Security Enhanced Linux (SELINUX)

Date Index

[Prev Page][Next Page]

[PATCH 06/13] fs/kernel_read_file: Remove redundant size argument, (continued)
- [PATCH 06/13] fs/kernel_read_file: Remove redundant size argument, Kees Cook
  - Re: [PATCH 06/13] fs/kernel_read_file: Remove redundant size argument, Scott Branden
    - Re: [PATCH 06/13] fs/kernel_read_file: Remove redundant size argument, Scott Branden
    - Re: [PATCH 06/13] fs/kernel_read_file: Remove redundant size argument, Kees Cook
      - Re: [PATCH 06/13] fs/kernel_read_file: Remove redundant size argument, Scott Branden
  - Re: [PATCH 06/13] fs/kernel_read_file: Remove redundant size argument, Scott Branden
    - Re: [PATCH 06/13] fs/kernel_read_file: Remove redundant size argument, Kees Cook
- [PATCH 07/13] fs/kernel_read_file: Switch buffer size arg to size_t, Kees Cook
  - RE: [PATCH 07/13] fs/kernel_read_file: Switch buffer size arg to size_t, David Laight
- [PATCH 05/13] fs/kernel_read_file: Split into separate source file, Kees Cook
  - Re: [PATCH 05/13] fs/kernel_read_file: Split into separate source file, Scott Branden
- [PATCH 08/13] fs/kernel_read_file: Add file_size output argument, Kees Cook
- [PATCH 04/13] fs/kernel_read_file: Split into separate include file, Kees Cook
- [PATCH 03/13] fs/kernel_read_file: Remove FIRMWARE_EFI_EMBEDDED enum, Kees Cook
  - Re: [PATCH 03/13] fs/kernel_read_file: Remove FIRMWARE_EFI_EMBEDDED enum, Scott Branden
- [PATCH 01/13] firmware_loader: EFI firmware loader must handle pre-allocated buffer, Kees Cook
  - Re: [PATCH 01/13] firmware_loader: EFI firmware loader must handle pre-allocated buffer, Scott Branden
- Re: [PATCH 00/13] Introduce partial kernel_read_file() support, Scott Branden
  - Re: [PATCH 00/13] Introduce partial kernel_read_file() support, Kees Cook
[PATCH v4 0/2] userspace: Implement new format of filename trans rules, Ondrej Mosnacek
- [PATCH v4 2/2] libsepol: implement POLICYDB_VERSION_COMP_FTRANS, Ondrej Mosnacek
- [PATCH v4 1/2] libsepol,checkpolicy: optimize storage of filename transitions, Ondrej Mosnacek
- Re: [PATCH v4 0/2] userspace: Implement new format of filename trans rules, Ondrej Mosnacek
Reporting a use-after-free read bug in userfaultfd_release(), Peilin Ye
[PATCH v2] libselinux: Use sestatus if open, Mike Palmiotto
- Re: [PATCH v2] libselinux: Use sestatus if open, Stephen Smalley
  - Re: [PATCH v2] libselinux: Use sestatus if open, Stephen Smalley
[PATCH] python/audit2allow: add #include <limits.h> to sepolgen-ifgen-attr-helper.c, W. Michael Petullo
- Re: [PATCH] python/audit2allow: add #include <limits.h> to sepolgen-ifgen-attr-helper.c, Nicolas Iooss
  - Re: [PATCH] python/audit2allow: add #include <limits.h> to sepolgen-ifgen-attr-helper.c, Nicolas Iooss
[PATCH] selinux: make use of variables when defining libdir and includedir, W. Michael Petullo
- Re: [PATCH] selinux: make use of variables when defining libdir and includedir, Nicolas Iooss
[RFC PATCH 0/5] keys: Security changes, ACLs and Container keyring, David Howells
- [RFC PATCH 1/5] keys: Move permissions checking decisions into the checking code, David Howells
- [RFC PATCH 3/5] keys: Provide KEYCTL_GRANT_PERMISSION, David Howells
- [RFC PATCH 5/5] keys: Implement a 'container' keyring, David Howells
- [RFC PATCH 4/5] keys: Split the search perms between KEY_NEED_USE and KEY_NEED_SEARCH, David Howells
- Re: [RFC PATCH 0/5] keys: Security changes, ACLs and Container keyring, Eric W. Biederman
[PATCH v2 0/5] LSM: Measure security module state, Lakshmi Ramasubramanian
- [PATCH v2 1/5] IMA: Add LSM_STATE func to measure LSM data, Lakshmi Ramasubramanian
- [PATCH v2 4/5] LSM: Define SELinux function to measure security state, Lakshmi Ramasubramanian
  - Re: [PATCH v2 4/5] LSM: Define SELinux function to measure security state, Stephen Smalley
    - Re: [PATCH v2 4/5] LSM: Define SELinux function to measure security state, Lakshmi Ramasubramanian
      - Re: [PATCH v2 4/5] LSM: Define SELinux function to measure security state, Stephen Smalley
        
        Re: [PATCH v2 4/5] LSM: Define SELinux function to measure security state, Lakshmi Ramasubramanian
- [PATCH v2 5/5] LSM: Define workqueue for measuring security module state, Lakshmi Ramasubramanian
- [PATCH v3 3/5] LSM: Add security_measure_data in lsm_info struct, Lakshmi Ramasubramanian
- [PATCH v2 2/5] IMA: Define an IMA hook to measure LSM data, Lakshmi Ramasubramanian
[PATCH] restorecond: Set X-GNOME-HiddenUnderSystemd=true in restorecond.desktop file, Laurent Bigonville
- Re: [PATCH] restorecond: Set X-GNOME-HiddenUnderSystemd=true in restorecond.desktop file, Nicolas Iooss
  - Re: [PATCH] restorecond: Set X-GNOME-HiddenUnderSystemd=true in restorecond.desktop file, Nicolas Iooss
[SELinux-notebook PATCH] adds CIL policy with makefile, Dominick Grift
- Re: [SELinux-notebook PATCH] adds CIL policy with makefile, Richard Haines
  - Re: [SELinux-notebook PATCH] adds CIL policy with makefile, Dominick Grift
  - [SELinux-notebook PATCH v2] adds CIL policy with makefile, Dominick Grift
  - [SELinux-notebook PATCH v3] adds CIL policy with makefile, Dominick Grift
- [SELinux-notebook PATCH v4] adds CIL policy with makefile, Dominick Grift
  - Re: [SELinux-notebook PATCH v4] adds CIL policy with makefile, Richard Haines
  - [SELinux-notebook PATCH v5] adds CIL policy with makefile, Dominick Grift
    - Re: [SELinux-notebook PATCH v5] adds CIL policy with makefile, Paul Moore
      - Re: [SELinux-notebook PATCH v5] adds CIL policy with makefile, Richard Haines
        
