Security Enhanced Linux (SELINUX)
[Prev Page][Next Page]
- Re: [PATCH v2 2/2] selinux: move genheaders to security/selinux/, (continued)
- linux-next commit 0855feef5235 ("fsnotify: introduce pre-content permission event"),
Paul Moore
- [PATCH v2 0/8] Enable build system on macOS hosts,
Daniel Gomez via B4 Relay
- selinux-testsuite / NFS symlink issue,
Ondrej Mosnacek
- [PATCH] selinux: fix style problems in security/selinux/include/audit.h,
Paul Moore
- [PATCH v2 00/13] LSM: Move away from secids,
Casey Schaufler
- [PATCH v2 03/13] LSM: Add lsmblob_to_secctx hook, Casey Schaufler
- [PATCH v2 04/13] Audit: maintain an lsmblob in audit_context, Casey Schaufler
- [PATCH v2 08/13] LSM: Use lsmblob in security_inode_getsecid, Casey Schaufler
- [PATCH v2 07/13] LSM: Use lsmblob in security_current_getsecid, Casey Schaufler
- [PATCH v2 09/13] Audit: use an lsmblob in audit_names, Casey Schaufler
- [PATCH v2 10/13] LSM: Create new security_cred_getlsmblob LSM hook, Casey Schaufler
- [PATCH v2 12/13] Netlabel: Use lsmblob for audit data, Casey Schaufler
- [PATCH v2 13/13] LSM: Remove lsmblob scaffolding, Casey Schaufler
- [PATCH v2 01/13] LSM: Add the lsmblob data structure., Casey Schaufler
- [PATCH v2 02/13] LSM: Use lsmblob in security_audit_rule_match, Casey Schaufler
- [PATCH v2 05/13] LSM: Use lsmblob in security_ipc_getsecid, Casey Schaufler
- [PATCH v2 06/13] Audit: Update shutdown LSM data, Casey Schaufler
- [PATCH v2 11/13] Audit: Change context data from secid to lsmblob, Casey Schaufler
- [PATCH testsuite v2] tests/extended_socket_class: test SMC sockets,
Stephen Smalley
- [PATCH testsuite] policy,tests: add tests for netlink xperms,
Stephen Smalley
- [PATCH 0/1] selinux,smack: don't bypass permissions check in inode_setsecctx hook,
Scott Mayhew
- [PATCH v3] checkpolicy: Fix MLS users in optional blocks,
James Carter
- [PATCH RESEND] selinux: mark all newly created Internet domain sockets as labeled sockets,
Guido Trentalancia
- [PATCH v8 0/8] Improve the copy of task comm,
Yafang Shao
- [PATCH v8 1/8] Get rid of __get_task_comm(), Yafang Shao
- [PATCH v8 2/8] auditsc: Replace memcpy() with strscpy(), Yafang Shao
- [PATCH v8 3/8] security: Replace memcpy() with get_task_comm(), Yafang Shao
- [PATCH v8 4/8] bpftool: Ensure task comm is always NUL-terminated, Yafang Shao
- [PATCH v8 5/8] mm/util: Fix possible race condition in kstrdup(), Yafang Shao
- [PATCH v8 6/8] mm/util: Deduplicate code in {kstrdup,kstrndup,kmemdup_nul}, Yafang Shao
- [PATCH v8 7/8] net: Replace strcpy() with strscpy(), Yafang Shao
- [PATCH v8 8/8] drm: Replace strcpy() with strscpy(), Yafang Shao
- Re: [PATCH bpf-next 7/8] security,bpf: constify struct path in bpf_token_create() LSM hook,
Paul Moore
- [PATCH] selinux: replace kmem_cache_create() with KMEM_CACHE(),
ericsu
- [PATCH testsuite] tests/key_socket: skip the test if CONFIG_NET_KEY is not enabled,
Ondrej Mosnacek
- [PATCH net] sctp: fix association labeling in the duplicate COOKIE-ECHO case,
Ondrej Mosnacek
- [PATCH] selinux: annotate false positive data race to avoid KCSAN warnings,
Stephen Smalley
