Security Enhanced Linux (SELINUX)

Date Index

[Prev Page][Next Page]

[PATCH] security/selinux: Fix spelling mistakes in the comments, lihao
- Re: [PATCH] security/selinux: Fix spelling mistakes in the comments, Paul Moore
Strange AVC denials without effect, Topi Miettinen
- Re: Strange AVC denials without effect, Paul Moore
  - Re: Strange AVC denials without effect, Topi Miettinen
  - Re: Strange AVC denials without effect, Topi Miettinen
Rebased selinux/working-selinuxns, Paul Moore
[PATCH] selinux-testsuite: Remove unused sctp code, Richard Haines
- Re: [PATCH] selinux-testsuite: Remove unused sctp code, Ondrej Mosnacek
  - Re: [PATCH] selinux-testsuite: Remove unused sctp code, Ondrej Mosnacek
[PATCH] policycoreutils: setfiles: do not restrict checks against a binary policy, Antoine Tenart
- Re: [PATCH] policycoreutils: setfiles: do not restrict checks against a binary policy, Stephen Smalley
  - Re: [PATCH] policycoreutils: setfiles: do not restrict checks against a binary policy, Antoine Tenart
[PATCH v4 0/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Adrian Reber
- [PATCH v4 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Adrian Reber
  - Re: [PATCH v4 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Christian Brauner
    - Re: [PATCH v4 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Adrian Reber
- [PATCH v4 2/3] selftests: add clone3() CAP_CHECKPOINT_RESTORE test, Adrian Reber
  - Re: [PATCH v4 2/3] selftests: add clone3() CAP_CHECKPOINT_RESTORE test, Serge E. Hallyn
    - Re: [PATCH v4 2/3] selftests: add clone3() CAP_CHECKPOINT_RESTORE test, Adrian Reber
      - Re: [PATCH v4 2/3] selftests: add clone3() CAP_CHECKPOINT_RESTORE test, Serge E. Hallyn
- [PATCH v4 3/3] prctl: Allow ptrace capable processes to change /proc/self/exe, Adrian Reber
  - Re: [PATCH v4 3/3] prctl: Allow ptrace capable processes to change /proc/self/exe, Christian Brauner
    - Re: [PATCH v4 3/3] prctl: Allow ptrace capable processes to change /proc/self/exe, Serge E. Hallyn
  - Re: [PATCH v4 3/3] prctl: Allow ptrace capable processes to change /proc/self/exe, Serge E. Hallyn
    - Re: [PATCH v4 3/3] prctl: Allow ptrace capable processes to change /proc/self/exe, Paul Moore
      - RE: [PATCH v4 3/3] prctl: Allow ptrace capable processes to change /proc/self/exe, Nicolas Viennot
        
        Re: [PATCH v4 3/3] prctl: Allow ptrace capable processes to change /proc/self/exe, Christian Brauner
        
        Re: [PATCH v4 3/3] prctl: Allow ptrace capable processes to change /proc/self/exe, Christian Brauner
        
        Re: [PATCH v4 3/3] prctl: Allow ptrace capable processes to change /proc/self/exe, Cyrill Gorcunov
[RFC PATCH] fixfiles: correctly restore context of mountpoints, bauen1
- Re: [RFC PATCH] fixfiles: correctly restore context of mountpoints, Stephen Smalley
  - Re: [RFC PATCH] fixfiles: correctly restore context of mountpoints, bauen1
    - Re: [RFC PATCH] fixfiles: correctly restore context of mountpoints, Stephen Smalley
  - [RFC PATCH v2] fixfiles: correctly restore context of mountpoints, bauen1
    - Re: [RFC PATCH v2] fixfiles: correctly restore context of mountpoints, Stephen Smalley
      - Re: [RFC PATCH v2] fixfiles: correctly restore context of mountpoints, Stephen Smalley
[RFC] userspace: netlink/sestatus feature parity, Mike Palmiotto
- Re: [RFC] userspace: netlink/sestatus feature parity, Stephen Smalley
  - Re: [RFC] userspace: netlink/sestatus feature parity, Mike Palmiotto
[PATCH] Update the cil docs to match the current behaviour., bauen1
- Re: [PATCH] Update the cil docs to match the current behaviour., James Carter
  - Re: [PATCH] Update the cil docs to match the current behaviour., bauen1
  - [PATCH] Update the cil docs to match the current behaviour., bauen1
  - [PATCH v2] Update the cil docs to match the current behaviour., bauen1
    - Re: [PATCH v2] Update the cil docs to match the current behaviour., Petr Lautrbach
      - Re: [PATCH v2] Update the cil docs to match the current behaviour., bauen1
    - Re: [PATCH v2] Update the cil docs to match the current behaviour., James Carter
      - Re: [PATCH v2] Update the cil docs to match the current behaviour., Petr Lautrbach
Daemon's child getting weird denial, Ian Pilcher
- Re: Daemon's child getting weird denial, Stephen Smalley
[PATCH testsuite] travis: fix `make conf` invocation, Ondrej Mosnacek
- Re: [PATCH testsuite] travis: fix `make conf` invocation, Stephen Smalley
  - Re: [PATCH testsuite] travis: fix `make conf` invocation, Ondrej Mosnacek
  - Re: [PATCH testsuite] travis: fix `make conf` invocation, Ondrej Mosnacek
  - Re: [PATCH testsuite] travis: fix `make conf` invocation, Ondrej Mosnacek
[PATCH] security: selinux: ss: conditional.c fixed a checkpatch warning, Ethan Edwards
- Re: [PATCH] security: selinux: ss: conditional.c fixed a checkpatch warning, Paul Moore
- <Possible follow-ups>
- [PATCH] security: selinux: ss: conditional.c fixed a checkpatch warning, Ethan Edwards
  - Re: [PATCH] security: selinux: ss: conditional.c fixed a checkpatch warning, Paul Moore
[PATCH testsuite 0/4] Various CI-related testsuite fixes, Ondrej Mosnacek
- [PATCH testsuite 1/4] Makefiles: remove bashisms, Ondrej Mosnacek
  - Re: [PATCH testsuite 1/4] Makefiles: remove bashisms, Stephen Smalley
    - Re: [PATCH testsuite 1/4] Makefiles: remove bashisms, Paul Moore
- [PATCH testsuite 2/4] travis: add missing node to fake selinuxfs, Ondrej Mosnacek
  - Re: [PATCH testsuite 2/4] travis: add missing node to fake selinuxfs, Stephen Smalley
    - Re: [PATCH testsuite 2/4] travis: add missing node to fake selinuxfs, Ondrej Mosnacek
      - Re: [PATCH testsuite 2/4] travis: add missing node to fake selinuxfs, Stephen Smalley
- [PATCH testsuite 4/4] tests: stop using deprecated security_context_t, Ondrej Mosnacek
  - Re: [PATCH testsuite 4/4] tests: stop using deprecated security_context_t, Stephen Smalley
- [PATCH testsuite 3/4] travis: fix git/cache handling, Ondrej Mosnacek
  - Re: [PATCH testsuite 3/4] travis: fix git/cache handling, Stephen Smalley
- Re: [PATCH testsuite 0/4] Various CI-related testsuite fixes, Stephen Smalley
[GIT PULL] SELinux fixes for v5.8 (#1), Paul Moore
- Re: [GIT PULL] SELinux fixes for v5.8 (#1), pr-tracker-bot
CIL classmap with set named all resulting in segfault, bauen1
- Re: CIL classmap with set named all resulting in segfault, James Carter
ANN: SELinux userspace 3.1-rc2 release candidate, Petr Lautrbach
Re: Still Failing: SELinuxProject/selinux#444 (master - b3d8b99), Petr Lautrbach
- Re: Still Failing: SELinuxProject/selinux#444 (master - b3d8b99), Ondrej Mosnacek
  - Re: Still Failing: SELinuxProject/selinux#444 (master - b3d8b99), William Roberts
    - Re: Still Failing: SELinuxProject/selinux#444 (master - b3d8b99), William Roberts
  - Re: Still Failing: SELinuxProject/selinux#444 (master - b3d8b99), Petr Lautrbach
    - Re: Still Failing: SELinuxProject/selinux#444 (master - b3d8b99), William Roberts
[PATCH v2] setfiles: clarify documented path resolution behaviour, Jonathan Lebon
- Re: [PATCH v2] setfiles: clarify documented path resolution behaviour, Stephen Smalley
  - Re: [PATCH v2] setfiles: clarify documented path resolution behaviour, Stephen Smalley
CIL blockinherit and entering a macro namespace using in, bauen1
- Re: CIL blockinherit and entering a macro namespace using in, James Carter
[PATCH v3 0/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Adrian Reber
- [PATCH v3 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Adrian Reber
- [PATCH v3 2/3] selftests: add clone3() CAP_CHECKPOINT_RESTORE test, Adrian Reber
- [PATCH v3 3/3] prctl: Allow ptrace capable processes to change exe_fd, Adrian Reber
  - Re: [PATCH v3 3/3] prctl: Allow ptrace capable processes to change exe_fd, Jann Horn
[PATCH] selinux: log error messages on required process class / permissions, Stephen Smalley
- Re: [PATCH] selinux: log error messages on required process class / permissions, Stephen Smalley
  - Re: [PATCH] selinux: log error messages on required process class / permissions, Dominick Grift
  - Re: [PATCH] selinux: log error messages on required process class / permissions, Paul Moore
[PATCH] scripts/selinux/mdp: fix initial SID handling, Stephen Smalley
- Re: [PATCH] scripts/selinux/mdp: fix initial SID handling, Paul Moore
[PATCH v3 1/1] fs: move kernel_read_file* to its own include file, Scott Branden
- Re: [PATCH v3 1/1] fs: move kernel_read_file* to its own include file, Christoph Hellwig
  - Re: [PATCH v3 1/1] fs: move kernel_read_file* to its own include file, Scott Branden
- Re: [PATCH v3 1/1] fs: move kernel_read_file* to its own include file, Greg Kroah-Hartman
[PATCH v2 1/1] fs: move kernel_read_file* to its own include file, Scott Branden
- Re: [PATCH v2 1/1] fs: move kernel_read_file* to its own include file, Greg Kroah-Hartman
[PATCH] selinux: fix undefined return of cond_evaluate_expr, trix
- Re: [PATCH] selinux: fix undefined return of cond_evaluate_expr, Stephen Smalley
  - Re: [PATCH] selinux: fix undefined return of cond_evaluate_expr, Paul Moore
    - Re: [PATCH] selinux: fix undefined return of cond_evaluate_expr, Paul Moore
Minimal CIL policy requires process class with transition permission, bauen1
- Re: Minimal CIL policy requires process class with transition permission, Stephen Smalley
  - Re: Minimal CIL policy requires process class with transition permission, Stephen Smalley
    - Re: Minimal CIL policy requires process class with transition permission, Dac Override
      - Re: Minimal CIL policy requires process class with transition permission, Stephen Smalley
        
