Security Enhanced Linux (SELINUX)

Date Index

[Prev Page][Next Page]

Re: [RFC PATCH 4/4] selinux: constify nlmsg permission tables, Paul Moore
- Re: [RFC PATCH 4/4] selinux: constify nlmsg permission tables, Paul Moore
[PATCH] selinux-testsuite: Add tests for prlimit(2) permission checks, Stephen Smalley
[RFC] prlimit,security,selinux: add a security hook for prlimit, Stephen Smalley
- Re: [RFC] prlimit,security,selinux: add a security hook for prlimit, James Morris
[GIT PULL] SELinux patches for 4.11, Paul Moore
- Re: [GIT PULL] SELinux patches for 4.11, James Morris
[PATCH] selinux-testsuite: allow netlink test domains to load kernel modules, Paul Moore
[PATCH] security: selinux: allow per-file labeling for cgroupfs, Antonio Murdaca
- Re: [PATCH] security: selinux: allow per-file labeling for cgroupfs, Paul Moore
  - Re: [PATCH] security: selinux: allow per-file labeling for cgroupfs, Stephen Smalley
    - Re: [PATCH] security: selinux: allow per-file labeling for cgroupfs, Paul Moore
      - Re: [PATCH] security: selinux: allow per-file labeling for cgroupfs, Paul Moore
        
        Re: [PATCH] security: selinux: allow per-file labeling for cgroupfs, Antonio Murdaca
- <Possible follow-ups>
- [PATCH] security: selinux: allow per-file labeling for cgroupfs, Antonio Murdaca
  - Re: [PATCH] security: selinux: allow per-file labeling for cgroupfs, Paul Moore
    - Re: [PATCH] security: selinux: allow per-file labeling for cgroupfs, Antonio Murdaca
      - Re: [PATCH] security: selinux: allow per-file labeling for cgroupfs, Paul Moore
        
        Re: [PATCH] security: selinux: allow per-file labeling for cgroupfs, Antonio Murdaca
        
