Security Enhanced Linux (SELINUX)

Date Index

[Prev Page][Next Page]

[PATCH] Documentation,selinux: fix references to old selinuxfs mount point, (continued)
- [PATCH] Documentation,selinux: fix references to old selinuxfs mount point, Stephen Smalley
  - Re: [PATCH] Documentation,selinux: fix references to old selinuxfs mount point, Paul Moore
[PATCH 0/2] LSM: Drop security_delete_hooks(), Ondrej Mosnacek
- [PATCH 1/2] selinux: treat atomic flags more carefully, Ondrej Mosnacek
  - Re: [PATCH 1/2] selinux: treat atomic flags more carefully, Stephen Smalley
  - Re: [PATCH 1/2] selinux: treat atomic flags more carefully, Kees Cook
  - Re: [PATCH 1/2] selinux: treat atomic flags more carefully, James Morris
    - Re: [PATCH 1/2] selinux: treat atomic flags more carefully, Paul Moore
  - Re: [PATCH 1/2] selinux: treat atomic flags more carefully, Paul Moore
- [PATCH 2/2] security,selinux: get rid of security_delete_hooks(), Ondrej Mosnacek
  - Re: [PATCH 2/2] security, selinux: get rid of security_delete_hooks(), Stephen Smalley
    - Re: [PATCH 2/2] security, selinux: get rid of security_delete_hooks(), Paul Moore
      - Re: [PATCH 2/2] security, selinux: get rid of security_delete_hooks(), Ondrej Mosnacek
        
        Re: [PATCH 2/2] security, selinux: get rid of security_delete_hooks(), Paul Moore
      - Re: [PATCH 2/2] security, selinux: get rid of security_delete_hooks(), Stephen Smalley
  - Re: [PATCH 2/2] security,selinux: get rid of security_delete_hooks(), Casey Schaufler
  - Re: [PATCH 2/2] security,selinux: get rid of security_delete_hooks(), Kees Cook
  - Re: [PATCH 2/2] security,selinux: get rid of security_delete_hooks(), James Morris
    - Re: [PATCH 2/2] security,selinux: get rid of security_delete_hooks(), Ondrej Mosnacek
      - Re: [PATCH 2/2] security,selinux: get rid of security_delete_hooks(), James Morris
[PATCH v2] selinux: deprecate disabling SELinux and runtime, Paul Moore
- Re: [PATCH v2] selinux: deprecate disabling SELinux and runtime, Stephen Smalley
  - Re: [PATCH v2] selinux: deprecate disabling SELinux and runtime, Paul Moore
[PATCH v2] selinuxfs: use scnprinft to get real length for inode, liuyang34
- Re: [PATCH v2] selinuxfs: use scnprinft to get real length for inode, Paul Moore
[PATCH] security: selinux: allow per-file labelling for binderfs, Hridya Valsaraju
- Re: [PATCH] security: selinux: allow per-file labelling for binderfs, Stephen Smalley
  - Re: [PATCH] security: selinux: allow per-file labelling for binderfs, Hridya Valsaraju
    - Re: [PATCH] security: selinux: allow per-file labelling for binderfs, Stephen Smalley
      - Re: [PATCH] security: selinux: allow per-file labelling for binderfs, Hridya Valsaraju
      - Re: [PATCH] security: selinux: allow per-file labelling for binderfs, Paul Moore
[PATCH v3] selinux: move ibpkeys code under CONFIG_SECURITY_INFINIBAND., Ravi Kumar Siddojigari
- Re: [PATCH v3] selinux: move ibpkeys code under CONFIG_SECURITY_INFINIBAND., Paul Moore
  - Re: [PATCH v3] selinux: move ibpkeys code under CONFIG_SECURITY_INFINIBAND., Ravi Kumar Siddojigari
    - Re: [PATCH v3] selinux: move ibpkeys code under CONFIG_SECURITY_INFINIBAND., Paul Moore
[PATCH] selinuxfs: use scnprinft to get real length in sel_read_class, liuyang34
- Re: [PATCH] selinuxfs: use scnprinft to get real length in sel_read_class, Stephen Smalley
- Re: [PATCH] selinuxfs: use scnprintf to get real length in sel_read_class, Markus Elfring
[PATCH v13 00/25] LSM: Module stacking for AppArmor, Casey Schaufler
- [PATCH v13 01/25] LSM: Infrastructure management of the sock security, Casey Schaufler
- [PATCH v13 02/25] LSM: Create and manage the lsmblob data structure., Casey Schaufler
  - Re: [PATCH v13 02/25] LSM: Create and manage the lsmblob data structure., Mickaël Salaün
- [PATCH v13 03/25] LSM: Use lsmblob in security_audit_rule_match, Casey Schaufler
  - Re: [PATCH v13 03/25] LSM: Use lsmblob in security_audit_rule_match, Mimi Zohar
    - Re: [PATCH v13 03/25] LSM: Use lsmblob in security_audit_rule_match, Casey Schaufler
- [PATCH v13 04/25] LSM: Use lsmblob in security_kernel_act_as, Casey Schaufler
- [PATCH v13 05/25] net: Prepare UDS for security module stacking, Casey Schaufler
- [PATCH v13 06/25] Use lsmblob in security_secctx_to_secid, Casey Schaufler
  - Re: [PATCH v13 06/25] Use lsmblob in security_secctx_to_secid, Stephen Smalley
- [PATCH v13 07/25] LSM: Use lsmblob in security_secid_to_secctx, Casey Schaufler
- [PATCH v13 08/25] LSM: Use lsmblob in security_ipc_getsecid, Casey Schaufler
- [PATCH v13 10/25] LSM: Use lsmblob in security_inode_getsecid, Casey Schaufler
- [PATCH v13 11/25] LSM: Use lsmblob in security_cred_getsecid, Casey Schaufler
- [PATCH v13 12/25] IMA: Change internal interfaces to use lsmblobs, Casey Schaufler
- [PATCH v13 13/25] LSM: Specify which LSM to display, Casey Schaufler
  - Re: [PATCH v13 13/25] LSM: Specify which LSM to display, Stephen Smalley
- [PATCH v13 15/25] LSM: Use lsmcontext in security_secid_to_secctx, Casey Schaufler
  - Re: [PATCH v13 15/25] LSM: Use lsmcontext in security_secid_to_secctx, Stephen Smalley
- [PATCH v13 14/25] LSM: Ensure the correct LSM context releaser, Casey Schaufler
  - Re: [PATCH v13 14/25] LSM: Ensure the correct LSM context releaser, Stephen Smalley
- [PATCH v13 16/25] LSM: Use lsmcontext in security_dentry_init_security, Casey Schaufler
  - Re: [PATCH v13 16/25] LSM: Use lsmcontext in security_dentry_init_security, Stephen Smalley
- [PATCH v13 17/25] LSM: Use lsmcontext in security_inode_getsecctx, Casey Schaufler
- [PATCH v13 18/25] LSM: security_secid_to_secctx in netlink netfilter, Casey Schaufler
- [PATCH v13 19/25] NET: Store LSM netlabel data in a lsmblob, Casey Schaufler
  - Re: [PATCH v13 19/25] NET: Store LSM netlabel data in a lsmblob, Stephen Smalley
    - Re: [PATCH v13 19/25] NET: Store LSM netlabel data in a lsmblob, Casey Schaufler
  - Re: [PATCH v13 19/25] NET: Store LSM netlabel data in a lsmblob, Stephen Smalley
- [PATCH v13 20/25] LSM: Verify LSM display sanity in binder, Casey Schaufler
- [PATCH v13 21/25] Audit: Add subj_LSM fields when necessary, Casey Schaufler
- [PATCH v13 09/25] LSM: Use lsmblob in security_task_getsecid, Casey Schaufler
  - Re: [PATCH v13 09/25] LSM: Use lsmblob in security_task_getsecid, Stephen Smalley
- [PATCH v13 22/25] Audit: Include object data for all security modules, Casey Schaufler
- [PATCH v13 23/25] NET: Add SO_PEERCONTEXT for multiple LSMs, Casey Schaufler
  - Re: [PATCH v13 23/25] NET: Add SO_PEERCONTEXT for multiple LSMs, Stephen Smalley
    - Re: [PATCH v13 23/25] NET: Add SO_PEERCONTEXT for multiple LSMs, Simon McVittie
      - Re: [PATCH v13 23/25] NET: Add SO_PEERCONTEXT for multiple LSMs, Casey Schaufler
        
