yafang Shao
- [PATCH v4 11/11] drm: Replace strcpy() with __get_task_comm(), Yafang Shao
- Re: [PATCH resend v4 00/11] Improve the copy of task comm, Jani Nikula
  - Re: [PATCH resend v4 00/11] Improve the copy of task comm, Yafang Shao
- Re: [PATCH resend v4 00/11] Improve the copy of task comm, Andrew Morton
  - Re: [PATCH resend v4 00/11] Improve the copy of task comm, Yafang Shao
[PATCH v1 0/2] Refactor return value of two lsm hooks, Xu Kuohai
- [PATCH v1 1/2] lsm: Refactor return value of LSM hook vm_enough_memory, Xu Kuohai
- [PATCH v1 2/2] lsm: Refactor return value of LSM hook inode_copy_up_xattr, Xu Kuohai
- Re: [PATCH v1 0/2] Refactor return value of two lsm hooks, Casey Schaufler
  - Re: [PATCH v1 0/2] Refactor return value of two lsm hooks, Paul Moore
    - Re: [PATCH v1 0/2] Refactor return value of two lsm hooks, Paul Moore
[PATCH] libsepol/cil: Check that sym_index is within bounds, Vit Mojzis
- Re: [PATCH] libsepol/cil: Check that sym_index is within bounds, James Carter
  - Re: [PATCH] libsepol/cil: Check that sym_index is within bounds, James Carter
[PATCH] libsepol/sepol_compute_sid: Do not destroy uninitialized context, Vit Mojzis
- Re: [PATCH] libsepol/sepol_compute_sid: Do not destroy uninitialized context, Christian Göttsche
- Re: [PATCH] libsepol/sepol_compute_sid: Do not destroy uninitialized context, Stephen Smalley
  - Re: [PATCH] libsepol/sepol_compute_sid: Do not destroy uninitialized context, Stephen Smalley
[GIT PULL] selinux/selinux-pr-20240715, Paul Moore
- Re: [GIT PULL] selinux/selinux-pr-20240715, pr-tracker-bot
[RPC] Topic: Issues and Testing Regarding SELinx AVC Cache Modification, Canfeng Guo
- Re: [RPC] Topic: Issues and Testing Regarding SELinx AVC Cache Modification, Stephen Smalley
  - Re: [RPC] Topic: Issues and Testing Regarding SELinx AVC Cache Modification, Stephen Smalley
[PATCH -next,v2] selinux: refactor code to return ERR_PTR in selinux_netlbl_sock_genattr, Gaosheng Cui
- Re: [PATCH -next,v2] selinux: refactor code to return ERR_PTR in selinux_netlbl_sock_genattr, Paul Moore
SElinux store file context and ownership change, Vit Mojzis
- [RFC PATCH] libsemanage: Do not change file context when copying files, Vit Mojzis
  - Re: [RFC PATCH] libsemanage: Do not change file context when copying files, Christian Göttsche
    - Re: [RFC PATCH] libsemanage: Do not change file context when copying files, Stephen Smalley
- Re: SElinux store file context and ownership change, Stephen Smalley
  - Re: SElinux store file context and ownership change, Vit Mojzis
    - [PATCH v2] libsemanage: Preserve file context and ownership in policy store, Vit Mojzis
      - Re: [PATCH v2] libsemanage: Preserve file context and ownership in policy store, Stephen Smalley
        
        Re: [PATCH v2] libsemanage: Preserve file context and ownership in policy store, Stephen Smalley
        
        Re: [PATCH v2] libsemanage: Preserve file context and ownership in policy store, Vit Mojzis
        
        [PATCH v3] libsemanage: Preserve file context and ownership in policy store, Vit Mojzis
        
        Re: [PATCH v3] libsemanage: Preserve file context and ownership in policy store, Stephen Smalley
        
        Re: [PATCH v3] libsemanage: Preserve file context and ownership in policy store, Vit Mojzis
        
        Re: [PATCH v3] libsemanage: Preserve file context and ownership in policy store, Stephen Smalley
        
        Re: [PATCH v3] libsemanage: Preserve file context and ownership in policy store, Vit Mojzis
        
        [PATCH v4] libsemanage: Preserve file context and ownership in policy store, Vit Mojzis
        
        Re: [PATCH v4] libsemanage: Preserve file context and ownership in policy store, Stephen Smalley
        
        [PATCH] libselinux/restorecon: Include <selinux/label.h>, Vit Mojzis
        
        Re: [PATCH] libselinux/restorecon: Include <selinux/label.h>, Stephen Smalley
        
        Re: [PATCH] libselinux/restorecon: Include <selinux/label.h>, Stephen Smalley
        
        Re: [PATCH v4] libsemanage: Preserve file context and ownership in policy store, Stephen Smalley
        
        Re: [PATCH v4] libsemanage: Preserve file context and ownership in policy store, Stephen Smalley
        
        Re: [PATCH v4] libsemanage: Preserve file context and ownership in policy store, Stephen Smalley
        
        [PATCH v5] libsemanage: Preserve file context and ownership in policy store, Vit Mojzis
        
        Re: [PATCH v5] libsemanage: Preserve file context and ownership in policy store, Stephen Smalley
        
        Re: [PATCH v5] libsemanage: Preserve file context and ownership in policy store, Stephen Smalley
        
        Re: [PATCH v5] libsemanage: Preserve file context and ownership in policy store, Christian Göttsche
        
        Re: [PATCH v5] libsemanage: Preserve file context and ownership in policy store, Stephen Smalley
        
