Security Enhanced Linux (SELINUX)

Date Index

[Prev Page][Next Page]

[PATCH 0/2] show checkreqprot status in sestatus, Christian Göttsche
- [PATCH 1/2] libselinux: add security_checkreqprot, Christian Göttsche
  - Re: [PATCH 1/2] libselinux: add security_checkreqprot, Stephen Smalley
- [PATCH 2/2] sestatus: show checkreqprot status, Christian Göttsche
  - Re: [PATCH 2/2] sestatus: show checkreqprot status, Stephen Smalley
- Re: [PATCH 0/2] show checkreqprot status in sestatus, Christian Göttsche
[PATCH 0/2 v2] libsepol and checkpolicy: Add ability to expand some attributes in binary policy, James Carter
- [PATCH 1/2 v2] libsepol/cil: Add ability to expand some attributes in binary policy, James Carter
- [PATCH 2/2 v2] secilc: Add options to control the expansion of attributes, James Carter
- Re: [PATCH 0/2 v2] libsepol and checkpolicy: Add ability to expand some attributes in binary policy, James Carter
[PATCH 2/2] sestatus: show checkreqprot status, Christian Göttsche
[PATCH 1/2] libselinux: add security_checkreqprot, Christian Göttsche
- Re: [PATCH 1/2] libselinux: add security_checkreqprot, Nick Kralevich
  - Re: [PATCH 1/2] libselinux: add security_checkreqprot, Stephen Smalley
- Re: [PATCH 1/2] libselinux: add security_checkreqprot, Stephen Smalley
[PATCH] selinux: add selinux_is_enforced() function, Sebastien Buisson
- Re: [PATCH] selinux: add selinux_is_enforced() function, Paul Moore
  - Re: [PATCH] selinux: add selinux_is_enforced() function, Sebastien Buisson
    - Re: [PATCH] selinux: add selinux_is_enforced() function, Stephen Smalley
      - Re: [PATCH] selinux: add selinux_is_enforced() function, Sebastien Buisson
        
        Re: [PATCH] selinux: add selinux_is_enforced() function, Stephen Smalley
        
        Re: [PATCH] selinux: add selinux_is_enforced() function, Casey Schaufler
  - Re: [PATCH] selinux: add selinux_is_enforced() function, Sebastien Buisson
    - Re: [PATCH] selinux: add selinux_is_enforced() function, Stephen Smalley
      - Re: [PATCH] selinux: add selinux_is_enforced() function, Sebastien Buisson
        
        Re: [PATCH] selinux: add selinux_is_enforced() function, Stephen Smalley
        
        Re: [PATCH] selinux: add selinux_is_enforced() function, Sebastien Buisson
        
        Re: [PATCH] selinux: add selinux_is_enforced() function, Stephen Smalley
- Re: [PATCH] selinux: add selinux_is_enforced() function, Stephen Smalley
[PATCH] selinux: add selinux_status_get_seq() function, Sebastien Buisson
- Re: [PATCH] selinux: add selinux_status_get_seq() function, Paul Moore
- Re: [PATCH] selinux: add selinux_status_get_seq() function, Stephen Smalley
[PATCH 1/6] libsemanage: make semanage_..._destroy return void, Nicolas Iooss
- [PATCH 2/6] libsepol: cil: check cil_fill_list return value, Nicolas Iooss
- [PATCH 4/6] libselinux: getsebool: always free names, Nicolas Iooss
- [PATCH 3/6] libselinux: avoid calling strcmp() on a NULL pointer, Nicolas Iooss
- [PATCH 5/6] policycoreutils: newrole: do not free pw strings twice, Nicolas Iooss
- [PATCH 6/6] policycoreutils: newrole: always initialize pw fields, Nicolas Iooss
  - Re: [PATCH 6/6] policycoreutils: newrole: always initialize pw fields, Stephen Smalley
- Re: [PATCH 1/6] libsemanage: make semanage_..._destroy return void, Stephen Smalley
[PATCH v2] libsemanage: Save linked policy, skip re-link when possible, Stephen Smalley
[PATCH 0/2] libsepol and checkpolicy: Add ability to expand some attributes in binary policy, James Carter
- [PATCH 1/2] libsepol/cil: Add ability to expand some attributes in binary policy, James Carter
  - Re: [PATCH 1/2] libsepol/cil: Add ability to expand some attributes in binary policy, Dominick Grift
    - Re: [PATCH 1/2] libsepol/cil: Add ability to expand some attributes in binary policy, Dominick Grift
      - Re: [PATCH 1/2] libsepol/cil: Add ability to expand some attributes in binary policy, James Carter
        
        Re: [PATCH 1/2] libsepol/cil: Add ability to expand some attributes in binary policy, Dominick Grift
        
        Re: [PATCH 1/2] libsepol/cil: Add ability to expand some attributes in binary policy, Dominick Grift
    - Re: [PATCH 1/2] libsepol/cil: Add ability to expand some attributes in binary policy, James Carter
  - Re: [PATCH 1/2] libsepol/cil: Add ability to expand some attributes in binary policy, Jeffrey Vander Stoep
- [PATCH 2/2] secilc: Add options to control the expansion of attributes, James Carter
  - Re: [PATCH 2/2] secilc: Add options to control the expansion of attributes, Nicolas Iooss
    - Re: [PATCH 2/2] secilc: Add options to control the expansion of attributes, James Carter
- Re: [PATCH 0/2] libsepol and checkpolicy: Add ability to expand some attributes in binary policy, James Carter
  - Re: [PATCH 0/2] libsepol and checkpolicy: Add ability to expand some attributes in binary policy, Jeffrey Vander Stoep
    - Re: [PATCH 0/2] libsepol and checkpolicy: Add ability to expand some attributes in binary policy, Dominick Grift
- Re: [PATCH 0/2] libsepol and checkpolicy: Add ability to expand some attributes in binary policy, Dominick Grift
  - Re: [PATCH 0/2] libsepol and checkpolicy: Add ability to expand some attributes in binary policy, James Carter
    - Re: [PATCH 0/2] libsepol and checkpolicy: Add ability to expand some attributes in binary policy, James Carter
      - Re: [PATCH 0/2] libsepol and checkpolicy: Add ability to expand some attributes in binary policy, Dominick Grift
    - Re: [PATCH 0/2] libsepol and checkpolicy: Add ability to expand some attributes in binary policy, Dominick Grift
      - Re: [PATCH 0/2] libsepol and checkpolicy: Add ability to expand some attributes in binary policy, James Carter
        
        Re: [PATCH 0/2] libsepol and checkpolicy: Add ability to expand some attributes in binary policy, Dominick Grift
        
        Re: [PATCH 0/2] libsepol and checkpolicy: Add ability to expand some attributes in binary policy, James Carter
        