- [PATCH] selinux: mark all newly created Internet domain sockets as labeled sockets,
Guido Trentalancia
- [PATCH] libselinux: rename hashtab functions,
Thiébaud Weksteen
- [syzbot] [selinux?] KCSAN: data-race in inode_doinit_with_dentry / selinux_file_open, syzbot
- [PATCH 1/1] selinux: simplify avc_xperms_audit_required(),
Zhen Lei
- [PATCH 1/3] libsepol: Rename ioctl xperms structures and functions,
Thiébaud Weksteen
- [PATCH v3 1/2] fs: Fix file_set_fowner LSM hook inconsistencies,
Mickaël Salaün
- [PATCH] selinux: Add netlink xperm support,
Thiébaud Weksteen
- [PATCH] sepolgen-ifgen: allow M4 escaped filenames,
Petr Lautrbach
- [PATCH v7 0/8] Improve the copy of task comm,
Yafang Shao
- [PATCH v7 1/8] Get rid of __get_task_comm(), Yafang Shao
- [PATCH v7 2/8] auditsc: Replace memcpy() with strscpy(), Yafang Shao
- [PATCH v7 3/8] security: Replace memcpy() with get_task_comm(), Yafang Shao
- [PATCH v7 4/8] bpftool: Ensure task comm is always NUL-terminated, Yafang Shao
- [PATCH v7 5/8] mm/util: Fix possible race condition in kstrdup(), Yafang Shao
- [PATCH v7 6/8] mm/util: Deduplicate code in {kstrdup,kstrndup,kmemdup_nul}, Yafang Shao
- [PATCH v7 7/8] net: Replace strcpy() with strscpy(), Yafang Shao
- [PATCH v7 8/8] drm: Replace strcpy() with strscpy(), Yafang Shao
- Re: [PATCH v7 0/8] Improve the copy of task comm, Yafang Shao
- [PATCH testsuite] tests/extended_socket_class: test SMC sockets,
Stephen Smalley
- selinux: support IPPROTO_SMC in socket_type_to_security_class(),
Jeongjun Park
- [GIT PULL] selinux/selinux-pr-20240814,
Paul Moore
- kernel NULL pointer dereference in selinux_cred,
Jaihind Yadav (QUIC)
- [PATCH] selinux: fix Null pointer deference at sidtab_convert_hashtable(),
Samasth Norway Ananda
- [no subject], Unknown
- [PATCH] checkpolicy: Fix MLS users in optional blocks,
James Carter
- [PATCH v2] fs,security: Fix file_set_fowner LSM hook inconsistencies,
Mickaël Salaün
- [PATCH] libsepol/cil: Allow dotted names in aliasactual rules,
James Carter
- [PATCH] fs,security: Fix file_set_fowner LSM hook inconsistencies,
Mickaël Salaün
- Re: [PATCH] fs,security: Fix file_set_fowner LSM hook inconsistencies, Paul Moore
- Re: [PATCH] fs,security: Fix file_set_fowner LSM hook inconsistencies, kernel test robot
- Re: [PATCH] fs,security: Fix file_set_fowner LSM hook inconsistencies, kernel test robot
- Re: [PATCH] fs,security: Fix file_set_fowner LSM hook inconsistencies, kernel test robot
- Re: [PATCH] fs,security: Fix file_set_fowner LSM hook inconsistencies, kernel test robot
- [PATCH v6 0/9] Improve the copy of task comm,
Yafang Shao
- [PATCH v6 1/9] Get rid of __get_task_comm(), Yafang Shao
- [PATCH v6 2/9] auditsc: Replace memcpy() with strscpy(), Yafang Shao
- [PATCH v6 3/9] security: Replace memcpy() with get_task_comm(), Yafang Shao
- [PATCH v6 4/9] bpftool: Ensure task comm is always NUL-terminated, Yafang Shao
- [PATCH v6 5/9] mm/util: Fix possible race condition in kstrdup(), Yafang Shao
- [PATCH v6 6/9] mm/util: Deduplicate code in {kstrdup,kstrndup,kmemdup_nul}, Yafang Shao
- [PATCH v6 7/9] tracing: Replace strncpy() with strscpy(), Yafang Shao