        Re: [PATCH] security: selinux: allow per-file labeling for cgroupfs, Paul Moore
        
        Re: [PATCH] security: selinux: allow per-file labeling for cgroupfs, Daniel J Walsh
[PATCH] libsepol/cil: Destroy cil_tree_node stacks when finished resolving AST, James Carter
- Re: [PATCH] libsepol/cil: Destroy cil_tree_node stacks when finished resolving AST, James Carter
[GIT PULL] SELinux fixes for 4.10 (#2), Paul Moore
SELinux help, Anpu Ann mathews
[PATCH] selinux-testsuite: add tests for new netlink socket classes, Stephen Smalley
[PATCH] selinux-testsuite: fix ptrace test script, Stephen Smalley
Still having problems with typebounds check., Daniel J Walsh
- Re: Still having problems with typebounds check., Stephen Smalley
- Re: Still having problems with typebounds check., Daniel J Walsh
[PATCH 1/8] libsepol: fix -Wwrite-strings warnings, Nicolas Iooss
- [PATCH 4/8] policycoreutils/hll/pp: fix -Wwrite-strings warnings, Nicolas Iooss
- [PATCH 5/8] mcstrans: fix -Wwrite-strings warnings, Nicolas Iooss
- [PATCH 2/8] libsemanage: make lang_ext parameter const in semanage_direct_write_langext(), Nicolas Iooss
- [PATCH 6/8] semodule_deps: hide -Wwrite-strings warnings, Nicolas Iooss
- [PATCH 3/8] policycoreutils/semodule: hide -Wwrite-strings warnings, Nicolas Iooss
  - Re: [PATCH 3/8] policycoreutils/semodule: hide -Wwrite-strings warnings, James Carter
- [PATCH 8/8] libsemanage/tests: fix -Wwrite-strings warnings, Nicolas Iooss
- [PATCH 7/8] libsepol/tests: fix -Wwrite-strings warnings, Nicolas Iooss
- Re: [PATCH 1/8] libsepol: fix -Wwrite-strings warnings, James Carter
[PATCH 1/1] libsepol/cil: fix type confusion in cil_copy_ast, Nicolas Iooss
- Re: [PATCH 1/1] libsepol/cil: fix type confusion in cil_copy_ast, James Carter
[PATCH 1/1] Introduce Travis-CI tests, Nicolas Iooss
- Re: [PATCH 1/1] Introduce Travis-CI tests, James Carter
openshift label issue, Kashif ali
possible regression in "semanage user", Vit Mojzis
- Re: possible regression in "semanage user", Stephen Smalley
  - Re: possible regression in "semanage user", Stephen Smalley
- Re: possible regression in "semanage user", Stephen Smalley
  - Message not available
    - Re: possible regression in "semanage user", Stephen Smalley
      - Re: possible regression in "semanage user", Miroslav Vadkerti
[PATCH v2] security: selinux: allow changing labels for cgroupfs, Antonio Murdaca
- Re: [PATCH v2] security: selinux: allow changing labels for cgroupfs, Daniel J Walsh
- Re: [PATCH v2] security: selinux: allow changing labels for cgroupfs, Stephen Smalley
- Re: [PATCH v2] security: selinux: allow changing labels for cgroupfs, Paul Moore
[PATCH] security: selinux: allow changing labels for cgroupfs, Antonio Murdaca
- Re: [PATCH] security: selinux: allow changing labels for cgroupfs, Gary Tierney
  - Re: [PATCH] security: selinux: allow changing labels for cgroupfs, Antonio Murdaca
  - Re: [PATCH] security: selinux: allow changing labels for cgroupfs, Antonio Murdaca
[PATCH] libselinux: do not rely on non-POSIX behavior for write(), Stephen Smalley
[PATCH 0/2] checkpolicy & libsepol: process declarations and requirements, James Carter
- [PATCH 1/2] libsepol: Return +1 when declaration is followed by a require, James Carter
- [PATCH 2/2] checkpolicy: Remove uneeded return check in require_symbol(), James Carter
[PATCH] checkpolicy: Improve check for identifier flavor mismatch, James Carter
[PATCH 0/5] checkpolicy: Cleanup declare and require functions, James Carter
- [PATCH 1/5] checkpolicy: Create common function for type declares and requires, James Carter
- [PATCH 2/5] checkpolicy: Create common function for role declares and requires, James Carter
- [PATCH 3/5] checkpolicy: Create common function for user declares and requires, James Carter
- [PATCH 4/5] checkpolicy: Cleanup error messages, James Carter
- [PATCH 5/5] checkpolicy: Move common require and declare code into new function, James Carter
- Re: [PATCH 0/5] checkpolicy: Cleanup declare and require functions, Nicolas Iooss
  - Re: [PATCH 0/5] checkpolicy: Cleanup declare and require functions, James Carter
- Re: [PATCH 0/5] checkpolicy: Cleanup declare and require functions, James Carter
[PATCH] selinux: fix off-by-one in setprocattr, Stephen Smalley
- Re: [PATCH] selinux: fix off-by-one in setprocattr, Paul Moore
  - Re: [PATCH] selinux: fix off-by-one in setprocattr, Andy Lutomirski
    - Re: [PATCH] selinux: fix off-by-one in setprocattr, Paul Moore
    - Re: [PATCH] selinux: fix off-by-one in setprocattr, Stephen Smalley
[PATCH] policycoreutils: remove deprecated -o option from fixfiles verify, Stephen Smalley
[PATCH] setfiles: Fix setfiles progress indicator, Richard Haines
- Re: [PATCH] setfiles: Fix setfiles progress indicator, Stephen Smalley