        Re: Minimal CIL policy requires process class with transition permission, Dominick Grift
[PATCH] fs: move kernel_read_file* to its own include file, Scott Branden
- Re: [PATCH] fs: move kernel_read_file* to its own include file, Greg Kroah-Hartman
  - Re: [PATCH] fs: move kernel_read_file* to its own include file, Scott Branden
[PATCH v3] selinux: fix another double free, trix
- Re: [PATCH v3] selinux: fix another double free, Ondrej Mosnacek
- Re: [PATCH v3] selinux: fix another double free, Paul Moore
[PATCH] libselinux: Fix NULL pointer use in selinux_restorecon_set_sehandle, Ji Qin
- Re: [PATCH] libselinux: Fix NULL pointer use in selinux_restorecon_set_sehandle, Stephen Smalley
  - Re: [PATCH] libselinux: Fix NULL pointer use in selinux_restorecon_set_sehandle, Petr Lautrbach
How to off RBAC in SELinux?, Mikhail Novosyolov
- Re: How to off RBAC in SELinux?, Stephen Smalley
  - Re: How to off RBAC in SELinux?, Mikhail Novosyolov
    - Re: How to off RBAC in SELinux?, Stephen Smalley
      - Re: How to off RBAC in SELinux?, Mikhail Novosyolov
[PATCH v2 0/1] selinux: fix another double free, trix
- [PATCH v2 1/1] selinux: fix another double free, trix
  - Re: [PATCH v2 1/1] selinux: fix another double free, Paul Moore
    - Re: [PATCH v2 1/1] selinux: fix another double free, Tom Rix
      - Re: [PATCH v2 1/1] selinux: fix another double free, Paul Moore
        
        Re: [PATCH v2 1/1] selinux: fix another double free, Ondrej Mosnacek
        
        Re: [PATCH v2 1/1] selinux: fix another double free, Paul Moore
  - Re: [PATCH v2 1/1] selinux: fix another double free, Ondrej Mosnacek
[PATCH] selinux: fix another double free, trix
- Re: [PATCH] selinux: fix another double free, Stephen Smalley
- Re: [PATCH] selinux: fix another double free, Ondrej Mosnacek
[PATCH v2 0/1] selinux: fix double free, trix
- [PATCH v2 1/1] selinux: fix double free, trix
  - Re: [PATCH v2 1/1] selinux: fix double free, Stephen Smalley
  - Re: [PATCH v2 1/1] selinux: fix double free, Paul Moore
[PATCH 0/1] selinux: fix double free, trix
- [PATCH 1/1] selinux: fix double free, trix
  - Re: [PATCH 1/1] selinux: fix double free, Stephen Smalley
    - Re: [PATCH 1/1] selinux: fix double free, Tom Rix
[PATCH testsuite] defconfig: add NETFILTER_XT_MATCH_STATE and NFS_V4_1, Stephen Smalley
- Re: [PATCH testsuite] defconfig: add NETFILTER_XT_MATCH_STATE and NFS_V4_1, Paul Moore
  - Re: [PATCH testsuite] defconfig: add NETFILTER_XT_MATCH_STATE and NFS_V4_1, Ondrej Mosnacek
No window opening when running sandbox -S, Cristian Ariza
- Re: No window opening when running sandbox -S, Stephen Smalley
  - Re: No window opening when running sandbox -S, Cristian Ariza
    - Re: No window opening when running sandbox -S, Topi Miettinen
      - Re: No window opening when running sandbox -S, Cristian Ariza
  - RE: No window opening when running sandbox -S, Petr Lautrbach
    - Re: No window opening when running sandbox -S, Cristian Ariza
      - Re: No window opening when running sandbox -S, Petr Lautrbach
[PATCH AUTOSEL 5.7 153/274] selinux: fix error return code in policydb_read(), Sasha Levin
[PATCH AUTOSEL 5.4 093/175] selinux: fix error return code in policydb_read(), Sasha Levin
[PATCH v2] Add restorecon -x option to not cross FS boundaries, Peter Whittaker
- Re: [PATCH v2] Add restorecon -x option to not cross FS boundaries, Stephen Smalley
  - Re: [PATCH v2] Add restorecon -x option to not cross FS boundaries, Peter Whittaker
    - Re: [PATCH v2] Add restorecon -x option to not cross FS boundaries, Petr Lautrbach
[PATCH] python/sepolicy: Use xml.etree.ElementTree.Element.iter(), Petr Lautrbach
- Re: [PATCH] python/sepolicy: Use xml.etree.ElementTree.Element.iter(), Stephen Smalley
  - Re: [PATCH] python/sepolicy: Use xml.etree.ElementTree.Element.iter(), Petr Lautrbach
Better management of dynamic networks?, Topi Miettinen
- Re: Better management of dynamic networks?, Paul Moore
  - Re: Better management of dynamic networks?, Topi Miettinen
    - Re: Better management of dynamic networks?, Stephen Smalley
      - Re: Better management of dynamic networks?, Paul Moore
        