- [PATCH v6 8/9] net: Replace strcpy() with strscpy(), Yafang Shao
- [PATCH v6 9/9] drm: Replace strcpy() with strscpy(), Yafang Shao
- no period allowed in typealiasactual libsepol 3.7,
Dominick Grift
- [PATCH 0/2] selinux: Do not include <linux/*.h> from host programs (+ extra clean-up),
Masahiro Yamada
- [PATCH] selinux: revert our use of vma_is_initial_heap(),
Paul Moore
- [PATCH] Revert "selinux: use vma_is_initial_stack() and vma_is_initial_heap()",
Kefeng Wang
- [PATCH 1/1] selinux: add the processing of the failure of avc_add_xperms_decision(),
thunder . leizhen
- [PATCH 00/12] Enable build system on macOS hosts,
Daniel Gomez via B4 Relay
- [PATCH 01/12] scripts: subarch.include: fix SUBARCH on MacOS hosts, Daniel Gomez via B4 Relay
- [PATCH 02/12] kbuild: add header_install dependency to scripts, Daniel Gomez via B4 Relay
- [PATCH 03/12] file2alias: fix uuid_t definitions for macos, Daniel Gomez via B4 Relay
- [PATCH 04/12] drm/xe: xe_gen_wa_oob: fix program_invocation_short_name for macos, Daniel Gomez via B4 Relay
- [PATCH 06/12] selinux/genheaders: include bitsperlong and posix_types headers, Daniel Gomez via B4 Relay
- [PATCH 10/12] scripts/mod: add byteswap support, Daniel Gomez via B4 Relay
- [PATCH 07/12] selinux/mdp: include bitsperlong and posix_types headers, Daniel Gomez via B4 Relay
- [PATCH 05/12] accessiblity/speakup: genmap and makemapdata require linux/version.h, Daniel Gomez via B4 Relay
- [PATCH 08/12] include: add elf.h support, Daniel Gomez via B4 Relay
- [PATCH 12/12] scripts/kallsyms: add compatibility support for macos, Daniel Gomez via B4 Relay
- [PATCH 09/12] include: add endian.h support, Daniel Gomez via B4 Relay
- [PATCH 11/12] tty/vt: conmakehash requires linux/limits.h, Daniel Gomez via B4 Relay
- Re: [PATCH 00/12] Enable build system on macOS hosts, Greg Kroah-Hartman
- [PATCH 1/1] selinux: Fix potential counting error in avc_add_xperms_decision(),
thunder . leizhen
- [PATCH v2 0/2] get rid of cred_transfer,
Jann Horn
- [PATCH v5 0/9] Improve the copy of task comm,
Yafang Shao
- [PATCH v5 1/9] fs/exec: Drop task_lock() inside __get_task_comm(), Yafang Shao
- [PATCH v5 2/9] auditsc: Replace memcpy() with __get_task_comm(), Yafang Shao
- [PATCH v5 3/9] security: Replace memcpy() with __get_task_comm(), Yafang Shao
- [PATCH v5 4/9] bpftool: Ensure task comm is always NUL-terminated, Yafang Shao
- [PATCH v5 5/9] mm/util: Fix possible race condition in kstrdup(), Yafang Shao
- [PATCH v5 6/9] mm/util: Deduplicate code in {kstrdup,kstrndup,kmemdup_nul}, Yafang Shao
- [PATCH v5 7/9] tracing: Replace strncpy() with __get_task_comm(), Yafang Shao
- [PATCH v5 8/9] net: Replace strcpy() with __get_task_comm(), Yafang Shao
- [PATCH v5 9/9] drm: Replace strcpy() with __get_task_comm(), Yafang Shao
- Re: [PATCH v5 0/9] Improve the copy of task comm, Linus Torvalds
- <Possible follow-ups>
- Re: [PATCH v5 0/9] Improve the copy of task comm, Alejandro Colomar
- [PATCH RFC] security/KEYS: get rid of cred_alloc_blank and cred_transfer,
Jann Horn
- monolithic policy on a volatile root,
Dominick Grift
- [PATCH v1 1/2] sepolgen: initialize gen_cil,
dmitry . sharshakov