        Re: [SELinux-notebook PATCH v5] adds CIL policy with makefile, James Carter
        
        Re: [SELinux-notebook PATCH v5] adds CIL policy with makefile, Paul Moore
[PATCH v1 0/5] LSM: Measure security module state, Lakshmi Ramasubramanian
- [PATCH v1 4/5] LSM: Define SELinux function to measure security state, Lakshmi Ramasubramanian
  - Re: [PATCH v1 4/5] LSM: Define SELinux function to measure security state, Stephen Smalley
    - Re: [PATCH v1 4/5] LSM: Define SELinux function to measure security state, Lakshmi Ramasubramanian
- [PATCH v1 3/5] LSM: Add security_state function pointer in lsm_info struct, Lakshmi Ramasubramanian
- [PATCH v1 5/5] LSM: Define workqueue for measuring security module state, Lakshmi Ramasubramanian
- [PATCH v1 1/5] IMA: Add LSM_STATE func to measure LSM data, Lakshmi Ramasubramanian
- [PATCH v1 2/5] IMA: Define an IMA hook to measure LSM data, Lakshmi Ramasubramanian
[PATCH v5 0/6] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Adrian Reber
- [PATCH v5 1/6] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Adrian Reber
  - Re: [PATCH v5 1/6] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Christian Brauner
- [PATCH v5 2/6] pid: use checkpoint_restore_ns_capable() for set_tid, Adrian Reber
  - Re: [PATCH v5 2/6] pid: use checkpoint_restore_ns_capable() for set_tid, Christian Brauner
- [PATCH v5 3/6] pid_namespace: use checkpoint_restore_ns_capable() for ns_last_pid, Adrian Reber
  - Re: [PATCH v5 3/6] pid_namespace: use checkpoint_restore_ns_capable() for ns_last_pid, Christian Brauner
- [PATCH v5 5/6] prctl: Allow checkpoint/restore capable processes to change exe link, Adrian Reber
  - Re: [PATCH v5 5/6] prctl: Allow checkpoint/restore capable processes to change exe link, Christian Brauner
    - RE: [PATCH v5 5/6] prctl: Allow checkpoint/restore capable processes to change exe link, Nicolas Viennot
- [PATCH v5 4/6] proc: allow access in init userns for map_files with CAP_CHECKPOINT_RESTORE, Adrian Reber
  - Re: [PATCH v5 4/6] proc: allow access in init userns for map_files with CAP_CHECKPOINT_RESTORE, Cyrill Gorcunov
  - Re: [PATCH v5 4/6] proc: allow access in init userns for map_files with CAP_CHECKPOINT_RESTORE, Christian Brauner
- [PATCH v5 6/6] selftests: add clone3() CAP_CHECKPOINT_RESTORE test, Adrian Reber
  - Re: [PATCH v5 6/6] selftests: add clone3() CAP_CHECKPOINT_RESTORE test, Christian Brauner
- Re: [PATCH v5 0/6] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Serge E. Hallyn
  - Re: [PATCH v5 0/6] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Christian Brauner
Fwd: RedHat 8 Default Context mismatch, Jason Strauss
- Re: RedHat 8 Default Context mismatch, Paul Moore
  - Re: RedHat 8 Default Context mismatch, Jason Strauss
[PATCH] libselinux: Use sestatus if open, Mike Palmiotto
- [PATCH] libselinux: Use sestatus if open, Mike Palmiotto
- Re: [PATCH] libselinux: Use sestatus if open, Stephen Smalley
  - Re: [PATCH] libselinux: Use sestatus if open, Mike Palmiotto
    - Re: [PATCH] libselinux: Use sestatus if open, Stephen Smalley
      - Re: [PATCH] libselinux: Use sestatus if open, Mike Palmiotto
        
        Re: [PATCH] libselinux: Use sestatus if open, Mike Palmiotto
        
        Re: [PATCH] libselinux: Use sestatus if open, Stephen Smalley
        
        Re: [PATCH] libselinux: Use sestatus if open, Mike Palmiotto
        
        Re: [PATCH] libselinux: Use sestatus if open, Mike Palmiotto
        
        Re: [PATCH] libselinux: Use sestatus if open, Stephen Smalley
        
        Re: [PATCH] libselinux: Use sestatus if open, Mike Palmiotto
        
        Re: [PATCH] libselinux: Use sestatus if open, Stephen Smalley
        
        Re: [PATCH] libselinux: Use sestatus if open, Mike Palmiotto
        
        Re: [PATCH] libselinux: Use sestatus if open, Stephen Smalley
        
        Re: [PATCH] libselinux: Use sestatus if open, Stephen Smalley
        
        Re: [PATCH] libselinux: Use sestatus if open, Mike Palmiotto
genhomedircon and passwd, Dominick Grift
- Re: genhomedircon and passwd, Dominick Grift
[SELinux-notebook RFC] mypolicy is a simple CIL policy with Makefile to get started with, Dominick Grift
- [SELinux-notebook RFC v2] mypolicy is a simple CIL policy with Makefile to get started with, Dominick Grift
  - Re: [SELinux-notebook RFC v2] mypolicy is a simple CIL policy with Makefile to get started with, James Carter
    - Re: [SELinux-notebook RFC v2] mypolicy is a simple CIL policy with Makefile to get started with, Dominick Grift
  - Re: [SELinux-notebook RFC v2] mypolicy is a simple CIL policy with Makefile to get started with, Richard Haines
    - Re: [SELinux-notebook RFC v2] mypolicy is a simple CIL policy with Makefile to get started with, Dominick Grift
    - [SELinux-notebook RFC v3] cil-policy is a simple CIL policy with Makefile to get started with, Dominick Grift
[PATCH] selinux-testsuite: Review and update SCTP tests, Richard Haines
- Re: [PATCH] selinux-testsuite: Review and update SCTP tests, Ondrej Mosnacek
  - Re: [PATCH] selinux-testsuite: Review and update SCTP tests, Ondrej Mosnacek
    - Re: [PATCH] selinux-testsuite: Review and update SCTP tests, Stephen Smalley
      - Re: [PATCH] selinux-testsuite: Review and update SCTP tests, Stephen Smalley
        
        Re: [PATCH] selinux-testsuite: Review and update SCTP tests, Ondrej Mosnacek
ANN: SELinux userspace release 2020-07-10 / 3.1, Petr Lautrbach
[SELinux-notebook PATCH] onjects.md: some clarifications, Dominick Grift
- [SELinux-notebook PATCH v2] objects.md: some clarifications, Dominick Grift
  - Re: [SELinux-notebook PATCH v2] objects.md: some clarifications, Richard Haines
  - Re: [SELinux-notebook PATCH v2] objects.md: some clarifications, Paul Moore
    - Re: [SELinux-notebook PATCH v2] objects.md: some clarifications, Dominick Grift
    - [SELinux-notebook PATCH v3] objects.md: some clarifications, Dominick Grift
      - [SELinux-notebook PATCH v4] objects.md: some clarifications, Dominick Grift
        