        Re: [PATCH v13 23/25] NET: Add SO_PEERCONTEXT for multiple LSMs, Stephen Smalley
      - Re: [PATCH v13 23/25] NET: Add SO_PEERCONTEXT for multiple LSMs, Stephen Smalley
- [PATCH 24/25] LSM: Add /proc attr entry for full LSM context, Casey Schaufler
  - Re: [PATCH 24/25] LSM: Add /proc attr entry for full LSM context, Stephen Smalley
- [PATCH v13 25/25] AppArmor: Remove the exclusive flag, Casey Schaufler
- [PATCH v13 26/25] Audit: Multiple LSM support in audit rules, Casey Schaufler
  - Re: [PATCH v13 26/25] Audit: Multiple LSM support in audit rules, Mimi Zohar
    - Re: [PATCH v13 26/25] Audit: Multiple LSM support in audit rules, Casey Schaufler
      - Re: [PATCH v13 26/25] Audit: Multiple LSM support in audit rules, Mimi Zohar
[PATCH -next] selinux: remove set but not used variable 'sidtab', YueHaibing
- Re: [PATCH -next] selinux: remove set but not used variable 'sidtab', Paul Moore
[PATCH] selinux: ensure the policy has been loaded before reading the sidtab stats, Paul Moore
- Re: [PATCH] selinux: ensure the policy has been loaded before reading the sidtab stats, Paul Moore
Re: [selinux] 66f8e2f03c: RIP:sidtab_hash_stats, Paul Moore
- Re: [selinux] 66f8e2f03c: RIP:sidtab_hash_stats, Paul Moore
  - Re: [selinux] 66f8e2f03c: RIP:sidtab_hash_stats, Paul Moore
[PATCH AUTOSEL 5.4 20/52] afs: Fix SELinux setting security label on /afs, Sasha Levin
[PATCH AUTOSEL 4.19 11/34] afs: Fix SELinux setting security label on /afs, Sasha Levin
[PATCH 0/1] selinux-testsuite: Add filesystem tests, Richard Haines
- [PATCH 1/1] selinux-testsuite: Add filesystem tests, Richard Haines
  - Re: [PATCH 1/1] selinux-testsuite: Add filesystem tests, Ondrej Mosnacek
    - Re: [PATCH 1/1] selinux-testsuite: Add filesystem tests, Richard Haines
  - Re: [PATCH 1/1] selinux-testsuite: Add filesystem tests, Stephen Smalley
    - Re: [PATCH 1/1] selinux-testsuite: Add filesystem tests, Richard Haines
[PATCH] netnode.c : fix sel_netnode_hash be destroyed, hui yang
- Re: [PATCH] netnode.c : fix sel_netnode_hash be destroyed, Paul Moore
  - Re: [PATCH] netnode.c : fix sel_netnode_hash be destroyed, hui yang
    - Re: [PATCH] netnode.c : fix sel_netnode_hash be destroyed, Paul Moore
[RFC PATCH] selinux: deprecate disabling SELinux and runtime, Paul Moore
- Re: [RFC PATCH] selinux: deprecate disabling SELinux and runtime, Casey Schaufler
- Re: [RFC PATCH] selinux: deprecate disabling SELinux and runtime, Ondrej Mosnacek
  - Re: [RFC PATCH] selinux: deprecate disabling SELinux and runtime, Paul Moore
    - Re: [RFC PATCH] selinux: deprecate disabling SELinux and runtime, Ondrej Mosnacek
      - Re: [RFC PATCH] selinux: deprecate disabling SELinux and runtime, Paul Moore
- Re: [RFC PATCH] selinux: deprecate disabling SELinux and runtime, Stephen Smalley
  - Re: [RFC PATCH] selinux: deprecate disabling SELinux and runtime, Paul Moore
incorrect sysfs contexts, Christian Göttsche
- Re: incorrect sysfs contexts, Stephen Smalley
  - Re: incorrect sysfs contexts, Christian Göttsche
    - Re: incorrect sysfs contexts, Ondrej Mosnacek
      - Re: incorrect sysfs contexts, Paul Moore
      - Re: incorrect sysfs contexts, Stephen Smalley
  - Re: incorrect sysfs contexts, Ondrej Mosnacek
    - Re: incorrect sysfs contexts, Stephen Smalley
      - Re: incorrect sysfs contexts, Ondrej Mosnacek
        
        Re: incorrect sysfs contexts, Stephen Smalley
[RFC PATCH 0/8] systemd: improve SELinux support, Christian Göttsche
- [RFC PATCH 1/8] selinux-util: increase log severity, Christian Göttsche
- [RFC PATCH 2/8] selinux-access: log warning on context acquisition failure, Christian Göttsche
- [RFC PATCH 3/8] core: bookkeeping withdrawal path of masked units, Christian Göttsche
- [RFC PATCH 5/8] core: make SELinux access permissions more distinct, Christian Göttsche
- [RFC PATCH 4/8] core: add missing SELinux checks for dbus methods, Christian Göttsche
  - Re: [RFC PATCH 4/8] core: add missing SELinux checks for dbus methods, Stephen Smalley
    - Re: [RFC PATCH 4/8] core: add missing SELinux checks for dbus methods, Christian Göttsche
      - Re: [RFC PATCH 4/8] core: add missing SELinux checks for dbus methods, Stephen Smalley
- [RFC PATCH 7/8] core: implement the sd-bus generic callback for SELinux, Christian Göttsche
- [RFC PATCH 8/8] core: add notes to D-Bus interfaces about adding SELinux checks, Christian Göttsche
- [RFC PATCH 6/8] core: add support for MAC checks on unit install operations, Christian Göttsche
- Re: [RFC PATCH 0/8] systemd: improve SELinux support, Chris PeBenito
  - Re: [RFC PATCH 0/8] systemd: improve SELinux support, Dominick Grift
    - Re: [RFC PATCH 0/8] systemd: improve SELinux support, Chris PeBenito
      - Re: [RFC PATCH 0/8] systemd: improve SELinux support, Dominick Grift
[PATCH v4 0/7] Introduce CAP_SYS_PERFMON to secure system performance monitoring and observability, Alexey Budankov
- [PATCH v4 1/9] capabilities: introduce CAP_SYS_PERFMON to kernel and user space, Alexey Budankov
  - Re: [PATCH v4 1/9] capabilities: introduce CAP_SYS_PERFMON to kernel and user space, Stephen Smalley
- [PATCH v4 2/9] perf/core: open access for CAP_SYS_PERFMON privileged process, Alexey Budankov
  - Re: [PATCH v4 2/9] perf/core: open access for CAP_SYS_PERFMON privileged process, Peter Zijlstra
    - Re: [PATCH v4 2/9] perf/core: open access for CAP_SYS_PERFMON privileged process, Alexey Budankov
- [PATCH v4 3/9] perf tool: extend Perf tool with CAP_SYS_PERFMON capability support, Alexey Budankov
- [PATCH v4 4/9] drm/i915/perf: open access for CAP_SYS_PERFMON privileged process, Alexey Budankov
  - Re: [PATCH v4 4/9] drm/i915/perf: open access for CAP_SYS_PERFMON privileged process, Lionel Landwerlin
- [PATCH v4 5/9] trace/bpf_trace: open access for CAP_SYS_PERFMON privileged process, Alexey Budankov
- [PATCH v4 6/9] powerpc/perf: open access for CAP_SYS_PERFMON privileged process, Alexey Budankov
- [PATCH v4 7/9] parisc/perf: open access for CAP_SYS_PERFMON privileged process, Alexey Budankov
  - Re: [PATCH v4 7/9] parisc/perf: open access for CAP_SYS_PERFMON privileged process, Helge Deller
- [PATCH v4 8/9] drivers/perf: open access for CAP_SYS_PERFMON privileged process, Alexey Budankov
- [PATCH v4 9/9] drivers/oprofile: open access for CAP_SYS_PERFMON privileged process, Alexey Budankov
[PATCH] selinux: move ibpkeys code under CONFIG_SECURITY_INFINIBAND., Ravi Kumar Siddojigari
- Re: [PATCH] selinux: move ibpkeys code under CONFIG_SECURITY_INFINIBAND., Paul Moore
  - RE: [PATCH] selinux: move ibpkeys code under CONFIG_SECURITY_INFINIBAND., Ravi Kumar Siddojigari
[PATCH v2] selinux: clean up selinux_enabled/disabled/enforcing_boot, Stephen Smalley
- Re: [PATCH v2] selinux: clean up selinux_enabled/disabled/enforcing_boot, Paul Moore
[PATCH] selinux-testsuite: Fix policy to allow process { setfscreate } testing, Richard Haines
- Re: [PATCH] selinux-testsuite: Fix policy to allow process { setfscreate } testing, Stephen Smalley
- Re: [PATCH] selinux-testsuite: Fix policy to allow process { setfscreate } testing, Stephen Smalley
[PATCH v12 00/25] LSM: Module stacking for AppArmor, Casey Schaufler
- [PATCH v12 02/25] LSM: Create and manage the lsmblob data structure., Casey Schaufler
- [PATCH v12 01/25] LSM: Infrastructure management of the sock security, Casey Schaufler
- [PATCH v12 03/25] LSM: Use lsmblob in security_audit_rule_match, Casey Schaufler
- [PATCH v12 04/25] LSM: Use lsmblob in security_kernel_act_as, Casey Schaufler
- [PATCH v12 05/25] net: Prepare UDS for security module stacking, Casey Schaufler
- [PATCH v12 06/25] LSM: Use lsmblob in security_secctx_to_secid, Casey Schaufler
- [PATCH v12 07/25] LSM: Use lsmblob in security_secid_to_secctx, Casey Schaufler
- [PATCH v12 08/25] LSM: Use lsmblob in security_ipc_getsecid, Casey Schaufler
- [PATCH v12 09/25] LSM: Use lsmblob in security_task_getsecid, Casey Schaufler
- [PATCH v12 10/25] LSM: Use lsmblob in security_inode_getsecid, Casey Schaufler
- [PATCH v12 11/25] LSM: Use lsmblob in security_cred_getsecid, Casey Schaufler
- [PATCH v12 12/25] IMA: Change internal interfaces to use lsmblobs, Casey Schaufler
- [PATCH v12 13/25] LSM: Specify which LSM to display, Casey Schaufler
- [PATCH v12 15/25] LSM: Use lsmcontext in security_secid_to_secctx, Casey Schaufler
- [PATCH v12 14/25] LSM: Ensure the correct LSM context releaser, Casey Schaufler
- [PATCH v12 20/25] LSM: Verify LSM display sanity in binder, Casey Schaufler
- [PATCH v12 19/25] NET: Store LSM netlabel data in a lsmblob, Casey Schaufler
- [PATCH v12 17/25] LSM: Use lsmcontext in security_inode_getsecctx, Casey Schaufler
- [PATCH v12 16/25] LSM: Use lsmcontext in security_dentry_init_security, Casey Schaufler
- [PATCH v12 18/25] LSM: security_secid_to_secctx in netlink netfilter, Casey Schaufler
- <Possible follow-ups>
- [PATCH v12 00/25] LSM: Module stacking for AppArmor, Casey Schaufler
  - [PATCH v12 01/25] LSM: Infrastructure management of the sock security, Casey Schaufler
  - [PATCH v12 03/25] LSM: Use lsmblob in security_audit_rule_match, Casey Schaufler
  - [PATCH v12 02/25] LSM: Create and manage the lsmblob data structure., Casey Schaufler
  - [PATCH v12 05/25] net: Prepare UDS for security module stacking, Casey Schaufler
  - [PATCH v12 04/25] LSM: Use lsmblob in security_kernel_act_as, Casey Schaufler
  - [PATCH v12 07/25] LSM: Use lsmblob in security_secid_to_secctx, Casey Schaufler
  - [PATCH v12 06/25] LSM: Use lsmblob in security_secctx_to_secid, Casey Schaufler
  - [PATCH v12 08/25] LSM: Use lsmblob in security_ipc_getsecid, Casey Schaufler
  - [PATCH v12 10/25] LSM: Use lsmblob in security_inode_getsecid, Casey Schaufler
  - [PATCH v12 11/25] LSM: Use lsmblob in security_cred_getsecid, Casey Schaufler
  - [PATCH v12 09/25] LSM: Use lsmblob in security_task_getsecid, Casey Schaufler
  - [PATCH v12 12/25] IMA: Change internal interfaces to use lsmblobs, Casey Schaufler
  - [PATCH v12 13/25] LSM: Specify which LSM to display, Casey Schaufler
  - [PATCH v12 14/25] LSM: Ensure the correct LSM context releaser, Casey Schaufler
  - [PATCH v12 15/25] LSM: Use lsmcontext in security_secid_to_secctx, Casey Schaufler
- [PATCH v12 00/25] LSM: Module stacking for AppArmor, Casey Schaufler
  - [PATCH v12 02/25] LSM: Create and manage the lsmblob data structure., Casey Schaufler
    - Re: [PATCH v12 02/25] LSM: Create and manage the lsmblob data structure., Stephen Smalley
    - Re: [PATCH v12 02/25] LSM: Create and manage the lsmblob data structure., Mimi Zohar
      - Re: [PATCH v12 02/25] LSM: Create and manage the lsmblob data structure., Casey Schaufler
  - [PATCH v12 01/25] LSM: Infrastructure management of the sock security, Casey Schaufler
    - Re: [PATCH v12 01/25] LSM: Infrastructure management of the sock security, Stephen Smalley
  - [PATCH v12 03/25] LSM: Use lsmblob in security_audit_rule_match, Casey Schaufler
    - Re: [PATCH v12 03/25] LSM: Use lsmblob in security_audit_rule_match, Stephen Smalley
      - Re: [PATCH v12 03/25] LSM: Use lsmblob in security_audit_rule_match, Casey Schaufler
        