        Re: Better management of dynamic networks?, Topi Miettinen
        
        Re: Better management of dynamic networks?, Topi Miettinen
        
        Re: Better management of dynamic networks?, Topi Miettinen
        
        Re: Better management of dynamic networks?, Stephen Smalley
        
        Re: Better management of dynamic networks?, Topi Miettinen
        
        Re: Better management of dynamic networks?, Paul Moore
[PATCH v2] semanage: handle getprotobyname() failure case, Topi Miettinen
- Re: [PATCH v2] semanage: handle getprotobyname() failure case, Stephen Smalley
  - Re: [PATCH v2] semanage: handle getprotobyname() failure case, Stephen Smalley
    - Re: [PATCH v2] semanage: handle getprotobyname() failure case, Stephen Smalley
[PATCH] libselinux: fix selinux_restorecon() statfs bug, Stephen Smalley
- Re: [PATCH] libselinux: fix selinux_restorecon() statfs bug, Jonathan Lebon
- Re: [PATCH] libselinux: fix selinux_restorecon() statfs bug, Stephen Smalley
  - Re: [PATCH] libselinux: fix selinux_restorecon() statfs bug, Petr Lautrbach
    - Re: [PATCH] libselinux: fix selinux_restorecon() statfs bug, Petr Lautrbach
[PATCH] setfiles: clarify documented path resolution behaviour, Jonathan Lebon
- Re: [PATCH] setfiles: clarify documented path resolution behaviour, Stephen Smalley
  - Re: [PATCH] setfiles: clarify documented path resolution behaviour, Jonathan Lebon
sepolicy test fails with Python-3.9, Petr Lautrbach
[PATCH v2 0/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Adrian Reber
- [PATCH v2 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Adrian Reber
  - Re: [PATCH v2 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Cyrill Gorcunov
  - Re: [PATCH v2 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Andrei Vagin
    - Re: [PATCH v2 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Christian Brauner
      - Re: [PATCH v2 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Andrei Vagin
        
        Re: [PATCH v2 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Christian Brauner
        
        Re: [PATCH v2 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Andrei Vagin
        
        Re: [PATCH v2 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Casey Schaufler
        
        Re: [PATCH v2 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Christian Brauner
  - Re: [PATCH v2 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Cyrill Gorcunov
    - RE: [PATCH v2 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Nicolas Viennot
      - Re: [PATCH v2 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Eric W. Biederman
      - Re: [PATCH v2 1/3] capabilities: Introduce CAP_CHECKPOINT_RESTORE, Cyrill Gorcunov
- [PATCH v2 2/3] selftests: add clone3() CAP_CHECKPOINT_RESTORE test, Adrian Reber
- [PATCH v2 3/3] prctl: Allow ptrace capable processes to change exe_fd, Adrian Reber
[PATCH] selinux-testsuite: Review and rework sctp tests, Richard Haines
- Re: [PATCH] selinux-testsuite: Review and rework sctp tests, Ondrej Mosnacek
  - Re: [PATCH] selinux-testsuite: Review and rework sctp tests, Richard Haines
[PATCH] semanage-node.8: describe netmask, Topi Miettinen
- Re: [PATCH] semanage-node.8: describe netmask, Stephen Smalley
  - Re: [PATCH] semanage-node.8: describe netmask, Stephen Smalley
Re: [PATCH] RFC: fuse: virtiofs: Call security hooks on new inodes, Vivek Goyal
[PATCH testsuite] policy/test_overlayfs.te: allow mounter to create whiteouts, Stephen Smalley
- Re: [PATCH testsuite] policy/test_overlayfs.te: allow mounter to create whiteouts, Ondrej Mosnacek
  - Re: [PATCH testsuite] policy/test_overlayfs.te: allow mounter to create whiteouts, Stephen Smalley
    - Re: [PATCH testsuite] policy/test_overlayfs.te: allow mounter to create whiteouts, Ondrej Mosnacek
      - Re: [PATCH testsuite] policy/test_overlayfs.te: allow mounter to create whiteouts, Ondrej Mosnacek
[PATCH] Avoid using getprotobyname(), Topi Miettinen
- Re: [PATCH] Avoid using getprotobyname(), Stephen Smalley
  - Re: [PATCH] Avoid using getprotobyname(), Paul Moore
    - Re: [PATCH] Avoid using getprotobyname(), Topi Miettinen
[RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Paul Moore
- Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Paul Moore
  - Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Stephen Smalley
    - Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Paul Moore
      - Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Stephen Smalley
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, William Roberts
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Stephen Smalley
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Stephen Smalley
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Ondrej Mosnacek
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Paul Moore
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Petr Lautrbach
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Stephen Smalley
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Stephen Smalley
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Casey Schaufler
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Stephen Smalley
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Petr Lautrbach
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Ondrej Mosnacek
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Stephen Smalley
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Paul Moore
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Stephen Smalley
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Stephen Smalley
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Stephen Smalley
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Stephen Smalley
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Paul Moore
        
        Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Paul Moore
- <Possible follow-ups>
- [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Paul Moore
  - Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Paul Moore
  - Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Casey Schaufler
  - Re: [RFC PATCH] selinux: runtime disable is deprecated, add some ssleep() discomfort, Paul Moore
Fwd: ❌ FAIL: Test report for kernel 5.7.0-f359287.cki (mainline.kernel.org), Ondrej Mosnacek
- Re: ❌ FAIL: Test report for kernel 5.7.0-f359287.cki (mainline.kernel.org), Miklos Szeredi
[GIT PULL] SELinux patches for v5.8, Paul Moore
- Re: [GIT PULL] SELinux patches for v5.8, Linus Torvalds
  - Re: [GIT PULL] SELinux patches for v5.8, Casey Schaufler
    - Re: [GIT PULL] SELinux patches for v5.8, Linus Torvalds
      - Re: [GIT PULL] SELinux patches for v5.8, Casey Schaufler
      - Re: [GIT PULL] SELinux patches for v5.8, Alexei Starovoitov
        
        Re: [GIT PULL] SELinux patches for v5.8, Casey Schaufler
        
        Re: [GIT PULL] SELinux patches for v5.8, Alexei Starovoitov
    - Re: [GIT PULL] SELinux patches for v5.8, James Morris
      - Re: [GIT PULL] SELinux patches for v5.8, Casey Schaufler
        
        Re: [GIT PULL] SELinux patches for v5.8, James Morris
        
        Re: [GIT PULL] SELinux patches for v5.8, Stephen Smalley
        
        Re: [GIT PULL] SELinux patches for v5.8, Casey Schaufler
        
        Re: [GIT PULL] SELinux patches for v5.8, Stephen Smalley
  - Re: [GIT PULL] SELinux patches for v5.8, Paul Moore
- Re: [GIT PULL] SELinux patches for v5.8, pr-tracker-bot
[PATCH] selinux: Allow file owner to set "security.sehash", Chirantan Ekbote
- Re: [PATCH] selinux: Allow file owner to set "security.sehash", Stephen Smalley
  - Re: [PATCH] selinux: Allow file owner to set "security.sehash", Chirantan Ekbote
    - Re: [PATCH] selinux: Allow file owner to set "security.sehash", Stephen Smalley
      - Re: [PATCH] selinux: Allow file owner to set "security.sehash", Stephen Smalley
      - Re: [PATCH] selinux: Allow file owner to set "security.sehash", Chirantan Ekbote
        