- SELinux namespaces re-base,
Stephen Smalley
- Re: SELinux namespaces re-base, Paul Moore
[PATCH resend v4 00/11] Improve the copy of task comm,
Yafang Shao
- [PATCH v4 01/11] fs/exec: Drop task_lock() inside __get_task_comm(), Yafang Shao
- [PATCH v4 02/11] auditsc: Replace memcpy() with __get_task_comm(), Yafang Shao
- [PATCH v4 03/11] security: Replace memcpy() with __get_task_comm(), Yafang Shao
- [PATCH v4 04/11] bpftool: Ensure task comm is always NUL-terminated, Yafang Shao
- [PATCH v4 05/11] mm/util: Fix possible race condition in kstrdup(), Yafang Shao
- [PATCH v4 06/11] mm/util: Deduplicate code in {kstrdup,kstrndup,kmemdup_nul}, Yafang Shao
- [PATCH v4 07/11] mm/kmemleak: Replace strncpy() with __get_task_comm(), Yafang Shao
- [PATCH v4 08/11] tsacct: Replace strncpy() with __get_task_comm(), Yafang Shao
- [PATCH v4 09/11] tracing: Replace strncpy() with __get_task_comm(), Yafang Shao
- [PATCH v4 10/11] net: Replace strcpy() with __get_task_comm(), Yafang Shao
- [PATCH v4 11/11] drm: Replace strcpy() with __get_task_comm(), Yafang Shao
- Re: [PATCH resend v4 00/11] Improve the copy of task comm, Jani Nikula
- Re: [PATCH resend v4 00/11] Improve the copy of task comm, Andrew Morton
[PATCH v1 0/2] Refactor return value of two lsm hooks,
Xu Kuohai
[PATCH] libsepol/cil: Check that sym_index is within bounds,
Vit Mojzis
[PATCH] libsepol/sepol_compute_sid: Do not destroy uninitialized context,
Vit Mojzis
[GIT PULL] selinux/selinux-pr-20240715,
Paul Moore
[RPC] Topic: Issues and Testing Regarding SELinx AVC Cache Modification,
Canfeng Guo
[PATCH -next,v2] selinux: refactor code to return ERR_PTR in selinux_netlbl_sock_genattr,
Gaosheng Cui
SElinux store file context and ownership change,
Vit Mojzis
[PATCH bpf-next v4 13/20] bpf, lsm: Add check for BPF LSM return value,
Xu Kuohai
[PATCH bpf-next v4 00/20] Add return value range check for BPF LSM,
Xu Kuohai
- [PATCH bpf-next v4 02/20] lsm: Refactor return value of LSM hook inode_need_killpriv, Xu Kuohai
- [PATCH bpf-next v4 05/20] lsm: Refactor return value of LSM hook inode_copy_up_xattr, Xu Kuohai
- [PATCH bpf-next v4 08/20] lsm: Refactor return value of LSM hook getprocattr, Xu Kuohai
- [PATCH bpf-next v4 11/20] bpf, lsm: Add disabled BPF LSM hook list, Xu Kuohai
- [PATCH bpf-next v4 04/20] lsm: Refactor return value of LSM hook inode_listsecurity, Xu Kuohai
- [PATCH bpf-next v4 03/20] lsm: Refactor return value of LSM hook inode_getsecurity, Xu Kuohai
- [PATCH bpf-next v4 01/20] lsm: Refactor return value of LSM hook vm_enough_memory, Xu Kuohai
- [PATCH bpf-next v4 07/20] lsm: Refactor return value of LSM hook setprocattr, Xu Kuohai
- [PATCH bpf-next v4 06/20] lsm: Refactor return value of LSM hook getselfattr, Xu Kuohai
- [PATCH bpf-next v4 09/20] lsm: Refactor return value of LSM hook key_getsecurity, Xu Kuohai
- [PATCH bpf-next v4 10/20] lsm: Refactor return value of LSM hook audit_rule_match, Xu Kuohai
- [PATCH bpf-next v4 12/20] bpf, lsm: Enable BPF LSM prog to read/write return value parameters, Xu Kuohai
- Re: [PATCH bpf-next v4 00/20] Add return value range check for BPF LSM, Paul Moore