        Re: [PATCH v12 03/25] LSM: Use lsmblob in security_audit_rule_match, Kees Cook
        
        Re: [PATCH v12 03/25] LSM: Use lsmblob in security_audit_rule_match, Casey Schaufler
        
        Re: [PATCH v12 03/25] LSM: Use lsmblob in security_audit_rule_match, Stephen Smalley
  - [PATCH v12 04/25] LSM: Use lsmblob in security_kernel_act_as, Casey Schaufler
    - Re: [PATCH v12 04/25] LSM: Use lsmblob in security_kernel_act_as, Stephen Smalley
  - [PATCH v12 05/25] net: Prepare UDS for security module stacking, Casey Schaufler
    - Re: [PATCH v12 05/25] net: Prepare UDS for security module stacking, Stephen Smalley
  - [PATCH v12 07/25] LSM: Use lsmblob in security_secid_to_secctx, Casey Schaufler
    - Re: [PATCH v12 07/25] LSM: Use lsmblob in security_secid_to_secctx, Stephen Smalley
  - [PATCH v12 08/25] LSM: Use lsmblob in security_ipc_getsecid, Casey Schaufler
    - Re: [PATCH v12 08/25] LSM: Use lsmblob in security_ipc_getsecid, Stephen Smalley
  - [PATCH v12 06/25] LSM: Use lsmblob in security_secctx_to_secid, Casey Schaufler
    - Re: [PATCH v12 06/25] LSM: Use lsmblob in security_secctx_to_secid, Stephen Smalley
  - [PATCH v12 10/25] LSM: Use lsmblob in security_inode_getsecid, Casey Schaufler
    - Re: [PATCH v12 10/25] LSM: Use lsmblob in security_inode_getsecid, Stephen Smalley
  - [PATCH v12 09/25] LSM: Use lsmblob in security_task_getsecid, Casey Schaufler
    - Re: [PATCH v12 09/25] LSM: Use lsmblob in security_task_getsecid, Stephen Smalley
      - Re: [PATCH v12 09/25] LSM: Use lsmblob in security_task_getsecid, Casey Schaufler
  - [PATCH v12 11/25] LSM: Use lsmblob in security_cred_getsecid, Casey Schaufler
    - Re: [PATCH v12 11/25] LSM: Use lsmblob in security_cred_getsecid, Stephen Smalley
  - [PATCH v12 12/25] IMA: Change internal interfaces to use lsmblobs, Casey Schaufler
    - Re: [PATCH v12 12/25] IMA: Change internal interfaces to use lsmblobs, Stephen Smalley
  - [PATCH v12 13/25] LSM: Specify which LSM to display, Casey Schaufler
    - Re: [PATCH v12 13/25] LSM: Specify which LSM to display, Stephen Smalley
      - Re: [PATCH v12 13/25] LSM: Specify which LSM to display, Casey Schaufler
  - [PATCH v12 14/25] LSM: Ensure the correct LSM context releaser, Casey Schaufler
    - Re: [PATCH v12 14/25] LSM: Ensure the correct LSM context releaser, Stephen Smalley
  - [PATCH v12 17/25] LSM: Use lsmcontext in security_inode_getsecctx, Casey Schaufler
    - Re: [PATCH v12 17/25] LSM: Use lsmcontext in security_inode_getsecctx, Stephen Smalley
  - [PATCH v12 16/25] LSM: Use lsmcontext in security_dentry_init_security, Casey Schaufler
    - Re: [PATCH v12 16/25] LSM: Use lsmcontext in security_dentry_init_security, Stephen Smalley
  - [PATCH v12 15/25] LSM: Use lsmcontext in security_secid_to_secctx, Casey Schaufler
    - Re: [PATCH v12 15/25] LSM: Use lsmcontext in security_secid_to_secctx, Stephen Smalley
    - Re: [PATCH v12 15/25] LSM: Use lsmcontext in security_secid_to_secctx, Stephen Smalley
  - [PATCH v12 20/25] LSM: Verify LSM display sanity in binder, Casey Schaufler
    - Re: [PATCH v12 20/25] LSM: Verify LSM display sanity in binder, Stephen Smalley
  - [PATCH v12 18/25] LSM: security_secid_to_secctx in netlink netfilter, Casey Schaufler
    - Re: [PATCH v12 18/25] LSM: security_secid_to_secctx in netlink netfilter, Stephen Smalley
  - [PATCH v12 19/25] NET: Store LSM netlabel data in a lsmblob, Casey Schaufler
    - Re: [PATCH v12 19/25] NET: Store LSM netlabel data in a lsmblob, Stephen Smalley
  - [PATCH v12 22/25] Audit: Include object data for all security modules, Casey Schaufler
    - Re: [PATCH v12 22/25] Audit: Include object data for all security modules, Stephen Smalley
  - [PATCH v12 21/25] Audit: Add subj_LSM fields when necessary, Casey Schaufler
    - Re: [PATCH v12 21/25] Audit: Add subj_LSM fields when necessary, Stephen Smalley
  - [PATCH v12 23/25] NET: Add SO_PEERCONTEXT for multiple LSMs, Casey Schaufler
    - Re: [PATCH v12 23/25] NET: Add SO_PEERCONTEXT for multiple LSMs, Stephen Smalley
      - Re: [PATCH v12 23/25] NET: Add SO_PEERCONTEXT for multiple LSMs, Stephen Smalley
        