        Re: [SELinux-notebook PATCH v4] objects.md: some clarifications, Paul Moore
        
        Re: [SELinux-notebook PATCH v4] objects.md: some clarifications, Dominick Grift
        
        [SELinux-notebook PATCH v5] objects.md: some clarifications, Dominick Grift
        
        [SELinux-notebook PATCH v6] objects.md: some clarifications, Dominick Grift
        
        Re: [SELinux-notebook PATCH v6] objects.md: some clarifications, Stephen Smalley
        
        [SELinux-notebook PATCH v7] objects.md: some clarifications, Dominick Grift
        
        [SELinux-notebook PATCH v8] objects.md: some clarifications, Dominick Grift
        
        Re: [SELinux-notebook PATCH v8] objects.md: some clarifications, Dominick Grift
        
        Re: [SELinux-notebook PATCH v8] objects.md: some clarifications, Stephen Smalley
        
        Re: [SELinux-notebook PATCH v8] objects.md: some clarifications, Dominick Grift
        
        Re: [SELinux-notebook PATCH v8] objects.md: some clarifications, Stephen Smalley
        
        Re: [SELinux-notebook PATCH v8] objects.md: some clarifications, Dominick Grift
        
        Re: [SELinux-notebook PATCH v8] objects.md: some clarifications, Stephen Smalley
        
        Re: [SELinux-notebook PATCH v8] objects.md: some clarifications, Dominick Grift
        
        Re: [SELinux-notebook PATCH v8] objects.md: some clarifications, Stephen Smalley
        
        Re: [SELinux-notebook PATCH v8] objects.md: some clarifications, Dominick Grift
        
        Re: [SELinux-notebook PATCH v8] objects.md: some clarifications, Dominick Grift
        
        Re: [SELinux-notebook PATCH v8] objects.md: some clarifications, Stephen Smalley
        
        Re: [SELinux-notebook PATCH v8] objects.md: some clarifications, Dominick Grift
        
        Re: [SELinux-notebook PATCH v8] objects.md: some clarifications, Stephen Smalley
        
        Re: [SELinux-notebook PATCH v8] objects.md: some clarifications, Dominick Grift
        
        Re: [SELinux-notebook PATCH v8] objects.md: some clarifications, Stephen Smalley
        
        Re: [SELinux-notebook PATCH v8] objects.md: some clarifications, Dominick Grift
        
        Re: [SELinux-notebook PATCH v8] objects.md: some clarifications, Dominick Grift
        
        Re: [SELinux-notebook PATCH v8] objects.md: some clarifications, Stephen Smalley
        
        [SELinux-notebook PATCH v9] objects.md: some clarifications, Dominick Grift
        
        Re: [SELinux-notebook PATCH v9] objects.md: some clarifications, Stephen Smalley
        
        Re: [SELinux-notebook PATCH v9] objects.md: some clarifications, Stephen Smalley
        
        Re: [SELinux-notebook PATCH v9] objects.md: some clarifications, Paul Moore
[PATCH v4 0/2] Inline some hashtab functions to improve performance, Ondrej Mosnacek
- [PATCH v4 2/2] selinux: complete the inlining of hashtab functions, Ondrej Mosnacek
  - Re: [PATCH v4 2/2] selinux: complete the inlining of hashtab functions, Paul Moore
- [PATCH v4 1/2] selinux: prepare for inlining of hashtab functions, Ondrej Mosnacek
  - Re: [PATCH v4 1/2] selinux: prepare for inlining of hashtab functions, Stephen Smalley
travis: any reason we have keep going on make commands, William Roberts
- Re: travis: any reason we have keep going on make commands, Paul Moore
  - Re: travis: any reason we have keep going on make commands, Nicolas Iooss
    - Re: travis: any reason we have keep going on make commands, William Roberts
      - Re: travis: any reason we have keep going on make commands, Nicolas Iooss
        
        Re: travis: any reason we have keep going on make commands, William Roberts
        
        Re: travis: any reason we have keep going on make commands, William Roberts
[SELinux-notebook PATCH] pam_login.md: pam_selinux_permit is known as pam_sepermit upstream, Dominick Grift
- Re: [SELinux-notebook PATCH] pam_login.md: pam_selinux_permit is known as pam_sepermit upstream, Richard Haines
- Re: [SELinux-notebook PATCH] pam_login.md: pam_selinux_permit is known as pam_sepermit upstream, Paul Moore
3.1 release notes draft, Petr Lautrbach
- [PATCH] Update VERSIONs and Python bindings version to 3.1 for release, Petr Lautrbach
- Re: 3.1 release notes draft, Stephen Smalley
- Re: 3.1 release notes draft, Ondrej Mosnacek
  - Re: 3.1 release notes draft, Petr Lautrbach
[SELinux-notebook PATCH] avc_rules.md: mention secilc with the neverallow statement, Dominick Grift
- Re: [SELinux-notebook PATCH] avc_rules.md: mention secilc with the neverallow statement, Richard Haines
  - [PATCH] avc_rules.md: mention secilc with the neverallow statement, Dominick Grift
    - Re: [PATCH] avc_rules.md: mention secilc with the neverallow statement, Paul Moore
- Re: [SELinux-notebook PATCH] avc_rules.md: mention secilc with the neverallow statement, Stephen Smalley
[SELinux-notebook PATCH] auditing.md: describe avc record permissive keyword, Dominick Grift
- Re: [SELinux-notebook PATCH] auditing.md: describe avc record permissive keyword, Richard Haines
  - Re: [SELinux-notebook PATCH] auditing.md: describe avc record permissive keyword, Paul Moore
[PATCH v18 00/23] LSM: Module stacking for AppArmor, Casey Schaufler
- [PATCH v18 01/23] LSM: Infrastructure management of the sock security, Casey Schaufler
- [PATCH v18 02/23] LSM: Create and manage the lsmblob data structure., Casey Schaufler
- [PATCH v18 03/23] LSM: Use lsmblob in security_audit_rule_match, Casey Schaufler
- [PATCH v18 04/23] LSM: Use lsmblob in security_kernel_act_as, Casey Schaufler
- [PATCH v18 05/23] net: Prepare UDS for security module stacking, Casey Schaufler