        Re: [PATCH] selinux: Allow file owner to set "security.sehash", Stephen Smalley
[PATCH v2] semanage bash completion: handle semanage module, Topi Miettinen
- Re: [PATCH v2] semanage bash completion: handle semanage module, Stephen Smalley
  - Re: [PATCH v2] semanage bash completion: handle semanage module, Stephen Smalley
Interests in usability enhancements to .../scripts.py?, Peter Whittaker
[PATCH] libselpol: Sort portcon rules consistently, James Carter
- Re: [PATCH] libselpol: Sort portcon rules consistently, Stephen Smalley
  - Re: [PATCH] libselpol: Sort portcon rules consistently, James Carter
    - Re: [PATCH] libselpol: Sort portcon rules consistently, Stephen Smalley
[PATCH v4] selinux: allow reading labels before policy is loaded, Jonathan Lebon
- Re: [PATCH v4] selinux: allow reading labels before policy is loaded, Paul Moore
  - Re: [PATCH v4] selinux: allow reading labels before policy is loaded, Paul Moore
CIL typealiases, Dominick Grift
- Re: CIL typealiases, James Carter
  - Re: CIL typealiases, Dominick Grift
    - Re: CIL typealiases, James Carter
[PATCH v2] selinux: allow reading labels before policy is loaded, Jonathan Lebon
- Re: [PATCH v2] selinux: allow reading labels before policy is loaded, Ondrej Mosnacek
- Re: [PATCH v2] selinux: allow reading labels before policy is loaded, Stephen Smalley
[PATCH v3 1/2] libsepol/cil: Initialize the multiple_decls field of the cil db, James Carter
- [PATCH v3 2/2] libsepol/cil: Return error when identifier declared as both type and attribute, James Carter
  - Re: [PATCH v3 2/2] libsepol/cil: Return error when identifier declared as both type and attribute, Topi Miettinen
    - Re: [PATCH v3 2/2] libsepol/cil: Return error when identifier declared as both type and attribute, James Carter
  - Re: [PATCH v3 2/2] libsepol/cil: Return error when identifier declared as both type and attribute, Stephen Smalley
    - Re: [PATCH v3 2/2] libsepol/cil: Return error when identifier declared as both type and attribute, Stephen Smalley
[PATCH] Add restorecon -x opt to not cross FS boundaries (cf github #208), Peter Whittaker
- Re: [PATCH] Add restorecon -x opt to not cross FS boundaries (cf github #208), Stephen Smalley
  - Re: [PATCH] Add restorecon -x opt to not cross FS boundaries (cf github #208), Peter Whittaker
[PATCH] semanage bash completion: handle semanage module #246, Topi Miettinen
- Re: [PATCH] semanage bash completion: handle semanage module #246, Stephen Smalley
krb5 policy bug, Corey Penford
- Re: krb5 policy bug, Stephen Smalley
Issue with fixfiles excludes, Chris Adams
- Re: Issue with fixfiles excludes, Stephen Smalley
[PATCH] checkpolicy: Minor tweaks to the names of the contributors to the manpages, Andrej Shadura
- Re: [PATCH] checkpolicy: Minor tweaks to the names of the contributors to the manpages, Stephen Smalley
  - Re: [PATCH] checkpolicy: Minor tweaks to the names of the contributors to the manpages, Stephen Smalley
[PATCH] selinux: allow reading labels before policy is loaded, Jonathan Lebon
- Re: [PATCH] selinux: allow reading labels before policy is loaded, Ondrej Mosnacek
  - Re: [PATCH] selinux: allow reading labels before policy is loaded, Jonathan Lebon
    - Re: [PATCH] selinux: allow reading labels before policy is loaded, Ondrej Mosnacek
      - Re: [PATCH] selinux: allow reading labels before policy is loaded, Stephen Smalley
  - Re: [PATCH] selinux: allow reading labels before policy is loaded, Jonathan Lebon
- <Possible follow-ups>
- [PATCH] selinux: allow reading labels before policy is loaded, Jonathan Lebon
  - Re: [PATCH] selinux: allow reading labels before policy is loaded, Jonathan Lebon
  - Re: [PATCH] selinux: allow reading labels before policy is loaded, Stephen Smalley
    - Re: [PATCH] selinux: allow reading labels before policy is loaded, Jonathan Lebon
CFLAGS overridden by distribution build system, Laurent Bigonville
- Re: CFLAGS overridden by distribution build system, William Roberts
  - Re: CFLAGS overridden by distribution build system, Stephen Smalley
    - Re: CFLAGS overridden by distribution build system, William Roberts
      - Re: CFLAGS overridden by distribution build system, Stephen Smalley
        
        Re: CFLAGS overridden by distribution build system, William Roberts
        
        Re: CFLAGS overridden by distribution build system, Stephen Smalley
        
        Re: CFLAGS overridden by distribution build system, William Roberts
        
        Re: CFLAGS overridden by distribution build system, Petr Lautrbach
        
        [PATCH] README: start a section for documenting CFLAGS, bill . c . roberts
        
        Re: [PATCH] README: start a section for documenting CFLAGS, Stephen Smalley
        
        [PATCH v2] README: start a section for documenting CFLAGS, bill . c . roberts
        
        Re: [PATCH v2] README: start a section for documenting CFLAGS, Stephen Smalley
        
        Re: [PATCH v2] README: start a section for documenting CFLAGS, William Roberts
        
        [PATCH v3] README: start a section for documenting CFLAGS, bill . c . roberts
        
        Re: [PATCH v3] README: start a section for documenting CFLAGS, Stephen Smalley
general protection fault in selinux_socket_recvmsg, syzbot
- Re: general protection fault in selinux_socket_recvmsg, Ondrej Mosnacek
- Re: general protection fault in selinux_socket_recvmsg, syzbot
[PATCH v2 1/3] libsepol: Write CIL default MLS rules on separate lines, James Carter
- [PATCH v2 3/3] libsepol: Improve writing CIL category rules, James Carter
  - Re: [PATCH v2 3/3] libsepol: Improve writing CIL category rules, Stephen Smalley
    - Re: [PATCH v2 3/3] libsepol: Improve writing CIL category rules, James Carter
      - Re: [PATCH v2 3/3] libsepol: Improve writing CIL category rules, Stephen Smalley
        