        Re: [PATCH v12 23/25] NET: Add SO_PEERCONTEXT for multiple LSMs, Stephen Smalley
        
        Re: [PATCH v12 23/25] NET: Add SO_PEERCONTEXT for multiple LSMs, Simon McVittie
        
        Re: [PATCH v12 23/25] NET: Add SO_PEERCONTEXT for multiple LSMs, Stephen Smalley
        
        Re: [PATCH v12 23/25] NET: Add SO_PEERCONTEXT for multiple LSMs, Stephen Smalley
        
        Re: [PATCH v12 23/25] NET: Add SO_PEERCONTEXT for multiple LSMs, Simon McVittie
        
        Re: [PATCH v12 23/25] NET: Add SO_PEERCONTEXT for multiple LSMs, Stephen Smalley
        
        Re: [PATCH v12 23/25] NET: Add SO_PEERCONTEXT for multiple LSMs, John Johansen
        
        Re: [PATCH v12 23/25] NET: Add SO_PEERCONTEXT for multiple LSMs, Casey Schaufler
        
        Re: [PATCH v12 23/25] NET: Add SO_PEERCONTEXT for multiple LSMs, John Johansen
        
        Re: [PATCH v12 23/25] NET: Add SO_PEERCONTEXT for multiple LSMs, John Johansen
  - [PATCH v12 24/25] LSM: Add /proc attr entry for full LSM context, Casey Schaufler
  - [PATCH v12 25/25] AppArmor: Remove the exclusive flag, Casey Schaufler
- [PATCH v12 00/25] LSM: Module stacking for AppArmor, Casey Schaufler
  - [PATCH v12 01/25] LSM: Infrastructure management of the sock security, Casey Schaufler
  - [PATCH v12 02/25] LSM: Create and manage the lsmblob data structure., Casey Schaufler
  - [PATCH v12 03/25] LSM: Use lsmblob in security_audit_rule_match, Casey Schaufler
    - Re: [PATCH v12 03/25] LSM: Use lsmblob in security_audit_rule_match, Mimi Zohar
      - Re: [PATCH v12 03/25] LSM: Use lsmblob in security_audit_rule_match, Casey Schaufler
  - [PATCH v12 04/25] LSM: Use lsmblob in security_kernel_act_as, Casey Schaufler
  - [PATCH v12 05/25] net: Prepare UDS for security module stacking, Casey Schaufler
  - [PATCH v12 06/25] LSM: Use lsmblob in security_secctx_to_secid, Casey Schaufler
  - [PATCH v12 07/25] LSM: Use lsmblob in security_secid_to_secctx, Casey Schaufler
  - [PATCH v12 08/25] LSM: Use lsmblob in security_ipc_getsecid, Casey Schaufler
  - [PATCH v12 09/25] LSM: Use lsmblob in security_task_getsecid, Casey Schaufler
  - [PATCH v12 10/25] LSM: Use lsmblob in security_inode_getsecid, Casey Schaufler
  - [PATCH v12 11/25] LSM: Use lsmblob in security_cred_getsecid, Casey Schaufler
  - [PATCH v12 13/25] LSM: Specify which LSM to display, Casey Schaufler
  - [PATCH v12 12/25] IMA: Change internal interfaces to use lsmblobs, Casey Schaufler
  - [PATCH v12 14/25] LSM: Ensure the correct LSM context releaser, Casey Schaufler
  - [PATCH v12 15/25] LSM: Use lsmcontext in security_secid_to_secctx, Casey Schaufler
  - [PATCH v12 16/25] LSM: Use lsmcontext in security_dentry_init_security, Casey Schaufler
  - [PATCH v12 17/25] LSM: Use lsmcontext in security_inode_getsecctx, Casey Schaufler
  - [PATCH v12 18/25] LSM: security_secid_to_secctx in netlink netfilter, Casey Schaufler
  - [PATCH v12 19/25] NET: Store LSM netlabel data in a lsmblob, Casey Schaufler
  - [PATCH v12 20/25] LSM: Verify LSM display sanity in binder, Casey Schaufler
  - [PATCH v12 21/25] Audit: Add subj_LSM fields when necessary, Casey Schaufler
  - [PATCH v12 22/25] Audit: Include object data for all security modules, Casey Schaufler
  - [PATCH v12 23/25] NET: Add SO_PEERCONTEXT for multiple LSMs, Casey Schaufler
  - [PATCH v12 25/25] AppArmor: Remove the exclusive flag, Casey Schaufler
  - [PATCH v12 24/25] LSM: Add /proc attr entry for full LSM context, Casey Schaufler
  - Re: [PATCH v12 00/25] LSM: Module stacking for AppArmor, Casey Schaufler
[PATCH v3 0/7] Introduce CAP_SYS_PERFMON to secure system performance monitoring and observability, Alexey Budankov
- [PATCH v3 1/7] capabilities: introduce CAP_SYS_PERFMON to kernel and user space, Alexey Budankov
  - Re: [PATCH v3 1/7] capabilities: introduce CAP_SYS_PERFMON to kernel and user space, Stephen Smalley
- [PATCH v3 2/7] perf/core: open access for CAP_SYS_PERFMON privileged process, Alexey Budankov
- [PATCH v3 3/7] perf tool: extend Perf tool with CAP_SYS_PERFMON capability support, Alexey Budankov
- [PATCH v3 4/7] drm/i915/perf: open access for CAP_SYS_PERFMON privileged process, Alexey Budankov
  - Re: [Intel-gfx] [PATCH v3 4/7] drm/i915/perf: open access for CAP_SYS_PERFMON privileged process, Lionel Landwerlin
    - Re: [Intel-gfx] [PATCH v3 4/7] drm/i915/perf: open access for CAP_SYS_PERFMON privileged process, Alexey Budankov
- [PATCH v3 5/7] trace/bpf_trace: open access for CAP_SYS_PERFMON privileged process, Alexey Budankov
- [PATCH v3 6/7] powerpc/perf: open access for CAP_SYS_PERFMON privileged process, Alexey Budankov
- [PATCH v3 7/7] parisc/perf: open access for CAP_SYS_PERFMON privileged process, Alexey Budankov
mcstrans doesn't translate for s0 level (thus, doesn't work in mcs policy), Denis Obrezkov
[PATCH] selinux: move pkey sid cache based retrieval under defconfig, Ravi Kumar Siddojigari
- Re: [PATCH] selinux: move pkey sid cache based retrieval under defconfig, Paul Moore
  - RE: [PATCH] selinux: move pkey sid cache based retrieval under defconfig, Ravi Kumar Siddojigari
[PATCH v2 0/7] Introduce CAP_SYS_PERFMON to secure system performance monitoring and observability, Alexey Budankov
- [PATCH v2 1/7] capabilities: introduce CAP_SYS_PERFMON to kernel and user space, Alexey Budankov
  - Re: [PATCH v2 1/7] capabilities: introduce CAP_SYS_PERFMON to kernel and user space, Stephen Smalley
- [PATCH v2 2/7] perf/core: open access for CAP_SYS_PERFMON privileged process, Alexey Budankov
  - RE: [PATCH v2 2/7] perf/core: open access for CAP_SYS_PERFMON privileged process, Lubashev, Igor
    - Re: [PATCH v2 2/7] perf/core: open access for CAP_SYS_PERFMON privileged process, Alexey Budankov
    - Re: [PATCH v2 2/7] perf/core: open access for CAP_SYS_PERFMON privileged process, Alexey Budankov
- [PATCH v2 3/7] perf tool: extend Perf tool with CAP_SYS_PERFMON capability support, Alexey Budankov
- [PATCH v2 4/7] drm/i915/perf: open access for CAP_SYS_PERFMON privileged process, Alexey Budankov
- [PATCH v2 5/7] trace/bpf_trace: open access for CAP_SYS_PERFMON privileged process, Alexey Budankov
- [PATCH v2 6/7] powerpc/perf: open access for CAP_SYS_PERFMON privileged process, Alexey Budankov
- [PATCH v2 7/7] parisc/perf: open access for CAP_SYS_PERFMON privileged process, Alexey Budankov
[RFC PATCH 0/1] selinux-testsuite: Add filesystem tests, Richard Haines
- [RFC PATCH 1/1] selinux-testsuite: Add filesystem tests, Richard Haines
  - Re: [RFC PATCH 1/1] selinux-testsuite: Add filesystem tests, Stephen Smalley
    - Re: [RFC PATCH 1/1] selinux-testsuite: Add filesystem tests, Stephen Smalley
      - Re: [RFC PATCH 1/1] selinux-testsuite: Add filesystem tests, Richard Haines
        