        Re: [PATCH v3] libsemanage: Preserve file context and ownership in policy store, Stephen Smalley
[PATCH bpf-next v4 13/20] bpf, lsm: Add check for BPF LSM return value, Xu Kuohai
- [PATCH bpf-next v4 14/20] bpf: Prevent tail call between progs attached to different hooks, Xu Kuohai
- [PATCH bpf-next v4 16/20] bpf: Add a special case for bitwise AND on range [-1, 0], Xu Kuohai
- [PATCH bpf-next v4 17/20] selftests/bpf: Avoid load failure for token_lsm.c, Xu Kuohai
- [PATCH bpf-next v4 18/20] selftests/bpf: Add return value checks for failed tests, Xu Kuohai
- [PATCH bpf-next v4 19/20] selftests/bpf: Add test for lsm tail call, Xu Kuohai
- [PATCH bpf-next v4 20/20] selftests/bpf: Add verifier tests for bpf lsm, Xu Kuohai
- [PATCH bpf-next v4 15/20] bpf: Fix compare error in function retval_range_within, Xu Kuohai
[PATCH bpf-next v4 00/20] Add return value range check for BPF LSM, Xu Kuohai
- [PATCH bpf-next v4 02/20] lsm: Refactor return value of LSM hook inode_need_killpriv, Xu Kuohai
  - Re: [PATCH bpf-next v4 02/20] lsm: Refactor return value of LSM hook inode_need_killpriv, Serge Hallyn
    - Re: [PATCH bpf-next v4 02/20] lsm: Refactor return value of LSM hook inode_need_killpriv, Xu Kuohai
  - Re: [PATCH v4 2/20] lsm: Refactor return value of LSM hook inode_need_killpriv, Paul Moore
    - Re: [PATCH v4 2/20] lsm: Refactor return value of LSM hook inode_need_killpriv, Xu Kuohai
- [PATCH bpf-next v4 05/20] lsm: Refactor return value of LSM hook inode_copy_up_xattr, Xu Kuohai
  - Re: [PATCH v4 5/20] lsm: Refactor return value of LSM hook inode_copy_up_xattr, Paul Moore
    - Re: [PATCH v4 5/20] lsm: Refactor return value of LSM hook inode_copy_up_xattr, Xu Kuohai
- [PATCH bpf-next v4 08/20] lsm: Refactor return value of LSM hook getprocattr, Xu Kuohai
  - Re: [PATCH v4 8/20] lsm: Refactor return value of LSM hook getprocattr, Paul Moore
    - Re: [PATCH v4 8/20] lsm: Refactor return value of LSM hook getprocattr, Xu Kuohai
- [PATCH bpf-next v4 11/20] bpf, lsm: Add disabled BPF LSM hook list, Xu Kuohai
  - Re: [PATCH bpf-next v4 11/20] bpf, lsm: Add disabled BPF LSM hook list, Alexei Starovoitov
    - Re: [PATCH bpf-next v4 11/20] bpf, lsm: Add disabled BPF LSM hook list, Xu Kuohai
- [PATCH bpf-next v4 04/20] lsm: Refactor return value of LSM hook inode_listsecurity, Xu Kuohai
  - Re: [PATCH v4 4/20] lsm: Refactor return value of LSM hook inode_listsecurity, Paul Moore
    - Re: [PATCH v4 4/20] lsm: Refactor return value of LSM hook inode_listsecurity, Xu Kuohai
- [PATCH bpf-next v4 03/20] lsm: Refactor return value of LSM hook inode_getsecurity, Xu Kuohai
  - Re: [PATCH bpf-next v4 03/20] lsm: Refactor return value of LSM hook inode_getsecurity, Simon Horman
    - Re: [PATCH bpf-next v4 03/20] lsm: Refactor return value of LSM hook inode_getsecurity, Xu Kuohai
  - Re: [PATCH v4 3/20] lsm: Refactor return value of LSM hook inode_getsecurity, Paul Moore
    - Re: [PATCH v4 3/20] lsm: Refactor return value of LSM hook inode_getsecurity, Xu Kuohai
- [PATCH bpf-next v4 01/20] lsm: Refactor return value of LSM hook vm_enough_memory, Xu Kuohai
  - Re: [PATCH bpf-next v4 01/20] lsm: Refactor return value of LSM hook vm_enough_memory, Serge Hallyn
  - Re: [PATCH v4 1/20] lsm: Refactor return value of LSM hook vm_enough_memory, Paul Moore
- [PATCH bpf-next v4 07/20] lsm: Refactor return value of LSM hook setprocattr, Xu Kuohai
  - Re: [PATCH v4 7/20] lsm: Refactor return value of LSM hook setprocattr, Paul Moore
    - Re: [PATCH v4 7/20] lsm: Refactor return value of LSM hook setprocattr, Xu Kuohai
- [PATCH bpf-next v4 06/20] lsm: Refactor return value of LSM hook getselfattr, Xu Kuohai
  - Re: [PATCH v4 6/20] lsm: Refactor return value of LSM hook getselfattr, Paul Moore
    - Re: [PATCH v4 6/20] lsm: Refactor return value of LSM hook getselfattr, Xu Kuohai
- [PATCH bpf-next v4 09/20] lsm: Refactor return value of LSM hook key_getsecurity, Xu Kuohai
  - Re: [PATCH v4 9/20] lsm: Refactor return value of LSM hook key_getsecurity, Paul Moore
    - Re: [PATCH v4 9/20] lsm: Refactor return value of LSM hook key_getsecurity, Xu Kuohai
      - Re: [PATCH v4 9/20] lsm: Refactor return value of LSM hook key_getsecurity, Paul Moore
        
        Re: [PATCH v4 9/20] lsm: Refactor return value of LSM hook key_getsecurity, Xu Kuohai
        