        Re: [PATCH 0/2] libsepol and checkpolicy: Add ability to expand some attributes in binary policy, Dominick Grift
[PATCH] libsemanage: Save linked policy, skip re-link when possible, Stephen Smalley
refpolicy flask generator script, Christian Göttsche
- Re: refpolicy flask generator script, Stephen Smalley
[PATCH 1/3] libsepol: do not free attr_name twice, Nicolas Iooss
- [PATCH 2/3] libsepol: do not leak memory when an error occurs, Nicolas Iooss
- [PATCH 3/3] libsepol: correct spelling errors in module_to_cil.c comments, Nicolas Iooss
  - Re: [PATCH 3/3] libsepol: correct spelling errors in module_to_cil.c comments, Stephen Smalley
[PATCH 1/2] libsepol: do not seg fault on sepol_*_key_free(NULL), Stephen Smalley
- [PATCH 2/2] libsemanage: revert "Skip policy module re-link when only setting booleans.", Stephen Smalley
[PATCH 1/6] libselinux: do not dereference a NULL pointer when calloc() fails, Nicolas Iooss
- [PATCH 5/6] libsepol: refuse to load policies with no block, Nicolas Iooss
- [PATCH 4/6] libselinux: ensure that 4 columns are read from /proc/mounts, Nicolas Iooss
- [PATCH 2/6] libsemanage: drop checks on semanage_module_info_destroy() value, Nicolas Iooss
  - Re: [PATCH 2/6] libsemanage: drop checks on semanage_module_info_destroy() value, Stephen Smalley
- [PATCH 3/6] libselinux: make process_boolean() fail on invalid lines, Nicolas Iooss
  - Re: [PATCH 3/6] libselinux: make process_boolean() fail on invalid lines, Stephen Smalley
- [PATCH 6/6] libsepol: do not wrap integers when checking bound, Nicolas Iooss
  - Re: [PATCH 6/6] libsepol: do not wrap integers when checking bound, Stephen Smalley
MLS directory label inheritance rules, Nick Kralevich
- Re: MLS directory label inheritance rules, William Roberts
- Re: MLS directory label inheritance rules, Dominick Grift
- Re: MLS directory label inheritance rules, Stephen Smalley
  - Re: MLS directory label inheritance rules, Stephen Smalley
    - Re: MLS directory label inheritance rules, Dennis Sherrell
      - Re: MLS directory label inheritance rules, Joshua Brindle
      - Re: MLS directory label inheritance rules, William Roberts
      - Re: MLS directory label inheritance rules, Casey Schaufler
add CONFIG_SECURITY_SELINUX_LOAD_ONCE, Nick Kralevich
- RE: add CONFIG_SECURITY_SELINUX_LOAD_ONCE, Roberts, William C
  - Re: add CONFIG_SECURITY_SELINUX_LOAD_ONCE, Nick Kralevich
- Re: add CONFIG_SECURITY_SELINUX_LOAD_ONCE, Tom Jones
  - Re: add CONFIG_SECURITY_SELINUX_LOAD_ONCE, William Roberts
    - Re: add CONFIG_SECURITY_SELINUX_LOAD_ONCE, Tom Jones
      - Re: add CONFIG_SECURITY_SELINUX_LOAD_ONCE, William Roberts
        
        RE: add CONFIG_SECURITY_SELINUX_LOAD_ONCE, thomasclinganjones
        
        RE: add CONFIG_SECURITY_SELINUX_LOAD_ONCE, William Roberts
- Re: add CONFIG_SECURITY_SELINUX_LOAD_ONCE, Paul Moore
[PATCH] policycoreutils/load_policy: Drop is_selinux_enabled() check, Luis Ressel
- Re: [PATCH] policycoreutils/load_policy: Drop is_selinux_enabled() check, Stephen Smalley
Setting booleans causes duplicate ports in semanage listings, Carlos Rodrigues
newrole: pam_systemd fails after dbus message rejection, cgzones
- Re: newrole: pam_systemd fails after dbus message rejection, Stephen Smalley
security_bounded_transition, cgzones
- Re: security_bounded_transition, Stephen Smalley
  - Re: security_bounded_transition, Dominick Grift
    - Re: security_bounded_transition, Christian Göttsche via Selinux
      - Re: security_bounded_transition, Stephen Smalley
Confining a Java process reading file, Rahmadi Trimananda
- Re: Confining a Java process reading file, Stephen Smalley
  - Re: Confining a Java process reading file, Rahmadi Trimananda
    - Re: Confining a Java process reading file, Stephen Smalley
      - Re: Confining a Java process reading file, Rahmadi Trimananda
        
        Re: Confining a Java process reading file, Stephen Smalley
        
        Re: Confining a Java process reading file, Stephen Smalley
        
        Re: Confining a Java process reading file, Rahmadi Trimananda
        
        Re: Confining a Java process reading file, Rahmadi Trimananda
        
        Re: Confining a Java process reading file, Rahmadi Trimananda
        
        Re: Confining a Java process reading file, Stephen Smalley
        
        Re: Confining a Java process reading file, Rahmadi Trimananda
Running Java and JVM on SELinux, Rahmadi Trimananda
- Re: Running Java and JVM on SELinux, William Roberts
  - Re: Running Java and JVM on SELinux, Rahmadi Trimananda
    - Re: Running Java and JVM on SELinux, William Roberts
      - Re: Running Java and JVM on SELinux, Rahmadi Trimananda
        
        Re: Running Java and JVM on SELinux, Rahmadi Trimananda
        
        Re: Running Java and JVM on SELinux, Russell Coker
        
        Re: Running Java and JVM on SELinux, Rahmadi Trimananda
        
        Re: Running Java and JVM on SELinux, William Roberts
        
        Re: Running Java and JVM on SELinux, Russell Coker
        
        Re: Running Java and JVM on SELinux, Rahmadi Trimananda
        
        Re: Running Java and JVM on SELinux, Rahmadi Trimananda
        
        Re: Running Java and JVM on SELinux, Russell Coker
        
        Re: Running Java and JVM on SELinux, William Roberts
        
        Re: Running Java and JVM on SELinux, William Roberts
    - Re: Running Java and JVM on SELinux, Stephen Smalley
      - Re: Running Java and JVM on SELinux, Rahmadi Trimananda
ssh/cron access checks and my Play Machine, Russell Coker
- Re: ssh/cron access checks and my Play Machine, Dominick Grift
  - Re: ssh/cron access checks and my Play Machine, Russell Coker
- Re: ssh/cron access checks and my Play Machine, Stephen Smalley
[PATCH] selinux: Fix an uninitialized variable bug, Dan Carpenter
- Re: [PATCH] selinux: Fix an uninitialized variable bug, Stephen Smalley
  - Re: [PATCH] selinux: Fix an uninitialized variable bug, Paul Moore
    - Re: selinux: Fix an uninitialized variable bug in range_read(), SF Markus Elfring
      - Re: selinux: Fix an uninitialized variable bug in range_read(), Paul Moore
    - Re: [PATCH] selinux: Fix an uninitialized variable bug, James Morris
      - Re: [PATCH] selinux: Fix an uninitialized variable bug, Paul Moore
        
        Re: [PATCH] selinux: Fix an uninitialized variable bug, James Morris
userspace object manager confused, Dominick Grift
- Re: userspace object manager confused, Stephen Smalley
  - Re: userspace object manager confused, Stephen Smalley
    - Re: userspace object manager confused, Dominick Grift
      - Re: userspace object manager confused, Stephen Smalley
        
        Re: userspace object manager confused, Dominick Grift
        
        Re: userspace object manager confused, Stephen Smalley
        
        Re: userspace object manager confused, James Carter
        
        Re: userspace object manager confused, Dominick Grift
        
        Re: userspace object manager confused, James Carter
        
        Re: userspace object manager confused, Dominick Grift
        
        Re: userspace object manager confused, James Carter
        
        Re: userspace object manager confused, Dominick Grift
        
        Re: userspace object manager confused, Dominick Grift
label for /proc directory (before mounting), Colin Walters
- Re: label for /proc directory (before mounting), Russell Coker
- Re: label for /proc directory (before mounting), Stephen Smalley
  - Re: label for /proc directory (before mounting), Dominick Grift
  - Re: label for /proc directory (before mounting), Colin Walters
[PATCH v2] libsepol: In module_to_cil create one attribute for each unique set, James Carter
- Re: [PATCH v2] libsepol: In module_to_cil create one attribute for each unique set, Nick Kralevich
  - Re: [PATCH v2] libsepol: In module_to_cil create one attribute for each unique set, James Carter
- Re: [PATCH v2] libsepol: In module_to_cil create one attribute for each unique set, James Carter
[PATCH] selinux: Fix SBLABEL_MNT for NFS mounts, Tomeu Vizoso
- Re: [PATCH] selinux: Fix SBLABEL_MNT for NFS mounts, J. Bruce Fields
  - Re: [PATCH] selinux: Fix SBLABEL_MNT for NFS mounts, Tomeu Vizoso
    - Re: [PATCH] selinux: Fix SBLABEL_MNT for NFS mounts, Stephen Smalley
      - Re: [PATCH] selinux: Fix SBLABEL_MNT for NFS mounts, J. Bruce Fields
        
        Re: [PATCH] selinux: Fix SBLABEL_MNT for NFS mounts, Stephen Smalley
        
        Re: [PATCH] selinux: Fix SBLABEL_MNT for NFS mounts, J. Bruce Fields
        
        [PATCH RFC 0/2] Fix setting of security labels over NFSv4.2, Scott Mayhew
        
        [PATCH RFC 2/2] nfs: update labeling behavior on a superblock when submounting, Scott Mayhew
        