        Re: [PATCH v2 3/3] libsepol: Improve writing CIL category rules, Stephen Smalley
- [PATCH v2 2/3] libsepol: Improve writing CIL sensitivity rules, James Carter
[PATCH v3 1/2] libsepol: Fix type alias handling in kernel_to_cil, James Carter
- [PATCH v3 2/2] libsepol: Fix type alias handling in kernel_to_conf, James Carter
  - Re: [PATCH v3 2/2] libsepol: Fix type alias handling in kernel_to_conf, Stephen Smalley
    - Re: [PATCH v3 2/2] libsepol: Fix type alias handling in kernel_to_conf, James Carter
    - Re: [PATCH v3 2/2] libsepol: Fix type alias handling in kernel_to_conf, James Carter
      - Re: [PATCH v3 2/2] libsepol: Fix type alias handling in kernel_to_conf, Stephen Smalley
    - Re: [PATCH v3 2/2] libsepol: Fix type alias handling in kernel_to_conf, Stephen Smalley
Question about SELinux and hard resource limits, Ondrej Mosnacek
- Re: Question about SELinux and hard resource limits, Stephen Smalley
[PATCH] libselinux: utils: link with shared libfts, Đoàn Trần Công Danh
- Re: [PATCH] libselinux: utils: link with shared libfts, Nicolas Iooss
  - Re: [PATCH] libselinux: utils: link with shared libfts, Đoàn Trần Công Danh
[PATCH] capabilities: Introduce CAP_RESTORE, Adrian Reber
- Re: [PATCH] capabilities: Introduce CAP_RESTORE, Christian Brauner
  - Re: [PATCH] capabilities: Introduce CAP_RESTORE, Andrei Vagin
- Re: [PATCH] capabilities: Introduce CAP_RESTORE, Christian Brauner
- Re: [PATCH] capabilities: Introduce CAP_RESTORE, Casey Schaufler
  - Re: [PATCH] capabilities: Introduce CAP_RESTORE, Andrei Vagin
    - Re: [PATCH] capabilities: Introduce CAP_RESTORE, Casey Schaufler
  - Re: [PATCH] capabilities: Introduce CAP_RESTORE, Adrian Reber
    - Re: [PATCH] capabilities: Introduce CAP_RESTORE, Casey Schaufler
      - Re: [PATCH] capabilities: Introduce CAP_RESTORE, Adrian Reber
        
        Re: [PATCH] capabilities: Introduce CAP_RESTORE, Casey Schaufler
        
        RE: [PATCH] capabilities: Introduce CAP_RESTORE, Nicolas Viennot
        
        Re: [PATCH] capabilities: Introduce CAP_RESTORE, Casey Schaufler
    - Re: [PATCH] capabilities: Introduce CAP_RESTORE, Eric W. Biederman
      - Message not available
        
        Re: [PATCH] capabilities: Introduce CAP_RESTORE, Casey Schaufler
      - Message not available
        
        Re: [PATCH] capabilities: Introduce CAP_RESTORE, Jann Horn
      - Re: [PATCH] capabilities: Introduce CAP_RESTORE, Adrian Reber
        
        Re: [PATCH] capabilities: Introduce CAP_RESTORE, Christian Brauner
        
        RE: [PATCH] capabilities: Introduce CAP_RESTORE, Nicolas Viennot
        
        Re: [PATCH] capabilities: Introduce CAP_RESTORE, Christian Brauner
        
        Re: [PATCH] capabilities: Introduce CAP_RESTORE, Andrei Vagin
- Re: [PATCH] capabilities: Introduce CAP_RESTORE, Jann Horn
  - Re: [PATCH] capabilities: Introduce CAP_RESTORE, Radostin Stoyanov
- Re: [PATCH] capabilities: Introduce CAP_RESTORE, Matt Helsley
  - Re: [PATCH] capabilities: Introduce CAP_RESTORE, Christian Brauner
[PATCH 1/3] libsepol: Write CIL default MLS rules on separate lines, James Carter
- [PATCH 2/3] libsepol: Improve writing CIL sensitivity rules, James Carter
  - Re: [PATCH 2/3] libsepol: Improve writing CIL sensitivity rules, Nicolas Iooss
    - Re: [PATCH 2/3] libsepol: Improve writing CIL sensitivity rules, James Carter
- [PATCH 3/3] libsepol: Improve writing CIL category rules, James Carter
[PATCH v2 1/2] libsepol: Fix type alias handling in kernel_to_cil, James Carter
- [PATCH v2 2/2] libsepol: Fix type alias handling in kernel_to_conf, James Carter
[PATCH V5] selinux-testsuite: Add nftables to inet_socket and sctp tests, Richard Haines
- Re: [PATCH V5] selinux-testsuite: Add nftables to inet_socket and sctp tests, Ondrej Mosnacek
  - Re: [PATCH V5] selinux-testsuite: Add nftables to inet_socket and sctp tests, Ondrej Mosnacek
Documentation on Enabling NetLabel, Paul Tagliamonte
- Re: Documentation on Enabling NetLabel, Paul Moore
  - Re: Documentation on Enabling NetLabel, Paul Tagliamonte
    - Re: Documentation on Enabling NetLabel, Paul Moore
[PATCH 1/2] libsepol: Fix type alias handling in kernel_to_cil, James Carter
- [PATCH 2/2] libsepol: Fix type alias handling in kernel_to_conf, James Carter
[PATCH] README: Add kernel-modules for SCTP, william . c . roberts
- Re: [PATCH] README: Add kernel-modules for SCTP, Ondrej Mosnacek
  - Re: [PATCH] README: Add kernel-modules for SCTP, William Roberts
    - Re: [PATCH] README: Add kernel-modules for SCTP, Ondrej Mosnacek
[PATCH V4] selinux-testsuite: Add nftables to inet_socket and sctp tests, Richard Haines
- Re: [PATCH V4] selinux-testsuite: Add nftables to inet_socket and sctp tests, Ondrej Mosnacek
  - Re: [PATCH V4] selinux-testsuite: Add nftables to inet_socket and sctp tests, Richard Haines
Travis CI: Run selinux-testsuite, bill . c . roberts
- [PATCH] ci: run SE Linux kernel test suite, bill . c . roberts
  - Re: [PATCH] ci: run SE Linux kernel test suite, Paul Moore
    - Re: [PATCH] ci: run SE Linux kernel test suite, William Roberts
      - Re: [PATCH] ci: run SE Linux kernel test suite, Paul Moore
        
        Re: [PATCH] ci: run SE Linux kernel test suite, William Roberts
        
        Re: [PATCH] ci: run SE Linux kernel test suite, William Roberts
- Re: Travis CI: Run selinux-testsuite, Paul Moore
  - [v2] Travis CI: Run selinux-testsuite, bill . c . roberts
    - [PATCH v2] ci: run SELinux kernel test suite, bill . c . roberts
      - Re: [PATCH v2] ci: run SELinux kernel test suite, Ondrej Mosnacek
        
        Re: [PATCH v2] ci: run SELinux kernel test suite, Stephen Smalley
        
        Re: [PATCH v2] ci: run SELinux kernel test suite, Ondrej Mosnacek
        
        Re: [PATCH v2] ci: run SELinux kernel test suite, William Roberts
        
        Re: [PATCH v2] ci: run SELinux kernel test suite, Ondrej Mosnacek
        
        Re: [PATCH v2] ci: run SELinux kernel test suite, William Roberts
        
        Re: [PATCH v2] ci: run SELinux kernel test suite, Stephen Smalley
        
        Re: [PATCH v2] ci: run SELinux kernel test suite, William Roberts
      - Re: [PATCH v2] ci: run SELinux kernel test suite, Nicolas Iooss
        
        Re: [PATCH v2] ci: run SELinux kernel test suite, William Roberts
        
        Re: [PATCH v2] ci: run SELinux kernel test suite, William Roberts
        
        Re: [PATCH v2] ci: run SELinux kernel test suite, Nicolas Iooss
        
        Re: [PATCH v2] ci: run SELinux kernel test suite, William Roberts
      - Re: [PATCH v2] ci: run SELinux kernel test suite, Ondrej Mosnacek
        
        Re: [PATCH v2] ci: run SELinux kernel test suite, William Roberts
    - Re: [v2] Travis CI: Run selinux-testsuite, Paul Moore
    - [v3] Travis CI: Run selinux-testsuite, bill . c . roberts
      - [PATCH v3] ci: run SELinux kernel test suite, bill . c . roberts
        