  - Re: [PATCH] setfiles: Fix setfiles progress indicator, Alan Jenkins
Where to troubleshoot and ask questions?, Bassam Alsanie
- Re: Where to troubleshoot and ask questions?, Thomas Mueller
CIL Typepermissive Symbol not inside parenthesis, Roberts, William C
- <Possible follow-ups>
- RE: CIL Typepermissive Symbol not inside parenthesis, Roberts, William C
- RE: CIL Typepermissive Symbol not inside parenthesis, Roberts, William C
[PATCH] libselinux: selinux_restorecon.3 man page typo fix, Lokesh Mandvekar
- Re: [PATCH] libselinux: selinux_restorecon.3 man page typo fix, Stephen Smalley
  - Re: libselinux: selinux_restorecon.3 man page typo fix, Lokesh Mandvekar
Patch for typo fix, Lokesh Mandvekar
- Re: Patch for typo fix, Stephen Smalley
dpkg: run maintainer scripts with SELinux user system_u, cgzones
- Re: dpkg: run maintainer scripts with SELinux user system_u, Stephen Smalley
pam_selinux: add new option to select from default_contexts, cgzones
- Re: pam_selinux: add new option to select from default_contexts, Stephen Smalley
  - Re: pam_selinux: add new option to select from default_contexts, cgzones
    - Re: pam_selinux: add new option to select from default_contexts, Stephen Smalley
[PATCH] libsepol: fix pp module to cil nodecon statement, Steve Lawrence
- Re: [PATCH] libsepol: fix pp module to cil nodecon statement, James Carter
[PATCH] libselinux/src/regex.c: support old compilers for the endian check, Thomas Petazzoni
- Re: [PATCH] libselinux/src/regex.c: support old compilers for the endian check, Stephen Smalley
strange avc, Russell Coker
- Re: strange avc, Stephen Smalley
  - Re: strange avc, Russell Coker
[PATCH] libselinux: disable filespec hash table stats on non-debug builds, Stephen Smalley
- Re: [PATCH] libselinux: disable filespec hash table stats on non-debug builds, Alan Jenkins
[PATCH] policycoreutils/setfiles: set up a logging callback for libselinux, Stephen Smalley
- Re: [PATCH] policycoreutils/setfiles: set up a logging callback for libselinux, Alan Jenkins
Re: selinux post, Alan Jenkins
ANN: SETools 4.1.0, Chris PeBenito
[PATCH] policycoreutils: let output of `fixfiles` be redirected (as normal), Alan Jenkins
- Re: [PATCH] policycoreutils: let output of `fixfiles` be redirected (as normal), Stephen Smalley
[PATCH 0/4] Make xfrm usable by 32-bit programs, Kevin Cernekee
- [PATCH 2/4] xfrm_user: Allow common functions to be called from another file, Kevin Cernekee
- [PATCH 3/4] xfrm_user: Initial commit of xfrm_user_legacy.c, Kevin Cernekee
- [PATCH 1/4] xfrm: Constify xfrm_user arguments and xfrm_mgr callback APIs, Kevin Cernekee
- [PATCH 4/4] xfrm_user: Add new 32/64-agnostic netlink messages, Kevin Cernekee
  - Re: [PATCH 4/4] xfrm_user: Add new 32/64-agnostic netlink messages, kbuild test robot
- Re: [PATCH 0/4] Make xfrm usable by 32-bit programs, Steffen Klassert
  - Re: [PATCH 0/4] Make xfrm usable by 32-bit programs, David Miller
- RE: [PATCH 0/4] Make xfrm usable by 32-bit programs, David Laight
  - Re: [PATCH 0/4] Make xfrm usable by 32-bit programs, David Miller
NFS mount contexts, Russell Coker
- Re: NFS mount contexts, Jason Zaman
[PATCH 1/4] checkpolicy: always free id in define_type(), Nicolas Iooss
- [PATCH 2/4] checkpolicy: fix memory leaks in define_filename_trans(), Nicolas Iooss
- [PATCH 4/4] checkpolicy: do not leak memory when a class is not found in an avrule, Nicolas Iooss
- [PATCH 3/4] checkpolicy: add a missing free(id) in define_roleattribute(), Nicolas Iooss
- Re: [PATCH 1/4] checkpolicy: always free id in define_type(), James Carter
[PATCH] libsepol compilation fixes for macOS., Karl MacMillan
- Re: [PATCH] libsepol compilation fixes for macOS., Stephen Smalley
ANN: V3SPA 2.1.1, Robert Gove
[PATCH] policycoreutils/hll/pp: Fix pp crash when processing base module, Vit Mojzis
- Re: [PATCH] policycoreutils/hll/pp: Fix pp crash when processing base module, Stephen Smalley
[PATCH] checkpolicy: Fix bug in handling type declaration in optional block., James Carter
- Re: [PATCH] checkpolicy: Fix bug in handling type declaration in optional block., Dominick Grift
  - Re: [PATCH] checkpolicy: Fix bug in handling type declaration in optional block., James Carter
    - Re: [PATCH] checkpolicy: Fix bug in handling type declaration in optional block., Dominick Grift
      - Re: [PATCH] checkpolicy: Fix bug in handling type declaration in optional block., Dominick Grift
  - Re: [PATCH] checkpolicy: Fix bug in handling type declaration in optional block., Stephen Smalley
    - Re: [PATCH] checkpolicy: Fix bug in handling type declaration in optional block., Dominick Grift
      - Re: [PATCH] checkpolicy: Fix bug in handling type declaration in optional block., James Carter
        