        Re: [PATCH RFC 2/2] nfs: update labeling behavior on a superblock when submounting, Stephen Smalley
        
        Re: [PATCH RFC 2/2] nfs: update labeling behavior on a superblock when submounting, Scott Mayhew
        
        Re: [PATCH RFC 2/2] nfs: update labeling behavior on a superblock when submounting, Stephen Smalley
        
        [PATCH] security/selinux: allow security_sb_clone_mnt_opts to enable/disable native labeling behavior, Scott Mayhew
        
        Re: [PATCH] security/selinux: allow security_sb_clone_mnt_opts to enable/disable native labeling behavior, Scott Mayhew
        
        Re: [PATCH] security/selinux: allow security_sb_clone_mnt_opts to enable/disable native labeling behavior, Stephen Smalley
        
        Re: [PATCH] security/selinux: allow security_sb_clone_mnt_opts to enable/disable native labeling behavior, Stephen Smalley
        
        Re: [PATCH] security/selinux: allow security_sb_clone_mnt_opts to enable/disable native labeling behavior, Scott Mayhew
        
        Re: [PATCH] security/selinux: allow security_sb_clone_mnt_opts to enable/disable native labeling behavior, Stephen Smalley
        
        Re: [PATCH] security/selinux: allow security_sb_clone_mnt_opts to enable/disable native labeling behavior, Scott Mayhew
        
        [PATCH v2] security/selinux: allow security_sb_clone_mnt_opts to enable/disable native labeling behavior, Scott Mayhew
        
        Re: [PATCH v2] security/selinux: allow security_sb_clone_mnt_opts to enable/disable native labeling behavior, Stephen Smalley
        
        Re: [PATCH v2] security/selinux: allow security_sb_clone_mnt_opts to enable/disable native labeling behavior, Scott Mayhew
        
        [PATCH v3] security/selinux: allow security_sb_clone_mnt_opts to enable/disable native labeling behavior, Scott Mayhew
        
        Re: [PATCH v3] security/selinux: allow security_sb_clone_mnt_opts to enable/disable native labeling behavior, Scott Mayhew
        
        Re: [PATCH v3] security/selinux: allow security_sb_clone_mnt_opts to enable/disable native labeling behavior, Stephen Smalley
        
        Re: [PATCH v3] security/selinux: allow security_sb_clone_mnt_opts to enable/disable native labeling behavior, Paul Moore
        
        Re: [PATCH v3] security/selinux: allow security_sb_clone_mnt_opts to enable/disable native labeling behavior, J . Bruce Fields
        
        Re: [PATCH v3] security/selinux: allow security_sb_clone_mnt_opts to enable/disable native labeling behavior, Paul Moore
        
        Re: [PATCH RFC 2/2] nfs: update labeling behavior on a superblock when submounting, Stephen Smalley
        
        Re: [PATCH RFC 2/2] nfs: update labeling behavior on a superblock when submounting, J . Bruce Fields
        
        Re: [PATCH RFC 2/2] nfs: update labeling behavior on a superblock when submounting, Stephen Smalley
        
        [PATCH RFC 1/2] selinux: allow SECURITY_LSM_NATIVE_LABELS to be set on an already initialized superblock, Scott Mayhew
        
        Re: [PATCH RFC 0/2] Fix setting of security labels over NFSv4.2, Stephen Smalley
        
        Re: [PATCH RFC 0/2] Fix setting of security labels over NFSv4.2, J . Bruce Fields
        
        Re: [PATCH RFC 0/2] Fix setting of security labels over NFSv4.2, J . Bruce Fields
        
        Re: [PATCH RFC 0/2] Fix setting of security labels over NFSv4.2, Scott Mayhew
[PATCH 1/7] libsepol: do not dereference a NULL pointer when stack_init() fails, Nicolas Iooss
- [PATCH 2/7] libsepol: make process_boolean() fail on invalid lines, Nicolas Iooss
- [PATCH 3/7] libsepol: constify sepol_genbools()'s boolpath parameter, Nicolas Iooss
- [PATCH 4/7] libsepol: fix use-after-free in sepol_user_clone(), Nicolas Iooss
- [PATCH 5/7] libsemanage: do not close uninitialized file descriptors, Nicolas Iooss
- [PATCH 6/7] libsemanage: do not dereference a NULL pointer when calloc() fails, Nicolas Iooss
- [PATCH 7/7] libsemanage: genhomedircon: fix possible double-free, Nicolas Iooss
- Re: [PATCH 1/7] libsepol: do not dereference a NULL pointer when stack_init() fails, James Carter
[PATCH] libsepol: In module_to_cil create one attribute for each unique set, James Carter
- Re: [PATCH] libsepol: In module_to_cil create one attribute for each unique set, Nicolas Iooss
  - Re: [PATCH] libsepol: In module_to_cil create one attribute for each unique set, James Carter
[PATCH] selinux: Use task_alloc hook rather than task_create hook, Tetsuo Handa
- Re: [PATCH] selinux: Use task_alloc hook rather than task_create hook, Stephen Smalley
  - Re: [PATCH] selinux: Use task_alloc hook rather than task_create hook, Tetsuo Handa
    - Re: [PATCH] selinux: Use task_alloc hook rather than task_create hook, Paul Moore
      - Re: [PATCH] selinux: Use task_alloc hook rather than task_create hook, Tetsuo Handa
        
        Re: [PATCH] selinux: Use task_alloc hook rather than task_create hook, Paul Moore
        
