Security Enhanced Linux (SELINUX)

Date Index

[Prev Page][Next Page]

[PATCH v21 04/23] LSM: Use lsmblob in security_kernel_act_as, (continued)
- [PATCH v21 04/23] LSM: Use lsmblob in security_kernel_act_as, Casey Schaufler
- [PATCH v21 05/23] LSM: Use lsmblob in security_secctx_to_secid, Casey Schaufler
- [PATCH v21 06/23] LSM: Use lsmblob in security_secid_to_secctx, Casey Schaufler
- [PATCH v21 07/23] LSM: Use lsmblob in security_ipc_getsecid, Casey Schaufler
- [PATCH v21 08/23] LSM: Use lsmblob in security_task_getsecid, Casey Schaufler
- [PATCH v21 09/23] LSM: Use lsmblob in security_inode_getsecid, Casey Schaufler
- [PATCH v21 10/23] LSM: Use lsmblob in security_cred_getsecid, Casey Schaufler
- [PATCH v21 11/23] IMA: Change internal interfaces to use lsmblobs, Casey Schaufler
- [PATCH v21 12/23] LSM: Specify which LSM to display, Casey Schaufler
- [PATCH v21 13/23] LSM: Ensure the correct LSM context releaser, Casey Schaufler
- [PATCH v21 14/23] LSM: Use lsmcontext in security_secid_to_secctx, Casey Schaufler
- [PATCH v21 15/23] LSM: Use lsmcontext in security_inode_getsecctx, Casey Schaufler
- [PATCH v21 16/23] LSM: security_secid_to_secctx in netlink netfilter, Casey Schaufler
- [PATCH v21 17/23] NET: Store LSM netlabel data in a lsmblob, Casey Schaufler
- [PATCH v21 18/23] LSM: Verify LSM display sanity in binder, Casey Schaufler
- [PATCH v21 19/23] audit: add support for non-syscall auxiliary records, Casey Schaufler
- [PATCH v21 20/23] Audit: Add new record for multiple process LSM attributes, Casey Schaufler
- [PATCH v21 21/23] Audit: Add a new record for multiple object LSM attributes, Casey Schaufler
- [PATCH v21 22/23] LSM: Add /proc attr entry for full LSM context, Casey Schaufler
- [PATCH v21 23/23] AppArmor: Remove the exclusive flag, Casey Schaufler
- Re: [PATCH v21 00/23] LSM: Module stacking for AppArmor, John Johansen
[PATCH v10 0/3] SELinux support for anonymous inodes and UFFD, Lokesh Gidra
- [PATCH v10 1/3] Add a new LSM-supporting anonymous inode interface, Lokesh Gidra
  - Re: [PATCH v10 1/3] Add a new LSM-supporting anonymous inode interface, Eric Biggers
- [PATCH v10 2/3] Teach SELinux about anonymous inodes, Lokesh Gidra
- [PATCH v10 3/3] Use secure anon inodes for userfaultfd, Lokesh Gidra
  - Re: [PATCH v10 3/3] Use secure anon inodes for userfaultfd, Eric Biggers
- Re: [PATCH v10 0/3] SELinux support for anonymous inodes and UFFD, Lokesh Gidra
- Re: [PATCH v10 0/3] SELinux support for anonymous inodes and UFFD, Eric Biggers
  - Re: [PATCH v10 0/3] SELinux support for anonymous inodes and UFFD, Eric Biggers
- <Possible follow-ups>
- [PATCH v10 0/3] SELinux support for anonymous inodes and UFFD, Lokesh Gidra
  - [PATCH v10 3/3] Use secure anon inodes for userfaultfd, Lokesh Gidra
  - [PATCH v10 1/3] Add a new LSM-supporting anonymous inode interface, Lokesh Gidra
  - [PATCH v10 2/3] Teach SELinux about anonymous inodes, Lokesh Gidra
libsepol, libsemanage: drop duplicate and deprecated symbols, Petr Lautrbach
- [PATCH v2 1/6] libsepol: Get rid of the old and duplicated symbols, Petr Lautrbach
  - Re: [PATCH v2 1/6] libsepol: Get rid of the old and duplicated symbols, James Carter
- [PATCH v2 3/6] libsepol: Bump libsepol.so version, Petr Lautrbach
  - Re: [PATCH v2 3/6] libsepol: Bump libsepol.so version, James Carter
- [PATCH v2 2/6] libsepol: Drop deprecated functions, Petr Lautrbach
  - Re: [PATCH v2 2/6] libsepol: Drop deprecated functions, James Carter
- [PATCH v2 5/6] libsemanage: Drop deprecated functions, Petr Lautrbach
  - Re: [PATCH v2 5/6] libsemanage: Drop deprecated functions, James Carter
- [PATCH v2 4/6] libsemanage: Remove legacy and duplicate symbols, Petr Lautrbach
  - Re: [PATCH v2 4/6] libsemanage: Remove legacy and duplicate symbols, James Carter
- [PATCH v2 6/6] libsemanage: Bump libsemanage.so version, Petr Lautrbach
  - Re: [PATCH v2 6/6] libsemanage: Bump libsemanage.so version, James Carter
- Re: libsepol, libsemanage: drop duplicate and deprecated symbols, James Carter
  - Re: libsepol, libsemanage: drop duplicate and deprecated symbols, Nicolas Iooss
    - Re: libsepol, libsemanage: drop duplicate and deprecated symbols, Nicolas Iooss
Re: selinux: how to query if selinux is enabled, Paul Moore
- Re: selinux: how to query if selinux is enabled, Olga Kornievskaia
  - Re: selinux: how to query if selinux is enabled, Ondrej Mosnacek
    - Re: selinux: how to query if selinux is enabled, Olga Kornievskaia
      - Re: selinux: how to query if selinux is enabled, Casey Schaufler
        
        Re: selinux: how to query if selinux is enabled, Olga Kornievskaia
        
        Re: selinux: how to query if selinux is enabled, Casey Schaufler
  - Re: selinux: how to query if selinux is enabled, Paul Moore
    - Re: selinux: how to query if selinux is enabled, Olga Kornievskaia
      - Re: selinux: how to query if selinux is enabled, Chuck Lever
        