        Re: [PATCH v4 9/20] lsm: Refactor return value of LSM hook key_getsecurity, Paul Moore
- [PATCH bpf-next v4 10/20] lsm: Refactor return value of LSM hook audit_rule_match, Xu Kuohai
  - Re: [PATCH v4 10/20] lsm: Refactor return value of LSM hook audit_rule_match, Paul Moore
    - Re: [PATCH v4 10/20] lsm: Refactor return value of LSM hook audit_rule_match, Xu Kuohai
- [PATCH bpf-next v4 12/20] bpf, lsm: Enable BPF LSM prog to read/write return value parameters, Xu Kuohai
- Re: [PATCH bpf-next v4 00/20] Add return value range check for BPF LSM, Paul Moore
  - Re: [PATCH bpf-next v4 00/20] Add return value range check for BPF LSM, Paul Moore
- Re: [PATCH bpf-next v4 00/20] Add return value range check for BPF LSM, Paul Moore
  - Re: [PATCH bpf-next v4 00/20] Add return value range check for BPF LSM, Paul Moore
    - Re: [PATCH bpf-next v4 00/20] Add return value range check for BPF LSM, Xu Kuohai
[PATCH -next] selinux: refactor code to return the correct errno, Gaosheng Cui
- Re: [PATCH] selinux: refactor code to return the correct errno, Paul Moore
  - Re: [PATCH] selinux: refactor code to return the correct errno, cuigaosheng
In permissive setting labels that are not in host policy when running unprivileged fails with EINVAL, Petr Lautrbach
- Re: In permissive setting labels that are not in host policy when running unprivileged fails with EINVAL, Stephen Smalley
  - Re: In permissive setting labels that are not in host policy when running unprivileged fails with EINVAL, Paul Moore
    - Re: In permissive setting labels that are not in host policy when running unprivileged fails with EINVAL, Petr Lautrbach
  - Re: In permissive setting labels that are not in host policy when running unprivileged fails with EINVAL, Dominick Grift
    - Re: In permissive setting labels that are not in host policy when running unprivileged fails with EINVAL, Stephen Smalley
      - Re: In permissive setting labels that are not in host policy when running unprivileged fails with EINVAL, Dominick Grift
[RFC PATCH] lsm: add the inode_free_security_rcu() LSM implementation hook, Paul Moore
- Re: [RFC PATCH] lsm: add the inode_free_security_rcu() LSM implementation hook, Paul Moore
  - Re: [RFC PATCH] lsm: add the inode_free_security_rcu() LSM implementation hook, Mickaël Salaün
    - Re: [RFC PATCH] lsm: add the inode_free_security_rcu() LSM implementation hook, Paul Moore
      - Re: [RFC PATCH] lsm: add the inode_free_security_rcu() LSM implementation hook, Mickaël Salaün
        
        Re: [RFC PATCH] lsm: add the inode_free_security_rcu() LSM implementation hook, Paul Moore
- Re: [RFC PATCH] lsm: add the inode_free_security_rcu() LSM implementation hook, Mickaël Salaün
  - Re: [RFC PATCH] lsm: add the inode_free_security_rcu() LSM implementation hook, Paul Moore
    - Re: [RFC PATCH] lsm: add the inode_free_security_rcu() LSM implementation hook, Casey Schaufler
      - Re: [RFC PATCH] lsm: add the inode_free_security_rcu() LSM implementation hook, Paul Moore
    - Re: [RFC PATCH] lsm: add the inode_free_security_rcu() LSM implementation hook, Mickaël Salaün
      - Re: [RFC PATCH] lsm: add the inode_free_security_rcu() LSM implementation hook, Paul Moore
  - Re: [RFC PATCH] lsm: add the inode_free_security_rcu() LSM implementation hook, Matus Jokay
    - Re: [RFC PATCH] lsm: add the inode_free_security_rcu() LSM implementation hook, Paul Moore
      - Re: [RFC PATCH] lsm: add the inode_free_security_rcu() LSM implementation hook, Dave Chinner
        
        Re: [RFC PATCH] lsm: add the inode_free_security_rcu() LSM implementation hook, Matus Jokay
        
        Re: [RFC PATCH] lsm: add the inode_free_security_rcu() LSM implementation hook, Christian Brauner
        
        Re: [RFC PATCH] lsm: add the inode_free_security_rcu() LSM implementation hook, Paul Moore
        
        Re: [RFC PATCH] lsm: add the inode_free_security_rcu() LSM implementation hook, Dave Chinner
        
        Re: [RFC PATCH] lsm: add the inode_free_security_rcu() LSM implementation hook, Christian Brauner
      - Re: [RFC PATCH] lsm: add the inode_free_security_rcu() LSM implementation hook, Matus Jokay
        
        Re: [RFC PATCH] lsm: add the inode_free_security_rcu() LSM implementation hook, Paul Moore
        
        Re: [RFC PATCH] lsm: add the inode_free_security_rcu() LSM implementation hook, Matus Jokay
- Re: [RFC PATCH] lsm: add the inode_free_security_rcu() LSM implementation hook, Roberto Sassu
  - Re: [RFC PATCH] lsm: add the inode_free_security_rcu() LSM implementation hook, Paul Moore
[PATCH] libselinux: set free'd data to NULL, Petr Lautrbach
- Re: [PATCH] libselinux: set free'd data to NULL, James Carter
  - Re: [PATCH] libselinux: set free'd data to NULL, Petr Lautrbach
Regression in 5876aca0484f ("libselinux: free data on selabel open failure"), Petr Lautrbach
- Re: Regression in 5876aca0484f ("libselinux: free data on selabel open failure"), Petr Lautrbach
[PATCH] checkpolicy: Check the right bits of an ibpkeycon rule subnet prefix, James Carter
- Re: [PATCH] checkpolicy: Check the right bits of an ibpkeycon rule subnet prefix, Stephen Smalley
  - Re: [PATCH] checkpolicy: Check the right bits of an ibpkeycon rule subnet prefix, Stephen Smalley
    - Re: [PATCH] checkpolicy: Check the right bits of an ibpkeycon rule subnet prefix, Stephen Smalley
[PATCH] selinux,smack: remove the capability checks in the removexattr hooks, Paul Moore
- Re: [PATCH] selinux,smack: remove the capability checks in the removexattr hooks, Paul Moore
  - Re: [PATCH] selinux,smack: remove the capability checks in the removexattr hooks, Casey Schaufler
    - Re: [PATCH] selinux,smack: remove the capability checks in the removexattr hooks, Paul Moore
- Re: [PATCH] selinux,smack: remove the capability checks in the removexattr hooks, Casey Schaufler
  - Re: [PATCH] selinux,smack: remove the capability checks in the removexattr hooks, Paul Moore
[PATCH testsuite] tests/task_setscheduler: add cgroup v2 case for moving proc to root cgroup, GONG, Ruiqi
- Re: [PATCH testsuite] tests/task_setscheduler: add cgroup v2 case for moving proc to root cgroup, Gong Ruiqi
  - Re: [PATCH testsuite] tests/task_setscheduler: add cgroup v2 case for moving proc to root cgroup, Paul Moore
    - Re: [PATCH testsuite] tests/task_setscheduler: add cgroup v2 case for moving proc to root cgroup, Gong Ruiqi
      - Re: [PATCH testsuite] tests/task_setscheduler: add cgroup v2 case for moving proc to root cgroup, Ondrej Mosnacek
        