        Re: [RFC PATCH 1/1] selinux-testsuite: Add filesystem tests, Stephen Smalley
        
        Re: [RFC PATCH 1/1] selinux-testsuite: Add filesystem tests, Richard Haines
"watch" - Problem when using kernel >= 5.4, Alexander Wetzel
- Re: "watch" - Problem when using kernel >= 5.4, Dominick Grift
  - Re: "watch" - Problem when using kernel >= 5.4, Alexander Wetzel
[RFC PATCH] selinux: randomize layout of key structures, Stephen Smalley
- Re: [RFC PATCH] selinux: randomize layout of key structures, Dan Aloni
  - Re: [RFC PATCH] selinux: randomize layout of key structures, Stephen Smalley
    - Re: [RFC PATCH] selinux: randomize layout of key structures, Paul Moore
      - Re: [RFC PATCH] selinux: randomize layout of key structures, Stephen Smalley
        
        Re: [RFC PATCH] selinux: randomize layout of key structures, Paul Moore
- Re: [RFC PATCH] selinux: randomize layout of key structures, Kees Cook
  - Message not available
    - Re: [RFC PATCH] selinux: randomize layout of key structures, Kees Cook
      - Message not available
        
        Re: [RFC PATCH] selinux: randomize layout of key structures, Kees Cook
        
        Message not available
        
        Re: [RFC PATCH] selinux: randomize layout of key structures, Kees Cook
Does anyone use RANDSTRUCT?, Stephen Smalley
- Message not available
  - Re: Does anyone use RANDSTRUCT?, Stephen Smalley
- Re: Does anyone use RANDSTRUCT?, Kees Cook
  - Re: Does anyone use RANDSTRUCT?, Stephen Smalley
    - Re: Does anyone use RANDSTRUCT?, Dan Aloni
      - Re: Does anyone use RANDSTRUCT?, Connor Kuehl
[RFC PATCH] selinux: clean up selinux_enabled/disabled, Stephen Smalley
- Re: [RFC PATCH] selinux: clean up selinux_enabled/disabled, Stephen Smalley
  - Re: [RFC PATCH] selinux: clean up selinux_enabled/disabled, Paul Moore
[PATCH testsuite] selinux-testsuite: fix tun_tap checks, Ondrej Mosnacek
- Re: [PATCH testsuite] selinux-testsuite: fix tun_tap checks, Stephen Smalley
- Re: [PATCH testsuite] selinux-testsuite: fix tun_tap checks, Stephen Smalley
SELinux namespaces working branch rebased, Paul Moore
[PATCH] selinux: remove unnecessary selinux cred request, Shaokun Zhang
- Re: [PATCH] selinux: remove unnecessary selinux cred request, Paul Moore
- Re: [PATCH] selinux: remove unnecessary selinux cred request, Stephen Smalley
[PATCH] LSM: allow an LSM to disable all hooks at once, Ondrej Mosnacek
- Re: [PATCH] LSM: allow an LSM to disable all hooks at once, Ondrej Mosnacek
- Re: [PATCH] LSM: allow an LSM to disable all hooks at once, Stephen Smalley
  - Re: [PATCH] LSM: allow an LSM to disable all hooks at once, Kees Cook
    - Re: [PATCH] LSM: allow an LSM to disable all hooks at once, Casey Schaufler
      - Re: [PATCH] LSM: allow an LSM to disable all hooks at once, Stephen Smalley
        
        Re: [PATCH] LSM: allow an LSM to disable all hooks at once, Ondrej Mosnacek
        
        Re: [PATCH] LSM: allow an LSM to disable all hooks at once, Stephen Smalley
        
        Re: [PATCH] LSM: allow an LSM to disable all hooks at once, Ondrej Mosnacek
        
        Re: [PATCH] LSM: allow an LSM to disable all hooks at once, Casey Schaufler
        
        Re: [PATCH] LSM: allow an LSM to disable all hooks at once, Stephen Smalley
        
        Re: [PATCH] LSM: allow an LSM to disable all hooks at once, Paul Moore
        
        Re: [PATCH] LSM: allow an LSM to disable all hooks at once, Stephen Smalley
        
        Re: [PATCH] LSM: allow an LSM to disable all hooks at once, Paul Moore
        
        Re: [PATCH] LSM: allow an LSM to disable all hooks at once, Stephen Smalley
        
        Re: [PATCH] LSM: allow an LSM to disable all hooks at once, Paul Moore
        
        Re: [PATCH] LSM: allow an LSM to disable all hooks at once, Stephen Smalley
        
        Re: [PATCH] LSM: allow an LSM to disable all hooks at once, Paul Moore
        
        Re: [PATCH] LSM: allow an LSM to disable all hooks at once, Ondrej Mosnacek
        
        Re: [PATCH] LSM: allow an LSM to disable all hooks at once, Paul Moore
        
        Re: [PATCH] LSM: allow an LSM to disable all hooks at once, James Morris
        
        Re: [PATCH] LSM: allow an LSM to disable all hooks at once, Ondrej Mosnacek
        
        Re: [PATCH] LSM: allow an LSM to disable all hooks at once, Casey Schaufler
  - Re: [PATCH] LSM: allow an LSM to disable all hooks at once, Ondrej Mosnacek
- Re: [PATCH] LSM: allow an LSM to disable all hooks at once, Tetsuo Handa
  - Re: [PATCH] LSM: allow an LSM to disable all hooks at once, Ondrej Mosnacek
    - Re: [PATCH] LSM: allow an LSM to disable all hooks at once, James Morris
      - Re: [PATCH] LSM: allow an LSM to disable all hooks at once, Tetsuo Handa
[PATCH v2] mcstrans: start early and stop late, Dominick Grift
- Re: [PATCH v2] mcstrans: start early and stop late, Dominick Grift
  - Re: [PATCH v2] mcstrans: start early and stop late, Stephen Smalley
    - Re: [PATCH v2] mcstrans: start early and stop late, Dominick Grift
      - Re: [PATCH v2] mcstrans: start early and stop late, Dominick Grift
      - Re: [PATCH v2] mcstrans: start early and stop late, Stephen Smalley
        
        Re: [PATCH v2] mcstrans: start early and stop late, Dominick Grift
- Re: [PATCH v2] mcstrans: start early and stop late, Petr Lautrbach
- Re: [PATCH v2] mcstrans: start early and stop late, Petr Lautrbach
[PATCH] mcstrans: start early and stop late, Dominick Grift
[PATCH 2/8] afs: Fix SELinux setting security label on /afs, David Howells
[PATCH] security: only build lsm_audit if CONFIG_SECURITY=y, Stephen Smalley
- Re: [PATCH] security: only build lsm_audit if CONFIG_SECURITY=y, Paul Moore
  - Re: [PATCH] security: only build lsm_audit if CONFIG_SECURITY=y, James Morris
[PATCH v4] selinux-testsuite: add lockdown tests, Stephen Smalley
- Re: [PATCH v4] selinux-testsuite: add lockdown tests, Stephen Smalley
- Re: [PATCH v4] selinux-testsuite: add lockdown tests, Stephen Smalley
  - Re: [PATCH v4] selinux-testsuite: add lockdown tests, Paul Moore
    - Re: [PATCH v4] selinux-testsuite: add lockdown tests, Stephen Smalley
[pcmoore-selinux:next 3/6] lsm_audit.c:undefined reference to `lockdown_reasons', kbuild test robot
[RFC PATCH] security: add an interface to lookup the lockdown reason, Paul Moore
- Re: [RFC PATCH] security: add an interface to lookup the lockdown reason, James Morris
- Re: [RFC PATCH] security: add an interface to lookup the lockdown reason, Stephen Smalley
  - Re: [RFC PATCH] security: add an interface to lookup the lockdown reason, Paul Moore
    - Re: [RFC PATCH] security: add an interface to lookup the lockdown reason, Stephen Smalley
      - Re: [RFC PATCH] security: add an interface to lookup the lockdown reason, Paul Moore
        
        Re: [RFC PATCH] security: add an interface to lookup the lockdown reason, Stephen Smalley
        