        Re: selinux: how to query if selinux is enabled, Olga Kornievskaia
        
        Re: selinux: how to query if selinux is enabled, Stephen Smalley
        
        Re: selinux: how to query if selinux is enabled, Olga Kornievskaia
        
        Re: selinux: how to query if selinux is enabled, Paul Moore
        
        Re: selinux: how to query if selinux is enabled, Casey Schaufler
        
        Re: selinux: how to query if selinux is enabled, Paul Moore
        
        Re: selinux: how to query if selinux is enabled, Olga Kornievskaia
        
        Re: selinux: how to query if selinux is enabled, Paul Moore
Re: [PATCH 4/4] libsemanage: Bump libsemanage.so version, Petr Lautrbach
- Re: [PATCH 4/4] libsemanage: Bump libsemanage.so version, Stephen Smalley
  - Re: [PATCH 4/4] libsemanage: Bump libsemanage.so version, Dominick Grift
[PATCH 1/1] libselinux: convert matchpathcon to selabel_lookup(), Nicolas Iooss
- Re: [PATCH 1/1] libselinux: convert matchpathcon to selabel_lookup(), Petr Lautrbach
  - Re: [PATCH 1/1] libselinux: convert matchpathcon to selabel_lookup(), Petr Lautrbach
[PATCH 1/2] libsepol: drop confusing BUG_ON macro, Nicolas Iooss
- [PATCH 2/2] libsepol: silence potential NULL pointer dereference warning, Nicolas Iooss
  - Re: [PATCH 2/2] libsepol: silence potential NULL pointer dereference warning, James Carter
    - Re: [PATCH 2/2] libsepol: silence potential NULL pointer dereference warning, Nicolas Iooss
- Re: [PATCH 1/2] libsepol: drop confusing BUG_ON macro, James Carter
  - Re: [PATCH 1/2] libsepol: drop confusing BUG_ON macro, Nicolas Iooss
[PATCH userspace] libsepol/cil: fix signed overflow caused by using (1 << 31) - 1, Nicolas Iooss
- Re: [PATCH userspace] libsepol/cil: fix signed overflow caused by using (1 << 31) - 1, Petr Lautrbach
  - Re: [PATCH userspace] libsepol/cil: fix signed overflow caused by using (1 << 31) - 1, Petr Lautrbach
[PATCH v5 00/16] Introduce partial kernel_read_file() support, Kees Cook
- [PATCH v5 01/16] fs/kernel_read_file: Remove FIRMWARE_PREALLOC_BUFFER enum, Kees Cook
  - Re: [PATCH v5 01/16] fs/kernel_read_file: Remove FIRMWARE_PREALLOC_BUFFER enum, James Morris
- [PATCH v5 03/16] fs/kernel_read_file: Split into separate include file, Kees Cook
- [PATCH v5 05/16] fs/kernel_read_file: Remove redundant size argument, Kees Cook
- [PATCH v5 10/16] module: Call security_kernel_post_load_data(), Kees Cook
  - Re: [PATCH v5 10/16] module: Call security_kernel_post_load_data(), James Morris
- [PATCH v5 09/16] firmware_loader: Use security_post_load_data(), Kees Cook
- [PATCH v5 15/16] firmware: Add request_partial_firmware_into_buf(), Kees Cook
- [PATCH v5 13/16] fs/kernel_file_read: Add "offset" arg for partial reads, Kees Cook
- [PATCH v5 14/16] firmware: Store opt_flags in fw_priv, Kees Cook
- [PATCH v5 11/16] LSM: Add "contents" flag to kernel_read_file hook, Kees Cook
  - Re: [PATCH v5 11/16] LSM: Add "contents" flag to kernel_read_file hook, James Morris
- [PATCH v5 04/16] fs/kernel_read_file: Split into separate source file, Kees Cook
  - Re: [PATCH v5 04/16] fs/kernel_read_file: Split into separate source file, James Morris
- [PATCH v5 12/16] IMA: Add support for file reads without contents, Kees Cook
- [PATCH v5 07/16] fs/kernel_read_file: Add file_size output argument, Kees Cook
- [PATCH v5 08/16] LSM: Introduce kernel_post_load_data() hook, Kees Cook
- [PATCH v5 06/16] fs/kernel_read_file: Switch buffer size arg to size_t, Kees Cook
- [PATCH v5 02/16] fs/kernel_read_file: Remove FIRMWARE_EFI_EMBEDDED enum, Kees Cook
- [PATCH v5 16/16] test_firmware: Test partial read support, Kees Cook
[PATCH][selinux-notebook] Link to Reference policy, Topi Miettinen
- Re: [PATCH][selinux-notebook] Link to Reference policy, Paul Moore
[PATCH 1/4] libsepol: Get rid of the old and duplicated symbols, Petr Lautrbach
- [PATCH 3/4] libsemanage: Remove legacy and duplicate symbols, Petr Lautrbach
- [PATCH 2/4] libsepol: Bump libsepol.so version, Petr Lautrbach
- [PATCH 4/4] libsemanage: Bump libsemanage.so version, Petr Lautrbach
  - Re: [PATCH 4/4] libsemanage: Bump libsemanage.so version, Stephen Smalley
    - Re: [PATCH 4/4] libsemanage: Bump libsemanage.so version, Petr Lautrbach
      - Re: [PATCH 4/4] libsemanage: Bump libsemanage.so version, Stephen Smalley
        
        Re: [PATCH 4/4] libsemanage: Bump libsemanage.so version, Petr Lautrbach
        
        Re: [PATCH 4/4] libsemanage: Bump libsemanage.so version, Stephen Smalley
        
        Re: [PATCH 4/4] libsemanage: Bump libsemanage.so version, Petr Lautrbach
        
        Re: [PATCH 4/4] libsemanage: Bump libsemanage.so version, Nicolas Iooss
        
        Re: [PATCH 4/4] libsemanage: Bump libsemanage.so version, Stephen Smalley
        
        Re: [PATCH 4/4] libsemanage: Bump libsemanage.so version, Nicolas Iooss
[PATCH 0/3] Add LSM/SELinux support for GPRS Tunneling Protocol (GTP), Richard Haines
- [PATCH 2/3] gtp: Add LSM hooks to GPRS Tunneling Protocol (GTP), Richard Haines
- [PATCH 1/3] security: Add GPRS Tunneling Protocol (GTP) security hooks, Richard Haines
- [PATCH 3/3] selinux: Add SELinux GTP support, Richard Haines
  - Re: [PATCH 3/3] selinux: Add SELinux GTP support, Harald Welte
    - Re: [PATCH 3/3] selinux: Add SELinux GTP support, Richard Haines
      - Re: [PATCH 3/3] selinux: Add SELinux GTP support, Harald Welte
        
        Re: [PATCH 3/3] selinux: Add SELinux GTP support, Paul Moore
        
        Re: [PATCH 3/3] selinux: Add SELinux GTP support, Harald Welte
        
        Re: [PATCH 3/3] selinux: Add SELinux GTP support, Paul Moore
        
        Re: [PATCH 3/3] selinux: Add SELinux GTP support, Richard Haines
        
        Re: [PATCH 3/3] selinux: Add SELinux GTP support, Harald Welte
- Re: [PATCH 0/3] Add LSM/SELinux support for GPRS Tunneling Protocol (GTP), Pablo Neira Ayuso
  - Re: [PATCH 0/3] Add LSM/SELinux support for GPRS Tunneling Protocol (GTP), Richard Haines
    - Re: [PATCH 0/3] Add LSM/SELinux support for GPRS Tunneling Protocol (GTP), Pablo Neira Ayuso
    - Re: [PATCH 0/3] Add LSM/SELinux support for GPRS Tunneling Protocol (GTP), Casey Schaufler
[PATCH v2 0/1] selinux: fix error initialization in inode_doinit_with_dentry(), rentianyue
[RFC PATCH] lsm,selinux: pass the family information along with xfrm flow, Paul Moore
- Re: [RFC PATCH] lsm,selinux: pass the family information along with xfrm flow, Casey Schaufler
- Re: [RFC PATCH] lsm,selinux: pass the family information along with xfrm flow, James Morris
  - Re: [RFC PATCH] lsm,selinux: pass the family information along with xfrm flow, Herbert Xu
  - Re: [RFC PATCH] lsm,selinux: pass the family information along with xfrm flow, Paul Moore
    - Re: [RFC PATCH] lsm,selinux: pass the family information along with xfrm flow, Paul Moore
      - Re: [RFC PATCH] lsm,selinux: pass the family information along with xfrm flow, James Morris
Re: [PATCH v1 1/1] selinux: fix error initialization in inode_doinit_with_dentry(), Stephen Smalley
- Re: [PATCH v1 1/1] selinux: fix error initialization in inode_doinit_with_dentry(), Stephen Smalley
  - Re: [PATCH v1 1/1] selinux: fix error initialization in inode_doinit_with_dentry(), Stephen Smalley
    - [PATCH v2 0/1] selinux: fix error initialization in inode_doinit_with_dentry(), rentianyue
      - [PATCH v2 1/1] selinux: fix error initialization in inode_doinit_with_dentry(), rentianyue
        
        Re: [PATCH v2 1/1] selinux: fix error initialization in inode_doinit_with_dentry(), Stephen Smalley
        
        Re: [PATCH v2 1/1] selinux: fix error initialization in inode_doinit_with_dentry(), Paul Moore
        
        Re: [PATCH v2 1/1] selinux: fix error initialization in inode_doinit_with_dentry(), Paul Moore
        
        [PATCH v3 0/1] fix error initialization in inode_doinit_with_dentry(), rentianyue
        
        [PATCH v3 1/1] selinux: fix error initialization in inode_doinit_with_dentry(), rentianyue
        
        Re: [PATCH v3 1/1] selinux: fix error initialization in inode_doinit_with_dentry(), Paul Moore
        
        Re: [PATCH v3 1/1] selinux: fix error initialization in inode_doinit_with_dentry(), Sven Schnelle
        
        Re: [PATCH v3 1/1] selinux: fix error initialization in inode_doinit_with_dentry(), Paul Moore
        
        Re: [PATCH v3 1/1] selinux: fix error initialization in inode_doinit_with_dentry(), Sven Schnelle
        
        Re: [PATCH v3 1/1] selinux: fix error initialization in inode_doinit_with_dentry(), Paul Moore
        
        Re: [PATCH v3 1/1] selinux: fix error initialization in inode_doinit_with_dentry(), Sven Schnelle
        