        Re: [PATCH testsuite] tests/task_setscheduler: add cgroup v2 case for moving proc to root cgroup, Gong Ruiqi
        
        Re: [PATCH testsuite] tests/task_setscheduler: add cgroup v2 case for moving proc to root cgroup, Ondrej Mosnacek
        
        Re: [PATCH testsuite] tests/task_setscheduler: add cgroup v2 case for moving proc to root cgroup, Stephen Smalley
        
        Re: [PATCH testsuite] tests/task_setscheduler: add cgroup v2 case for moving proc to root cgroup, Ondrej Mosnacek
        
        Re: [PATCH testsuite] tests/task_setscheduler: add cgroup v2 case for moving proc to root cgroup, Stephen Smalley
[PATCH] libselinux: Fix integer comparison issues when compiling for 32-bit, James Carter
- Re: [PATCH] libselinux: Fix integer comparison issues when compiling for 32-bit, Christian Göttsche
  - Re: [PATCH] libselinux: Fix integer comparison issues when compiling for 32-bit, Stephen Smalley
    - Re: [PATCH] libselinux: Fix integer comparison issues when compiling for 32-bit, James Carter
- Re: [PATCH] libselinux: Fix integer comparison issues when compiling for 32-bit, Stephen Smalley
  - Re: [PATCH] libselinux: Fix integer comparison issues when compiling for 32-bit, Stephen Smalley
UnicodeDecodeError: utf-8 on python semanage -i import, Allan Oepping
- Re: UnicodeDecodeError: utf-8 on python semanage -i import, Stephen Smalley
  - Re: UnicodeDecodeError: utf-8 on python semanage -i import, Stephen Smalley
[PATCH] selinux: Streamline type determination in security_compute_sid, Canfeng Guo
- Re: [PATCH] selinux: Streamline type determination in security_compute_sid, Paul Moore
- <Possible follow-ups>
- [PATCH] selinux: Streamline type determination in security_compute_sid, Canfeng Guo
  - Re: [PATCH] selinux: Streamline type determination in security_compute_sid, Paul Moore
    - Re: [PATCH] selinux: Streamline type determination in security_compute_sid, Paul Moore
[PATCH] selinux: Use 1UL for EBITMAP_BIT to match maps type, Canfeng Guo
- Re: [PATCH] selinux: Use 1UL for EBITMAP_BIT to match maps type, Paul Moore
[PATCH v4 00/11] Improve the copy of task comm, Yafang Shao
- [PATCH v4 01/11] fs/exec: Drop task_lock() inside __get_task_comm(), Yafang Shao
  - [PATCH v4 02/11] auditsc: Replace memcpy() with __get_task_comm(), Yafang Shao
  - [PATCH v4 03/11] security: Replace memcpy() with __get_task_comm(), Yafang Shao
  - [PATCH v4 04/11] bpftool: Ensure task comm is always NUL-terminated, Yafang Shao
  - [PATCH v4 05/11] mm/util: Fix possible race condition in kstrdup(), Yafang Shao
  - [PATCH v4 06/11] mm/util: Deduplicate code in {kstrdup,kstrndup,kmemdup_nul}, Yafang Shao
  - [PATCH v4 07/11] mm/kmemleak: Replace strncpy() with __get_task_comm(), Yafang Shao
  - [PATCH v4 08/11] tsacct: Replace strncpy() with __get_task_comm(), Yafang Shao
  - [PATCH v4 09/11] tracing: Replace strncpy() with __get_task_comm(), Yafang Shao
  - [PATCH v4 10/11] net: Replace strcpy() with __get_task_comm(), Yafang Shao
  - [PATCH v4 11/11] drm: Replace strcpy() with __get_task_comm(), Yafang Shao
ANN: SELinux userspace 3.7, Petr Lautrbach
[PATCH v2] libselinux: deprecate security_disable(3), Christian Göttsche
- Re: [PATCH v2] libselinux: deprecate security_disable(3), James Carter
  - Re: [PATCH v2] libselinux: deprecate security_disable(3), James Carter
[PATCH v3 00/11] Improve the copy of task comm, Yafang Shao
- [PATCH v3 01/11] fs/exec: Drop task_lock() inside __get_task_comm(), Yafang Shao
- [PATCH v3 02/11] auditsc: Replace memcpy() with __get_task_comm(), Yafang Shao
- [PATCH v3 03/11] security: Replace memcpy() with __get_task_comm(), Yafang Shao
- [PATCH v3 04/11] bpftool: Ensure task comm is always NUL-terminated, Yafang Shao
- [PATCH v3 05/11] mm/util: Fix possible race condition in kstrdup(), Yafang Shao
- [PATCH v3 06/11] mm/util: Deduplicate code in {kstrdup,kstrndup,kmemdup_nul}, Yafang Shao
  - Re: [PATCH v3 06/11] mm/util: Deduplicate code in {kstrdup,kstrndup,kmemdup_nul}, Simon Horman
    - Re: [PATCH v3 06/11] mm/util: Deduplicate code in {kstrdup,kstrndup,kmemdup_nul}, Yafang Shao
  - Re: [PATCH v3 06/11] mm/util: Deduplicate code in {kstrdup,kstrndup,kmemdup_nul}, Matthew Wilcox
    - Re: [PATCH v3 06/11] mm/util: Deduplicate code in {kstrdup,kstrndup,kmemdup_nul}, Yafang Shao
      - Re: [PATCH v3 06/11] mm/util: Deduplicate code in {kstrdup,kstrndup,kmemdup_nul}, Matthew Wilcox
        