- Re: [PATCH bpf-next v4 00/20] Add return value range check for BPF LSM, Paul Moore
[PATCH -next] selinux: refactor code to return the correct errno,
Gaosheng Cui
In permissive setting labels that are not in host policy when running unprivileged fails with EINVAL,
Petr Lautrbach
[RFC PATCH] lsm: add the inode_free_security_rcu() LSM implementation hook,
Paul Moore
[PATCH] libselinux: set free'd data to NULL,
Petr Lautrbach
Regression in 5876aca0484f ("libselinux: free data on selabel open failure"),
Petr Lautrbach
[PATCH] checkpolicy: Check the right bits of an ibpkeycon rule subnet prefix,
James Carter
[PATCH] selinux,smack: remove the capability checks in the removexattr hooks,
Paul Moore
[PATCH testsuite] tests/task_setscheduler: add cgroup v2 case for moving proc to root cgroup,
GONG, Ruiqi
[PATCH] libselinux: Fix integer comparison issues when compiling for 32-bit,
James Carter
UnicodeDecodeError: utf-8 on python semanage -i import,
Allan Oepping
[PATCH] selinux: Streamline type determination in security_compute_sid,
Canfeng Guo
[PATCH] selinux: Use 1UL for EBITMAP_BIT to match maps type,
Canfeng Guo
[PATCH v4 00/11] Improve the copy of task comm,
Yafang Shao
- [PATCH v4 01/11] fs/exec: Drop task_lock() inside __get_task_comm(), Yafang Shao
- [PATCH v4 02/11] auditsc: Replace memcpy() with __get_task_comm(), Yafang Shao
- [PATCH v4 03/11] security: Replace memcpy() with __get_task_comm(), Yafang Shao
- [PATCH v4 04/11] bpftool: Ensure task comm is always NUL-terminated, Yafang Shao
- [PATCH v4 05/11] mm/util: Fix possible race condition in kstrdup(), Yafang Shao
- [PATCH v4 06/11] mm/util: Deduplicate code in {kstrdup,kstrndup,kmemdup_nul}, Yafang Shao
- [PATCH v4 07/11] mm/kmemleak: Replace strncpy() with __get_task_comm(), Yafang Shao
- [PATCH v4 08/11] tsacct: Replace strncpy() with __get_task_comm(), Yafang Shao
- [PATCH v4 09/11] tracing: Replace strncpy() with __get_task_comm(), Yafang Shao
- [PATCH v4 10/11] net: Replace strcpy() with __get_task_comm(), Yafang Shao
- [PATCH v4 11/11] drm: Replace strcpy() with __get_task_comm(), Yafang Shao
ANN: SELinux userspace 3.7, Petr Lautrbach
[PATCH v2] libselinux: deprecate security_disable(3),
Christian Göttsche
[PATCH v3 00/11] Improve the copy of task comm,
Yafang Shao
- [PATCH v3 01/11] fs/exec: Drop task_lock() inside __get_task_comm(), Yafang Shao
- [PATCH v3 02/11] auditsc: Replace memcpy() with __get_task_comm(), Yafang Shao
- [PATCH v3 03/11] security: Replace memcpy() with __get_task_comm(), Yafang Shao
- [PATCH v3 04/11] bpftool: Ensure task comm is always NUL-terminated, Yafang Shao
- [PATCH v3 05/11] mm/util: Fix possible race condition in kstrdup(), Yafang Shao
- [PATCH v3 06/11] mm/util: Deduplicate code in {kstrdup,kstrndup,kmemdup_nul}, Yafang Shao
- [PATCH v3 07/11] mm/kmemleak: Replace strncpy() with __get_task_comm(), Yafang Shao
- [PATCH v3 08/11] tsacct: Replace strncpy() with __get_task_comm(), Yafang Shao
- [PATCH v3 09/11] tracing: Replace strncpy() with __get_task_comm(), Yafang Shao
[Index of Archives]
[Selinux Refpolicy]
[Fedora Users]
[Fedora Desktop]
[Kernel]
[KDE Users]
[Gnome Users]