        Re: [PATCH] checkpolicy: Fix bug in handling type declaration in optional block., Dominick Grift
        
        Re: [PATCH] checkpolicy: Fix bug in handling type declaration in optional block., Dominick Grift
        
        Re: [PATCH] checkpolicy: Fix bug in handling type declaration in optional block., Steve Lawrence
        
        Re: [PATCH] checkpolicy: Fix bug in handling type declaration in optional block., Dominick Grift
    - Re: [PATCH] checkpolicy: Fix bug in handling type declaration in optional block., Dominick Grift
- Re: [PATCH] checkpolicy: Fix bug in handling type declaration in optional block., Nicolas Iooss
  - Re: [PATCH] checkpolicy: Fix bug in handling type declaration in optional block., James Carter
[PATCH] Compilation fixes for macOS, Karl MacMillan
- Re: [PATCH] Compilation fixes for macOS, Stephen Smalley
  - Re: [PATCH] Compilation fixes for macOS, Karl MacMillan
Has anyone ever looked into adding labeling support for the cgroup file system, Daniel J Walsh
- Re: Has anyone ever looked into adding labeling support for the cgroup file system, Stephen Smalley
  - Re: Has anyone ever looked into adding labeling support for the cgroup file system, Paul Moore
    - Re: Has anyone ever looked into adding labeling support for the cgroup file system, Daniel J Walsh
[PATCH 00/46] SELinux: Fine-tuning for several function implementations, SF Markus Elfring
- [PATCH 01/46] selinux: Use kmalloc_array() in cond_init_bool_indexes(), SF Markus Elfring
  - Re: [PATCH 01/46] selinux: Use kmalloc_array() in cond_init_bool_indexes(), Paul Moore
- [PATCH 02/46] selinux: Delete an unnecessary return statement in cond_compute_av(), SF Markus Elfring
  - Re: [PATCH 02/46] selinux: Delete an unnecessary return statement in cond_compute_av(), Paul Moore
- [PATCH 03/46] selinux: Improve size determinations in four functions, SF Markus Elfring
  - Re: [PATCH 03/46] selinux: Improve size determinations in four functions, Paul Moore
- [PATCH 04/46] selinux: Use kmalloc_array() in hashtab_create(), SF Markus Elfring
  - Re: [PATCH 04/46] selinux: Use kmalloc_array() in hashtab_create(), Paul Moore
- [PATCH 05/46] selinux: Adjust four checks for null pointers, SF Markus Elfring
  - Re: [PATCH 05/46] selinux: Adjust four checks for null pointers, Paul Moore
- [PATCH 06/46] selinux: Use kcalloc() in policydb_index(), SF Markus Elfring
  - Re: [PATCH 06/46] selinux: Use kcalloc() in policydb_index(), Paul Moore
- [PATCH 07/46] selinux: Delete unnecessary variable assignments in policydb_index(), SF Markus Elfring
  - Re: [PATCH 07/46] selinux: Delete unnecessary variable assignments in policydb_index(), Casey Schaufler
  - Re: [PATCH 07/46] selinux: Delete unnecessary variable assignments in policydb_index(), Paul Moore
    - Re: selinux: Delete unnecessary variable assignments in policydb_index(), SF Markus Elfring
      - Re: selinux: Delete unnecessary variable assignments in policydb_index(), Paul Moore
- [PATCH 08/46] selinux: Delete an unnecessary return statement in policydb_destroy(), SF Markus Elfring
  - Re: [PATCH 08/46] selinux: Delete an unnecessary return statement in policydb_destroy(), Paul Moore
- [PATCH 09/46] selinux: Delete an error message for a failed memory allocation in policydb_read(), SF Markus Elfring
  - Re: [PATCH 09/46] selinux: Delete an error message for a failed memory allocation in policydb_read(), Paul Moore
    - Re: selinux: Delete an error message for a failed memory allocation in policydb_read(), SF Markus Elfring
      - Re: selinux: Delete an error message for a failed memory allocation in policydb_read(), Paul Moore
        
        Re: selinux: Delete an error message for a failed memory allocation in policydb_read(), SF Markus Elfring
        