        Re: [PATCH v3 06/11] mm/util: Deduplicate code in {kstrdup,kstrndup,kmemdup_nul}, Yafang Shao
- [PATCH v3 07/11] mm/kmemleak: Replace strncpy() with __get_task_comm(), Yafang Shao
- [PATCH v3 08/11] tsacct: Replace strncpy() with __get_task_comm(), Yafang Shao
- [PATCH v3 09/11] tracing: Replace strncpy() with __get_task_comm(), Yafang Shao
  - Re: [PATCH v3 09/11] tracing: Replace strncpy() with __get_task_comm(), Google
- [PATCH v3 10/11] net: Replace strcpy() with __get_task_comm(), Yafang Shao
- [PATCH v3 11/11] drm: Replace strcpy() with __get_task_comm(), Yafang Shao
  - Re: [PATCH v3 11/11] drm: Replace strcpy() with __get_task_comm(), Daniel Vetter
Re: [PATCH v2 0/2] cipso: make cipso_v4_skbuff_delattr() fully remove the CIPSO options, Paul Moore
- Re: [PATCH v2 0/2] cipso: make cipso_v4_skbuff_delattr() fully remove the CIPSO options, Ondrej Mosnacek
  - Re: [PATCH v2 0/2] cipso: make cipso_v4_skbuff_delattr() fully remove the CIPSO options, Paul Moore
ANN: SELinux userspace 3.7-rc3 release, Petr Lautrbach
[PATCH] libsepol: check scope permissions refer to valid class, Christian Göttsche
- Message not available
  - Re: [PATCH] libsepol: check scope permissions refer to valid class, Christian Göttsche
    - Re: [PATCH] libsepol: check scope permissions refer to valid class, James Carter
- Re: [PATCH] libsepol: check scope permissions refer to valid class, James Carter
  - Re: [PATCH] libsepol: check scope permissions refer to valid class, James Carter
[PATCH] libsepol: Do not reject all type rules in conditionals when validating, James Carter
- Re: [PATCH] libsepol: Do not reject all type rules in conditionals when validating, Christian Göttsche
  - Re: [PATCH] libsepol: Do not reject all type rules in conditionals when validating, Petr Lautrbach
    - Re: [PATCH] libsepol: Do not reject all type rules in conditionals when validating, James Carter
[PATCH v2 00/10] Improve the copy of task comm, Yafang Shao
- [PATCH v2 01/10] fs/exec: Drop task_lock() inside __get_task_comm(), Yafang Shao
- [PATCH v2 02/10] auditsc: Replace memcpy() with __get_task_comm(), Yafang Shao
- [PATCH v2 03/10] security: Replace memcpy() with __get_task_comm(), Yafang Shao
- [PATCH v2 04/10] bpftool: Ensure task comm is always NUL-terminated, Yafang Shao
- [PATCH v2 05/10] mm/util: Fix possible race condition in kstrdup(), Yafang Shao
  - Re: [PATCH v2 05/10] mm/util: Fix possible race condition in kstrdup(), Andrew Morton
    - Re: [PATCH v2 05/10] mm/util: Fix possible race condition in kstrdup(), Linus Torvalds
      - Re: [PATCH v2 05/10] mm/util: Fix possible race condition in kstrdup(), Yafang Shao
    - Re: [PATCH v2 05/10] mm/util: Fix possible race condition in kstrdup(), Yafang Shao
- [PATCH v2 06/10] mm/kmemleak: Replace strncpy() with __get_task_comm(), Yafang Shao
  - Re: [PATCH v2 06/10] mm/kmemleak: Replace strncpy() with __get_task_comm(), Catalin Marinas
    - Re: [PATCH v2 06/10] mm/kmemleak: Replace strncpy() with __get_task_comm(), Yafang Shao
      - Re: [PATCH v2 06/10] mm/kmemleak: Replace strncpy() with __get_task_comm(), Catalin Marinas
        
        Re: [PATCH v2 06/10] mm/kmemleak: Replace strncpy() with __get_task_comm(), Yafang Shao
- [PATCH v2 07/10] tsacct: Replace strncpy() with __get_task_comm(), Yafang Shao
- [PATCH v2 08/10] tracing: Replace strncpy() with __get_task_comm(), Yafang Shao
- [PATCH v2 09/10] net: Replace strcpy() with __get_task_comm(), Yafang Shao
- [PATCH v2 10/10] drm: Replace strcpy() with __get_task_comm(), Yafang Shao
[PATCH v2 0/4] Introduce user namespace capabilities, Jonathan Calmels
- [PATCH v2 1/4] capabilities: Add user namespace capabilities, Jonathan Calmels
  - Re: [PATCH v2 1/4] capabilities: Add user namespace capabilities, Serge E. Hallyn
    - Re: [PATCH v2 1/4] capabilities: Add user namespace capabilities, Jonathan Calmels
      - Re: [PATCH v2 1/4] capabilities: Add user namespace capabilities, Serge E. Hallyn
  - Re: [PATCH v2 1/4] capabilities: Add user namespace capabilities, Serge E. Hallyn
    - Re: [PATCH v2 1/4] capabilities: Add user namespace capabilities, Jonathan Calmels
      - Re: [PATCH v2 1/4] capabilities: Add user namespace capabilities, Serge E. Hallyn
- [PATCH v2 2/4] capabilities: Add securebit to restrict userns caps, Jonathan Calmels
  - Re: [PATCH v2 2/4] capabilities: Add securebit to restrict userns caps, Serge E. Hallyn
    - Re: [PATCH v2 2/4] capabilities: Add securebit to restrict userns caps, Jonathan Calmels
      - Re: [PATCH v2 2/4] capabilities: Add securebit to restrict userns caps, Serge E. Hallyn
  - Re: [PATCH v2 2/4] capabilities: Add securebit to restrict userns caps, Jarkko Sakkinen
    - Re: [PATCH v2 2/4] capabilities: Add securebit to restrict userns caps, Jarkko Sakkinen
- [PATCH v2 3/4] capabilities: Add sysctl to mask off userns caps, Jonathan Calmels
- [PATCH v2 4/4] bpf,lsm: Allow editing capabilities in BPF-LSM hooks, Jonathan Calmels
  - Re: [PATCH v2 4/4] bpf,lsm: Allow editing capabilities in BPF-LSM hooks, Paul Moore
    - Re: [PATCH v2 4/4] bpf,lsm: Allow editing capabilities in BPF-LSM hooks, Jonathan Calmels
      - Re: [PATCH v2 4/4] bpf,lsm: Allow editing capabilities in BPF-LSM hooks, John Johansen
        
        Re: [PATCH v2 4/4] bpf,lsm: Allow editing capabilities in BPF-LSM hooks, Paul Moore
        