  - Re: [PATCH v18 05/23] net: Prepare UDS for security module stacking, Stephen Smalley
    - Re: [PATCH v18 05/23] net: Prepare UDS for security module stacking, John Johansen
      - Re: [PATCH v18 05/23] net: Prepare UDS for security module stacking, Casey Schaufler
      - Re: [PATCH v18 05/23] net: Prepare UDS for security module stacking, Stephen Smalley
- [PATCH v18 06/23] LSM: Use lsmblob in security_secctx_to_secid, Casey Schaufler
- [PATCH v18 07/23] LSM: Use lsmblob in security_secid_to_secctx, Casey Schaufler
- [PATCH v18 08/23] LSM: Use lsmblob in security_ipc_getsecid, Casey Schaufler
- [PATCH v18 09/23] LSM: Use lsmblob in security_task_getsecid, Casey Schaufler
- [PATCH v18 10/23] LSM: Use lsmblob in security_inode_getsecid, Casey Schaufler
- [PATCH v18 11/23] LSM: Use lsmblob in security_cred_getsecid, Casey Schaufler
- [PATCH v18 12/23] IMA: Change internal interfaces to use lsmblobs, Casey Schaufler
- [PATCH v18 13/23] LSM: Specify which LSM to display, Casey Schaufler
- [PATCH v18 14/23] LSM: Ensure the correct LSM context releaser, Casey Schaufler
- [PATCH v18 15/23] LSM: Use lsmcontext in security_secid_to_secctx, Casey Schaufler
- [PATCH v18 16/23] LSM: Use lsmcontext in security_inode_getsecctx, Casey Schaufler
- [PATCH v18 17/23] LSM: security_secid_to_secctx in netlink netfilter, Casey Schaufler
- [PATCH v18 18/23] NET: Store LSM netlabel data in a lsmblob, Casey Schaufler
- [PATCH v18 19/23] LSM: Verify LSM display sanity in binder, Casey Schaufler
- [PATCH v18 20/23] Audit: Add new record for multiple process LSM attributes, Casey Schaufler
- [PATCH v18 21/23] Audit: Add a new record for multiple object LSM attributes, Casey Schaufler
- [PATCH v18 22/23] LSM: Add /proc attr entry for full LSM context, Casey Schaufler
  - Re: [PATCH v18 22/23] LSM: Add /proc attr entry for full LSM context, Jann Horn
    - Re: [PATCH v18 22/23] LSM: Add /proc attr entry for full LSM context, Casey Schaufler
- [PATCH v18 23/23] AppArmor: Remove the exclusive flag, Casey Schaufler
[PATCH v3 0/3] Inline some hashtab functions to improve performance, Ondrej Mosnacek
- [PATCH v3 1/3] selinux: specialize symtab insert and search functions, Ondrej Mosnacek
  - Re: [PATCH v3 1/3] selinux: specialize symtab insert and search functions, Stephen Smalley
  - Re: [PATCH v3 1/3] selinux: specialize symtab insert and search functions, Paul Moore
- [PATCH v3 3/3] selinux: complete the inlining of hashtab functions, Ondrej Mosnacek
  - Re: [PATCH v3 3/3] selinux: complete the inlining of hashtab functions, Stephen Smalley
- [PATCH v3 2/3] selinux: prepare for inlining of hashtab functions, Ondrej Mosnacek
  - Re: [PATCH v3 2/3] selinux: prepare for inlining of hashtab functions, Stephen Smalley
    - Re: [PATCH v3 2/3] selinux: prepare for inlining of hashtab functions, Ondrej Mosnacek
      - Re: [PATCH v3 2/3] selinux: prepare for inlining of hashtab functions, Paul Moore
ANN: The SELinux Notebook in markdown on GitHub, Paul Moore
- Re: ANN: The SELinux Notebook in markdown on GitHub, Richard Haines
- Re: ANN: The SELinux Notebook in markdown on GitHub, Petr Lautrbach
[PATCH v2] policycoreutils: setfiles: do not restrict checks against a binary policy, Antoine Tenart
- Re: [PATCH v2] policycoreutils: setfiles: do not restrict checks against a binary policy, Stephen Smalley
  - Re: [PATCH v2] policycoreutils: setfiles: do not restrict checks against a binary policy, Petr Lautrbach
[PATCH] security/selinux: Fix spelling mistakes in the comments, lihao
- Re: [PATCH] security/selinux: Fix spelling mistakes in the comments, Paul Moore
Strange AVC denials without effect, Topi Miettinen
- Re: Strange AVC denials without effect, Paul Moore
  - Re: Strange AVC denials without effect, Topi Miettinen
  - Re: Strange AVC denials without effect, Topi Miettinen
Rebased selinux/working-selinuxns, Paul Moore
[PATCH] selinux-testsuite: Remove unused sctp code, Richard Haines
- Re: [PATCH] selinux-testsuite: Remove unused sctp code, Ondrej Mosnacek
  - Re: [PATCH] selinux-testsuite: Remove unused sctp code, Ondrej Mosnacek
[PATCH] policycoreutils: setfiles: do not restrict checks against a binary policy, Antoine Tenart
- Re: [PATCH] policycoreutils: setfiles: do not restrict checks against a binary policy, Stephen Smalley
  - Re: [PATCH] policycoreutils: setfiles: do not restrict checks against a binary policy, Antoine Tenart
[PATCH v4 0/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Adrian Reber
- [PATCH v4 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Adrian Reber
  - Re: [PATCH v4 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Christian Brauner
    - Re: [PATCH v4 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Adrian Reber
- [PATCH v4 2/3] selftests: add clone3() CAP_CHECKPOINT_RESTORE test, Adrian Reber
  - Re: [PATCH v4 2/3] selftests: add clone3() CAP_CHECKPOINT_RESTORE test, Serge E. Hallyn
    - Re: [PATCH v4 2/3] selftests: add clone3() CAP_CHECKPOINT_RESTORE test, Adrian Reber
      - Re: [PATCH v4 2/3] selftests: add clone3() CAP_CHECKPOINT_RESTORE test, Serge E. Hallyn
- [PATCH v4 3/3] prctl: Allow ptrace capable processes to change /proc/self/exe, Adrian Reber
  - Re: [PATCH v4 3/3] prctl: Allow ptrace capable processes to change /proc/self/exe, Christian Brauner
    - Re: [PATCH v4 3/3] prctl: Allow ptrace capable processes to change /proc/self/exe, Serge E. Hallyn
  - Re: [PATCH v4 3/3] prctl: Allow ptrace capable processes to change /proc/self/exe, Serge E. Hallyn
    - Re: [PATCH v4 3/3] prctl: Allow ptrace capable processes to change /proc/self/exe, Paul Moore
      - RE: [PATCH v4 3/3] prctl: Allow ptrace capable processes to change /proc/self/exe, Nicolas Viennot
        