        Re: [PATCH v3 1/1] selinux: fix error initialization in inode_doinit_with_dentry(), Paul Moore
  - Re: [PATCH v1 1/1] selinux: fix error initialization in inode_doinit_with_dentry(), Paul Moore
Re: [PATCH v1 0/1] selinux: fix error initialization in inode_doinit_with_dentry(), Paul Moore
- Re: [PATCH v1 0/1] selinux: fix error initialization in inode_doinit_with_dentry(), Stephen Smalley
  - Message not available
    - Re: [PATCH v1 0/1] selinux: fix error initialization in inode_doinit_with_dentry(), Stephen Smalley
[PATCH] selinux: provide a "no sooner than" date for the checkreqprot removal, Paul Moore
- Re: [PATCH] selinux: provide a "no sooner than" date for the checkreqprot removal, Stephen Smalley
- Re: [PATCH] selinux: provide a "no sooner than" date for the checkreqprot removal, Paul Moore
[PATCH v2 0/1] selinux: Measure state and hash of policy using IMA, Lakshmi Ramasubramanian
- [PATCH 1/1] selinux: Measure state and hash of policy using IMA, Lakshmi Ramasubramanian
  - Re: [PATCH 1/1] selinux: Measure state and hash of policy using IMA, Stephen Smalley
    - Re: [PATCH 1/1] selinux: Measure state and hash of policy using IMA, Lakshmi Ramasubramanian
[RFC PATCH 0/1] selinux-testsuite: Add GTP tests, Richard Haines
- [RFC PATCH 1/1] selinux-testsuite: Add GTP tests, Richard Haines
[RFC PATCH 0/3] Add LSM/SELinux support for GPRS Tunneling Protocol (GTP), Richard Haines
- [RFC PATCH 1/3] security: Add GPRS Tunneling Protocol (GTP) security hooks, Richard Haines
  - Re: [RFC PATCH 1/3] security: Add GPRS Tunneling Protocol (GTP) security hooks, Casey Schaufler
- [RFC PATCH 2/3] gtp: Add LSM hooks to GPRS Tunneling Protocol (GTP), Richard Haines
- [RFC PATCH 3/3] selinux: Add SELinux GTP support, Richard Haines
[PATCH v9 0/3] SELinux support for anonymous inodes and UFFD, Lokesh Gidra
- [PATCH v9 2/3] Teach SELinux about anonymous inodes, Lokesh Gidra
- [PATCH v9 1/3] Add a new LSM-supporting anonymous inode interface, Lokesh Gidra
  - Re: [PATCH v9 1/3] Add a new LSM-supporting anonymous inode interface, Eric Biggers
- [PATCH v9 3/3] Wire UFFD up to SELinux, Lokesh Gidra
  - Re: [PATCH v9 3/3] Wire UFFD up to SELinux, Eric Biggers
- Re: [PATCH v9 0/3] SELinux support for anonymous inodes and UFFD, Lokesh Gidra
  - Re: [PATCH v9 0/3] SELinux support for anonymous inodes and UFFD, James Morris
[PATCH v4 0/6] IMA: Infrastructure for measurement of critical kernel data, Tushar Sugandhi
- [PATCH v4 2/6] IMA: conditionally allow empty rule data, Tushar Sugandhi
  - Re: [PATCH v4 2/6] IMA: conditionally allow empty rule data, Mimi Zohar
    - Re: [PATCH v4 2/6] IMA: conditionally allow empty rule data, Tushar Sugandhi
- [PATCH v4 1/6] IMA: generalize keyring specific measurement constructs, Tushar Sugandhi
  - Re: [PATCH v4 1/6] IMA: generalize keyring specific measurement constructs, Mimi Zohar
    - Re: [PATCH v4 1/6] IMA: generalize keyring specific measurement constructs, Tushar Sugandhi
- [PATCH v4 6/6] IMA: validate supported kernel data sources before measurement, Tushar Sugandhi
- [PATCH v4 4/6] IMA: add policy to measure critical data from kernel components, Tushar Sugandhi
  - Re: [PATCH v4 4/6] IMA: add policy to measure critical data from kernel components, Mimi Zohar
    - Re: [PATCH v4 4/6] IMA: add policy to measure critical data from kernel components, Tushar Sugandhi
- [PATCH v4 5/6] IMA: add hook to measure critical data from kernel components, Tushar Sugandhi
  - Re: [PATCH v4 5/6] IMA: add hook to measure critical data from kernel components, Mimi Zohar
    - Re: [PATCH v4 5/6] IMA: add hook to measure critical data from kernel components, Tushar Sugandhi
- [PATCH v4 3/6] IMA: update process_buffer_measurement to measure buffer hash, Tushar Sugandhi
- Re: [PATCH v4 0/6] IMA: Infrastructure for measurement of critical kernel data, Mimi Zohar
  - Re: [PATCH v4 0/6] IMA: Infrastructure for measurement of critical kernel data, Tushar Sugandhi
[PATCH V2 1/1] selinux-testsuite: Update SCTP asconf client/server, Richard Haines
- Re: [PATCH V2 1/1] selinux-testsuite: Update SCTP asconf client/server, Ondrej Mosnacek
  - Re: [PATCH V2 1/1] selinux-testsuite: Update SCTP asconf client/server, Ondrej Mosnacek
- Re: [PATCH V2 1/1] selinux-testsuite: Update SCTP asconf client/server, Ondrej Mosnacek
  - Re: [PATCH V2 1/1] selinux-testsuite: Update SCTP asconf client/server, Richard Haines
    - Re: [PATCH V2 1/1] selinux-testsuite: Update SCTP asconf client/server, Ondrej Mosnacek
      - Re: [PATCH V2 1/1] selinux-testsuite: Update SCTP asconf client/server, Richard Haines
        
        Re: [PATCH V2 1/1] selinux-testsuite: Update SCTP asconf client/server, Ondrej Mosnacek
        
        Re: [PATCH V2 1/1] selinux-testsuite: Update SCTP asconf client/server, Richard Haines
        
        Re: [PATCH V2 1/1] selinux-testsuite: Update SCTP asconf client/server, Ondrej Mosnacek
        
        Re: [PATCH V2 1/1] selinux-testsuite: Update SCTP asconf client/server, Richard Haines
        
        Re: [PATCH V2 1/1] selinux-testsuite: Update SCTP asconf client/server, Richard Haines
        
        Re: [PATCH V2 1/1] selinux-testsuite: Update SCTP asconf client/server, Ondrej Mosnacek
        
        Re: [PATCH V2 1/1] selinux-testsuite: Update SCTP asconf client/server, Richard Haines
        
        Re: [PATCH V2 1/1] selinux-testsuite: Update SCTP asconf client/server, Ondrej Mosnacek
        
        Re: [PATCH V2 1/1] selinux-testsuite: Update SCTP asconf client/server, Richard Haines
Commit 13c164b1a186 - regression for LSMs/SELinux?, Ondrej Mosnacek
- Re: Commit 13c164b1a186 - regression for LSMs/SELinux?, Christoph Hellwig
  - Re: Commit 13c164b1a186 - regression for LSMs/SELinux?, Linus Torvalds
  - Re: Commit 13c164b1a186 - regression for LSMs/SELinux?, Al Viro
    - Re: Commit 13c164b1a186 - regression for LSMs/SELinux?, Ian Kent
      - Re: Commit 13c164b1a186 - regression for LSMs/SELinux?, Ian Kent
    - Re: Commit 13c164b1a186 - regression for LSMs/SELinux?, Ondrej Mosnacek
      - Re: Commit 13c164b1a186 - regression for LSMs/SELinux?, Stephen Smalley
      - Re: Commit 13c164b1a186 - regression for LSMs/SELinux?, Ian Kent
        