        Re: [PATCH v3] ci: run SELinux kernel test suite, Stephen Smalley
        
        Re: [PATCH v3] ci: run SELinux kernel test suite, Petr Lautrbach
        
        Re: [PATCH v3] ci: run SELinux kernel test suite, William Roberts
        
        Re: [PATCH v3] ci: run SELinux kernel test suite, Ondrej Mosnacek
        
        Re: [PATCH v3] ci: run SELinux kernel test suite, Stephen Smalley
        
        Re: [PATCH v3] ci: run SELinux kernel test suite, William Roberts
        
        Re: [PATCH v3] ci: run SELinux kernel test suite, William Roberts
        
        [PATCH] ci: dont use hardcoded project name, bill . c . roberts
        
        Re: [PATCH] ci: dont use hardcoded project name, Petr Lautrbach
        
        Re: [PATCH] ci: dont use hardcoded project name, Petr Lautrbach
        
        Re: [PATCH] ci: dont use hardcoded project name, William Roberts
        
        Re: [PATCH] ci: dont use hardcoded project name, William Roberts
        
        [PATCH v2] ci: dont use hardcoded project name, bill . c . roberts
        
        Re: [PATCH v2] ci: dont use hardcoded project name, Petr Lautrbach
        
        Re: [PATCH v2] ci: dont use hardcoded project name, Stephen Smalley
        
        Re: [PATCH v2] ci: dont use hardcoded project name, Petr Lautrbach
[PATCH v2 1/2] libsepol/cil: Initialize the multiple_decls field of the cil db, James Carter
- [PATCH v2 2/2] libsepol/cil: Return error when identifier declared as both type and attribute, James Carter
  - Re: [PATCH v2 2/2] libsepol/cil: Return error when identifier declared as both type and attribute, Stephen Smalley
    - Re: [PATCH v2 2/2] libsepol/cil: Return error when identifier declared as both type and attribute, James Carter
- Re: [PATCH v2 1/2] libsepol/cil: Initialize the multiple_decls field of the cil db, Stephen Smalley
[PATCH] libsepol/cil: Initialize the multiple_decls field of the cil db, James Carter
- Re: [PATCH] libsepol/cil: Initialize the multiple_decls field of the cil db, Stephen Smalley
  - Re: [PATCH] libsepol/cil: Initialize the multiple_decls field of the cil db, James Carter
ANN: SELinux userspace 3.1-rc1 release candidate, Petr Lautrbach
- Re: ANN: SELinux userspace 3.1-rc1 release candidate, Christian Göttsche
Semodule accepts bad modules every other time, Topi Miettinen
- Re: Semodule accepts bad modules every other time, Stephen Smalley
  - Re: Semodule accepts bad modules every other time, James Carter
    - Re: Semodule accepts bad modules every other time, Topi Miettinen
[PATCH] Add restorecon -x to not cross FS boundaries, Peter Whittaker
- Re: [PATCH] Add restorecon -x to not cross FS boundaries, Stephen Smalley
  - Re: [PATCH] Add restorecon -x to not cross FS boundaries, Peter Whittaker
- Re: [PATCH] Add restorecon -x to not cross FS boundaries, Ondrej Mosnacek
  - Re: [PATCH] Add restorecon -x to not cross FS boundaries, Peter Whittaker
Bad context in PostgreSQL page on SELinux Project wiki?, Peter Whittaker
- Re: Bad context in PostgreSQL page on SELinux Project wiki?, Stephen Smalley
  - Re: Bad context in PostgreSQL page on SELinux Project wiki?, Peter Whittaker
- Re: Bad context in PostgreSQL page on SELinux Project wiki?, Richard Haines
  - Re: Bad context in PostgreSQL page on SELinux Project wiki?, Paul Moore
    - Re: Bad context in PostgreSQL page on SELinux Project wiki?, Richard Haines
      - Re: Bad context in PostgreSQL page on SELinux Project wiki?, Paul Moore
        
        Re: Bad context in PostgreSQL page on SELinux Project wiki?, Richard Haines
        
        Re: Bad context in PostgreSQL page on SELinux Project wiki?, Paul Moore
        
        Re: Bad context in PostgreSQL page on SELinux Project wiki?, Paul Moore
[PATCH] README: add pkg kernel-devel to dnf command, william . c . roberts
- Re: [PATCH] README: add pkg kernel-devel to dnf command, Paul Moore
  - Re: [PATCH] README: add pkg kernel-devel to dnf command, William Roberts
- Re: [PATCH] README: add pkg kernel-devel to dnf command, Ondrej Mosnacek
  - Re: [PATCH] README: add pkg kernel-devel to dnf command, William Roberts
    - Re: [PATCH] README: add pkg kernel-devel to dnf command, Stephen Smalley
      - Re: [PATCH] README: add pkg kernel-devel to dnf command, William Roberts
        