        Re: [RFC PATCH] security: add an interface to lookup the lockdown reason, Paul Moore
[RFC PATCH] selinux: ensure we cleanup the internal AVC counters on error in avc_insert(), Paul Moore
- Re: [RFC PATCH] selinux: ensure we cleanup the internal AVC counters on error in avc_insert(), Paul Moore
- Re: [RFC PATCH] selinux: ensure we cleanup the internal AVC counters on error in avc_insert(), Stephen Smalley
  - Re: [RFC PATCH] selinux: ensure we cleanup the internal AVC counters on error in avc_insert(), Paul Moore
    - Re: [RFC PATCH] selinux: ensure we cleanup the internal AVC counters on error in avc_insert(), Stephen Smalley
      - Re: [RFC PATCH] selinux: ensure we cleanup the internal AVC counters on error in avc_insert(), Paul Moore
Re: Looks like issue in handling active_nodes count in 4.19 kernel ., Stephen Smalley
- RE: Looks like issue in handling active_nodes count in 4.19 kernel ., rsiddoji
  - Re: Looks like issue in handling active_nodes count in 4.19 kernel ., Stephen Smalley
    - Re: Looks like issue in handling active_nodes count in 4.19 kernel ., Stephen Smalley
      - RE: Looks like issue in handling active_nodes count in 4.19 kernel ., rsiddoji
      - Message not available
        
        Re: Looks like issue in handling active_nodes count in 4.19 kernel ., Stephen Smalley
        
        RE: Looks like issue in handling active_nodes count in 4.19 kernel ., Ravi Kumar Siddojigari
        
        Re: Looks like issue in handling active_nodes count in 4.19 kernel ., Stephen Smalley
        
        Re: Looks like issue in handling active_nodes count in 4.19 kernel ., Stephen Smalley
        
        RE: Looks like issue in handling active_nodes count in 4.19 kernel ., Ravi Kumar Siddojigari
        
        Re: Looks like issue in handling active_nodes count in 4.19 kernel ., Stephen Smalley
        
        Re: Looks like issue in handling active_nodes count in 4.19 kernel ., Paul Moore
        
        RE: Looks like issue in handling active_nodes count in 4.19 kernel ., Ravi Kumar Siddojigari
        
        Re: Looks like issue in handling active_nodes count in 4.19 kernel ., Stephen Smalley
        
        Re: Looks like issue in handling active_nodes count in 4.19 kernel ., Paul Moore
        
        Re: Looks like issue in handling active_nodes count in 4.19 kernel, Ravi Kumar Siddojigari
        
        Re: Looks like issue in handling active_nodes count in 4.19 kernel, Paul Moore
[PATCH 2/4] afs: Fix SELinux setting security label on /afs, David Howells
Looks like issue in handling active_nodes count in 4.19 kernel ., rsiddoji
[PATCH] selinux: reorder hooks to make runtime disable less broken, Ondrej Mosnacek
- Re: [PATCH] selinux: reorder hooks to make runtime disable less broken, Ondrej Mosnacek
- Re: [PATCH] selinux: reorder hooks to make runtime disable less broken, Stephen Smalley
  - Re: [PATCH] selinux: reorder hooks to make runtime disable less broken, Stephen Smalley
    - Re: [PATCH] selinux: reorder hooks to make runtime disable less broken, Casey Schaufler
      - Re: [PATCH] selinux: reorder hooks to make runtime disable less broken, Ondrej Mosnacek
        
        Re: [PATCH] selinux: reorder hooks to make runtime disable less broken, Casey Schaufler
  - Re: [PATCH] selinux: reorder hooks to make runtime disable less broken, Casey Schaufler
    - Message not available
      - Re: [PATCH] selinux: reorder hooks to make runtime disable less broken, Casey Schaufler
  - Re: [PATCH] selinux: reorder hooks to make runtime disable less broken, Ondrej Mosnacek
    - Re: [PATCH] selinux: reorder hooks to make runtime disable less broken, Paul Moore
      - Re: [PATCH] selinux: reorder hooks to make runtime disable less broken, Casey Schaufler
        
        Re: [PATCH] selinux: reorder hooks to make runtime disable less broken, Stephen Smalley
        
        Re: [PATCH] selinux: reorder hooks to make runtime disable less broken, Casey Schaufler
[V4 PATCH 1/1] selinux-testsuite: Add perf_event tests, Richard Haines
- Re: [V4 PATCH 1/1] selinux-testsuite: Add perf_event tests, Stephen Smalley
  - Re: [V4 PATCH 1/1] selinux-testsuite: Add perf_event tests, Stephen Smalley
[PATCH] python/semanage: check variable type of port before trying to split, Joshua Schmidlkofer
- Re: [PATCH] python/semanage: check variable type of port before trying to split, Stephen Smalley
  - Re: [PATCH] python/semanage: check variable type of port before trying to split, Stephen Smalley
[PATCH v1 0/3] Introduce CAP_SYS_PERFMON capability for secure Perf users groups, Alexey Budankov
- <Possible follow-ups>
- [PATCH v1 0/3] Introduce CAP_SYS_PERFMON capability for secure Perf users groups, Alexey Budankov
  - [PATCH v1 1/3] capabilities: introduce CAP_SYS_PERFMON to kernel and user space, Alexey Budankov
  - [PATCH v1 2/3] perf/core: apply CAP_SYS_PERFMON to CPUs and kernel monitoring, Alexey Budankov
  - [PATCH v1 3/3] perf tool: extend Perf tool with CAP_SYS_PERFMON support, Alexey Budankov
  - Re: [PATCH v1 0/3] Introduce CAP_SYS_PERFMON capability for secure Perf users groups, Casey Schaufler
    - Re: [PATCH v1 0/3] Introduce CAP_SYS_PERFMON capability for secure Perf users groups, Alexey Budankov
      - Re: [PATCH v1 0/3] Introduce CAP_SYS_PERFMON capability for secure Perf users groups, Casey Schaufler
        
        Re: [PATCH v1 0/3] Introduce CAP_SYS_PERFMON capability for secure Perf users groups, Andi Kleen
        
        Re: [PATCH v1 0/3] Introduce CAP_SYS_PERFMON capability for secure Perf users groups, Alexey Budankov
        
        Re: [PATCH v1 0/3] Introduce CAP_SYS_PERFMON capability for secure Perf users groups, Alexey Budankov
        
        Re: [PATCH v1 0/3] Introduce CAP_SYS_PERFMON capability for secure Perf users groups, Peter Zijlstra
        
        Re: [PATCH v1 0/3] Introduce CAP_SYS_PERFMON capability for secure Perf users groups, Alexey Budankov
        
        Re: [PATCH v1 0/3] Introduce CAP_SYS_PERFMON capability for secure Perf users groups, Casey Schaufler
        
        Re: [PATCH v1 0/3] Introduce CAP_SYS_PERFMON capability for secure Perf users groups, Andi Kleen
        
        Re: [PATCH v1 0/3] Introduce CAP_SYS_PERFMON capability for secure Perf users groups, Casey Schaufler
        
        Re: [PATCH v1 0/3] Introduce CAP_SYS_PERFMON capability for secure Perf users groups, Stephen Smalley
        
        Re: [PATCH v1 0/3] Introduce CAP_SYS_PERFMON capability for secure Perf users groups, Alexey Budankov
        