        Re: Commit 13c164b1a186 - regression for LSMs/SELinux?, Ondrej Mosnacek
        
        Re: Commit 13c164b1a186 - regression for LSMs/SELinux?, Ian Kent
        
        Re: Commit 13c164b1a186 - regression for LSMs/SELinux?, Stephen Smalley
        
        Re: Commit 13c164b1a186 - regression for LSMs/SELinux?, Ian Kent
        
        Re: Commit 13c164b1a186 - regression for LSMs/SELinux?, Ian Kent
        
        Re: Commit 13c164b1a186 - regression for LSMs/SELinux?, Ondrej Mosnacek
        
        Re: Commit 13c164b1a186 - regression for LSMs/SELinux?, Linus Torvalds
        
        Re: Commit 13c164b1a186 - regression for LSMs/SELinux?, Ian Kent
        
        Re: Commit 13c164b1a186 - regression for LSMs/SELinux?, Ondrej Mosnacek
        
        Re: Commit 13c164b1a186 - regression for LSMs/SELinux?, Linus Torvalds
        
        Re: Commit 13c164b1a186 - regression for LSMs/SELinux?, Christoph Hellwig
        
        Re: Commit 13c164b1a186 - regression for LSMs/SELinux?, Ian Kent
        
        Re: Commit 13c164b1a186 - regression for LSMs/SELinux?, Ian Kent
        
        Re: Commit 13c164b1a186 - regression for LSMs/SELinux?, Ian Kent
[PATCH] ip.7: Document IP_PASSSEC for UDP sockets, Stephen Smalley
- Re: [PATCH] ip.7: Document IP_PASSSEC for UDP sockets, Paul Moore
- Re: [PATCH] ip.7: Document IP_PASSSEC for UDP sockets, Michael Kerrisk (man-pages)
`fixfiles -C` does not apply to all paths, Cedric Buissart
- Re: `fixfiles -C` does not apply to all paths, Stephen Smalley
  - Re: `fixfiles -C` does not apply to all paths, Petr Lautrbach
    - Re: `fixfiles -C` does not apply to all paths, Cedric Buissart
[PATCH] socket.7,ip.7: Document SO_PEERSEC for AF_INET sockets, Stephen Smalley
- Re: [PATCH] socket.7,ip.7: Document SO_PEERSEC for AF_INET sockets, Michael Kerrisk (man-pages)
[PATCH] libsepol/cil: Fix neverallow checking involving classmaps, James Carter
- Re: [PATCH] libsepol/cil: Fix neverallow checking involving classmaps, Stephen Smalley
  - Re: [PATCH] libsepol/cil: Fix neverallow checking involving classmaps, Stephen Smalley
[PATCH 1/2] libselinux: Add additional log callback details in man page for auditing., Chris PeBenito
- [PATCH 2/2] libselinux: Change userspace AVC setenforce and policy load messages to audit format., Chris PeBenito
  - Re: [PATCH 2/2] libselinux: Change userspace AVC setenforce and policy load messages to audit format., Steve Grubb
  - Re: [PATCH 2/2] libselinux: Change userspace AVC setenforce and policy load messages to audit format., Stephen Smalley
    - Re: [PATCH 2/2] libselinux: Change userspace AVC setenforce and policy load messages to audit format., Stephen Smalley
- Re: [PATCH 1/2] libselinux: Add additional log callback details in man page for auditing., Stephen Smalley
[RFC PATCH 1/1] libselinux: Revise userspace AVC avc_log() for auditable events., Chris PeBenito
- Re: [RFC PATCH 1/1] libselinux: Revise userspace AVC avc_log() for auditable events., Stephen Smalley
  - Re: [RFC PATCH 1/1] libselinux: Revise userspace AVC avc_log() for auditable events., Chris PeBenito
    - Re: [RFC PATCH 1/1] libselinux: Revise userspace AVC avc_log() for auditable events., Stephen Smalley
      - Re: [RFC PATCH 1/1] libselinux: Revise userspace AVC avc_log() for auditable events., Chris PeBenito
        
        Re: [RFC PATCH 1/1] libselinux: Revise userspace AVC avc_log() for auditable events., Stephen Smalley
secilc compiles invalid policy, Dominick Grift
[PATCH v2] socket.7,unix.7: add initial description for SO_PEERSEC, Stephen Smalley
- Re: [PATCH v2] socket.7,unix.7: add initial description for SO_PEERSEC, Michael Kerrisk (man-pages)
  - Re: [PATCH v2] socket.7,unix.7: add initial description for SO_PEERSEC, Serge E. Hallyn
- Re: [PATCH v2] socket.7,unix.7: add initial description for SO_PEERSEC, Michael Kerrisk (man-pages)
[PATCH v4] selinux: Add helper functions to get and set checkreqprot, Lakshmi Ramasubramanian
- Re: [PATCH v4] selinux: Add helper functions to get and set checkreqprot, Stephen Smalley
- Re: [PATCH v4] selinux: Add helper functions to get and set checkreqprot, Paul Moore
classmapping with empty permissionset and neverallow leads to invalid policy, bauen1
- Re: classmapping with empty permissionset and neverallow leads to invalid policy, James Carter
[PATCH v2 1/1] libselinux: Fix selabel_lookup() for the root dir., Chris PeBenito
- Re: [PATCH v2 1/1] libselinux: Fix selabel_lookup() for the root dir., Stephen Smalley
  - Re: [PATCH v2 1/1] libselinux: Fix selabel_lookup() for the root dir., Stephen Smalley
[PATCH 1/1] libselinux: Fix selabel_lookup() for the root dir., Chris PeBenito
- Re: [PATCH 1/1] libselinux: Fix selabel_lookup() for the root dir., Stephen Smalley
Re: [PATCH] reference_policy: Tidy up formatting, Paul Moore
[PATCH v3] selinux: Add helper functions to get and set checkreqprot, Lakshmi Ramasubramanian
- Re: [PATCH v3] selinux: Add helper functions to get and set checkreqprot, Stephen Smalley
  - Re: [PATCH v3] selinux: Add helper functions to get and set checkreqprot, Paul Moore
    - Re: [PATCH v3] selinux: Add helper functions to get and set checkreqprot, Lakshmi Ramasubramanian
Behavior of extended permissions, bauen1
- Re: Behavior of extended permissions, bauen1
  - [RFC PATCH] selinux: allow dontauditx rules to take effect without allowx, bauen1
    - Re: [RFC PATCH] selinux: allow dontauditx rules to take effect without allowx, Stephen Smalley
      - Re: [RFC PATCH] selinux: allow dontauditx rules to take effect without allowx, bauen1
        
        Re: [RFC PATCH] selinux: allow dontauditx rules to take effect without allowx, Paul Moore
        
        [PATCH v2] selinux: allow dontauditx and auditallowx rules to take effect without allowx, bauen1
        
        Re: [PATCH v2] selinux: allow dontauditx and auditallowx rules to take effect without allowx, Paul Moore
[PATCH] socket.7,unix.7: add initial description for SO_PEERSEC, Stephen Smalley
- Re: [PATCH] socket.7,unix.7: add initial description for SO_PEERSEC, Simon McVittie
  - Re: [PATCH] socket.7,unix.7: add initial description for SO_PEERSEC, Stephen Smalley
- Re: [PATCH] socket.7,unix.7: add initial description for SO_PEERSEC, Stephen Smalley
[PATCH] selinux: access policycaps with READ_ONCE/WRITE_ONCE, Stephen Smalley
- Re: [PATCH] selinux: access policycaps with READ_ONCE/WRITE_ONCE, Paul Moore
[PATCH] cil_access_vector_rules: fixes a typo, Dominick Grift
- [PATCH v2] cil_access_vector_rules: fixes a typo, clarifies auditallowx/dontauditx, Dominick Grift
  - [PATCH v3] cil_access_vector_rules: allowx, auditallowx and dontauditx fixes, Dominick Grift
    - [PATCH v4] cil_access_vector_rules: allowx, auditallowx and dontauditx fixes, Dominick Grift
      - Re: [PATCH v4] cil_access_vector_rules: allowx, auditallowx and dontauditx fixes, Nicolas Iooss
        