        Re: [PATCH v4 3/3] prctl: Allow ptrace capable processes to change /proc/self/exe, Christian Brauner
        
        Re: [PATCH v4 3/3] prctl: Allow ptrace capable processes to change /proc/self/exe, Christian Brauner
        
        Re: [PATCH v4 3/3] prctl: Allow ptrace capable processes to change /proc/self/exe, Cyrill Gorcunov
[RFC PATCH] fixfiles: correctly restore context of mountpoints, bauen1
- Re: [RFC PATCH] fixfiles: correctly restore context of mountpoints, Stephen Smalley
  - Re: [RFC PATCH] fixfiles: correctly restore context of mountpoints, bauen1
    - Re: [RFC PATCH] fixfiles: correctly restore context of mountpoints, Stephen Smalley
  - [RFC PATCH v2] fixfiles: correctly restore context of mountpoints, bauen1
    - Re: [RFC PATCH v2] fixfiles: correctly restore context of mountpoints, Stephen Smalley
      - Re: [RFC PATCH v2] fixfiles: correctly restore context of mountpoints, Stephen Smalley
[RFC] userspace: netlink/sestatus feature parity, Mike Palmiotto
- Re: [RFC] userspace: netlink/sestatus feature parity, Stephen Smalley
  - Re: [RFC] userspace: netlink/sestatus feature parity, Mike Palmiotto
[PATCH] Update the cil docs to match the current behaviour., bauen1
- Re: [PATCH] Update the cil docs to match the current behaviour., James Carter
  - Re: [PATCH] Update the cil docs to match the current behaviour., bauen1
  - [PATCH] Update the cil docs to match the current behaviour., bauen1
  - [PATCH v2] Update the cil docs to match the current behaviour., bauen1
    - Re: [PATCH v2] Update the cil docs to match the current behaviour., Petr Lautrbach
      - Re: [PATCH v2] Update the cil docs to match the current behaviour., bauen1
    - Re: [PATCH v2] Update the cil docs to match the current behaviour., James Carter
      - Re: [PATCH v2] Update the cil docs to match the current behaviour., Petr Lautrbach
Daemon's child getting weird denial, Ian Pilcher
- Re: Daemon's child getting weird denial, Stephen Smalley
[PATCH testsuite] travis: fix `make conf` invocation, Ondrej Mosnacek
- Re: [PATCH testsuite] travis: fix `make conf` invocation, Stephen Smalley
  - Re: [PATCH testsuite] travis: fix `make conf` invocation, Ondrej Mosnacek
  - Re: [PATCH testsuite] travis: fix `make conf` invocation, Ondrej Mosnacek
  - Re: [PATCH testsuite] travis: fix `make conf` invocation, Ondrej Mosnacek
[PATCH] security: selinux: ss: conditional.c fixed a checkpatch warning, Ethan Edwards
- Re: [PATCH] security: selinux: ss: conditional.c fixed a checkpatch warning, Paul Moore
- <Possible follow-ups>
- [PATCH] security: selinux: ss: conditional.c fixed a checkpatch warning, Ethan Edwards
  - Re: [PATCH] security: selinux: ss: conditional.c fixed a checkpatch warning, Paul Moore
[PATCH testsuite 0/4] Various CI-related testsuite fixes, Ondrej Mosnacek
- [PATCH testsuite 1/4] Makefiles: remove bashisms, Ondrej Mosnacek
  - Re: [PATCH testsuite 1/4] Makefiles: remove bashisms, Stephen Smalley
    - Re: [PATCH testsuite 1/4] Makefiles: remove bashisms, Paul Moore
- [PATCH testsuite 2/4] travis: add missing node to fake selinuxfs, Ondrej Mosnacek
  - Re: [PATCH testsuite 2/4] travis: add missing node to fake selinuxfs, Stephen Smalley
    - Re: [PATCH testsuite 2/4] travis: add missing node to fake selinuxfs, Ondrej Mosnacek
      - Re: [PATCH testsuite 2/4] travis: add missing node to fake selinuxfs, Stephen Smalley
- [PATCH testsuite 4/4] tests: stop using deprecated security_context_t, Ondrej Mosnacek
  - Re: [PATCH testsuite 4/4] tests: stop using deprecated security_context_t, Stephen Smalley
- [PATCH testsuite 3/4] travis: fix git/cache handling, Ondrej Mosnacek
  - Re: [PATCH testsuite 3/4] travis: fix git/cache handling, Stephen Smalley
- Re: [PATCH testsuite 0/4] Various CI-related testsuite fixes, Stephen Smalley
[GIT PULL] SELinux fixes for v5.8 (#1), Paul Moore
- Re: [GIT PULL] SELinux fixes for v5.8 (#1), pr-tracker-bot
CIL classmap with set named all resulting in segfault, bauen1
- Re: CIL classmap with set named all resulting in segfault, James Carter
ANN: SELinux userspace 3.1-rc2 release candidate, Petr Lautrbach
Re: Still Failing: SELinuxProject/selinux#444 (master - b3d8b99), Petr Lautrbach
- Re: Still Failing: SELinuxProject/selinux#444 (master - b3d8b99), Ondrej Mosnacek
  - Re: Still Failing: SELinuxProject/selinux#444 (master - b3d8b99), William Roberts
    - Re: Still Failing: SELinuxProject/selinux#444 (master - b3d8b99), William Roberts
  - Re: Still Failing: SELinuxProject/selinux#444 (master - b3d8b99), Petr Lautrbach
    - Re: Still Failing: SELinuxProject/selinux#444 (master - b3d8b99), William Roberts
[PATCH v2] setfiles: clarify documented path resolution behaviour, Jonathan Lebon
- Re: [PATCH v2] setfiles: clarify documented path resolution behaviour, Stephen Smalley
  - Re: [PATCH v2] setfiles: clarify documented path resolution behaviour, Stephen Smalley
CIL blockinherit and entering a macro namespace using in, bauen1
- Re: CIL blockinherit and entering a macro namespace using in, James Carter
[PATCH v3 0/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Adrian Reber
- [PATCH v3 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Adrian Reber
- [PATCH v3 2/3] selftests: add clone3() CAP_CHECKPOINT_RESTORE test, Adrian Reber
- [PATCH v3 3/3] prctl: Allow ptrace capable processes to change exe_fd, Adrian Reber
  - Re: [PATCH v3 3/3] prctl: Allow ptrace capable processes to change exe_fd, Jann Horn
[PATCH] selinux: log error messages on required process class / permissions, Stephen Smalley
- Re: [PATCH] selinux: log error messages on required process class / permissions, Stephen Smalley
  - Re: [PATCH] selinux: log error messages on required process class / permissions, Dominick Grift
  - Re: [PATCH] selinux: log error messages on required process class / permissions, Paul Moore
[PATCH] scripts/selinux/mdp: fix initial SID handling, Stephen Smalley
- Re: [PATCH] scripts/selinux/mdp: fix initial SID handling, Paul Moore
[PATCH v3 1/1] fs: move kernel_read_file* to its own include file, Scott Branden
- Re: [PATCH v3 1/1] fs: move kernel_read_file* to its own include file, Christoph Hellwig
  - Re: [PATCH v3 1/1] fs: move kernel_read_file* to its own include file, Scott Branden
- Re: [PATCH v3 1/1] fs: move kernel_read_file* to its own include file, Greg Kroah-Hartman
[PATCH v2 1/1] fs: move kernel_read_file* to its own include file, Scott Branden
- Re: [PATCH v2 1/1] fs: move kernel_read_file* to its own include file, Greg Kroah-Hartman
[PATCH] selinux: fix undefined return of cond_evaluate_expr, trix
- Re: [PATCH] selinux: fix undefined return of cond_evaluate_expr, Stephen Smalley
  - Re: [PATCH] selinux: fix undefined return of cond_evaluate_expr, Paul Moore
    - Re: [PATCH] selinux: fix undefined return of cond_evaluate_expr, Paul Moore
Minimal CIL policy requires process class with transition permission, bauen1
- Re: Minimal CIL policy requires process class with transition permission, Stephen Smalley
  - Re: Minimal CIL policy requires process class with transition permission, Stephen Smalley
    - Re: Minimal CIL policy requires process class with transition permission, Dac Override
      - Re: Minimal CIL policy requires process class with transition permission, Stephen Smalley
        
        Re: Minimal CIL policy requires process class with transition permission, Dominick Grift
[PATCH] fs: move kernel_read_file* to its own include file, Scott Branden
- Re: [PATCH] fs: move kernel_read_file* to its own include file, Greg Kroah-Hartman
  - Re: [PATCH] fs: move kernel_read_file* to its own include file, Scott Branden
[PATCH v3] selinux: fix another double free, trix
- Re: [PATCH v3] selinux: fix another double free, Ondrej Mosnacek
- Re: [PATCH v3] selinux: fix another double free, Paul Moore
[PATCH] libselinux: Fix NULL pointer use in selinux_restorecon_set_sehandle, Ji Qin
- Re: [PATCH] libselinux: Fix NULL pointer use in selinux_restorecon_set_sehandle, Stephen Smalley
  - Re: [PATCH] libselinux: Fix NULL pointer use in selinux_restorecon_set_sehandle, Petr Lautrbach
How to off RBAC in SELinux?, Mikhail Novosyolov
- Re: How to off RBAC in SELinux?, Stephen Smalley
  - Re: How to off RBAC in SELinux?, Mikhail Novosyolov
    - Re: How to off RBAC in SELinux?, Stephen Smalley
      - Re: How to off RBAC in SELinux?, Mikhail Novosyolov
[PATCH v2 0/1] selinux: fix another double free, trix
- [PATCH v2 1/1] selinux: fix another double free, trix
  - Re: [PATCH v2 1/1] selinux: fix another double free, Paul Moore
    - Re: [PATCH v2 1/1] selinux: fix another double free, Tom Rix
      - Re: [PATCH v2 1/1] selinux: fix another double free, Paul Moore
        