        Re: [PATCH] README: add pkg kernel-devel to dnf command, Stephen Smalley
        
        Re: [PATCH] README: add pkg kernel-devel to dnf command, William Roberts
        
        Re: [PATCH] README: add pkg kernel-devel to dnf command, Ondrej Mosnacek
        
        Re: [PATCH] README: add pkg kernel-devel to dnf command, William Roberts
        
        Re: [PATCH] README: add pkg kernel-devel to dnf command, Ondrej Mosnacek
        
        Re: [PATCH] README: add pkg kernel-devel to dnf command, William Roberts
- [PATCH v2] README: update kernel-devel package in dnf command, william . c . roberts
  - Re: [PATCH v2] README: update kernel-devel package in dnf command, Paul Moore
    - Re: [PATCH v2] README: update kernel-devel package in dnf command, William Roberts
- [PATCH v3] README: update kernel-devel package in dnf command, william . c . roberts
  - Re: [PATCH v3] README: update kernel-devel package in dnf command, Ondrej Mosnacek
    - Re: [PATCH v3] README: update kernel-devel package in dnf command, Ondrej Mosnacek
[PATCH V3] selinux-testsuite: Add nftables to inet_socket and sctp tests, Richard Haines
- Re: [PATCH V3] selinux-testsuite: Add nftables to inet_socket and sctp tests, Ondrej Mosnacek
[RFC PATCH V2] selinux-testsuite: Add check for key changes on watch_queue, Richard Haines
- Re: [RFC PATCH V2] selinux-testsuite: Add check for key changes on watch_queue, Ondrej Mosnacek
  - Re: [RFC PATCH V2] selinux-testsuite: Add check for key changes on watch_queue, Ondrej Mosnacek
[PATCH V2] selinux-testsuite: Add nftables to inet_socket and sctp tests, Richard Haines
- Re: [PATCH V2] selinux-testsuite: Add nftables to inet_socket and sctp tests, Ondrej Mosnacek
[PATCH v3] secilc/docs: fix use of TMPDIR, Topi Miettinen
- Re: [PATCH v3] secilc/docs: fix use of TMPDIR, Petr Lautrbach
  - Re: [PATCH v3] secilc/docs: fix use of TMPDIR, Stephen Smalley
    - Re: [PATCH v3] secilc/docs: fix use of TMPDIR, Petr Lautrbach
[PATCH v2] secilc/docs: fix use of TMPDIR #240, Topi Miettinen
Wrong processes in AVC denials, Topi Miettinen
- Re: Wrong processes in AVC denials, Christian Göttsche
  - Re: Wrong processes in AVC denials, Topi Miettinen
- Re: Wrong processes in AVC denials, Stephen Smalley
[PATCH] secilc/docs: fix use of TMPDIR #240, Topi Miettinen
- Re: [PATCH] secilc/docs: fix use of TMPDIR #240, Petr Lautrbach
  - Re: [PATCH] secilc/docs: fix use of TMPDIR #240, Topi Miettinen
    - Re: [PATCH] secilc/docs: fix use of TMPDIR #240, Petr Lautrbach
[PATCH v17 00/23] LSM: Module stacking for AppArmor, Casey Schaufler
- [PATCH v17 01/23] LSM: Infrastructure management of the sock security, Casey Schaufler
- [PATCH v17 02/23] LSM: Create and manage the lsmblob data structure., Casey Schaufler
- [PATCH v17 03/23] LSM: Use lsmblob in security_audit_rule_match, Casey Schaufler
- [PATCH v17 04/23] LSM: Use lsmblob in security_kernel_act_as, Casey Schaufler
- [PATCH v17 05/23] net: Prepare UDS for security module stacking, Casey Schaufler
  - Re: [PATCH v17 05/23] net: Prepare UDS for security module stacking, Stephen Smalley
- [PATCH v17 06/23] Use lsmblob in security_secctx_to_secid, Casey Schaufler
- [PATCH v17 07/23] LSM: Use lsmblob in security_secid_to_secctx, Casey Schaufler
- [PATCH v17 08/23] LSM: Use lsmblob in security_ipc_getsecid, Casey Schaufler
- [PATCH v17 09/23] LSM: Use lsmblob in security_task_getsecid, Casey Schaufler
- [PATCH v17 10/23] LSM: Use lsmblob in security_inode_getsecid, Casey Schaufler
- [PATCH v17 11/23] LSM: Use lsmblob in security_cred_getsecid, Casey Schaufler
- [PATCH v17 12/23] IMA: Change internal interfaces to use lsmblobs, Casey Schaufler
- [PATCH v17 13/23] LSM: Specify which LSM to display, Casey Schaufler
- [PATCH v17 14/23] LSM: Ensure the correct LSM context releaser, Casey Schaufler
- [PATCH v17 15/23] LSM: Use lsmcontext in security_secid_to_secctx, Casey Schaufler
- [PATCH v17 16/23] LSM: Use lsmcontext in security_inode_getsecctx, Casey Schaufler
- [PATCH v17 17/23] LSM: security_secid_to_secctx in netlink netfilter, Casey Schaufler
- [PATCH v17 18/23] NET: Store LSM netlabel data in a lsmblob, Casey Schaufler
- [PATCH v17 19/23] LSM: Verify LSM display sanity in binder, Casey Schaufler
- [PATCH v17 20/23] Audit: Add a new record for multiple subject LSM attributes, Casey Schaufler
  - Re: [PATCH v17 20/23] Audit: Add a new record for multiple subject LSM attributes, Stephen Smalley
    - Re: [PATCH v17 20/23] Audit: Add a new record for multiple subject LSM attributes, Casey Schaufler
      - Re: [PATCH v17 20/23] Audit: Add a new record for multiple subject LSM attributes, Paul Moore
        
        Re: [PATCH v17 20/23] Audit: Add a new record for multiple subject LSM attributes, Casey Schaufler
        
        Re: [PATCH v17 20/23] Audit: Add a new record for multiple subject LSM attributes, Casey Schaufler
        
        Re: [PATCH v17 20/23] Audit: Add a new record for multiple subject LSM attributes, Paul Moore
- [PATCH v17 21/23] Audit: Add a new record for multiple object LSM attributes, Casey Schaufler
- [PATCH v17 22/23] LSM: Add /proc attr entry for full LSM context, Casey Schaufler
- [PATCH v17 23/23] AppArmor: Remove the exclusive flag, Casey Schaufler
[RFC PATCH] selinux: add note to avoid permissions with _perms suffix, Christian Göttsche
- Re: [RFC PATCH] selinux: add note to avoid permissions with _perms suffix, Stephen Smalley
  - Re: [RFC PATCH] selinux: add note to avoid permissions with _perms suffix, Paul Moore
Configuring MLS with a daemon operating at multiple sensitivities, Paul Tagliamonte
- Re: Configuring MLS with a daemon operating at multiple sensitivities, Mike Palmiotto
  - Re: Configuring MLS with a daemon operating at multiple sensitivities, Paul Tagliamonte
    - Re: Configuring MLS with a daemon operating at multiple sensitivities, Stephen Smalley
      - Re: Configuring MLS with a daemon operating at multiple sensitivities, Paul Tagliamonte
        
        Re: Configuring MLS with a daemon operating at multiple sensitivities, Stephen Smalley
        
        Re: Configuring MLS with a daemon operating at multiple sensitivities, Paul Moore
[PATCH] libsepol: drop broken warning on duplicate filename transitions, Stephen Smalley
- Re: [PATCH] libsepol: drop broken warning on duplicate filename transitions, Ondrej Mosnacek
  - Re: [PATCH] libsepol: drop broken warning on duplicate filename transitions, Stephen Smalley
    - Re: [PATCH] libsepol: drop broken warning on duplicate filename transitions, Ondrej Mosnacek
      - Re: [PATCH] libsepol: drop broken warning on duplicate filename transitions, Petr Lautrbach
[PATCH v2] libsemanage: fsync final files before rename, Smalley
- Re: [PATCH v2] libsemanage: fsync final files before rename, Nicolas Iooss
  - Re: [PATCH v2] libsemanage: fsync final files before rename, Petr Lautrbach
[PATCH] libsemanage: fsync before rename, Smalley
- Re: [PATCH] libsemanage: fsync before rename, Nicolas Iooss
  - Re: [PATCH] libsemanage: fsync before rename, Stephen Smalley
The selinux/working-selinuxns branch has been rebased on top of selinux/next, Paul Moore
[PATCH 0/3] fs: reduce export usage of kerne_read*() calls, Luis Chamberlain
- [PATCH 1/3] fs: unexport kernel_read_file(), Luis Chamberlain
- [PATCH 3/3] fs: move kernel_read*() calls to its own symbol namespace, Luis Chamberlain
  - Re: [PATCH 3/3] fs: move kernel_read*() calls to its own symbol namespace, Greg KH
- [PATCH 2/3] security: add symbol namespace for reading file data, Luis Chamberlain
  - Re: [PATCH 2/3] security: add symbol namespace for reading file data, Eric W. Biederman
    - Re: [PATCH 2/3] security: add symbol namespace for reading file data, Greg KH
    - Re: [PATCH 2/3] security: add symbol namespace for reading file data, Luis Chamberlain
      - Re: [PATCH 2/3] security: add symbol namespace for reading file data, Greg KH
      - Re: [PATCH 2/3] security: add symbol namespace for reading file data, Josh Triplett
- Re: [PATCH 0/3] fs: reduce export usage of kerne_read*() calls, Christoph Hellwig
  - Re: [PATCH 0/3] fs: reduce export usage of kerne_read*() calls, Luis Chamberlain
    - Re: [PATCH 0/3] fs: reduce export usage of kerne_read*() calls, Christoph Hellwig
      - Re: [PATCH 0/3] fs: reduce export usage of kerne_read*() calls, Mimi Zohar
        