        Re: [PATCH] selinux: Use task_alloc hook rather than task_create hook, Paul Moore
FOSSASIA 2017 SELinux intro talk, Jason Zaman
[PATCH 1/3] policycoreutils/setfiles: stdout messages don't need program prefix, Alan Jenkins
- [PATCH 3/3] policycoreutils: fixfiles: remove useless use of cat, Alan Jenkins
- [PATCH 2/3] policycoreutils/setfiles: don't scramble stdout and stderr together, Alan Jenkins
- Re: [PATCH 1/3] policycoreutils/setfiles: stdout messages don't need program prefix, James Carter
[PATCH 1/2] policycoreutils: fixfiles should handle path arguments more robustly, Alan Jenkins
- [PATCH 2/2] policycoreutils: fixfiles: handle unexpected spaces in command, Alan Jenkins
- Re: [PATCH 1/2] policycoreutils: fixfiles should handle path arguments more robustly, James Carter
[PATCH 1/1] libsepol/cil: do not dereference a NULL pointer when calloc() fails, Nicolas Iooss
- Re: [PATCH 1/1] libsepol/cil: do not dereference a NULL pointer when calloc() fails, James Carter
[PATCH] mcstrans: fix typo in mcstransd.8 man page, Nikola Forró
- Re: [PATCH] mcstrans: fix typo in mcstransd.8 man page, James Carter
[PATCH] selinux: fix double free in selinux_parse_opts_str(), Tetsuo Handa
- Re: [PATCH] selinux: fix double free in selinux_parse_opts_str(), Paul Moore
  - Re: [PATCH] selinux: fix double free in selinux_parse_opts_str(), Tetsuo Handa
    - Re: [PATCH] selinux: fix double free in selinux_parse_opts_str(), Casey Schaufler
    - Re: [PATCH] selinux: fix double free in selinux_parse_opts_str(), Paul Moore
      - Re: [PATCH] selinux: fix double free in selinux_parse_opts_str(), Tetsuo Handa
[ANNOUNCE] Linux Security Summit 2017 - CFP, James Morris
[PATCH 0/3 v3] libsepol and checkpolicy: Output CIL or policy.conf from kernel policy, James Carter
- [PATCH 3/3 v3] checkpolicy: Add options to convert binary policy to CIL or a policy.conf, James Carter
- [PATCH 2/3 v3] libsepol: Add ability to convert binary policy to policy.conf file, James Carter
- [PATCH 1/3 v3] libsepol: Add ability to convert binary policy to CIL, James Carter
- Re: [PATCH 0/3 v3] libsepol and checkpolicy: Output CIL or policy.conf from kernel policy, James Carter
security, hugetlbfs: write to user memory in hugetlbfs_destroy_inode, Dmitry Vyukov
- Re: security, hugetlbfs: write to user memory in hugetlbfs_destroy_inode, Dmitry Vyukov
  - Re: security, hugetlbfs: write to user memory in hugetlbfs_destroy_inode, Tetsuo Handa
    - Re: security, hugetlbfs: write to user memory in hugetlbfs_destroy_inode, Mike Kravetz
security: double-free in superblock_doinit, Dmitry Vyukov
- Re: security: double-free in superblock_doinit, Tetsuo Handa
[PATCH] libsepol/cil: Add hexadecimal support for Xen ioportcon statements, James Carter
- Re: [PATCH] libsepol/cil: Add hexadecimal support for Xen ioportcon statements, James Carter
net_admin audit for setsockopt SO_SNDBUFFORCE, cgzones
- Re: net_admin audit for setsockopt SO_SNDBUFFORCE, Stephen Smalley
  - Re: net_admin audit for setsockopt SO_SNDBUFFORCE, Russell Coker
    - Re: net_admin audit for setsockopt SO_SNDBUFFORCE, Stephen Smalley
      - Re: net_admin audit for setsockopt SO_SNDBUFFORCE, Russell Coker
[PATCH 0/3 v2] libsepol and checkpolicy: Output CIL or policy.conf from kernel policy, James Carter
- [PATCH 3/3 v2] checkpolicy: Add options to convert binary policy to CIL or a policy.conf, James Carter
- [PATCH 1/3 v2] libsepol: Add ability to convert binary policy to CIL, James Carter
- [PATCH 2/3 v2] libsepol: Add ability to convert binary policy to policy.conf file, James Carter
- Re: [PATCH 0/3 v2] libsepol and checkpolicy: Output CIL or policy.conf from kernel policy, Nicolas Iooss
  - Re: [PATCH 0/3 v2] libsepol and checkpolicy: Output CIL or policy.conf from kernel policy, James Carter
[PATCH 0/3] libsepol: Allow hexadecimal numbers in Xen context rules, James Carter
- [PATCH 1/3] libsepol/cil: Allow hexadecimal numbers in Xen context rules, James Carter
- [PATCH 2/3] libsepol: Update module_to_cil to output hexadecimal for Xen rules, James Carter
- [PATCH 3/3] libsepol/cil: Use hexadecimal numbers when writing Xen rules, James Carter
- Re: [PATCH 0/3] libsepol: Allow hexadecimal numbers in Xen context rules, James Carter
[PATCH] checkpolicy: Fix minor memory leak in checkpolicy, James Carter
- Re: [PATCH] checkpolicy: Fix minor memory leak in checkpolicy, James Carter
[PATCH 1/1] checkpolicy: dereference rangehead after checking it was not NULL, Nicolas Iooss
- Re: [PATCH 1/1] checkpolicy: dereference rangehead after checking it was not NULL, James Carter
[PATCH 1/1] libsepol/cil: avoid freeing uninitialized values, Nicolas Iooss
- Re: [PATCH 1/1] libsepol/cil: avoid freeing uninitialized values, James Carter
[PATCH 1/1] libsepol/cil: make reporting conflicting type transitions work, Nicolas Iooss
- Re: [PATCH 1/1] libsepol/cil: make reporting conflicting type transitions work, James Carter
[PATCH] selinux: Remove unnecessary check of array base in selinux_set_mapping(), Matthias Kaehlcke
- Re: [PATCH] selinux: Remove unnecessary check of array base in selinux_set_mapping(), Grant Grundler
  - Re: [PATCH] selinux: Remove unnecessary check of array base in selinux_set_mapping(), Paul Moore
    - Re: [PATCH] selinux: Remove unnecessary check of array base in selinux_set_mapping(), Grant Grundler
      - Re: [PATCH] selinux: Remove unnecessary check of array base in selinux_set_mapping(), Paul Moore
- Re: [PATCH] selinux: Remove unnecessary check of array base in selinux_set_mapping(), Grant Grundler
newrole as su'ed root, cgzones
- Re: newrole as su'ed root, Stephen Smalley
  - Re: newrole as su'ed root, cgzones
portcon in policy modules, Ian Pilcher
- Re: portcon in policy modules, Dominick Grift
  - Re: portcon in policy modules, Stephen Smalley
[PATCH] python/semanage: fix export of fcontext socket entries, Stephen Smalley
tomcat_t domain behavior, 面和毅
- Re: tomcat_t domain behavior, Gary Tierney
  - Re: tomcat_t domain behavior, Lukas Vrabec
    - Re: tomcat_t domain behavior, 面和毅
      - Re: tomcat_t domain behavior, 面和毅
        
        Re: tomcat_t domain behavior, 面和毅
Re: Bug#857660: SELinux: cannot sent policyload notice, cgzones
- Re: Bug#857660: SELinux: cannot sent policyload notice, Stephen Smalley
- Re: Bug#857660: SELinux: cannot sent policyload notice, Stephen Smalley
  - Re: Bug#857660: SELinux: cannot sent policyload notice, Simon McVittie
[PATCH 0/3] libsepol and checkpolicy: Output CIL or policy.conf from kernel policy, James Carter
- [PATCH 3/3] checkpolicy: Add options to convert binary policy to CIL or a policy.conf, James Carter
  - Re: [PATCH 3/3] checkpolicy: Add options to convert binary policy to CIL or a policy.conf, Stephen Smalley
    - Re: [PATCH 3/3] checkpolicy: Add options to convert binary policy to CIL or a policy.conf, James Carter
- [PATCH 2/3] libsepol: Add ability to convert binary policy to policy.conf file, James Carter
- [PATCH 1/3] libsepol: Add ability to convert binary policy to CIL, James Carter
  - Re: [PATCH 1/3] libsepol: Add ability to convert binary policy to CIL, Nicolas Iooss
- Re: [PATCH 0/3] libsepol and checkpolicy: Output CIL or policy.conf from kernel policy, Nicolas Iooss
  - Re: [PATCH 0/3] libsepol and checkpolicy: Output CIL or policy.conf from kernel policy, James Carter
[PATCH] Python 3.6 invalid escape sequence deprecation fixes, Ville Skyttä
- Re: [PATCH] Python 3.6 invalid escape sequence deprecation fixes, Petr Lautrbach
  - Re: [PATCH] Python 3.6 invalid escape sequence deprecation fixes, Stephen Smalley
Custom Process Label (SElinux), Kashif ali
- Re: Custom Process Label (SElinux), Thomas
- Re: Custom Process Label (SElinux), Russell Coker
  - Re: Custom Process Label (SElinux), Kashif ali
    - Re: Custom Process Label (SElinux), Kashif ali
      - Re: Custom Process Label (SElinux), cgzones
[PATCH v2] selinux: check for address length in selinux_socket_bind(), Alexander Potapenko
- Re: [PATCH v2] selinux: check for address length in selinux_socket_bind(), Eric Dumazet
- Re: [PATCH v2] selinux: check for address length in selinux_socket_bind(), David Miller
  - Re: [PATCH v2] selinux: check for address length in selinux_socket_bind(), Paul Moore
    - Re: [PATCH v2] selinux: check for address length in selinux_socket_bind(), Paul Moore
Fwd: Kernel repository updated to v4.11-rc1, Paul Moore
[PATCH 1/6] restorecond: add noreturn attribute to exitApp(), Nicolas Iooss
- [PATCH 2/6] checkpolicy: add noreturn attribute to usage(), Nicolas Iooss
- [PATCH 3/6] secilc: add noreturn attribute to usage(), Nicolas Iooss
- [PATCH 4/6] mcstrans: add noreturn attribute to usage(), Nicolas Iooss
- [PATCH 5/6] semodule-utils: add noreturn attribute to usage(), Nicolas Iooss
- [PATCH 6/6] policycoreutils: add noreturn attribute to usage(), Nicolas Iooss
- Re: [PATCH 1/6] restorecond: add noreturn attribute to exitApp(), James Carter
[PATCH 1/1] selinux: include sys/socket.h in host programs to have PF_MAX, Nicolas Iooss
- Re: [PATCH 1/1] selinux: include sys/socket.h in host programs to have PF_MAX, Paul Moore
[PATCH] selinux: check for address length in selinux_socket_bind(), Alexander Potapenko
- Re: [PATCH] selinux: check for address length in selinux_socket_bind(), Alexander Potapenko
- Re: [PATCH] selinux: check for address length in selinux_socket_bind(), Eric Dumazet
[PATCH] python/sepolicy: fix obtaining domain name in HTMLManPages, Vit Mojzis
- Re: [PATCH] python/sepolicy: fix obtaining domain name in HTMLManPages, Stephen Smalley
[PATCH] selinux-testsuite: capable_file: Add dac_override and dac_read_search tests, Stephen Smalley
seapply - alternative to semanage for configuration management, Doug Brown
- Re: seapply - alternative to semanage for configuration management, Stephen Smalley
Securing a service written in Python, Ian Pilcher
- Re: Securing a service written in Python, Russell Coker
SELinux type transition rule not working, Ian Pilcher
- Re: SELinux type transition rule not working, cgzones
  - Re: SELinux type transition rule not working, Ian Pilcher
    - Re: SELinux type transition rule not working, Ian Pilcher
      - Re: SELinux type transition rule not working, Jason Zaman
        