        Re: [PATCH v2 1/1] selinux: fix another double free, Ondrej Mosnacek
        
        Re: [PATCH v2 1/1] selinux: fix another double free, Paul Moore
  - Re: [PATCH v2 1/1] selinux: fix another double free, Ondrej Mosnacek
[PATCH] selinux: fix another double free, trix
- Re: [PATCH] selinux: fix another double free, Stephen Smalley
- Re: [PATCH] selinux: fix another double free, Ondrej Mosnacek
[PATCH v2 0/1] selinux: fix double free, trix
- [PATCH v2 1/1] selinux: fix double free, trix
  - Re: [PATCH v2 1/1] selinux: fix double free, Stephen Smalley
  - Re: [PATCH v2 1/1] selinux: fix double free, Paul Moore
[PATCH 0/1] selinux: fix double free, trix
- [PATCH 1/1] selinux: fix double free, trix
  - Re: [PATCH 1/1] selinux: fix double free, Stephen Smalley
    - Re: [PATCH 1/1] selinux: fix double free, Tom Rix
[PATCH testsuite] defconfig: add NETFILTER_XT_MATCH_STATE and NFS_V4_1, Stephen Smalley
- Re: [PATCH testsuite] defconfig: add NETFILTER_XT_MATCH_STATE and NFS_V4_1, Paul Moore
  - Re: [PATCH testsuite] defconfig: add NETFILTER_XT_MATCH_STATE and NFS_V4_1, Ondrej Mosnacek
No window opening when running sandbox -S, Cristian Ariza
- Re: No window opening when running sandbox -S, Stephen Smalley
  - Re: No window opening when running sandbox -S, Cristian Ariza
    - Re: No window opening when running sandbox -S, Topi Miettinen
      - Re: No window opening when running sandbox -S, Cristian Ariza
  - RE: No window opening when running sandbox -S, Petr Lautrbach
    - Re: No window opening when running sandbox -S, Cristian Ariza
      - Re: No window opening when running sandbox -S, Petr Lautrbach
[PATCH AUTOSEL 5.7 153/274] selinux: fix error return code in policydb_read(), Sasha Levin
[PATCH AUTOSEL 5.4 093/175] selinux: fix error return code in policydb_read(), Sasha Levin
[PATCH v2] Add restorecon -x option to not cross FS boundaries, Peter Whittaker
- Re: [PATCH v2] Add restorecon -x option to not cross FS boundaries, Stephen Smalley
  - Re: [PATCH v2] Add restorecon -x option to not cross FS boundaries, Peter Whittaker
    - Re: [PATCH v2] Add restorecon -x option to not cross FS boundaries, Petr Lautrbach
[PATCH] python/sepolicy: Use xml.etree.ElementTree.Element.iter(), Petr Lautrbach
- Re: [PATCH] python/sepolicy: Use xml.etree.ElementTree.Element.iter(), Stephen Smalley
  - Re: [PATCH] python/sepolicy: Use xml.etree.ElementTree.Element.iter(), Petr Lautrbach
Better management of dynamic networks?, Topi Miettinen
- Re: Better management of dynamic networks?, Paul Moore
  - Re: Better management of dynamic networks?, Topi Miettinen
    - Re: Better management of dynamic networks?, Stephen Smalley
      - Re: Better management of dynamic networks?, Paul Moore
        
        Re: Better management of dynamic networks?, Topi Miettinen
        
        Re: Better management of dynamic networks?, Topi Miettinen
        
        Re: Better management of dynamic networks?, Topi Miettinen
        
        Re: Better management of dynamic networks?, Stephen Smalley
        
        Re: Better management of dynamic networks?, Topi Miettinen
        
        Re: Better management of dynamic networks?, Paul Moore
[PATCH v2] semanage: handle getprotobyname() failure case, Topi Miettinen
- Re: [PATCH v2] semanage: handle getprotobyname() failure case, Stephen Smalley
  - Re: [PATCH v2] semanage: handle getprotobyname() failure case, Stephen Smalley
    - Re: [PATCH v2] semanage: handle getprotobyname() failure case, Stephen Smalley
[PATCH] libselinux: fix selinux_restorecon() statfs bug, Stephen Smalley
- Re: [PATCH] libselinux: fix selinux_restorecon() statfs bug, Jonathan Lebon
- Re: [PATCH] libselinux: fix selinux_restorecon() statfs bug, Stephen Smalley
  - Re: [PATCH] libselinux: fix selinux_restorecon() statfs bug, Petr Lautrbach
    - Re: [PATCH] libselinux: fix selinux_restorecon() statfs bug, Petr Lautrbach
[PATCH] setfiles: clarify documented path resolution behaviour, Jonathan Lebon
- Re: [PATCH] setfiles: clarify documented path resolution behaviour, Stephen Smalley
  - Re: [PATCH] setfiles: clarify documented path resolution behaviour, Jonathan Lebon
sepolicy test fails with Python-3.9, Petr Lautrbach
[PATCH v2 0/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Adrian Reber
- [PATCH v2 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Adrian Reber
  - Re: [PATCH v2 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Cyrill Gorcunov
  - Re: [PATCH v2 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Andrei Vagin
    - Re: [PATCH v2 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Christian Brauner
      - Re: [PATCH v2 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Andrei Vagin
        
        Re: [PATCH v2 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Christian Brauner
        
        Re: [PATCH v2 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Andrei Vagin
        
        Re: [PATCH v2 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Casey Schaufler
        
        Re: [PATCH v2 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Christian Brauner
  - Re: [PATCH v2 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Cyrill Gorcunov
    - RE: [PATCH v2 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Nicolas Viennot
      - Re: [PATCH v2 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Eric W. Biederman
      - Re: [PATCH v2 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Cyrill Gorcunov
- [PATCH v2 2/3] selftests: add clone3() CAP_CHECKPOINT_RESTORE test, Adrian Reber
- [PATCH v2 3/3] prctl: Allow ptrace capable processes to change exe_fd, Adrian Reber
[PATCH] selinux-testsuite: Review and rework sctp tests, Richard Haines
- Re: [PATCH] selinux-testsuite: Review and rework sctp tests, Ondrej Mosnacek
  - Re: [PATCH] selinux-testsuite: Review and rework sctp tests, Richard Haines
[PATCH] semanage-node.8: describe netmask, Topi Miettinen
- Re: [PATCH] semanage-node.8: describe netmask, Stephen Smalley
  - Re: [PATCH] semanage-node.8: describe netmask, Stephen Smalley
Re: [PATCH] RFC: fuse: virtiofs: Call security hooks on new inodes, Vivek Goyal
[PATCH testsuite] policy/test_overlayfs.te: allow mounter to create whiteouts, Stephen Smalley
- Re: [PATCH testsuite] policy/test_overlayfs.te: allow mounter to create whiteouts, Ondrej Mosnacek
  - Re: [PATCH testsuite] policy/test_overlayfs.te: allow mounter to create whiteouts, Stephen Smalley
    - Re: [PATCH testsuite] policy/test_overlayfs.te: allow mounter to create whiteouts, Ondrej Mosnacek
      - Re: [PATCH testsuite] policy/test_overlayfs.te: allow mounter to create whiteouts, Ondrej Mosnacek
[PATCH] Avoid using getprotobyname(), Topi Miettinen
- Re: [PATCH] Avoid using getprotobyname(), Stephen Smalley
  - Re: [PATCH] Avoid using getprotobyname(), Paul Moore
    - Re: [PATCH] Avoid using getprotobyname(), Topi Miettinen
[RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Paul Moore
- Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Paul Moore
  - Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Stephen Smalley
    - Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Paul Moore
      - Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Stephen Smalley
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, William Roberts
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Stephen Smalley
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Stephen Smalley
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Ondrej Mosnacek
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Paul Moore
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Petr Lautrbach
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Stephen Smalley
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Stephen Smalley
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Casey Schaufler
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Stephen Smalley
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Petr Lautrbach
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Ondrej Mosnacek
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Stephen Smalley
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Paul Moore
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Stephen Smalley
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Stephen Smalley
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Stephen Smalley
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Stephen Smalley
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Paul Moore
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Paul Moore
- <Possible follow-ups>
- [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Paul Moore
  - Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Paul Moore
  - Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Casey Schaufler
  - Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Paul Moore
Fwd: ❌ FAIL: Test report for kernel 5.7.0-f359287.cki (mainline.kernel.org), Ondrej Mosnacek
- Re: ❌ FAIL: Test report for kernel 5.7.0-f359287.cki (mainline.kernel.org), Miklos Szeredi
[GIT PULL] SELinux patches for v5.8, Paul Moore
- Re: [GIT PULL] SELinux patches for v5.8, Linus Torvalds
  - Re: [GIT PULL] SELinux patches for v5.8, Casey Schaufler
    - Re: [GIT PULL] SELinux patches for v5.8, Linus Torvalds
      - Re: [GIT PULL] SELinux patches for v5.8, Casey Schaufler
      - Re: [GIT PULL] SELinux patches for v5.8, Alexei Starovoitov
        
        Re: [GIT PULL] SELinux patches for v5.8, Casey Schaufler
        
        Re: [GIT PULL] SELinux patches for v5.8, Alexei Starovoitov
    - Re: [GIT PULL] SELinux patches for v5.8, James Morris
      - Re: [GIT PULL] SELinux patches for v5.8, Casey Schaufler
        