        Re: [PATCH v4] cil_access_vector_rules: allowx, auditallowx and dontauditx fixes, Nicolas Iooss
[PATCH v2] selinux: Add helper functions to get and set checkreqprot, Lakshmi Ramasubramanian
- Re: [PATCH v2] selinux: Add helper functions to get and set checkreqprot, Stephen Smalley
- Re: [PATCH v2] selinux: Add helper functions to get and set checkreqprot, Paul Moore
  - Re: [PATCH v2] selinux: Add helper functions to get and set checkreqprot, Stephen Smalley
    - Re: [PATCH v2] selinux: Add helper functions to get and set checkreqprot, Paul Moore
  - Re: [PATCH v2] selinux: Add helper functions to get and set checkreqprot, Lakshmi Ramasubramanian
    - Re: [PATCH v2] selinux: Add helper functions to get and set checkreqprot, Paul Moore
[PATCH v2] libsepol/cil: Validate constraint expressions before adding to binary policy, James Carter
- Re: [PATCH v2] libsepol/cil: Validate constraint expressions before adding to binary policy, Stephen Smalley
  - Re: [PATCH v2] libsepol/cil: Validate constraint expressions before adding to binary policy, Stephen Smalley
[PATCH v2] libsepol/cil: Validate conditional expressions before adding to binary policy, James Carter
- Re: [PATCH v2] libsepol/cil: Validate conditional expressions before adding to binary policy, Stephen Smalley
  - Re: [PATCH v2] libsepol/cil: Validate conditional expressions before adding to binary policy, Stephen Smalley
[PATCH] libsepol/cil: Validate conditional expressions before adding to binary policy, James Carter
- Re: [PATCH] libsepol/cil: Validate conditional expressions before adding to binary policy, Stephen Smalley
  - Re: [PATCH] libsepol/cil: Validate conditional expressions before adding to binary policy, James Carter
[PATCH] libsepol/cil: Validate constraint expressions before adding to binary policy, James Carter
- Re: [PATCH] libsepol/cil: Validate constraint expressions before adding to binary policy, Stephen Smalley
  - Re: [PATCH] libsepol/cil: Validate constraint expressions before adding to binary policy, James Carter
[PATCH] selinux: Add helper functions to get and set checkreqprot, Lakshmi Ramasubramanian
- Re: [PATCH] selinux: Add helper functions to get and set checkreqprot, Stephen Smalley
[PATCH v2] libsepol/cil: Give an error when constraint expressions exceed max depth, James Carter
- Re: [PATCH v2] libsepol/cil: Give an error when constraint expressions exceed max depth, James Carter
[PATCH V2] network_support: Update LibreSwan configuration, Richard Haines
- Re: [PATCH V2] network_support: Update LibreSwan configuration, Paul Moore
[PATCH] cil_network_labeling_statements: fixes nodecon examples, Dominick Grift
- [PATCH v2] cil_network_labeling_statements: fixes nodecon examples, Dominick Grift
  - Re: [PATCH v2] cil_network_labeling_statements: fixes nodecon examples, Nicolas Iooss
    - Re: [PATCH v2] cil_network_labeling_statements: fixes nodecon examples, Nicolas Iooss
[PATCH] network_support: Update LibreSwan configuration, Richard Haines
- Re: [PATCH] network_support: Update LibreSwan configuration, Topi Miettinen
  - Re: [PATCH] network_support: Update LibreSwan configuration, Richard Haines
    - Re: [PATCH] network_support: Update LibreSwan configuration, Topi Miettinen
[RFC PATCH] xperm_rules: add two notes, Christian Göttsche
- Re: [RFC PATCH] xperm_rules: add two notes, Richard Haines
- Re: [RFC PATCH] xperm_rules: add two notes, Paul Moore
[RFC PATCH] sched: only issue an audit on privileged operation, Christian Göttsche
- Re: [RFC PATCH] sched: only issue an audit on privileged operation, peterz
  - Re: [RFC PATCH] sched: only issue an audit on privileged operation, Ondrej Mosnacek
- [PATCH v2] [RFC PATCH] sched: only perform capability check on privileged operation, Christian Göttsche
  - Re: [PATCH v2] [RFC PATCH] sched: only perform capability check on privileged operation, Peter Zijlstra
  - [PATCH v3] [RFC PATCH] sched: only perform capability check on privileged operation, Christian Göttsche
[PATCH] libsepol/cil: Give an error when constraint expressions exceed max depth, James Carter
- Re: [PATCH] libsepol/cil: Give an error when constraint expressions exceed max depth, Stephen Smalley
  - Re: [PATCH] libsepol/cil: Give an error when constraint expressions exceed max depth, James Carter
- Re: [PATCH] libsepol/cil: Give an error when constraint expressions exceed max depth, Stephen Smalley
  - Re: [PATCH] libsepol/cil: Give an error when constraint expressions exceed max depth, Stephen Smalley
    - Re: [PATCH] libsepol/cil: Give an error when constraint expressions exceed max depth, Stephen Smalley
      - Re: [PATCH] libsepol/cil: Give an error when constraint expressions exceed max depth, Dominick Grift
      - Re: [PATCH] libsepol/cil: Give an error when constraint expressions exceed max depth, Stephen Smalley
        
        Re: [PATCH] libsepol/cil: Give an error when constraint expressions exceed max depth, James Carter
        
        Re: [PATCH] libsepol/cil: Give an error when constraint expressions exceed max depth, Stephen Smalley
      - Re: [PATCH] libsepol/cil: Give an error when constraint expressions exceed max depth, James Carter
- Re: [PATCH] libsepol/cil: Give an error when constraint expressions exceed max depth, bauen1
[PATCH testsuite] tests/Makefile: add kernel version check for watchkey, Ondrej Mosnacek
- Re: [PATCH testsuite] tests/Makefile: add kernel version check for watchkey, Stephen Smalley
  - Re: [PATCH testsuite] tests/Makefile: add kernel version check for watchkey, Ondrej Mosnacek
Options to audit2allow and manpage phrasing, Peter Whittaker
- Re: Options to audit2allow and manpage phrasing, Dominick Grift
[PATCH 00/13] SELinux Notebook: Convert batch 2 to markdown, Richard Haines
- [PATCH 01/13] libselinux_functions: Convert to markdown, Richard Haines
- Re: [PATCH 00/13] SELinux Notebook: Convert batch 2 to markdown, Paul Moore
  - Re: [PATCH 00/13] SELinux Notebook: Convert batch 2 to markdown, Richard Haines
    - Re: [PATCH 00/13] SELinux Notebook: Convert batch 2 to markdown, Paul Moore
- [PATCH 02/13] mac: Tidy formatting, Richard Haines
- [PATCH 03/13] modular_policy_statements: Convert to markdown, Richard Haines
- [PATCH 12/13] rbac: Minor format fix, Richard Haines
- [PATCH 11/13] polyinstantiation: Convert to markdown, Richard Haines
- [PATCH 06/13] objects: Convert to markdown, Richard Haines
- [PATCH 08/13] policy_config_statements: Convert to markdown, Richard Haines
- [PATCH 04/13] network_statements: Convert to markdown, Richard Haines
- [PATCH 09/13] policy_languages: Tidy up, Richard Haines
- [PATCH 05/13] network_support: Convert to markdown, Richard Haines
- [PATCH 10/13] policy_store_config_files: Add TOC and tidy up formatting, Richard Haines
- [PATCH 07/13] pam_login: Convert to markdown, Richard Haines
- [PATCH 13/13] role_statements: Convert to markdown, Richard Haines
[RFC PATCH] sched: do not issue an audit on unprivileged operation, Christian Göttsche
- Re: [RFC PATCH] sched: do not issue an audit on unprivileged operation, Stephen Smalley
  - Re: [RFC PATCH] sched: do not issue an audit on unprivileged operation, Ondrej Mosnacek
[RFC PATCH] newrole: do not rely on hard-coded audith and pamh paths, Dominick Grift
- Re: [RFC PATCH] newrole: do not rely on hard-coded audith and pamh paths, Stephen Smalley
  - [PATCH] newrole: support cross-compilation with PAM and audit, Dominick Grift
    - Re: [PATCH] newrole: support cross-compilation with PAM and audit, Stephen Smalley
      - Re: [PATCH] newrole: support cross-compilation with PAM and audit, Stephen Smalley
[PATCH] Optimize the calculation of security.sehash, liwugang
- Re: [PATCH] Optimize the calculation of security.sehash, Stephen Smalley
  - Re: [PATCH] Optimize the calculation of security.sehash, liwugang
  - Message not available
    - Re: Re: [PATCH] Optimize the calculation of security.sehash, Stephen Smalley
Hiding names of unreadable files, Mikhail Novosyolov
- Re: Hiding names of unreadable files, Casey Schaufler
  - Re: Hiding names of unreadable files, Mikhail Novosyolov
    - Re: Hiding names of unreadable files, Casey Schaufler
    - Re: Hiding names of unreadable files, Stephen Smalley
- Re: Hiding names of unreadable files, Topi Miettinen
  - Re: Hiding names of unreadable files, Mikhail Novosyolov
[PATCH v2 0/3] IMA: Generalize early boot data measurement, Lakshmi Ramasubramanian
- [PATCH v2 3/3] IMA: Support early boot measurement of critical data, Lakshmi Ramasubramanian
- [PATCH v2 2/3] IMA: Support measurement of generic data during early boot, Lakshmi Ramasubramanian
- [PATCH v2 1/3] IMA: Generalize early boot measurement of asymmetric keys, Lakshmi Ramasubramanian
[PATCH v3 0/6] IMA: Infrastructure for measurement of critical kernel data, Tushar Sugandhi
- [PATCH v3 4/6] IMA: add policy to measure critical data from kernel components, Tushar Sugandhi
  - Re: [PATCH v3 4/6] IMA: add policy to measure critical data from kernel components, Mimi Zohar
    - Re: [PATCH v3 4/6] IMA: add policy to measure critical data from kernel components, Tushar Sugandhi
- [PATCH v3 5/6] IMA: add hook to measure critical data from kernel components, Tushar Sugandhi
  - Re: [PATCH v3 5/6] IMA: add hook to measure critical data from kernel components, Mimi Zohar
    - Re: [PATCH v3 5/6] IMA: add hook to measure critical data from kernel components, Tushar Sugandhi
- [PATCH v3 1/6] IMA: generalize keyring specific measurement constructs, Tushar Sugandhi
  - Re: [PATCH v3 1/6] IMA: generalize keyring specific measurement constructs, Mimi Zohar
    - Re: [PATCH v3 1/6] IMA: generalize keyring specific measurement constructs, Tushar Sugandhi
- [PATCH v3 6/6] IMA: validate supported kernel data sources before measurement, Tushar Sugandhi
- [PATCH v3 3/6] IMA: update process_buffer_measurement to measure buffer hash, Tushar Sugandhi
  - Re: [PATCH v3 3/6] IMA: update process_buffer_measurement to measure buffer hash, Mimi Zohar
    - Re: [PATCH v3 3/6] IMA: update process_buffer_measurement to measure buffer hash, Tushar Sugandhi
- [PATCH v3 2/6] IMA: change process_buffer_measurement return type from void to int, Tushar Sugandhi
  - Re: [PATCH v3 2/6] IMA: change process_buffer_measurement return type from void to int, Mimi Zohar
    - Re: [PATCH v3 2/6] IMA: change process_buffer_measurement return type from void to int, Tushar Sugandhi
[PATCH v3] selinux: simplify away security_policydb_len(), Ondrej Mosnacek
- Re: [PATCH v3] selinux: simplify away security_policydb_len(), Stephen Smalley
- Re: [PATCH v3] selinux: simplify away security_policydb_len(), Paul Moore
[PATCH 1/1] libselinux: Add new log callback levels for enforcing and policy load notices., Chris PeBenito
- Re: [PATCH 1/1] libselinux: Add new log callback levels for enforcing and policy load notices., Stephen Smalley
  - Re: [PATCH 1/1] libselinux: Add new log callback levels for enforcing and policy load notices., Stephen Smalley
[PATCH testsuite] travis: add nftables to dependencies to run more tests, Ondrej Mosnacek
- Re: [PATCH testsuite] travis: add nftables to dependencies to run more tests, Stephen Smalley
  - Re: [PATCH testsuite] travis: add nftables to dependencies to run more tests, Ondrej Mosnacek
[PATCH testsuite] tests/sctp: bump connect timeout to 4 seconds, Ondrej Mosnacek
- Re: [PATCH testsuite] tests/sctp: bump connect timeout to 4 seconds, Stephen Smalley
  - Re: [PATCH testsuite] tests/sctp: bump connect timeout to 4 seconds, Ondrej Mosnacek
[PATCH v8 0/3] SELinux support for anonymous inodes and UFFD, Lokesh Gidra
- [PATCH v8 3/3] Wire UFFD up to SELinux, Lokesh Gidra
- [PATCH v8 2/3] Teach SELinux about anonymous inodes, Lokesh Gidra
  - Re: [PATCH v8 2/3] Teach SELinux about anonymous inodes, Stephen Smalley
    - Re: [PATCH v8 2/3] Teach SELinux about anonymous inodes, Lokesh Gidra
- [PATCH v8 1/3] Add a new LSM-supporting anonymous inode interface, Lokesh Gidra
  - Re: [PATCH v8 1/3] Add a new LSM-supporting anonymous inode interface, Christian Brauner
    - Re: [PATCH v8 1/3] Add a new LSM-supporting anonymous inode interface, Lokesh Gidra
[PATCH v2] selinux: move policy mutex to selinux_state, use in lockdep checks, Stephen Smalley
- Re: [PATCH v2] selinux: move policy mutex to selinux_state, use in lockdep checks, Ondrej Mosnacek
- Re: [PATCH v2] selinux: move policy mutex to selinux_state, use in lockdep checks, Paul Moore
[PATCH v20 00/23] LSM: Module stacking for AppArmor, Casey Schaufler
- [PATCH v20 01/23] LSM: Infrastructure management of the sock security, Casey Schaufler
- [PATCH v20 02/23] LSM: Create and manage the lsmblob data structure., Casey Schaufler
  - Re: [PATCH v20 02/23] LSM: Create and manage the lsmblob data structure., Paul Moore
- [PATCH v20 03/23] LSM: Use lsmblob in security_audit_rule_match, Casey Schaufler
  - Re: [PATCH v20 03/23] LSM: Use lsmblob in security_audit_rule_match, Paul Moore
- [PATCH v20 04/23] LSM: Use lsmblob in security_kernel_act_as, Casey Schaufler
  - Re: [PATCH v20 04/23] LSM: Use lsmblob in security_kernel_act_as, Paul Moore
- [PATCH v20 05/23] net: Prepare UDS for security module stacking, Casey Schaufler
  - Re: [PATCH v20 05/23] net: Prepare UDS for security module stacking, James Morris
  - Re: [PATCH v20 05/23] net: Prepare UDS for security module stacking, Paul Moore
    - Re: [PATCH v20 05/23] net: Prepare UDS for security module stacking, Casey Schaufler
      - Re: [PATCH v20 05/23] net: Prepare UDS for security module stacking, Paul Moore
        