        Re: SELinux type transition rule not working, Ian Pilcher
        
        Re: SELinux type transition rule not working, Stephen Smalley
- Re: SELinux type transition rule not working, Russell Coker
- Re: [systemd-devel] SELinux type transition rule not working, Lennart Poettering
  - Re: [systemd-devel] SELinux type transition rule not working, Simon Sekidde
    - Re: [systemd-devel] SELinux type transition rule not working, Ian Pilcher
      - Re: [systemd-devel] SELinux type transition rule not working, Simon Sekidde
        
        Re: [systemd-devel] SELinux type transition rule not working, Simon Sekidde
        
        Re: [systemd-devel] SELinux type transition rule not working, Ian Pilcher
        
        Re: [systemd-devel] SELinux type transition rule not working, Simon Sekidde
        
        Re: [systemd-devel] SELinux type transition rule not working, Ian Pilcher
[GIT PULL] SELinux fixes for 4.11 (#1), Paul Moore
[PATCH] libsepol: Define cgroup_seclabel policy capability, Stephen Smalley
[PATCH] selinux: wrap cgroup seclabel support with its own policy capability, Stephen Smalley
- Re: [PATCH] selinux: wrap cgroup seclabel support with its own policy capability, Paul Moore
selinux transition rules, RM-IT R.Mielnik
- Message not available
  - Message not available
    - Message not available
      - Message not available
        
        Re: selinux transition rules, RM-IT R.Mielnik
[PATCH] selinux: fix kernel BUG on prlimit(..., NULL, NULL), Stephen Smalley
- Re: [PATCH] selinux: fix kernel BUG on prlimit(..., NULL, NULL), Paul Moore
  - Re: [PATCH] selinux: fix kernel BUG on prlimit(..., NULL, NULL), James Morris
- Re: [PATCH] selinux: fix kernel BUG on prlimit(..., NULL, NULL), James Morris
[PATCH 1/6] semodule_package: do not leak memory when using -u or -s, Nicolas Iooss
- [PATCH 2/6] libsepol/cil: do not dereference args before checking it was not null, Nicolas Iooss
- [PATCH 3/6] libsemanage: never call memcpy with a NULL value, Nicolas Iooss
  - Re: [PATCH 3/6] libsemanage: never call memcpy with a NULL value, William Roberts
    - Re: [PATCH 3/6] libsemanage: never call memcpy with a NULL value, William Roberts
- [PATCH 4/6] libsemanage/tests: include libsepol headers from $DESTDIR, Nicolas Iooss
- [PATCH 5/6] mcstrans: do not dereference color_str if it is NULL, Nicolas Iooss
- [PATCH 6/6] libselinux: initialize temp value in SWIG wrapper to prevent freeing garbage, Nicolas Iooss
- Re: [PATCH 1/6] semodule_package: do not leak memory when using -u or -s, James Carter
strange audit2allow error, Russell Coker
Support for multiple types in typeattribute, Alex Klyubin
- Re: Support for multiple types in typeattribute, Dominick Grift
  - Re: Support for multiple types in typeattribute, James Carter
[RFC v2 PATCH 2/2] kernel: Add SELinux SCTP protocol support, Richard Haines
- Re: [RFC v2 PATCH 2/2] kernel: Add SELinux SCTP protocol support, Stephen Smalley
  - Re: [RFC v2 PATCH 2/2] kernel: Add SELinux SCTP protocol support, Marcelo Ricardo Leitner
    - Re: [RFC v2 PATCH 2/2] kernel: Add SELinux SCTP protocol support, Richard Haines
  - Re: [RFC v2 PATCH 2/2] kernel: Add SELinux SCTP protocol support, Richard Haines
[RFC v2 PATCH 1/2] kernel: Add LSM hooks for SCTP support, Richard Haines
[RFC v2 PATCH 0/2] kernel: Add SELinux SCTP protocol support, Richard Haines
[PATCH] libselinux: allow link with -lfts, Natanael Copa
- Re: [PATCH] libselinux: allow link with -lfts, William Roberts
[PATCH] sepolgen: strip non-printable characters when parsing audit messages, Vit Mojzis
- Re: [PATCH] sepolgen: strip non-printable characters when parsing audit messages, James Carter
[RFC 4/7] selinux: mark __ro_mostly_after_init for selinux_hooks/selinux_nf_ops, Hoeun Ryu
- Re: [RFC 4/7] selinux: mark __ro_mostly_after_init for selinux_hooks/selinux_nf_ops, Tetsuo Handa
[PATCH 1/1] libselinux, libsemanage: make PYPREFIX computation more robust, Nicolas Iooss
- Re: [PATCH 1/1] libselinux, libsemanage: make PYPREFIX computation more robust, James Carter
[PATCH 1/5] libsepol/cil: use __cil_ordered_lists_destroy() to free unordered_classorder_lists, Nicolas Iooss
- [PATCH 4/5] libsepol/cil: do not leak left-hand side of an invalid constraint, Nicolas Iooss
- [PATCH 3/5] libsepol/cil: free the first operand if the second one is invalid, Nicolas Iooss
- [PATCH 5/5] libsepol/cil: free bitmaps in cil_level_equals(), Nicolas Iooss
- [PATCH 2/5] libsepol/cil: destroy bitmap when __cil_permx_str_to_int() fails, Nicolas Iooss
  - Re: [PATCH 2/5] libsepol/cil: destroy bitmap when __cil_permx_str_to_int() fails, James Carter
[PATCH] fs: switch order of CAP_DAC_OVERRIDE and CAP_DAC_READ_SEARCH checks, Stephen Smalley
- <Possible follow-ups>
- [PATCH] fs: switch order of CAP_DAC_OVERRIDE and CAP_DAC_READ_SEARCH checks, Stephen Smalley
  - Re: [PATCH] fs: switch order of CAP_DAC_OVERRIDE and CAP_DAC_READ_SEARCH checks, Paul Moore
    - Re: [PATCH] fs: switch order of CAP_DAC_OVERRIDE and CAP_DAC_READ_SEARCH checks, John Johansen
    - Re: [PATCH] fs: switch order of CAP_DAC_OVERRIDE and CAP_DAC_READ_SEARCH checks, Paul Moore
  - Re: [PATCH] fs: switch order of CAP_DAC_OVERRIDE and CAP_DAC_READ_SEARCH checks, Serge E. Hallyn
  - Re: [PATCH] fs: switch order of CAP_DAC_OVERRIDE and CAP_DAC_READ_SEARCH checks, James Morris
[PATCH] timerfd: only check CAP_WAKE_ALARM when it is needed, Stephen Smalley
[PATCH v2] prlimit,security,selinux: add a security hook for prlimit, Stephen Smalley
[PATCH 0/2] selinux-testsuite: fixes for RHEL7.3, Stephen Smalley
- [PATCH 2/2] selinux-testsuite: fix nnp test for RHEL7, Stephen Smalley
- [PATCH 1/2] selinux-testsuite: exclude netlink_socket tests from RHEL7, Stephen Smalley
[PATCH] prlimit,security,selinux: add a security hook for prlimit, Stephen Smalley
- Re: [PATCH] prlimit,security,selinux: add a security hook for prlimit, James Morris
  - Re: [PATCH] prlimit, security, selinux: add a security hook for prlimit, Paul Moore
    - Re: [PATCH] prlimit,security,selinux: add a security hook for prlimit, James Morris
[RFC v2 PATCH 2/2] security: mark LSM hooks as __ro_after_init, James Morris
- Re: [RFC v2 PATCH 2/2] security: mark LSM hooks as __ro_after_init, Stephen Smalley
- Re: [RFC v2 PATCH 2/2] security: mark LSM hooks as __ro_after_init, Casey Schaufler
- <Possible follow-ups>
- [RFC v2 PATCH 2/2] security: mark LSM hooks as __ro_after_init, James Morris
[RFC v2 PATCH 1/2] security: introduce CONFIG_SECURITY_WRITABLE_HOOKS, James Morris
- Re: [RFC v2 PATCH 1/2] security: introduce CONFIG_SECURITY_WRITABLE_HOOKS, Tetsuo Handa
  - Re: [RFC v2 PATCH 1/2] security: introduce CONFIG_SECURITY_WRITABLE_HOOKS, James Morris
    - Re: [RFC v2 PATCH 1/2] security: introduce CONFIG_SECURITY_WRITABLE_HOOKS, Tetsuo Handa
      - Re: [RFC v2 PATCH 1/2] security: introduce CONFIG_SECURITY_WRITABLE_HOOKS, Casey Schaufler
        