        Re: [GIT PULL] SELinux patches for v5.8, James Morris
        
        Re: [GIT PULL] SELinux patches for v5.8, Stephen Smalley
        
        Re: [GIT PULL] SELinux patches for v5.8, Casey Schaufler
        
        Re: [GIT PULL] SELinux patches for v5.8, Stephen Smalley
  - Re: [GIT PULL] SELinux patches for v5.8, Paul Moore
- Re: [GIT PULL] SELinux patches for v5.8, pr-tracker-bot
[PATCH] selinux: Allow file owner to set "security.sehash", Chirantan Ekbote
- Re: [PATCH] selinux: Allow file owner to set "security.sehash", Stephen Smalley
  - Re: [PATCH] selinux: Allow file owner to set "security.sehash", Chirantan Ekbote
    - Re: [PATCH] selinux: Allow file owner to set "security.sehash", Stephen Smalley
      - Re: [PATCH] selinux: Allow file owner to set "security.sehash", Stephen Smalley
      - Re: [PATCH] selinux: Allow file owner to set "security.sehash", Chirantan Ekbote
        
        Re: [PATCH] selinux: Allow file owner to set "security.sehash", Stephen Smalley
[PATCH v2] semanage bash completion: handle semanage module, Topi Miettinen
- Re: [PATCH v2] semanage bash completion: handle semanage module, Stephen Smalley
  - Re: [PATCH v2] semanage bash completion: handle semanage module, Stephen Smalley
Interests in usability enhancements to .../scripts.py?, Peter Whittaker
[PATCH] libselpol: Sort portcon rules consistently, James Carter
- Re: [PATCH] libselpol: Sort portcon rules consistently, Stephen Smalley
  - Re: [PATCH] libselpol: Sort portcon rules consistently, James Carter
    - Re: [PATCH] libselpol: Sort portcon rules consistently, Stephen Smalley
[PATCH v4] selinux: allow reading labels before policy is loaded, Jonathan Lebon
- Re: [PATCH v4] selinux: allow reading labels before policy is loaded, Paul Moore
  - Re: [PATCH v4] selinux: allow reading labels before policy is loaded, Paul Moore
CIL typealiases, Dominick Grift
- Re: CIL typealiases, James Carter
  - Re: CIL typealiases, Dominick Grift
    - Re: CIL typealiases, James Carter
[PATCH v2] selinux: allow reading labels before policy is loaded, Jonathan Lebon
- Re: [PATCH v2] selinux: allow reading labels before policy is loaded, Ondrej Mosnacek
- Re: [PATCH v2] selinux: allow reading labels before policy is loaded, Stephen Smalley
[PATCH v3 1/2] libsepol/cil: Initialize the multiple_decls field of the cil db, James Carter
- [PATCH v3 2/2] libsepol/cil: Return error when identifier declared as both type and attribute, James Carter
  - Re: [PATCH v3 2/2] libsepol/cil: Return error when identifier declared as both type and attribute, Topi Miettinen
    - Re: [PATCH v3 2/2] libsepol/cil: Return error when identifier declared as both type and attribute, James Carter
  - Re: [PATCH v3 2/2] libsepol/cil: Return error when identifier declared as both type and attribute, Stephen Smalley
    - Re: [PATCH v3 2/2] libsepol/cil: Return error when identifier declared as both type and attribute, Stephen Smalley
[PATCH] Add restorecon -x opt to not cross FS boundaries (cf github #208), Peter Whittaker
- Re: [PATCH] Add restorecon -x opt to not cross FS boundaries (cf github #208), Stephen Smalley
  - Re: [PATCH] Add restorecon -x opt to not cross FS boundaries (cf github #208), Peter Whittaker
[PATCH] semanage bash completion: handle semanage module #246, Topi Miettinen
- Re: [PATCH] semanage bash completion: handle semanage module #246, Stephen Smalley
krb5 policy bug, Corey Penford
- Re: krb5 policy bug, Stephen Smalley
Issue with fixfiles excludes, Chris Adams
- Re: Issue with fixfiles excludes, Stephen Smalley
[PATCH] checkpolicy: Minor tweaks to the names of the contributors to the manpages, Andrej Shadura
- Re: [PATCH] checkpolicy: Minor tweaks to the names of the contributors to the manpages, Stephen Smalley
  - Re: [PATCH] checkpolicy: Minor tweaks to the names of the contributors to the manpages, Stephen Smalley
[PATCH] selinux: allow reading labels before policy is loaded, Jonathan Lebon
- Re: [PATCH] selinux: allow reading labels before policy is loaded, Ondrej Mosnacek
  - Re: [PATCH] selinux: allow reading labels before policy is loaded, Jonathan Lebon
    - Re: [PATCH] selinux: allow reading labels before policy is loaded, Ondrej Mosnacek
      - Re: [PATCH] selinux: allow reading labels before policy is loaded, Stephen Smalley
  - Re: [PATCH] selinux: allow reading labels before policy is loaded, Jonathan Lebon
- <Possible follow-ups>
- [PATCH] selinux: allow reading labels before policy is loaded, Jonathan Lebon
  - Re: [PATCH] selinux: allow reading labels before policy is loaded, Jonathan Lebon
  - Re: [PATCH] selinux: allow reading labels before policy is loaded, Stephen Smalley
    - Re: [PATCH] selinux: allow reading labels before policy is loaded, Jonathan Lebon
CFLAGS overridden by distribution build system, Laurent Bigonville
- Re: CFLAGS overridden by distribution build system, William Roberts
  - Re: CFLAGS overridden by distribution build system, Stephen Smalley
    - Re: CFLAGS overridden by distribution build system, William Roberts
      - Re: CFLAGS overridden by distribution build system, Stephen Smalley
        
        Re: CFLAGS overridden by distribution build system, William Roberts
        
        Re: CFLAGS overridden by distribution build system, Stephen Smalley
        
        Re: CFLAGS overridden by distribution build system, William Roberts
        
        Re: CFLAGS overridden by distribution build system, Petr Lautrbach
        
        [PATCH] README: start a section for documenting CFLAGS, bill . c . roberts
        
        Re: [PATCH] README: start a section for documenting CFLAGS, Stephen Smalley
        
        [PATCH v2] README: start a section for documenting CFLAGS, bill . c . roberts
        
        Re: [PATCH v2] README: start a section for documenting CFLAGS, Stephen Smalley
        
        Re: [PATCH v2] README: start a section for documenting CFLAGS, William Roberts
        
        [PATCH v3] README: start a section for documenting CFLAGS, bill . c . roberts
        
        Re: [PATCH v3] README: start a section for documenting CFLAGS, Stephen Smalley
general protection fault in selinux_socket_recvmsg, syzbot
- Re: general protection fault in selinux_socket_recvmsg, Ondrej Mosnacek
- Re: general protection fault in selinux_socket_recvmsg, syzbot
[PATCH v2 1/3] libsepol: Write CIL default MLS rules on separate lines, James Carter
- [PATCH v2 3/3] libsepol: Improve writing CIL category rules, James Carter
  - Re: [PATCH v2 3/3] libsepol: Improve writing CIL category rules, Stephen Smalley
    - Re: [PATCH v2 3/3] libsepol: Improve writing CIL category rules, James Carter
      - Re: [PATCH v2 3/3] libsepol: Improve writing CIL category rules, Stephen Smalley
        