        Re: [PATCH v1 0/3] Introduce CAP_SYS_PERFMON capability for secure Perf users groups, Stephane Eranian
perf and cap_syslog, Dominick Grift
- Re: perf and cap_syslog, Stephen Smalley
[V3 PATCH 1/1] selinux-testsuite: Add perf_event tests, Richard Haines
- Re: [V3 PATCH 1/1] selinux-testsuite: Add perf_event tests, Stephen Smalley
[GitHub] An email address was added to your account., GitHub
[PATCH V2] selinux_testsuite: Add socketpair test, Richard Haines
- Re: [PATCH V2] selinux_testsuite: Add socketpair test, Stephen Smalley
- Re: [PATCH V2] selinux_testsuite: Add socketpair test, Stephen Smalley
[PATCH] selinux_testsuite: Add socketpair test, Richard Haines
- Re: [PATCH] selinux_testsuite: Add socketpair test, Stephen Smalley
[V2 PATCH 1/1] selinux-testsuite: Add perf_event tests, Richard Haines
- Re: [V2 PATCH 1/1] selinux-testsuite: Add perf_event tests, Stephen Smalley
ANN: SELinux userspace release 2019-12-04 / 3.0, Petr Lautrbach
[PATCH] selinux-testsuite: Add TUN/TAP driver tests, Richard Haines
- Re: [PATCH] selinux-testsuite: Add TUN/TAP driver tests, Stephen Smalley
- Re: [PATCH] selinux-testsuite: Add TUN/TAP driver tests, Stephen Smalley
[PATCH 0/1] selinux-testsuite: Add perf_event tests, Richard Haines
- [PATCH 1/1] selinux-testsuite: Add perf_event tests, Richard Haines
  - Re: [PATCH 1/1] selinux-testsuite: Add perf_event tests, Stephen Smalley
    - Re: [PATCH 1/1] selinux-testsuite: Add perf_event tests, Richard Haines
[PATCH testsuite v6] policy: use the kernel_request_load_module() interface, Ondrej Mosnacek
- Re: [PATCH testsuite v6] policy: use the kernel_request_load_module() interface, Stephen Smalley
  - Re: [PATCH testsuite v6] policy: use the kernel_request_load_module() interface, Stephen Smalley
[RFC PATCH v3] selinux-testsuite: add lockdown tests, Stephen Smalley
[RFC PATCH v2] selinux-testsuite: add lockdown tests, Stephen Smalley
- Re: [RFC PATCH v2] selinux-testsuite: add lockdown tests, Stephen Smalley
[RFC PATCH v2] security,lockdown,selinux: implement SELinux lockdown, Stephen Smalley
- Re: [RFC PATCH v2] security,lockdown,selinux: implement SELinux lockdown, James Morris
- Re: [RFC PATCH v2] security,lockdown,selinux: implement SELinux lockdown, Paul Moore
[PATCH testsuite] travis: improve selinuxfs mocking, Ondrej Mosnacek
- Re: [PATCH testsuite] travis: improve selinuxfs mocking, Stephen Smalley
- Re: [PATCH testsuite] travis: improve selinuxfs mocking, Stephen Smalley
[PATCH testsuite v5] policy: use the kernel_request_load_module() interface, Ondrej Mosnacek
- Re: [PATCH testsuite v5] policy: use the kernel_request_load_module() interface, Richard Haines
- Re: [PATCH testsuite v5] policy: use the kernel_request_load_module() interface, Stephen Smalley
  - Re: [PATCH testsuite v5] policy: use the kernel_request_load_module() interface, Ondrej Mosnacek
[RFC PATCH] selinux-testsuite: Add TUN/TAP driver tests, Richard Haines
- Re: [RFC PATCH] selinux-testsuite: Add TUN/TAP driver tests, Stephen Smalley
  - Re: [RFC PATCH] selinux-testsuite: Add TUN/TAP driver tests, Richard Haines
    - Re: [RFC PATCH] selinux-testsuite: Add TUN/TAP driver tests, Stephen Smalley
[GIT PULL] SELinux patches for v5.5, Paul Moore
- Re: [GIT PULL] SELinux patches for v5.5, pr-tracker-bot
- Re: [GIT PULL] SELinux patches for v5.5, Mimi Zohar
  - Re: [GIT PULL] SELinux patches for v5.5, Paul Moore
    - Re: [GIT PULL] SELinux patches for v5.5, Mimi Zohar
      - Re: [GIT PULL] SELinux patches for v5.5, Paul Moore
        
        RE: [GIT PULL] SELinux patches for v5.5, Roberto Sassu
[PATCH testsuite v4] policy: use the kernel_request_load_module() interface, Ondrej Mosnacek
- Re: [PATCH testsuite v4] policy: use the kernel_request_load_module() interface, Stephen Smalley
[PATCH v5] selinux: cache the SID -> context string translation, Ondrej Mosnacek
- Re: [PATCH v5] selinux: cache the SID -> context string translation, Stephen Smalley
  - Re: [PATCH v5] selinux: cache the SID -> context string translation, Paul Moore
    - Re: [PATCH v5] selinux: cache the SID -> context string translation, Paul Moore
- Re: [PATCH v5] selinux: cache the SID -> context string translation, Paul E. McKenney
[PATCH testsuite v3] policy: use the kernel_request_load_module() interface, Ondrej Mosnacek
- Re: [PATCH testsuite v3] policy: use the kernel_request_load_module() interface, Stephen Smalley
- Re: [PATCH testsuite v3] policy: use the kernel_request_load_module() interface, Richard Haines
  - Re: [PATCH testsuite v3] policy: use the kernel_request_load_module() interface, Stephen Smalley
    - Re: [PATCH testsuite v3] policy: use the kernel_request_load_module() interface, Richard Haines
    - Re: [PATCH testsuite v3] policy: use the kernel_request_load_module() interface, Ondrej Mosnacek
      - Re: [PATCH testsuite v3] policy: use the kernel_request_load_module() interface, Richard Haines
        
        Re: [PATCH testsuite v3] policy: use the kernel_request_load_module() interface, Ondrej Mosnacek
general protection fault in selinux_socket_sendmsg (2), syzbot
- Re: general protection fault in selinux_socket_sendmsg (2), Tetsuo Handa
[PATCH testsuite v2] policy: check for module_request support for key_socket, Ondrej Mosnacek
[PATCH testsuite] policy: check for module_request support for key_socket, Ondrej Mosnacek
- Re: [PATCH testsuite] policy: check for module_request support for key_socket, Stephen Smalley
  - Re: [PATCH testsuite] policy: check for module_request support for key_socket, Ondrej Mosnacek
[RFC 0/3] Second phase of UserPrefix to UserRBACSEPRole transition, Dominick Grift
- [RFC 1/3] libsemanage: fall back to valid "object_r" role instead of "user" prefix string, Dominick Grift
- [RFC 2/3] semanage: do not default prefix to "user", Dominick Grift
- [RFC 3/3] cil: qualify roles from symtable when resolving userprefix, Dominick Grift
- Re: [RFC 0/3] Second phase of UserPrefix to UserRBACSEPRole transition, Stephen Smalley
  - Re: [RFC 0/3] Second phase of UserPrefix to UserRBACSEPRole transition, Dominick Grift
  - Re: [RFC 0/3] Second phase of UserPrefix to UserRBACSEPRole transition, Dominick Grift
    - Re: [RFC 0/3] Second phase of UserPrefix to UserRBACSEPRole transition, Stephen Smalley
      - Re: [RFC 0/3] Second phase of UserPrefix to UserRBACSEPRole transition, Dominick Grift
        
        Re: [RFC 0/3] Second phase of UserPrefix to UserRBACSEPRole transition, Stephen Smalley
        
        Re: [RFC 0/3] Second phase of UserPrefix to UserRBACSEPRole transition, Dominick Grift
[PATCH] selinux: clean up selinux_inode_permission MAY_NOT_BLOCK tests, Stephen Smalley
- Re: [PATCH] selinux: clean up selinux_inode_permission MAY_NOT_BLOCK tests, Paul Moore
[PATCH 1/2] selinux: revert "stop passing MAY_NOT_BLOCK to the AVC upon follow_link", Stephen Smalley
- [PATCH 2/2] selinux: fall back to ref-walk if audit is required, Stephen Smalley
  - Re: [PATCH 2/2] selinux: fall back to ref-walk if audit is required, Paul Moore
- Re: [PATCH 1/2] selinux: revert "stop passing MAY_NOT_BLOCK to the AVC upon follow_link", Paul Moore
[PATCH V5] selinux-testsuite: Add kernel module tests, Richard Haines
- Re: [PATCH V5] selinux-testsuite: Add kernel module tests, Ondrej Mosnacek
- Re: [PATCH V5] selinux-testsuite: Add kernel module tests, Ondrej Mosnacek
ANN: SELinux userspace 3.0-rc2 release candidate, Petr Lautrbach
[PATCH v9] selinux: sidtab: reverse lookup hash table, Jeff Vander Stoep
- Re: [PATCH v9] selinux: sidtab: reverse lookup hash table, Stephen Smalley
- Re: [PATCH v9] selinux: sidtab: reverse lookup hash table, Paul Moore
  - Re: [PATCH v9] selinux: sidtab: reverse lookup hash table, Ondrej Mosnacek
    - Re: [PATCH v9] selinux: sidtab: reverse lookup hash table, Stephen Smalley
    - Re: [PATCH v9] selinux: sidtab: reverse lookup hash table, Paul Moore
      - Re: [PATCH v9] selinux: sidtab: reverse lookup hash table, Ondrej Mosnacek
        
        Re: [PATCH v9] selinux: sidtab: reverse lookup hash table, Paul Moore
        
        Re: [PATCH v9] selinux: sidtab: reverse lookup hash table, Paul Moore
        
        Re: [PATCH v9] selinux: sidtab: reverse lookup hash table, Stephen Smalley
        
        Re: [PATCH v9] selinux: sidtab: reverse lookup hash table, Paul Moore
        
        Re: [PATCH v9] selinux: sidtab: reverse lookup hash table, Paul Moore
        
        Re: [PATCH v9] selinux: sidtab: reverse lookup hash table, Stephen Smalley
        
        Re: [PATCH v9] selinux: sidtab: reverse lookup hash table, Paul Moore
  - Re: [PATCH v9] selinux: sidtab: reverse lookup hash table, Paul Moore
[PATCH] Fix: check variable type of port before trying to split, Joshua Schmidlkofer
- Re: [PATCH] Fix: check variable type of port before trying to split, Stephen Smalley
[RFC PATCH 1/2] selinux: revert "stop passing MAY_NOT_BLOCK to the AVC upon follow_link", Stephen Smalley
- [RFC PATCH 2/2] selinux: fall back to ref-walk upon LSM_AUDIT_DATA_DENTRY too, Stephen Smalley
  - Re: [RFC PATCH 2/2] selinux: fall back to ref-walk upon LSM_AUDIT_DATA_DENTRY too, Paul Moore
    - Re: [RFC PATCH 2/2] selinux: fall back to ref-walk upon LSM_AUDIT_DATA_DENTRY too, Paul Moore
      - Re: [RFC PATCH 2/2] selinux: fall back to ref-walk upon LSM_AUDIT_DATA_DENTRY too, Stephen Smalley
        