        Re: [RFC v2 PATCH 1/2] security: introduce CONFIG_SECURITY_WRITABLE_HOOKS, Tetsuo Handa
        
        Re: [kernel-hardening] Re: [RFC v2 PATCH 1/2] security: introduce CONFIG_SECURITY_WRITABLE_HOOKS, Casey Schaufler
        
        Re: [kernel-hardening] Re: [RFC v2 PATCH 1/2] security: introduce CONFIG_SECURITY_WRITABLE_HOOKS, Daniel Micay
        
        Re: [kernel-hardening] Re: [RFC v2 PATCH 1/2] security: introduce CONFIG_SECURITY_WRITABLE_HOOKS, Tetsuo Handa
        
        Re: [kernel-hardening] Re: [RFC v2 PATCH 1/2] security: introduce CONFIG_SECURITY_WRITABLE_HOOKS, Casey Schaufler
- Re: [RFC v2 PATCH 1/2] security: introduce CONFIG_SECURITY_WRITABLE_HOOKS, Stephen Smalley
[RFC v2 PATCH 0/2] security: mark LSM hooks with __ro_after_init, James Morris
- Re: [kernel-hardening] [RFC v2 PATCH 0/2] security: mark LSM hooks with __ro_after_init, Kees Cook
[PATCH] libsemanage: Perform access check using euid instead of uid, Vit Mojzis
- Re: [PATCH] libsemanage: Perform access check using euid instead of uid, Stephen Smalley
  - Re: [PATCH] libsemanage: Perform access check using euid instead of uid, Stephen Smalley
    - Re: [PATCH] libsemanage: Perform access check using euid instead of uid, Stephen Smalley
      - Re: [PATCH] libsemanage: Perform access check using euid instead of uid, Stephen Smalley
  - Re: [PATCH] libsemanage: Perform access check using euid instead of uid, Petr Lautrbach
    - Re: [PATCH] libsemanage: Perform access check using euid instead of uid, Stephen Smalley
      - libsemanage: remove/replace access() checks to make setuid programs work, Vit Mojzis
        
        [PATCH 3/3] libsemanage: replace access(, F_OK) checks to make setuid programs work, Vit Mojzis
        
        Re: [PATCH 3/3] libsemanage: replace access(, F_OK) checks to make setuid programs work, Stephen Smalley
        
        Re: [PATCH 3/3] libsemanage: replace access(, F_OK) checks to make setuid programs work, Vit Mojzis
        
        Re: [PATCH 3/3] libsemanage: replace access(, F_OK) checks to make setuid programs work, Stephen Smalley
        
        [PATCH 1/3] libsemanage: remove access() check to make setuid programs work, Vit Mojzis
        
        [PATCH 2/3] libsemanage: remove access() check to make setuid programs work, Vit Mojzis
        
        Re: [PATCH 2/3] libsemanage: remove access() check to make setuid programs work, Stephen Smalley
        
        [PATCH 3/3] libsemanage: replace access(, F_OK) checks to make setuid programs work, Vit Mojzis
        
        Re: [PATCH 3/3] libsemanage: replace access(, F_OK) checks to make setuid programs work, Stephen Smalley
        
        [PATCH 1/3] libsemanage: remove access() check to make setuid programs work, Vit Mojzis
        
        [PATCH 2/3] libsemanage: remove access() check to make setuid programs work, Vit Mojzis
        
        Re: [PATCH 2/3] libsemanage: remove access() check to make setuid programs work, William Roberts
        
        Re: [PATCH 2/3] libsemanage: remove access() check to make setuid programs work, Stephen Smalley
        
        Re: [PATCH 2/3] libsemanage: remove access() check to make setuid programs work, William Roberts
        
        [PATCH 3/3] libsemanage: replace access() checks to make setuid programs work, Vit Mojzis
        
        Re: [PATCH 3/3] libsemanage: replace access() checks to make setuid programs work, William Roberts
        
        Re: [PATCH 3/3] libsemanage: replace access() checks to make setuid programs work, William Roberts
        
        Re: [PATCH 3/3] libsemanage: replace access() checks to make setuid programs work, Stephen Smalley
        
        Re: [PATCH 3/3] libsemanage: replace access() checks to make setuid programs work, William Roberts
        
        Re: [PATCH 3/3] libsemanage: replace access() checks to make setuid programs work, William Roberts
        
        Re: Re: [PATCH 3/3] libsemanage: replace access() checks to make setuid programs work, Stephen Smalley
        
        Re: Re: [PATCH 3/3] libsemanage: replace access() checks to make setuid programs work, William Roberts
        
        Re: [PATCH 3/3] libsemanage: replace access() checks to make setuid programs work, Stephen Smalley
        
        Re: [PATCH 3/3] libsemanage: replace access() checks to make setuid programs work, Stephen Smalley
        
        Re: [PATCH 3/3] libsemanage: replace access() checks to make setuid programs work, Stephen Smalley
        
        Re: [PATCH 3/3] libsemanage: replace access() checks to make setuid programs work, Stephen Smalley
        
        Re: [PATCH 1/3] libsemanage: remove access() check to make setuid programs work, William Roberts
        
        Re: [PATCH 3/3] libsemanage: replace access(, F_OK) checks to make setuid programs work, Stephen Smalley
        
        Re: [PATCH 3/3] libsemanage: replace access(, F_OK) checks to make setuid programs work, Stephen Smalley
        
        [PATCH 2/3] libsemanage: remove access() check to make setuid programs work, Vit Mojzis
        
        Re: [PATCH 2/3] libsemanage: remove access() check to make setuid programs work, Stephen Smalley
        
        [PATCH 1/3] libsemanage: remove access() check to make setuid programs work, Vit Mojzis
        
        Re: [PATCH 1/3] libsemanage: remove access() check to make setuid programs work, Stephen Smalley
Re: [RFC PATCH 4/4] selinux: constify nlmsg permission tables, Paul Moore
- Re: [RFC PATCH 4/4] selinux: constify nlmsg permission tables, Paul Moore
[PATCH] selinux-testsuite: Add tests for prlimit(2) permission checks, Stephen Smalley
[RFC] prlimit,security,selinux: add a security hook for prlimit, Stephen Smalley
- Re: [RFC] prlimit,security,selinux: add a security hook for prlimit, James Morris
[GIT PULL] SELinux patches for 4.11, Paul Moore
- Re: [GIT PULL] SELinux patches for 4.11, James Morris
[PATCH] selinux-testsuite: allow netlink test domains to load kernel modules, Paul Moore
[PATCH] security: selinux: allow per-file labeling for cgroupfs, Antonio Murdaca
- Re: [PATCH] security: selinux: allow per-file labeling for cgroupfs, Paul Moore
  - Re: [PATCH] security: selinux: allow per-file labeling for cgroupfs, Stephen Smalley
    - Re: [PATCH] security: selinux: allow per-file labeling for cgroupfs, Paul Moore
      - Re: [PATCH] security: selinux: allow per-file labeling for cgroupfs, Paul Moore
        