        Re: [PATCH 0/3] fs: reduce export usage of kerne_read*() calls, Kees Cook
        
        Re: [PATCH 0/3] fs: reduce export usage of kerne_read*() calls, Luis Chamberlain
        
        Re: [PATCH 0/3] fs: reduce export usage of kerne_read*() calls, Scott Branden
        
        Re: [PATCH 0/3] fs: reduce export usage of kerne_read*() calls, Kees Cook
        
        Re: [PATCH 0/3] fs: reduce export usage of kerne_read*() calls, Scott Branden
        
        Re: [PATCH 0/3] fs: reduce export usage of kerne_read*() calls, Mimi Zohar
        
        Re: [PATCH 0/3] fs: reduce export usage of kerne_read*() calls, Scott Branden
        
        Re: [PATCH 0/3] fs: reduce export usage of kerne_read*() calls, Mimi Zohar
[PATCH] secilc: Fix policy optimization test, Petr Lautrbach
- Re: [PATCH] secilc: Fix policy optimization test, James Carter
  - Re: [PATCH] secilc: Fix policy optimization test, Petr Lautrbach
[PATCH] python/sepolicy: silence new flake8 warnings, Nicolas Iooss
- RE: [PATCH] python/sepolicy: silence new flake8 warnings, Roberts, William C
  - Re: [PATCH] python/sepolicy: silence new flake8 warnings, Nicolas Iooss
- Re: [PATCH] python/sepolicy: silence new flake8 warnings, Petr Lautrbach
[PATCH] mcstransd: fix memory leak in new_context_str, bauen1
- RE: [PATCH] mcstransd: fix memory leak in new_context_str, Roberts, William C
- Re: [PATCH] mcstransd: fix memory leak in new_context_str, Petr Lautrbach
  - Re: [PATCH] mcstransd: fix memory leak in new_context_str, William Roberts
[PATCH v5 testsuite 07/15] test_policy.if: use term_use_all_ptys() instead of unconfined_devpts_t, Stephen Smalley
- Re: [PATCH v5 testsuite 07/15] test_policy.if: use term_use_all_ptys() instead of unconfined_devpts_t, Ondrej Mosnacek
[PATCH v2 testsuite] tests/filesystem: fix quotas_test, Stephen Smalley
- Re: [PATCH v2 testsuite] tests/filesystem: fix quotas_test, Ondrej Mosnacek
  - Re: [PATCH v2 testsuite] tests/filesystem: fix quotas_test, Ondrej Mosnacek
[PATCH] run-flake8: Filter out ./.git/ directory, Petr Lautrbach
- Re: [PATCH] run-flake8: Filter out ./.git/ directory, Nicolas Iooss
- Re: [PATCH] run-flake8: Filter out ./.git/ directory, Petr Lautrbach
  - Re: [PATCH] run-flake8: Filter out ./.git/ directory, William Roberts
[PATCH] semanage/test-semanage.py: Return non-zero value when some of unittest tests fail, Petr Lautrbach
- Re: [PATCH] semanage/test-semanage.py: Return non-zero value when some of unittest tests fail, Nicolas Iooss
- Re: [PATCH] semanage/test-semanage.py: Return non-zero value when some of unittest tests fail, Petr Lautrbach
[PATCH] selinux-testsuite: Add nftables to inet_socket and sctp tests, Richard Haines
- Re: [PATCH] selinux-testsuite: Add nftables to inet_socket and sctp tests, Ondrej Mosnacek
  - Re: [PATCH] selinux-testsuite: Add nftables to inet_socket and sctp tests, Richard Haines
[PATCH] chcat: don't crash if access to binary policy is prohibited, bauen1
- Re: [PATCH] chcat: don't crash if access to binary policy is prohibited, Nicolas Iooss
  - Re: [PATCH] chcat: don't crash if access to binary policy is prohibited, Stephen Smalley
    - [PATCH v2] chcat: allow usage if binary policy is inaccessible, bauen1
      - Re: [PATCH v2] chcat: allow usage if binary policy is inaccessible, Petr Lautrbach
        
        Re: [PATCH v2] chcat: allow usage if binary policy is inaccessible, bauen1
[PATCH -next] selinux: netlabel: Remove unused inline function selinux_netlbl_conn_setsid, YueHaibing
- Re: [PATCH -next] selinux: netlabel: Remove unused inline function selinux_netlbl_conn_setsid, Paul Moore
[PATCH testsuite] tests/filesystem: fix quotas_test, Stephen Smalley
- Re: [PATCH testsuite] tests/filesystem: fix quotas_test, Ondrej Mosnacek
  - Re: [PATCH testsuite] tests/filesystem: fix quotas_test, Stephen Smalley
[PATCH v4 testsuite 00/15] Update to work on Debian, Stephen Smalley
- [PATCH v4 testsuite 01/15] test_capable_net.te: remove corenet_tcp/udp_sendrecv_all_ports(), Stephen Smalley
- [PATCH v4 testsuite 02/15] test_execute_no_trans.te: stop using mmap_file_perms, Stephen Smalley
- [PATCH v4 testsuite 08/15] test_overlayfs.te: allow test_overlay_mounter_t to read user tmp files, Stephen Smalley
- [PATCH v4 testsuite 07/15] test_policy.if: use ptynode instead of unconfined_devpts_t, Stephen Smalley
  - Re: [PATCH v4 testsuite 07/15] test_policy.if: use ptynode instead of unconfined_devpts_t, Ondrej Mosnacek
- [PATCH v4 testsuite 09/15] policy: Add MCS constraint on peer recv, Stephen Smalley
- [PATCH v4 testsuite 11/15] test_filesystem.te,tests/{fs_}filesystem: do not force user identity to system_u, Stephen Smalley
- [PATCH v4 testsuite 14/15] tests/mmap: skip /dev/zero tests if /dev is noexec, Stephen Smalley
- [PATCH v4 testsuite 13/15] tests/cap_userns: set /proc/sys/kernel/unprivileged_userns_clone if needed, Stephen Smalley
- [PATCH v4 testsuite 15/15] README.md: Add instructions for Debian, Stephen Smalley
- [PATCH v4 testsuite 12/15] policy/Makefile: conditionalize setting of allow_domain_fd_use, Stephen Smalley
- [PATCH v4 testsuite 06/15] test_sctp.te: make netlabel_peer_t a MCS-constrained type, Stephen Smalley
- [PATCH v4 testsuite 04/15] test_global.te: allow test domains to statfs selinuxfs, Stephen Smalley
- [PATCH v4 testsuite 03/15] test_ibendport.te: use dev_rw_infiniband_mgmt_dev(), Stephen Smalley
- [PATCH v4 testsuite 05/15] test_inet_socket.te: switch from generic_port to _all_unreserved_ports(), Stephen Smalley
- [PATCH v4 testsuite 10/15] policy: Add defaultrange rules for overlay tests, Stephen Smalley
- Re: [PATCH v4 testsuite 00/15] Update to work on Debian, Stephen Smalley
- Re: [PATCH v4 testsuite 00/15] Update to work on Debian, Ondrej Mosnacek
  - Re: [PATCH v4 testsuite 00/15] Update to work on Debian, Ondrej Mosnacek
[PATCH v3] selinux-testsuite: update to work on Debian, Stephen Smalley
[PATCH v2] selinux-testsuite: update to work on Debian, Stephen Smalley
- Re: [PATCH v2] selinux-testsuite: update to work on Debian, Ondrej Mosnacek
  - Re: [PATCH v2] selinux-testsuite: update to work on Debian, Stephen Smalley
[PATCH] selinux-testsuite: update to work on Debian, Stephen Smalley
- Re: [PATCH] selinux-testsuite: update to work on Debian, Stephen Smalley
  - Re: [PATCH] selinux-testsuite: update to work on Debian, William Roberts
    - Re: [PATCH] selinux-testsuite: update to work on Debian, Stephen Smalley
      - Re: [PATCH] selinux-testsuite: update to work on Debian, William Roberts
      - Re: [PATCH] selinux-testsuite: update to work on Debian, Russell Coker
        
        Re: [PATCH] selinux-testsuite: update to work on Debian, Laurent Bigonville

[Index of Archives] [Selinux Refpolicy] [Fedora Users] [Fedora Desktop] [Kernel] [KDE Users] [Gnome Users]