        Re: [PATCH v2 4/4] bpf,lsm: Allow editing capabilities in BPF-LSM hooks, Jonathan Calmels
        
        Re: [PATCH v2 4/4] bpf,lsm: Allow editing capabilities in BPF-LSM hooks, Paul Moore
        
        Re: [PATCH v2 4/4] bpf,lsm: Allow editing capabilities in BPF-LSM hooks, Jonathan Calmels
        
        Re: [PATCH v2 4/4] bpf,lsm: Allow editing capabilities in BPF-LSM hooks, Paul Moore
        
        Re: [PATCH v2 4/4] bpf,lsm: Allow editing capabilities in BPF-LSM hooks, John Johansen
        
        Re: [PATCH v2 4/4] bpf,lsm: Allow editing capabilities in BPF-LSM hooks, Jonathan Calmels
        
        Re: [PATCH v2 4/4] bpf,lsm: Allow editing capabilities in BPF-LSM hooks, Paul Moore
        
        Re: [PATCH v2 4/4] bpf,lsm: Allow editing capabilities in BPF-LSM hooks, Serge E. Hallyn
        
        Re: [PATCH v2 4/4] bpf,lsm: Allow editing capabilities in BPF-LSM hooks, Dr. Greg
        
        Re: [PATCH v2 4/4] bpf,lsm: Allow editing capabilities in BPF-LSM hooks, Paul Moore
- Re: [PATCH v2 0/4] Introduce user namespace capabilities, Josef Bacik
  - Re: [PATCH v2 0/4] Introduce user namespace capabilities, Jonathan Calmels
[PATCH] libsepol: contify function pointer arrays, Christian Göttsche
- Re: [PATCH] libsepol: contify function pointer arrays, James Carter
  - Re: [PATCH] libsepol: contify function pointer arrays, James Carter
[PATCH] tree-wide: fix misc typos, Christian Göttsche
- Re: [PATCH] tree-wide: fix misc typos, James Carter
  - Re: [PATCH] tree-wide: fix misc typos, James Carter
[PATCH] checkpolicy: reject duplicate nodecon statements, Christian Göttsche
- Re: [PATCH] checkpolicy: reject duplicate nodecon statements, James Carter
  - Re: [PATCH] checkpolicy: reject duplicate nodecon statements, James Carter
[PATCH 1/2] libsepol: move unchanged data out of loop, Christian Göttsche
- [PATCH 2/2] libsepol: rework permission enabled check, Christian Göttsche
  - Re: [PATCH 2/2] libsepol: rework permission enabled check, James Carter
    - Re: [PATCH 2/2] libsepol: rework permission enabled check, James Carter
- Re: [PATCH 1/2] libsepol: move unchanged data out of loop, James Carter
  - Re: [PATCH 1/2] libsepol: move unchanged data out of loop, James Carter
[PATCH 1/2] libselinux: deprecate security_disable(3), Christian Göttsche
- [PATCH 2/2] libselinux: constify avc_open(3) parameter, Christian Göttsche
  - Re: [PATCH 2/2] libselinux: constify avc_open(3) parameter, James Carter
    - Re: [PATCH 2/2] libselinux: constify avc_open(3) parameter, James Carter
- Re: [PATCH 1/2] libselinux: deprecate security_disable(3), James Carter
  - Re: [PATCH 1/2] libselinux: deprecate security_disable(3), Christian Göttsche
    - Re: [PATCH 1/2] libselinux: deprecate security_disable(3), James Carter
[PATCH] libsepol: hashtab: save one comparison on hit, Christian Göttsche
- Re: [PATCH] libsepol: hashtab: save one comparison on hit, James Carter
  - Re: [PATCH] libsepol: hashtab: save one comparison on hit, James Carter
[PATCH] libsepol: validate attribute-type maps, Christian Göttsche
- Re: [PATCH] libsepol: validate attribute-type maps, James Carter
  - Re: [PATCH] libsepol: validate attribute-type maps, James Carter
[PATCH] fixfiles: drop unnecessary \ line endings, Petr Lautrbach
- Re: [PATCH] fixfiles: drop unnecessary \ line endings, James Carter
  - Re: [PATCH] fixfiles: drop unnecessary \ line endings, James Carter
ANN: SELinux userspace 3.7-rc2 release, Petr Lautrbach
[PATCH 0/6] kernel: Avoid memcpy of task comm, Yafang Shao
- [PATCH 1/6] fs/exec: Drop task_lock() inside __get_task_comm(), Yafang Shao
  - Re: [PATCH 1/6] fs/exec: Drop task_lock() inside __get_task_comm(), Eric W. Biederman
    - Re: [PATCH 1/6] fs/exec: Drop task_lock() inside __get_task_comm(), Yafang Shao
      - Re: [PATCH 1/6] fs/exec: Drop task_lock() inside __get_task_comm(), Alexei Starovoitov
        
        Re: [PATCH 1/6] fs/exec: Drop task_lock() inside __get_task_comm(), Eric W. Biederman
        
        Re: [PATCH 1/6] fs/exec: Drop task_lock() inside __get_task_comm(), Alexei Starovoitov
        
        Re: [PATCH 1/6] fs/exec: Drop task_lock() inside __get_task_comm(), Yafang Shao
        
        Re: [PATCH 1/6] fs/exec: Drop task_lock() inside __get_task_comm(), Eric W. Biederman
        
        Re: [PATCH 1/6] fs/exec: Drop task_lock() inside __get_task_comm(), Alexei Starovoitov
        
        Re: [PATCH 1/6] fs/exec: Drop task_lock() inside __get_task_comm(), Linus Torvalds
      - Re: [PATCH 1/6] fs/exec: Drop task_lock() inside __get_task_comm(), Eric W. Biederman
  - Re: [PATCH 1/6] fs/exec: Drop task_lock() inside __get_task_comm(), Matus Jokay
  - Re: [PATCH 1/6] fs/exec: Drop task_lock() inside __get_task_comm(), Matus Jokay
    - Re: [PATCH 1/6] fs/exec: Drop task_lock() inside __get_task_comm(), Yafang Shao
- [PATCH 2/6] tracing: Replace memcpy() with __get_task_comm(), Yafang Shao
  - Re: [PATCH 2/6] tracing: Replace memcpy() with __get_task_comm(), Steven Rostedt
    - Re: [PATCH 2/6] tracing: Replace memcpy() with __get_task_comm(), Linus Torvalds
      - Re: [PATCH 2/6] tracing: Replace memcpy() with __get_task_comm(), Steven Rostedt
        