        Re: [RFC PATCH 2/2] selinux: fall back to ref-walk upon LSM_AUDIT_DATA_DENTRY too, Stephen Smalley
        
        Re: [RFC PATCH 2/2] selinux: fall back to ref-walk upon LSM_AUDIT_DATA_DENTRY too, Paul Moore
        
        Re: [RFC PATCH 2/2] selinux: fall back to ref-walk upon LSM_AUDIT_DATA_DENTRY too, Stephen Smalley
        
        Re: [RFC PATCH 2/2] selinux: fall back to ref-walk upon LSM_AUDIT_DATA_DENTRY too, Stephen Smalley
  - Re: [RFC PATCH 2/2] selinux: fall back to ref-walk upon LSM_AUDIT_DATA_DENTRY too, Al Viro
    - Re: [RFC PATCH 2/2] selinux: fall back to ref-walk upon LSM_AUDIT_DATA_DENTRY too, Stephen Smalley
      - Re: [RFC PATCH 2/2] selinux: fall back to ref-walk upon LSM_AUDIT_DATA_DENTRY too, Will Deacon
[PATCH v8] selinux: sidtab: reverse lookup hash table, Jeff Vander Stoep
- Re: [PATCH v8] selinux: sidtab: reverse lookup hash table, Stephen Smalley
RFC: https://github.com/SELinuxProject/selinux/issues/140#issuecomment-556049712, Dominick Grift
- Re: RFC: https://github.com/SELinuxProject/selinux/issues/140#issuecomment-556049712, Dominick Grift
[RFC PATCH 0/2] Avoid blocking in selinux inode callbacks on RCU walk, Will Deacon
- [RFC PATCH 1/2] selinux: Don't call avc_compute_av() from RCU path walk, Will Deacon
  - Re: [RFC PATCH 1/2] selinux: Don't call avc_compute_av() from RCU path walk, Stephen Smalley
    - Re: [RFC PATCH 1/2] selinux: Don't call avc_compute_av() from RCU path walk, Will Deacon
      - Re: [RFC PATCH 1/2] selinux: Don't call avc_compute_av() from RCU path walk, Stephen Smalley
        
        Re: [RFC PATCH 1/2] selinux: Don't call avc_compute_av() from RCU path walk, Paul E. McKenney
        
        Re: [RFC PATCH 1/2] selinux: Don't call avc_compute_av() from RCU path walk, Will Deacon
- [RFC PATCH 2/2] selinux: Propagate RCU walk status from 'security_inode_follow_link()', Will Deacon
  - Re: [RFC PATCH 2/2] selinux: Propagate RCU walk status from 'security_inode_follow_link()', Stephen Smalley
    - Re: [RFC PATCH 2/2] selinux: Propagate RCU walk status from 'security_inode_follow_link()', Will Deacon
      - Re: [RFC PATCH 2/2] selinux: Propagate RCU walk status from 'security_inode_follow_link()', Stephen Smalley
[PATCH V4] selinux-testsuite: Add kernel module tests, Richard Haines
- Re: [PATCH V4] selinux-testsuite: Add kernel module tests, Ondrej Mosnacek
  - Re: [PATCH V4] selinux-testsuite: Add kernel module tests, Ondrej Mosnacek
    - Re: [PATCH V4] selinux-testsuite: Add kernel module tests, Stephen Smalley
      - Re: [PATCH V4] selinux-testsuite: Add kernel module tests, Paul Moore
        
        Re: [PATCH V4] selinux-testsuite: Add kernel module tests, Richard Haines
- Re: [PATCH V4] selinux-testsuite: Add kernel module tests, Stephen Smalley
  - Re: [PATCH V4] selinux-testsuite: Add kernel module tests, Stephen Smalley
[PATCH] Travis-CI: Drop Python 2 from matrix, Petr Lautrbach
- Re: [PATCH] Travis-CI: Drop Python 2 from matrix, Stephen Smalley
  - Re: [PATCH] Travis-CI: Drop Python 2 from matrix, Stephen Smalley
[PATCH V3] selinux-testsuite: Add kernel module tests, Richard Haines
- Re: [PATCH V3] selinux-testsuite: Add kernel module tests, Stephen Smalley
[PATCH testsuite v4 0/3] Fix refpolicy build & build test_policy.pp in Travis, Ondrej Mosnacek
- [PATCH testsuite v4 2/3] policy: add fallbacks for Fedora-specific macros, Ondrej Mosnacek
- [PATCH testsuite v4 1/3] policy: drop the unneeded userdom_search_generic_user_home_dirs(), Ondrej Mosnacek
- [PATCH testsuite v4 3/3] travis: test building the test policy package, Ondrej Mosnacek
  - Re: [PATCH testsuite v4 3/3] travis: test building the test policy package, Stephen Smalley
  - Re: [PATCH testsuite v4 3/3] travis: test building the test policy package, Stephen Smalley
[PATCH testsuite v3 0/3] Fix refpolicy build & build test_policy.pp in Travis, Ondrej Mosnacek
- [PATCH testsuite v3 2/3] policy: add fallbacks for Fedora-specific macros, Ondrej Mosnacek
  - Re: [PATCH testsuite v3 2/3] policy: add fallbacks for Fedora-specific macros, Stephen Smalley
    - Re: [PATCH testsuite v3 2/3] policy: add fallbacks for Fedora-specific macros, Ondrej Mosnacek
- [PATCH testsuite v3 1/3] policy: drop the unneeded userdom_search_generic_user_home_dirs(), Ondrej Mosnacek
- [PATCH testsuite v3 3/3] travis: test building the test policy package, Ondrej Mosnacek
[PATCH v7] selinux: sidtab: reverse lookup hash table, Jeff Vander Stoep
- Re: [PATCH v7] selinux: sidtab: reverse lookup hash table, Stephen Smalley
  - Re: [PATCH v7] selinux: sidtab: reverse lookup hash table, Jeffrey Vander Stoep
- Re: [PATCH v7] selinux: sidtab: reverse lookup hash table, Stephen Smalley
  - Re: [PATCH v7] selinux: sidtab: reverse lookup hash table, Stephen Smalley
    - Re: [PATCH v7] selinux: sidtab: reverse lookup hash table, Stephen Smalley
[PATCH testsuite v2 0/3] Fix refpolicy build & build test_policy.pp in Travis, Ondrej Mosnacek
- [PATCH testsuite v2 1/3] policy: consolidate macros for home dirs access, Ondrej Mosnacek
- [PATCH testsuite v2 2/3] policy: add fallbacks for Fedora-specific macros, Ondrej Mosnacek
- [PATCH testsuite v2 3/3] travis: test building the test policy package, Ondrej Mosnacek
- Re: [PATCH testsuite v2 0/3] Fix refpolicy build & build test_policy.pp in Travis, Ondrej Mosnacek
- Re: [PATCH testsuite v2 0/3] Fix refpolicy build & build test_policy.pp in Travis, Stephen Smalley
  - Re: [PATCH testsuite v2 0/3] Fix refpolicy build & build test_policy.pp in Travis, Ondrej Mosnacek
[PATCH] dbus: Fix FileNotFoundError in org.selinux.relabel_on_boot, Petr Lautrbach
- Re: [PATCH] dbus: Fix FileNotFoundError in org.selinux.relabel_on_boot, Stephen Smalley
  - Re: [PATCH] dbus: Fix FileNotFoundError in org.selinux.relabel_on_boot, Nicolas Iooss
    - Re: [PATCH] dbus: Fix FileNotFoundError in org.selinux.relabel_on_boot, Petr Lautrbach
- Re: [Non-DoD Source] [PATCH] dbus: Fix FileNotFoundError in org.selinux.relabel_on_boot, Stephen Smalley
- Re: [PATCH] dbus: Fix FileNotFoundError in org.selinux.relabel_on_boot, Stephen Smalley
[PATCH V2] selinux-testsuite: Add kernel module tests, Richard Haines
- Re: [PATCH V2] selinux-testsuite: Add kernel module tests, Ondrej Mosnacek
  - Re: [PATCH V2] selinux-testsuite: Add kernel module tests, Stephen Smalley
    - Re: [PATCH V2] selinux-testsuite: Add kernel module tests, Ondrej Mosnacek
[PATCH V3] selinux-testsuite: Add key_socket tests, Richard Haines
- Re: [PATCH V3] selinux-testsuite: Add key_socket tests, Stephen Smalley
[PATCH v11 00/25] LSM: Module stacking for AppArmor, Casey Schaufler
- [PATCH v11 02/25] LSM: Create and manage the lsmblob data structure., Casey Schaufler
- [PATCH v11 01/25] LSM: Infrastructure management of the sock security, Casey Schaufler

[Index of Archives] [Selinux Refpolicy] [Fedora Users] [Fedora Desktop] [Kernel] [KDE Users] [Gnome Users]

Powered by Linux