        Re: [PATCH] security: selinux: allow per-file labeling for cgroupfs, Antonio Murdaca
- <Possible follow-ups>
- [PATCH] security: selinux: allow per-file labeling for cgroupfs, Antonio Murdaca
  - Re: [PATCH] security: selinux: allow per-file labeling for cgroupfs, Paul Moore
    - Re: [PATCH] security: selinux: allow per-file labeling for cgroupfs, Antonio Murdaca
      - Re: [PATCH] security: selinux: allow per-file labeling for cgroupfs, Paul Moore
        
        Re: [PATCH] security: selinux: allow per-file labeling for cgroupfs, Antonio Murdaca
        
        Re: [PATCH] security: selinux: allow per-file labeling for cgroupfs, Paul Moore
        
        Re: [PATCH] security: selinux: allow per-file labeling for cgroupfs, Daniel J Walsh
[PATCH] libsepol/cil: Destroy cil_tree_node stacks when finished resolving AST, James Carter
- Re: [PATCH] libsepol/cil: Destroy cil_tree_node stacks when finished resolving AST, James Carter
[GIT PULL] SELinux fixes for 4.10 (#2), Paul Moore
SELinux help, Anpu Ann mathews
[PATCH] selinux-testsuite: add tests for new netlink socket classes, Stephen Smalley
[PATCH] selinux-testsuite: fix ptrace test script, Stephen Smalley
Still having problems with typebounds check., Daniel J Walsh
- Re: Still having problems with typebounds check., Stephen Smalley
- Re: Still having problems with typebounds check., Daniel J Walsh
[PATCH 1/8] libsepol: fix -Wwrite-strings warnings, Nicolas Iooss
- [PATCH 4/8] policycoreutils/hll/pp: fix -Wwrite-strings warnings, Nicolas Iooss
- [PATCH 5/8] mcstrans: fix -Wwrite-strings warnings, Nicolas Iooss
- [PATCH 2/8] libsemanage: make lang_ext parameter const in semanage_direct_write_langext(), Nicolas Iooss
- [PATCH 6/8] semodule_deps: hide -Wwrite-strings warnings, Nicolas Iooss
- [PATCH 3/8] policycoreutils/semodule: hide -Wwrite-strings warnings, Nicolas Iooss
  - Re: [PATCH 3/8] policycoreutils/semodule: hide -Wwrite-strings warnings, James Carter
- [PATCH 8/8] libsemanage/tests: fix -Wwrite-strings warnings, Nicolas Iooss
- [PATCH 7/8] libsepol/tests: fix -Wwrite-strings warnings, Nicolas Iooss
- Re: [PATCH 1/8] libsepol: fix -Wwrite-strings warnings, James Carter
[PATCH 1/1] libsepol/cil: fix type confusion in cil_copy_ast, Nicolas Iooss
- Re: [PATCH 1/1] libsepol/cil: fix type confusion in cil_copy_ast, James Carter
[PATCH 1/1] Introduce Travis-CI tests, Nicolas Iooss
- Re: [PATCH 1/1] Introduce Travis-CI tests, James Carter
openshift label issue, Kashif ali
possible regression in "semanage user", Vit Mojzis
- Re: possible regression in "semanage user", Stephen Smalley
  - Re: possible regression in "semanage user", Stephen Smalley
- Re: possible regression in "semanage user", Stephen Smalley
  - Message not available
    - Re: possible regression in "semanage user", Stephen Smalley
      - Re: possible regression in "semanage user", Miroslav Vadkerti
[PATCH v2] security: selinux: allow changing labels for cgroupfs, Antonio Murdaca
- Re: [PATCH v2] security: selinux: allow changing labels for cgroupfs, Daniel J Walsh
- Re: [PATCH v2] security: selinux: allow changing labels for cgroupfs, Stephen Smalley
- Re: [PATCH v2] security: selinux: allow changing labels for cgroupfs, Paul Moore
[PATCH] security: selinux: allow changing labels for cgroupfs, Antonio Murdaca
- Re: [PATCH] security: selinux: allow changing labels for cgroupfs, Gary Tierney
  - Re: [PATCH] security: selinux: allow changing labels for cgroupfs, Antonio Murdaca
  - Re: [PATCH] security: selinux: allow changing labels for cgroupfs, Antonio Murdaca
[PATCH] libselinux: do not rely on non-POSIX behavior for write(), Stephen Smalley
[PATCH 0/2] checkpolicy & libsepol: process declarations and requirements, James Carter
- [PATCH 1/2] libsepol: Return +1 when declaration is followed by a require, James Carter
- [PATCH 2/2] checkpolicy: Remove uneeded return check in require_symbol(), James Carter
[PATCH] checkpolicy: Improve check for identifier flavor mismatch, James Carter
[PATCH 0/5] checkpolicy: Cleanup declare and require functions, James Carter
- [PATCH 1/5] checkpolicy: Create common function for type declares and requires, James Carter
- [PATCH 2/5] checkpolicy: Create common function for role declares and requires, James Carter
- [PATCH 3/5] checkpolicy: Create common function for user declares and requires, James Carter
- [PATCH 4/5] checkpolicy: Cleanup error messages, James Carter
- [PATCH 5/5] checkpolicy: Move common require and declare code into new function, James Carter
- Re: [PATCH 0/5] checkpolicy: Cleanup declare and require functions, Nicolas Iooss
  - Re: [PATCH 0/5] checkpolicy: Cleanup declare and require functions, James Carter
- Re: [PATCH 0/5] checkpolicy: Cleanup declare and require functions, James Carter
[PATCH] selinux: fix off-by-one in setprocattr, Stephen Smalley
- Re: [PATCH] selinux: fix off-by-one in setprocattr, Paul Moore
  - Re: [PATCH] selinux: fix off-by-one in setprocattr, Andy Lutomirski
    - Re: [PATCH] selinux: fix off-by-one in setprocattr, Paul Moore
    - Re: [PATCH] selinux: fix off-by-one in setprocattr, Stephen Smalley
[PATCH] policycoreutils: remove deprecated -o option from fixfiles verify, Stephen Smalley
[PATCH] setfiles: Fix setfiles progress indicator, Richard Haines
- Re: [PATCH] setfiles: Fix setfiles progress indicator, Stephen Smalley
  - Re: [PATCH] setfiles: Fix setfiles progress indicator, Alan Jenkins
Where to troubleshoot and ask questions?, Bassam Alsanie
- Re: Where to troubleshoot and ask questions?, Thomas Mueller
CIL Typepermissive Symbol not inside parenthesis, Roberts, William C
- <Possible follow-ups>
- RE: CIL Typepermissive Symbol not inside parenthesis, Roberts, William C
- RE: CIL Typepermissive Symbol not inside parenthesis, Roberts, William C
[PATCH] libselinux: selinux_restorecon.3 man page typo fix, Lokesh Mandvekar
- Re: [PATCH] libselinux: selinux_restorecon.3 man page typo fix, Stephen Smalley
  - Re: libselinux: selinux_restorecon.3 man page typo fix, Lokesh Mandvekar
Patch for typo fix, Lokesh Mandvekar
- Re: Patch for typo fix, Stephen Smalley
dpkg: run maintainer scripts with SELinux user system_u, cgzones
- Re: dpkg: run maintainer scripts with SELinux user system_u, Stephen Smalley
pam_selinux: add new option to select from default_contexts, cgzones
- Re: pam_selinux: add new option to select from default_contexts, Stephen Smalley
  - Re: pam_selinux: add new option to select from default_contexts, cgzones
    - Re: pam_selinux: add new option to select from default_contexts, Stephen Smalley
[PATCH] libsepol: fix pp module to cil nodecon statement, Steve Lawrence
- Re: [PATCH] libsepol: fix pp module to cil nodecon statement, James Carter
[PATCH] libselinux/src/regex.c: support old compilers for the endian check, Thomas Petazzoni
- Re: [PATCH] libselinux/src/regex.c: support old compilers for the endian check, Stephen Smalley
strange avc, Russell Coker
- Re: strange avc, Stephen Smalley
  - Re: strange avc, Russell Coker
[PATCH] libselinux: disable filespec hash table stats on non-debug builds, Stephen Smalley
- Re: [PATCH] libselinux: disable filespec hash table stats on non-debug builds, Alan Jenkins
[PATCH] policycoreutils/setfiles: set up a logging callback for libselinux, Stephen Smalley
- Re: [PATCH] policycoreutils/setfiles: set up a logging callback for libselinux, Alan Jenkins
Re: selinux post, Alan Jenkins
ANN: SETools 4.1.0, Chris PeBenito
[PATCH] policycoreutils: let output of `fixfiles` be redirected (as normal), Alan Jenkins
- Re: [PATCH] policycoreutils: let output of `fixfiles` be redirected (as normal), Stephen Smalley
[PATCH 0/4] Make xfrm usable by 32-bit programs, Kevin Cernekee
- [PATCH 2/4] xfrm_user: Allow common functions to be called from another file, Kevin Cernekee
- [PATCH 3/4] xfrm_user: Initial commit of xfrm_user_legacy.c, Kevin Cernekee
- [PATCH 1/4] xfrm: Constify xfrm_user arguments and xfrm_mgr callback APIs, Kevin Cernekee
- [PATCH 4/4] xfrm_user: Add new 32/64-agnostic netlink messages, Kevin Cernekee
  - Re: [PATCH 4/4] xfrm_user: Add new 32/64-agnostic netlink messages, kbuild test robot
- Re: [PATCH 0/4] Make xfrm usable by 32-bit programs, Steffen Klassert
  - Re: [PATCH 0/4] Make xfrm usable by 32-bit programs, David Miller
- RE: [PATCH 0/4] Make xfrm usable by 32-bit programs, David Laight
  - Re: [PATCH 0/4] Make xfrm usable by 32-bit programs, David Miller
NFS mount contexts, Russell Coker
- Re: NFS mount contexts, Jason Zaman
[PATCH 1/4] checkpolicy: always free id in define_type(), Nicolas Iooss
- [PATCH 2/4] checkpolicy: fix memory leaks in define_filename_trans(), Nicolas Iooss
- [PATCH 4/4] checkpolicy: do not leak memory when a class is not found in an avrule, Nicolas Iooss
- [PATCH 3/4] checkpolicy: add a missing free(id) in define_roleattribute(), Nicolas Iooss
- Re: [PATCH 1/4] checkpolicy: always free id in define_type(), James Carter
[PATCH] libsepol compilation fixes for macOS., Karl MacMillan
- Re: [PATCH] libsepol compilation fixes for macOS., Stephen Smalley
ANN: V3SPA 2.1.1, Robert Gove
[PATCH] policycoreutils/hll/pp: Fix pp crash when processing base module, Vit Mojzis
- Re: [PATCH] policycoreutils/hll/pp: Fix pp crash when processing base module, Stephen Smalley
[PATCH] checkpolicy: Fix bug in handling type declaration in optional block., James Carter
- Re: [PATCH] checkpolicy: Fix bug in handling type declaration in optional block., Dominick Grift
  - Re: [PATCH] checkpolicy: Fix bug in handling type declaration in optional block., James Carter
    - Re: [PATCH] checkpolicy: Fix bug in handling type declaration in optional block., Dominick Grift
      - Re: [PATCH] checkpolicy: Fix bug in handling type declaration in optional block., Dominick Grift
  - Re: [PATCH] checkpolicy: Fix bug in handling type declaration in optional block., Stephen Smalley
    - Re: [PATCH] checkpolicy: Fix bug in handling type declaration in optional block., Dominick Grift
      - Re: [PATCH] checkpolicy: Fix bug in handling type declaration in optional block., James Carter
        