        Re: [PATCH 2/6] tracing: Replace memcpy() with __get_task_comm(), Linus Torvalds
        
        Re: [PATCH 2/6] tracing: Replace memcpy() with __get_task_comm(), Steven Rostedt
        
        Re: [PATCH 2/6] tracing: Replace memcpy() with __get_task_comm(), Linus Torvalds
        
        Re: [PATCH 2/6] tracing: Replace memcpy() with __get_task_comm(), Steven Rostedt
        
        Re: [PATCH 2/6] tracing: Replace memcpy() with __get_task_comm(), Yafang Shao
- [PATCH 3/6] auditsc: Replace memcpy() with __get_task_comm(), Yafang Shao
  - Re: [PATCH 3/6] auditsc: Replace memcpy() with __get_task_comm(), Paul Moore
- [PATCH 4/6] security: Replace memcpy() with __get_task_comm(), Yafang Shao
  - Re: [PATCH 4/6] security: Replace memcpy() with __get_task_comm(), Paul Moore
- [PATCH 5/6] bpftool: Make task comm always be NUL-terminated, Yafang Shao
  - Re: [PATCH 5/6] bpftool: Make task comm always be NUL-terminated, Quentin Monnet
- [PATCH 6/6] selftests/bpf: Replace memcpy() with __get_task_comm(), Yafang Shao
[PATCH v3 1/2 testsuite] tools/nfs.sh: comment out the fscontext= tests for now, Stephen Smalley
- [PATCH v3 2/2 testsuite] tests/nfs_filesystem: comment out failing mount, Stephen Smalley
- Re: [PATCH v3 1/2 testsuite] tools/nfs.sh: comment out the fscontext= tests for now, Ondrej Mosnacek
  - Re: [PATCH v3 1/2 testsuite] tools/nfs.sh: comment out the fscontext= tests for now, Stephen Smalley
[PATCH v2 1/2] tools/nfs.sh: comment out the fscontext= tests for now, Stephen Smalley
- [PATCH v2 2/2] tests/nfs_filesystem: remove failing mount, Stephen Smalley
- Re: [PATCH v2 1/2] tools/nfs.sh: comment out the fscontext= tests for now, Paul Moore
  - Re: [PATCH v2 1/2] tools/nfs.sh: comment out the fscontext= tests for now, Stephen Smalley
  - Re: [PATCH v2 1/2] tools/nfs.sh: comment out the fscontext= tests for now, Ondrej Mosnacek
ANN: SELinux userspace 3.7-rc1 release, Petr Lautrbach
[PATCH PR #134] sesearch: CIL output, Topi Miettinen
[PATCH] tracing/treewide: Remove second parameter of __assign_str(), Steven Rostedt
- Re: [PATCH] tracing/treewide: Remove second parameter of __assign_str(), Christian König
- Re: [PATCH] tracing/treewide: Remove second parameter of __assign_str(), Thomas Hellström
- Re: [PATCH] tracing/treewide: Remove second parameter of __assign_str(), Rafael J. Wysocki
- Re: [PATCH] tracing/treewide: Remove second parameter of __assign_str(), Takashi Iwai
- Re: [PATCH] tracing/treewide: Remove second parameter of __assign_str(), Darrick J. Wong
- Re: [PATCH] tracing/treewide: Remove second parameter of __assign_str(), Guenter Roeck
  - Re: [PATCH] tracing/treewide: Remove second parameter of __assign_str(), Steven Rostedt
    - Re: [PATCH] tracing/treewide: Remove second parameter of __assign_str(), Guenter Roeck
      - Re: [PATCH] tracing/treewide: Remove second parameter of __assign_str(), Guenter Roeck
- Re: [f2fs-dev] [PATCH] tracing/treewide: Remove second parameter of __assign_str(), patchwork-bot+f2fs
Intent to release 3.7, Petr Lautrbach
- <Possible follow-ups>
- Intent to release 3.7, Petr Lautrbach
  - Re: Intent to release 3.7, Christian Göttsche
[PATCH 1/4] sandbox: do not fail without xmodmap, Petr Lautrbach
- [PATCH 4/4] sandbox: Add support for Wayland, Petr Lautrbach
- [PATCH 2/4] sandbox: do not run window manager if it's not a session, Petr Lautrbach
- [PATCH 3/4] seunshare: Add [ -P pipewiresocket ] [ -W waylandsocket ] options, Petr Lautrbach
- Re: [PATCH 1/4] sandbox: do not fail without xmodmap, James Carter
  - Re: [PATCH 1/4] sandbox: do not fail without xmodmap, Petr Lautrbach
[GIT PULL] selinux/selinux-pr-20240513, Paul Moore
- Re: [GIT PULL] selinux/selinux-pr-20240513, pr-tracker-bot
[PATCH 1/2] checkpolicy: perform contiguous check in host byte order, Christian Göttsche
- [PATCH 2/2] checkpolicy: support CIDR notation for nodecon statements, Christian Göttsche
- Re: [PATCH 1/2] checkpolicy: perform contiguous check in host byte order, James Carter
  - Re: [PATCH 1/2] checkpolicy: perform contiguous check in host byte order, James Carter
[RFC][PATCH] ima: Use sequence number to wait for policy updates, Roberto Sassu
- Re: [RFC][PATCH] ima: Use sequence number to wait for policy updates, Roberto Sassu
  - Re: [RFC][PATCH] ima: Use sequence number to wait for policy updates, Mimi Zohar
[PATCH v3] ima: Avoid blocking in RCU read-side critical section, GUO Zihua
- Re: [PATCH v3] ima: Avoid blocking in RCU read-side critical section, Mimi Zohar
- Re: [PATCH v3] ima: Avoid blocking in RCU read-side critical section, Casey Schaufler
  - Re: [PATCH v3] ima: Avoid blocking in RCU read-side critical section, Mimi Zohar
- Re: [PATCH v3] ima: Avoid blocking in RCU read-side critical section, John Johansen
- Re: [PATCH v3] ima: Avoid blocking in RCU read-side critical section, Paul Moore
  - Re: [PATCH v3] ima: Avoid blocking in RCU read-side critical section, Paul Moore
    - Re: [PATCH v3] ima: Avoid blocking in RCU read-side critical section, Roberto Sassu
      - Re: [PATCH v3] ima: Avoid blocking in RCU read-side critical section, Paul Moore
[PATCH 1/2 testsuite] tests/nfs_filesystem: remove failing mount, Stephen Smalley
- [PATCH 2/2 testsuite] tools/nfs.sh: comment out the fscontext= tests for now, Stephen Smalley
  - Re: [PATCH 2/2 testsuite] tools/nfs.sh: comment out the fscontext= tests for now, Stephen Smalley
    - Re: [PATCH 2/2 testsuite] tools/nfs.sh: comment out the fscontext= tests for now, Stephen Smalley
      - Re: [PATCH 2/2 testsuite] tools/nfs.sh: comment out the fscontext= tests for now, Paul Moore
        