        Re: [PATCH v2 3/3] libsepol: Improve writing CIL category rules, Stephen Smalley
- [PATCH v2 2/3] libsepol: Improve writing CIL sensitivity rules, James Carter
[PATCH v3 1/2] libsepol: Fix type alias handling in kernel_to_cil, James Carter
- [PATCH v3 2/2] libsepol: Fix type alias handling in kernel_to_conf, James Carter
  - Re: [PATCH v3 2/2] libsepol: Fix type alias handling in kernel_to_conf, Stephen Smalley
    - Re: [PATCH v3 2/2] libsepol: Fix type alias handling in kernel_to_conf, James Carter
    - Re: [PATCH v3 2/2] libsepol: Fix type alias handling in kernel_to_conf, James Carter
      - Re: [PATCH v3 2/2] libsepol: Fix type alias handling in kernel_to_conf, Stephen Smalley
    - Re: [PATCH v3 2/2] libsepol: Fix type alias handling in kernel_to_conf, Stephen Smalley
Question about SELinux and hard resource limits, Ondrej Mosnacek
- Re: Question about SELinux and hard resource limits, Stephen Smalley
[PATCH] libselinux: utils: link with shared libfts, Đoàn Trần Công Danh
- Re: [PATCH] libselinux: utils: link with shared libfts, Nicolas Iooss
  - Re: [PATCH] libselinux: utils: link with shared libfts, Đoàn Trần Công Danh
[PATCH] capabilities: Introduce CAP_RESTORE, Adrian Reber
- Re: [PATCH] capabilities: Introduce CAP_RESTORE, Christian Brauner
  - Re: [PATCH] capabilities: Introduce CAP_RESTORE, Andrei Vagin
- Re: [PATCH] capabilities: Introduce CAP_RESTORE, Christian Brauner
- Re: [PATCH] capabilities: Introduce CAP_RESTORE, Casey Schaufler
  - Re: [PATCH] capabilities: Introduce CAP_RESTORE, Andrei Vagin
    - Re: [PATCH] capabilities: Introduce CAP_RESTORE, Casey Schaufler
  - Re: [PATCH] capabilities: Introduce CAP_RESTORE, Adrian Reber
    - Re: [PATCH] capabilities: Introduce CAP_RESTORE, Casey Schaufler
      - Re: [PATCH] capabilities: Introduce CAP_RESTORE, Adrian Reber
        
        Re: [PATCH] capabilities: Introduce CAP_RESTORE, Casey Schaufler
        
        RE: [PATCH] capabilities: Introduce CAP_RESTORE, Nicolas Viennot
        
        Re: [PATCH] capabilities: Introduce CAP_RESTORE, Casey Schaufler
    - Re: [PATCH] capabilities: Introduce CAP_RESTORE, Eric W. Biederman
      - Message not available
        
        Re: [PATCH] capabilities: Introduce CAP_RESTORE, Casey Schaufler
      - Message not available
        
        Re: [PATCH] capabilities: Introduce CAP_RESTORE, Jann Horn
      - Re: [PATCH] capabilities: Introduce CAP_RESTORE, Adrian Reber
        
        Re: [PATCH] capabilities: Introduce CAP_RESTORE, Christian Brauner
        
        RE: [PATCH] capabilities: Introduce CAP_RESTORE, Nicolas Viennot
        
        Re: [PATCH] capabilities: Introduce CAP_RESTORE, Christian Brauner
        
        Re: [PATCH] capabilities: Introduce CAP_RESTORE, Andrei Vagin
- Re: [PATCH] capabilities: Introduce CAP_RESTORE, Jann Horn
  - Re: [PATCH] capabilities: Introduce CAP_RESTORE, Radostin Stoyanov
- Re: [PATCH] capabilities: Introduce CAP_RESTORE, Matt Helsley
  - Re: [PATCH] capabilities: Introduce CAP_RESTORE, Christian Brauner
[PATCH 1/3] libsepol: Write CIL default MLS rules on separate lines, James Carter
- [PATCH 2/3] libsepol: Improve writing CIL sensitivity rules, James Carter
  - Re: [PATCH 2/3] libsepol: Improve writing CIL sensitivity rules, Nicolas Iooss
    - Re: [PATCH 2/3] libsepol: Improve writing CIL sensitivity rules, James Carter
- [PATCH 3/3] libsepol: Improve writing CIL category rules, James Carter
[PATCH v2 1/2] libsepol: Fix type alias handling in kernel_to_cil, James Carter
- [PATCH v2 2/2] libsepol: Fix type alias handling in kernel_to_conf, James Carter
[PATCH V5] selinux-testsuite: Add nftables to inet_socket and sctp tests, Richard Haines
- Re: [PATCH V5] selinux-testsuite: Add nftables to inet_socket and sctp tests, Ondrej Mosnacek
  - Re: [PATCH V5] selinux-testsuite: Add nftables to inet_socket and sctp tests, Ondrej Mosnacek
Documentation on Enabling NetLabel, Paul Tagliamonte
- Re: Documentation on Enabling NetLabel, Paul Moore
  - Re: Documentation on Enabling NetLabel, Paul Tagliamonte
    - Re: Documentation on Enabling NetLabel, Paul Moore
[PATCH 1/2] libsepol: Fix type alias handling in kernel_to_cil, James Carter
- [PATCH 2/2] libsepol: Fix type alias handling in kernel_to_conf, James Carter
[PATCH] README: Add kernel-modules for SCTP, william . c . roberts
- Re: [PATCH] README: Add kernel-modules for SCTP, Ondrej Mosnacek
  - Re: [PATCH] README: Add kernel-modules for SCTP, William Roberts
    - Re: [PATCH] README: Add kernel-modules for SCTP, Ondrej Mosnacek
[PATCH V4] selinux-testsuite: Add nftables to inet_socket and sctp tests, Richard Haines
- Re: [PATCH V4] selinux-testsuite: Add nftables to inet_socket and sctp tests, Ondrej Mosnacek
  - Re: [PATCH V4] selinux-testsuite: Add nftables to inet_socket and sctp tests, Richard Haines
Travis CI: Run selinux-testsuite, bill . c . roberts
- [PATCH] ci: run SE Linux kernel test suite, bill . c . roberts
  - Re: [PATCH] ci: run SE Linux kernel test suite, Paul Moore
    - Re: [PATCH] ci: run SE Linux kernel test suite, William Roberts
      - Re: [PATCH] ci: run SE Linux kernel test suite, Paul Moore
        
        Re: [PATCH] ci: run SE Linux kernel test suite, William Roberts
        
        Re: [PATCH] ci: run SE Linux kernel test suite, William Roberts
- Re: Travis CI: Run selinux-testsuite, Paul Moore
  - [v2] Travis CI: Run selinux-testsuite, bill . c . roberts
    - [PATCH v2] ci: run SELinux kernel test suite, bill . c . roberts
      - Re: [PATCH v2] ci: run SELinux kernel test suite, Ondrej Mosnacek
        
        Re: [PATCH v2] ci: run SELinux kernel test suite, Stephen Smalley
        
        Re: [PATCH v2] ci: run SELinux kernel test suite, Ondrej Mosnacek
        
        Re: [PATCH v2] ci: run SELinux kernel test suite, William Roberts
        
        Re: [PATCH v2] ci: run SELinux kernel test suite, Ondrej Mosnacek
        
        Re: [PATCH v2] ci: run SELinux kernel test suite, William Roberts
        
        Re: [PATCH v2] ci: run SELinux kernel test suite, Stephen Smalley
        
        Re: [PATCH v2] ci: run SELinux kernel test suite, William Roberts
      - Re: [PATCH v2] ci: run SELinux kernel test suite, Nicolas Iooss
        
        Re: [PATCH v2] ci: run SELinux kernel test suite, William Roberts
        
        Re: [PATCH v2] ci: run SELinux kernel test suite, William Roberts

[Index of Archives] [Selinux Refpolicy] [Fedora Users] [Fedora Desktop] [Kernel] [KDE Users] [Gnome Users]