        Re: [PATCH v20 05/23] net: Prepare UDS for security module stacking, Casey Schaufler
        
        Re: [PATCH v20 05/23] net: Prepare UDS for security module stacking, Paul Moore
        
        Re: [PATCH v20 05/23] net: Prepare UDS for security module stacking, Casey Schaufler
        
        Re: [PATCH v20 05/23] net: Prepare UDS for security module stacking, John Johansen
        
        Re: [PATCH v20 05/23] net: Prepare UDS for security module stacking, Stephen Smalley
        
        Re: [PATCH v20 05/23] net: Prepare UDS for security module stacking, Stephen Smalley
        
        Re: [PATCH v20 05/23] net: Prepare UDS for security module stacking, Casey Schaufler
        
        Re: [PATCH v20 05/23] net: Prepare UDS for security module stacking, John Johansen
        
        Re: [PATCH v20 05/23] net: Prepare UDS for security module stacking, Stephen Smalley
        
        Re: [PATCH v20 05/23] net: Prepare UDS for security module stacking, Casey Schaufler
        
        Re: [PATCH v20 05/23] net: Prepare UDS for security module stacking, John Johansen
        
        Re: [PATCH v20 05/23] net: Prepare UDS for security module stacking, John Johansen
        
        Re: [PATCH v20 05/23] net: Prepare UDS for security module stacking, Paul Moore
        
        Re: [PATCH v20 05/23] net: Prepare UDS for security module stacking, John Johansen
- [PATCH v20 06/23] LSM: Use lsmblob in security_secctx_to_secid, Casey Schaufler
  - Re: [PATCH v20 06/23] LSM: Use lsmblob in security_secctx_to_secid, Paul Moore
- [PATCH v20 07/23] LSM: Use lsmblob in security_secid_to_secctx, Casey Schaufler
  - Re: [PATCH v20 07/23] LSM: Use lsmblob in security_secid_to_secctx, Paul Moore
- [PATCH v20 08/23] LSM: Use lsmblob in security_ipc_getsecid, Casey Schaufler
  - Re: [PATCH v20 08/23] LSM: Use lsmblob in security_ipc_getsecid, Paul Moore
- [PATCH v20 09/23] LSM: Use lsmblob in security_task_getsecid, Casey Schaufler
  - Re: [PATCH v20 09/23] LSM: Use lsmblob in security_task_getsecid, Paul Moore
- [PATCH v20 10/23] LSM: Use lsmblob in security_inode_getsecid, Casey Schaufler
  - Re: [PATCH v20 10/23] LSM: Use lsmblob in security_inode_getsecid, Paul Moore
- [PATCH v20 11/23] LSM: Use lsmblob in security_cred_getsecid, Casey Schaufler
- [PATCH v20 12/23] IMA: Change internal interfaces to use lsmblobs, Casey Schaufler
  - Re: [PATCH v20 12/23] IMA: Change internal interfaces to use lsmblobs, Paul Moore
- [PATCH v20 13/23] LSM: Specify which LSM to display, Casey Schaufler
- [PATCH v20 14/23] LSM: Ensure the correct LSM context releaser, Casey Schaufler
  - Re: [PATCH v20 14/23] LSM: Ensure the correct LSM context releaser, Paul Moore
- [PATCH v20 15/23] LSM: Use lsmcontext in security_secid_to_secctx, Casey Schaufler
- [PATCH v20 16/23] LSM: Use lsmcontext in security_inode_getsecctx, Casey Schaufler
  - Re: [PATCH v20 16/23] LSM: Use lsmcontext in security_inode_getsecctx, Paul Moore
- [PATCH v20 17/23] LSM: security_secid_to_secctx in netlink netfilter, Casey Schaufler
  - Re: [PATCH v20 17/23] LSM: security_secid_to_secctx in netlink netfilter, Paul Moore
  - Re: [PATCH v20 17/23] LSM: security_secid_to_secctx in netlink netfilter, Pablo Neira Ayuso
- [PATCH v20 18/23] NET: Store LSM netlabel data in a lsmblob, Casey Schaufler
  - Re: [PATCH v20 18/23] NET: Store LSM netlabel data in a lsmblob, Paul Moore
- [PATCH v20 19/23] LSM: Verify LSM display sanity in binder, Casey Schaufler
  - Re: [PATCH v20 19/23] LSM: Verify LSM display sanity in binder, Paul Moore
- [PATCH v20 20/23] Audit: Add new record for multiple process LSM attributes, Casey Schaufler
  - Re: [PATCH v20 20/23] Audit: Add new record for multiple process LSM attributes, James Morris
    - Re: [PATCH v20 20/23] Audit: Add new record for multiple process LSM attributes, John Johansen
    - Re: [PATCH v20 20/23] Audit: Add new record for multiple process LSM attributes, Paul Moore
  - Re: [PATCH v20 20/23] Audit: Add new record for multiple process LSM attributes, Paul Moore
- [PATCH v20 21/23] Audit: Add a new record for multiple object LSM attributes, Casey Schaufler
- [PATCH v20 22/23] LSM: Add /proc attr entry for full LSM context, Casey Schaufler
  - Re: [PATCH v20 22/23] LSM: Add /proc attr entry for full LSM context, Randy Dunlap
- [PATCH v20 23/23] AppArmor: Remove the exclusive flag, Casey Schaufler
- Re: [PATCH v20 00/23] LSM: Module stacking for AppArmor, Casey Schaufler
[PATCH v2 0/3] selinux: RCU conversion follow-ups, Ondrej Mosnacek
- [PATCH v2 2/3] selinux: eliminate the redundant policycap array, Ondrej Mosnacek
  - Re: [PATCH v2 2/3] selinux: eliminate the redundant policycap array, Stephen Smalley
    - Re: [PATCH v2 2/3] selinux: eliminate the redundant policycap array, Ondrej Mosnacek
- [PATCH v2 3/3] selinux: remove the 'initialized' flag from selinux_state, Ondrej Mosnacek
  - Re: [PATCH v2 3/3] selinux: remove the 'initialized' flag from selinux_state, Stephen Smalley
    - Re: [PATCH v2 3/3] selinux: remove the 'initialized' flag from selinux_state, Paul Moore
      - Re: [PATCH v2 3/3] selinux: remove the 'initialized' flag from selinux_state, Stephen Smalley
        