        Re: [PATCH] checkpolicy: Fix bug in handling type declaration in optional block., Dominick Grift
        
        Re: [PATCH] checkpolicy: Fix bug in handling type declaration in optional block., Dominick Grift
        
        Re: [PATCH] checkpolicy: Fix bug in handling type declaration in optional block., Steve Lawrence
        
        Re: [PATCH] checkpolicy: Fix bug in handling type declaration in optional block., Dominick Grift
    - Re: [PATCH] checkpolicy: Fix bug in handling type declaration in optional block., Dominick Grift
- Re: [PATCH] checkpolicy: Fix bug in handling type declaration in optional block., Nicolas Iooss
  - Re: [PATCH] checkpolicy: Fix bug in handling type declaration in optional block., James Carter
[PATCH] Compilation fixes for macOS, Karl MacMillan
- Re: [PATCH] Compilation fixes for macOS, Stephen Smalley
  - Re: [PATCH] Compilation fixes for macOS, Karl MacMillan
Has anyone ever looked into adding labeling support for the cgroup file system, Daniel J Walsh
- Re: Has anyone ever looked into adding labeling support for the cgroup file system, Stephen Smalley
  - Re: Has anyone ever looked into adding labeling support for the cgroup file system, Paul Moore
    - Re: Has anyone ever looked into adding labeling support for the cgroup file system, Daniel J Walsh
[PATCH 00/46] SELinux: Fine-tuning for several function implementations, SF Markus Elfring
- [PATCH 01/46] selinux: Use kmalloc_array() in cond_init_bool_indexes(), SF Markus Elfring
  - Re: [PATCH 01/46] selinux: Use kmalloc_array() in cond_init_bool_indexes(), Paul Moore
- [PATCH 02/46] selinux: Delete an unnecessary return statement in cond_compute_av(), SF Markus Elfring
  - Re: [PATCH 02/46] selinux: Delete an unnecessary return statement in cond_compute_av(), Paul Moore
- [PATCH 03/46] selinux: Improve size determinations in four functions, SF Markus Elfring
  - Re: [PATCH 03/46] selinux: Improve size determinations in four functions, Paul Moore
- [PATCH 04/46] selinux: Use kmalloc_array() in hashtab_create(), SF Markus Elfring
  - Re: [PATCH 04/46] selinux: Use kmalloc_array() in hashtab_create(), Paul Moore
- [PATCH 05/46] selinux: Adjust four checks for null pointers, SF Markus Elfring
  - Re: [PATCH 05/46] selinux: Adjust four checks for null pointers, Paul Moore
- [PATCH 06/46] selinux: Use kcalloc() in policydb_index(), SF Markus Elfring
  - Re: [PATCH 06/46] selinux: Use kcalloc() in policydb_index(), Paul Moore
- [PATCH 07/46] selinux: Delete unnecessary variable assignments in policydb_index(), SF Markus Elfring
  - Re: [PATCH 07/46] selinux: Delete unnecessary variable assignments in policydb_index(), Casey Schaufler
  - Re: [PATCH 07/46] selinux: Delete unnecessary variable assignments in policydb_index(), Paul Moore
    - Re: selinux: Delete unnecessary variable assignments in policydb_index(), SF Markus Elfring
      - Re: selinux: Delete unnecessary variable assignments in policydb_index(), Paul Moore
- [PATCH 08/46] selinux: Delete an unnecessary return statement in policydb_destroy(), SF Markus Elfring
  - Re: [PATCH 08/46] selinux: Delete an unnecessary return statement in policydb_destroy(), Paul Moore
- [PATCH 09/46] selinux: Delete an error message for a failed memory allocation in policydb_read(), SF Markus Elfring
  - Re: [PATCH 09/46] selinux: Delete an error message for a failed memory allocation in policydb_read(), Paul Moore
    - Re: selinux: Delete an error message for a failed memory allocation in policydb_read(), SF Markus Elfring

[Index of Archives] [Selinux Refpolicy] [Fedora Users] [Fedora Desktop] [Kernel] [KDE Users] [Gnome Users]