        Re: [PATCH 2/2 testsuite] tools/nfs.sh: comment out the fscontext= tests for now, Stephen Smalley
        
        Re: [PATCH 2/2 testsuite] tools/nfs.sh: comment out the fscontext= tests for now, Stephen Smalley
        
        Re: [PATCH 2/2 testsuite] tools/nfs.sh: comment out the fscontext= tests for now, Stephen Smalley
[PATCH 1/4] libsepol: reject self flag in type rules in old policies, Christian Göttsche
- [PATCH 3/4] libsepol: validate type-attribute-map for old policies, Christian Göttsche
- [PATCH 4/4] libsepol: include prefix for module policy versions, Christian Göttsche
- [PATCH 2/4] libsepol: only exempt gaps checking for kernel policies, Christian Göttsche
- Re: [PATCH 1/4] libsepol: reject self flag in type rules in old policies, James Carter
  - Re: [PATCH 1/4] libsepol: reject self flag in type rules in old policies, James Carter
NFS context mount failures, Stephen Smalley
- Re: NFS context mount failures, Stephen Smalley
[PATCH v3] nfsd: set security label during create operations, Stephen Smalley
- Re: [PATCH v3] nfsd: set security label during create operations, Jeffrey Layton
- Re: [PATCH v3] nfsd: set security label during create operations, Chuck Lever
- Re: [PATCH v3] nfsd: set security label during create operations, NeilBrown
  - Re: [PATCH v3] nfsd: set security label during create operations, Stephen Smalley
    - Re: [PATCH v3] nfsd: set security label during create operations, NeilBrown
  - Re: [PATCH v3] nfsd: set security label during create operations, Stephen Smalley
    - Re: [PATCH v3] nfsd: set security label during create operations, Stephen Smalley
      - Re: [PATCH v3] nfsd: set security label during create operations, Stephen Smalley
[RFC PATCH] lsm: fixup the inode xattr capability handling, Paul Moore
- Re: [RFC PATCH] lsm: fixup the inode xattr capability handling, Casey Schaufler
  - Re: [RFC PATCH] lsm: fixup the inode xattr capability handling, Paul Moore
    - Re: [RFC PATCH] lsm: fixup the inode xattr capability handling, Casey Schaufler
      - Re: [RFC PATCH] lsm: fixup the inode xattr capability handling, Paul Moore
        
        Re: [RFC PATCH] lsm: fixup the inode xattr capability handling, Casey Schaufler
        
        Re: [RFC PATCH] lsm: fixup the inode xattr capability handling, Paul Moore
        
        Re: [RFC PATCH] lsm: fixup the inode xattr capability handling, Paul Moore
        
        Re: [RFC PATCH] lsm: fixup the inode xattr capability handling, Paul Moore
- Re: [RFC PATCH] lsm: fixup the inode xattr capability handling, Serge Hallyn
  - Re: [RFC PATCH] lsm: fixup the inode xattr capability handling, Paul Moore
    - Re: [RFC PATCH] lsm: fixup the inode xattr capability handling, Serge E. Hallyn
- Re: [RFC PATCH] lsm: fixup the inode xattr capability handling, KP Singh
  - Re: [RFC PATCH] lsm: fixup the inode xattr capability handling, Paul Moore
[PATCH v2] nfsd: set security label during create operations, Stephen Smalley
- Re: [PATCH v2] nfsd: set security label during create operations, Chuck Lever
- Re: [PATCH v2] nfsd: set security label during create operations, Jeffrey Layton
  - Re: [PATCH v2] nfsd: set security label during create operations, Stephen Smalley
- Re: [PATCH v2] nfsd: set security label during create operations, kernel test robot
cgroup2 labeling status, Chris PeBenito
- Re: cgroup2 labeling status, Stephen Smalley
  - Re: cgroup2 labeling status, Chris PeBenito
    - Re: cgroup2 labeling status, Stephen Smalley
      - Re: cgroup2 labeling status, Chris PeBenito
[RFC][PATCH] nfsd: set security label during create operations, Stephen Smalley
- Re: [RFC][PATCH] nfsd: set security label during create operations, Jeffrey Layton
ANN: SETools 4.5.1, Chris PeBenito
ANN: new release of The SELinux Notebook, Paul Moore
[PATCH 1/3] libselinux: free empty scandir(3) result, Christian Göttsche
- [PATCH 2/3] libselinux: avoid pointer dereference before check, Christian Göttsche
  - Re: [PATCH 2/3] libselinux: avoid pointer dereference before check, William Roberts
- [PATCH 3/3] mcstrans: free constraint in error branch, Christian Göttsche
  - Re: [PATCH 3/3] mcstrans: free constraint in error branch, William Roberts
- Re: [PATCH 1/3] libselinux: free empty scandir(3) result, William Roberts
  - Re: [PATCH 1/3] libselinux: free empty scandir(3) result, Christian Göttsche
    - Re: [PATCH 1/3] libselinux: free empty scandir(3) result, William Roberts

[Index of Archives] [Selinux Refpolicy] [Fedora Users] [Fedora Desktop] [Kernel] [KDE Users] [Gnome Users]

Powered by Linux