        Re: [PATCH v2 3/3] selinux: remove the 'initialized' flag from selinux_state, Paul Moore
- [PATCH v2 1/3] selinux: simplify away security_policydb_len(), Ondrej Mosnacek
  - Re: [PATCH v2 1/3] selinux: simplify away security_policydb_len(), Stephen Smalley
    - Re: [PATCH v2 1/3] selinux: simplify away security_policydb_len(), Paul Moore
      - Re: [PATCH v2 1/3] selinux: simplify away security_policydb_len(), Paul Moore
[PATCH] selinux: move policy mutex to selinux_state, use in lockdep checks, Stephen Smalley
Userspace AVC auditing on policy load, Chris PeBenito
- Re: Userspace AVC auditing on policy load, Stephen Smalley
- Re: Userspace AVC auditing on policy load, Chris PeBenito
  - Re: Userspace AVC auditing on policy load, Stephen Smalley
    - Re: Userspace AVC auditing on policy load, Chris PeBenito
    - Re: Userspace AVC auditing on policy load, Chris PeBenito
      - Re: Userspace AVC auditing on policy load, Stephen Smalley
      - Re: Userspace AVC auditing on policy load, Dominick Grift
        
        Re: Userspace AVC auditing on policy load, Chris PeBenito
        
        Re: Userspace AVC auditing on policy load, Dominick Grift
- Re: Userspace AVC auditing on policy load, Petr Lautrbach
- <Possible follow-ups>
- Re: Userspace AVC auditing on policy load, Richard Haines
  - Re: Userspace AVC auditing on policy load, Dominick Grift
  - Re: Userspace AVC auditing on policy load, Dominick Grift
[RFC V2 PATCH 0/2] selinux-testsuite: Run tests using remote server, Richard Haines
- [RFC V2 PATCH 2/2] selinux-testsuite: Run SCTP tests using remote server, Richard Haines
- [RFC V2 PATCH 1/2] selinux-testsuite: Run tests using remote server, Richard Haines
[PATCH 0/1] selinux-testsuite: Update SCTP asconf client/server, Richard Haines
- [PATCH 1/1] selinux-testsuite: Update SCTP asconf client/server, Richard Haines
  - Re: [PATCH 1/1] selinux-testsuite: Update SCTP asconf client/server, Ondrej Mosnacek
    - Re: [PATCH 1/1] selinux-testsuite: Update SCTP asconf client/server, Richard Haines
    - Re: [PATCH 1/1] selinux-testsuite: Update SCTP asconf client/server, Richard Haines
[PATCH] selinux: fix error handling bugs in security_load_policy(), Dan Carpenter
- Re: [PATCH] selinux: fix error handling bugs in security_load_policy(), Stephen Smalley
  - Re: [PATCH] selinux: fix error handling bugs in security_load_policy(), Paul Moore
[RFC PATCH 0/3] selinux: RCU conversion follow-ups, Ondrej Mosnacek
- [RFC PATCH 1/3] selinux: simplify away security_policydb_len(), Ondrej Mosnacek
  - Re: [RFC PATCH 1/3] selinux: simplify away security_policydb_len(), Stephen Smalley
    - Re: [RFC PATCH 1/3] selinux: simplify away security_policydb_len(), Ondrej Mosnacek
- [RFC PATCH 2/3] selinux: remove the 'initialized' flag from selinux_state, Ondrej Mosnacek
  - Re: [RFC PATCH 2/3] selinux: remove the 'initialized' flag from selinux_state, Stephen Smalley
    - Re: [RFC PATCH 2/3] selinux: remove the 'initialized' flag from selinux_state, Ondrej Mosnacek
      - Re: [RFC PATCH 2/3] selinux: remove the 'initialized' flag from selinux_state, Stephen Smalley
- [RFC PATCH 3/3] selinux: track policy lifetime with refcount, Ondrej Mosnacek
  - Re: [RFC PATCH 3/3] selinux: track policy lifetime with refcount, Stephen Smalley
    - Re: [RFC PATCH 3/3] selinux: track policy lifetime with refcount, Ondrej Mosnacek
    - Re: [RFC PATCH 3/3] selinux: track policy lifetime with refcount, Paul E. McKenney
  - Re: [RFC PATCH 3/3] selinux: track policy lifetime with refcount, peter enderborg
  - Re: [RFC PATCH 3/3] selinux: track policy lifetime with refcount, Lakshmi Ramasubramanian
    - Re: [RFC PATCH 3/3] selinux: track policy lifetime with refcount, Ondrej Mosnacek
      - Re: [RFC PATCH 3/3] selinux: track policy lifetime with refcount, Lakshmi Ramasubramanian
[bug report] selinux: encapsulate policy state, refactor policy load, Dan Carpenter
- Re: [bug report] selinux: encapsulate policy state, refactor policy load, Paul Moore
  - Re: [bug report] selinux: encapsulate policy state, refactor policy load, Dan Carpenter
    - Re: [bug report] selinux: encapsulate policy state, refactor policy load, Paul Moore
      - Re: [bug report] selinux: encapsulate policy state, refactor policy load, Dan Carpenter
        
        Re: [bug report] selinux: encapsulate policy state, refactor policy load, Paul Moore
[PATCH 00/18] SELinux Notebook: Convert batch 1 to markdown, Richard Haines
- [PATCH 02/18] auditing: Convert to markdown, Richard Haines
- [PATCH 01/18] apache_support: Convert to markdown, Richard Haines
- [PATCH 03/18] avc_rules: Convert to markdown, Richard Haines
- [PATCH 04/18] bounds_rules: Convert to markdown, Richard Haines
- [PATCH 05/18] cil_overview: Convert to markdown, Richard Haines
- [PATCH 14/18] domain_object_transitions: Convert to markdown, Richard Haines
- [PATCH 13/18] default_rules: Convert to markdown, Richard Haines
- [PATCH 09/18] conditional_statements: Convert to markdown, Richard Haines
- [PATCH 07/18] computing_access_decisions: Convert to markdown, Richard Haines
- [PATCH 10/18] configuration_files: Convert to markdown, Richard Haines
- [PATCH 15/18] file_labeling_statements: Convert to markdown, Richard Haines
- [PATCH 18/18] infiniband_statements: Convert to markdown, Richard Haines
- [PATCH 06/18] class_permission_statements: Convert to markdown, Richard Haines
- [PATCH 16/18] global_config_files: Convert to markdown, Richard Haines
- [PATCH 08/18] computing_security_contexts: Convert to markdown, Richard Haines
- [PATCH 17/18] implementing_seaware_apps: Convert to markdown, Richard Haines
- [PATCH 11/18] constraint_statements: Convert to markdown, Richard Haines
- [PATCH 12/18] core_components: Convert to markdown, Richard Haines
- Re: [PATCH 00/18] SELinux Notebook: Convert batch 1 to markdown, Paul Moore
[PATCH v2 0/2] selinux: Clean up GFP flag usage, Ondrej Mosnacek
- [PATCH v2 1/2] selinux: switch unnecessary GFP_ATOMIC allocs to GFP_KERNEL, Ondrej Mosnacek
  - Re: [PATCH v2 1/2] selinux: switch unnecessary GFP_ATOMIC allocs to GFP_KERNEL, Stephen Smalley
    - Re: [PATCH v2 1/2] selinux: switch unnecessary GFP_ATOMIC allocs to GFP_KERNEL, Ondrej Mosnacek
      - Re: [PATCH v2 1/2] selinux: switch unnecessary GFP_ATOMIC allocs to GFP_KERNEL, Stephen Smalley
        
        Re: [PATCH v2 1/2] selinux: switch unnecessary GFP_ATOMIC allocs to GFP_KERNEL, Paul Moore
        
        Re: [PATCH v2 1/2] selinux: switch unnecessary GFP_ATOMIC allocs to GFP_KERNEL, Ondrej Mosnacek
        
        Re: [PATCH v2 1/2] selinux: switch unnecessary GFP_ATOMIC allocs to GFP_KERNEL, Stephen Smalley
        
        Re: [PATCH v2 1/2] selinux: switch unnecessary GFP_ATOMIC allocs to GFP_KERNEL, Paul Moore
- [PATCH v2 2/2] selinux: drop the gfp_t argument from str_read(), Ondrej Mosnacek
[PATCH 0/2] selinux: Clean up GFP flag usage, Ondrej Mosnacek
- [PATCH 1/2] selinux: switch unnecessary GFP_ATOMIC allocs to GFP_KERNEL, Ondrej Mosnacek
  - Re: [PATCH 1/2] selinux: switch unnecessary GFP_ATOMIC allocs to GFP_KERNEL, Ondrej Mosnacek
- [PATCH 2/2] selinux: drop the gfp_t argument from str_read(), Ondrej Mosnacek
[PATCH v2 1/1] libselinux: Remove trailing slash on selabel_file lookups., Chris PeBenito
- Re: [PATCH v2 1/1] libselinux: Remove trailing slash on selabel_file lookups., Stephen Smalley
  - Re: [PATCH v2 1/1] libselinux: Remove trailing slash on selabel_file lookups., Stephen Smalley
[PATCH 1/3] libselinux: refactor wrapper in sestatus.c for safe shared memory access, Christian Göttsche
- [PATCH 3/3] libselinux: initialize last_policyload in selinux_status_open(), Christian Göttsche
- [PATCH 2/3] libselinux: safely access shared memory in selinux_status_updated(), Christian Göttsche
- Re: [PATCH 1/3] libselinux: refactor wrapper in sestatus.c for safe shared memory access, Stephen Smalley
- [PATCH v2 0/2] selinux_status_ changes, Christian Göttsche
  - [PATCH v2 1/2] libselinux: safely access shared memory in selinux_status_updated(), Christian Göttsche
    - Re: [PATCH v2 1/2] libselinux: safely access shared memory in selinux_status_updated(), Stephen Smalley
  - [PATCH v2 2/2] libselinux: initialize last_policyload in selinux_status_open(), Christian Göttsche
    - Re: [PATCH v2 2/2] libselinux: initialize last_policyload in selinux_status_open(), Stephen Smalley
      - Re: [PATCH v2 2/2] libselinux: initialize last_policyload in selinux_status_open(), Stephen Smalley
[PATCH 0/2] Fix race conditions when reading out policy data, Ondrej Mosnacek
- [PATCH 1/2] selinux: fix a race condition in security_read_policy(), Ondrej Mosnacek
  - Re: [PATCH 1/2] selinux: fix a race condition in security_read_policy(), Stephen Smalley
    - Re: [PATCH 1/2] selinux: fix a race condition in security_read_policy(), Stephen Smalley
      - Re: [PATCH 1/2] selinux: fix a race condition in security_read_policy(), Ondrej Mosnacek
        
        Re: [PATCH 1/2] selinux: fix a race condition in security_read_policy(), Paul Moore
- [PATCH 2/2] selinux: fix a race condition in sel_open_policy(), Ondrej Mosnacek
[PATCH] SELinux: Measure state and hash of policy using IMA, Lakshmi Ramasubramanian
- Re: [PATCH] SELinux: Measure state and hash of policy using IMA, Stephen Smalley
  - Re: [PATCH] SELinux: Measure state and hash of policy using IMA, Lakshmi Ramasubramanian
  - Re: [PATCH] SELinux: Measure state and hash of policy using IMA, Lakshmi Ramasubramanian
    - Re: [PATCH] SELinux: Measure state and hash of policy using IMA, Stephen Smalley
      - Re: [PATCH] SELinux: Measure state and hash of policy using IMA, Ondrej Mosnacek
        
        Re: [PATCH] SELinux: Measure state and hash of policy using IMA, Lakshmi Ramasubramanian
        
        Re: [PATCH] SELinux: Measure state and hash of policy using IMA, Paul Moore
        
        Re: [PATCH] SELinux: Measure state and hash of policy using IMA, Lakshmi Ramasubramanian
        
        Re: [PATCH] SELinux: Measure state and hash of policy using IMA, Stephen Smalley
        
        Re: [PATCH] SELinux: Measure state and hash of policy using IMA, Stephen Smalley
        
        Re: [PATCH] SELinux: Measure state and hash of policy using IMA, Lakshmi Ramasubramanian
- <Possible follow-ups>
- [PATCH] SELinux: Measure state and hash of policy using IMA, Lakshmi Ramasubramanian
  - Re: [PATCH] SELinux: Measure state and hash of policy using IMA, Stephen Smalley
    - Re: [PATCH] SELinux: Measure state and hash of policy using IMA, Lakshmi Ramasubramanian
      - Re: [PATCH] SELinux: Measure state and hash of policy using IMA, Stephen Smalley
        
        Re: [PATCH] SELinux: Measure state and hash of policy using IMA, Lakshmi Ramasubramanian
  - Re: [PATCH] SELinux: Measure state and hash of policy using IMA, Stephen Smalley
    - Re: [PATCH] SELinux: Measure state and hash of policy using IMA, Ondrej Mosnacek
    - Re: [PATCH] SELinux: Measure state and hash of policy using IMA, Stephen Smalley
[PATCH] IMA: Handle early boot data measurement, Lakshmi Ramasubramanian
- Re: [PATCH] IMA: Handle early boot data measurement, Mimi Zohar
  - Re: [PATCH] IMA: Handle early boot data measurement, Lakshmi Ramasubramanian
    - Re: [PATCH] IMA: Handle early boot data measurement, Mimi Zohar
      - Re: [PATCH] IMA: Handle early boot data measurement, Lakshmi Ramasubramanian
        
        Re: [PATCH] IMA: Handle early boot data measurement, Mimi Zohar
        
        Re: [PATCH] IMA: Handle early boot data measurement, Lakshmi Ramasubramanian
        
        Re: [PATCH] IMA: Handle early boot data measurement, Mimi Zohar
Administrivia, Paul Moore
[net PATCH] netlabel: fix problems with mapping removal, Paul Moore
- Re: [net PATCH] netlabel: fix problems with mapping removal, David Miller
[PATCH v7 0/3] SELinux support for anonymous inodes and UFFD, Lokesh Gidra
- [PATCH v7 1/3] Add a new LSM-supporting anonymous inode interface, Lokesh Gidra
  - Re: [PATCH v7 1/3] Add a new LSM-supporting anonymous inode interface, Lokesh Gidra
  - Re: [PATCH v7 1/3] Add a new LSM-supporting anonymous inode interface, Eric Biggers
    - Re: [PATCH v7 1/3] Add a new LSM-supporting anonymous inode interface, Lokesh Gidra
- [PATCH v7 2/3] Teach SELinux about anonymous inodes, Lokesh Gidra
- [PATCH v7 3/3] Wire UFFD up to SELinux, Lokesh Gidra
[PATCH v2 0/3] IMA: Infrastructure for measurement of critical kernel data, Tushar Sugandhi
- [PATCH v2 2/3] IMA: add policy to support measuring critical data from kernel components, Tushar Sugandhi
  - Re: [PATCH v2 2/3] IMA: add policy to support measuring critical data from kernel components, Mimi Zohar
    - Re: [PATCH v2 2/3] IMA: add policy to support measuring critical data from kernel components, Tushar Sugandhi
      - Re: [PATCH v2 2/3] IMA: add policy to support measuring critical data from kernel components, Mimi Zohar

[Index of Archives] [Selinux Refpolicy] [Fedora Users] [Fedora Desktop] [Kernel] [KDE Users] [Gnome Users]

Powered by Linux