        Re: selinux: Delete an error message for a failed memory allocation in policydb_read(), Paul Moore
- [PATCH 11/46] selinux: Return directly after a failed next_entry() in genfs_read(), SF Markus Elfring
  - Re: [PATCH 11/46] selinux: Return directly after a failed next_entry() in genfs_read(), Paul Moore
- [PATCH 10/46] selinux: Move some assignments for the variable "rc" in policydb_read(), SF Markus Elfring
  - Re: [PATCH 10/46] selinux: Move some assignments for the variable "rc" in policydb_read(), Paul Moore
    - Re: selinux: Move some assignments for the variable "rc" in policydb_read(), SF Markus Elfring
      - Re: selinux: Move some assignments for the variable "rc" in policydb_read(), Paul Moore
- [PATCH 12/46] selinux: Move assignments for two pointers in genfs_read(), SF Markus Elfring
  - Re: [PATCH 12/46] selinux: Move assignments for two pointers in genfs_read(), Paul Moore
- [PATCH 13/46] selinux: Move four assignments for the variable "rc" in genfs_read(), SF Markus Elfring
  - Re: [PATCH 13/46] selinux: Move four assignments for the variable "rc" in genfs_read(), Paul Moore
- [PATCH 14/46] selinux: One function call less in genfs_read() after null pointer detection, SF Markus Elfring
  - Re: [PATCH 14/46] selinux: One function call less in genfs_read() after null pointer detection, Paul Moore
- [PATCH 15/46] selinux: One check and function call less in genfs_read() after error detection, SF Markus Elfring
  - Re: [PATCH 15/46] selinux: One check and function call less in genfs_read() after error detection, Casey Schaufler
    - Re: [PATCH 15/46] selinux: One check and function call less in genfs_read() after error detection, SF Markus Elfring
      - Re: [PATCH 15/46] selinux: One check and function call less in genfs_read() after error detection, Casey Schaufler
        
        Re: [PATCH 15/46] selinux: One check and function call less in genfs_read() after error detection, Paul Moore
- [PATCH 16/46] selinux: Move two assignments for the variable "rc" in filename_trans_read(), SF Markus Elfring
  - Re: [PATCH 16/46] selinux: Move two assignments for the variable "rc" in filename_trans_read(), Paul Moore
- [PATCH 17/46] selinux: Delete an unnecessary variable assignment in filename_trans_read(), SF Markus Elfring
  - Re: [PATCH 17/46] selinux: Delete an unnecessary variable assignment in filename_trans_read(), Paul Moore
- [PATCH 18/46] selinux: One function call less in filename_trans_read() after error detection, SF Markus Elfring
  - Re: [PATCH 18/46] selinux: One function call less in filename_trans_read() after error detection, Paul Moore
- [PATCH 19/46] selinux: Return directly after a failed next_entry() in range_read(), SF Markus Elfring
  - Re: [PATCH 19/46] selinux: Return directly after a failed next_entry() in range_read(), Paul Moore
- [PATCH 20/46] selinux: Move four assignments for the variable "rc" in range_read(), SF Markus Elfring
  - Re: [PATCH 20/46] selinux: Move four assignments for the variable "rc" in range_read(), Paul Moore
- [PATCH 21/46] selinux: Two function calls less in range_read() after error detection, SF Markus Elfring
  - Re: [PATCH 21/46] selinux: Two function calls less in range_read() after error detection, Casey Schaufler
    - Re: [PATCH 21/46] selinux: Two function calls less in range_read() after error detection, Paul Moore
- [PATCH 22/46] selinux: Delete an unnecessary variable initialisation in range_read(), SF Markus Elfring
  - Re: [PATCH 22/46] selinux: Delete an unnecessary variable initialisation in range_read(), Paul Moore
- [PATCH 23/46] selinux: Move an assignment for a pointer in range_read(), SF Markus Elfring
  - Re: [PATCH 23/46] selinux: Move an assignment for a pointer in range_read(), Paul Moore
- [PATCH 24/46] selinux: Return directly after a failed kzalloc() in cat_read(), SF Markus Elfring
  - Re: [PATCH 24/46] selinux: Return directly after a failed kzalloc() in cat_read(), Paul Moore
- [PATCH 25/46] selinux: Return directly after a failed kzalloc() in sens_read(), SF Markus Elfring
  - Re: [PATCH 25/46] selinux: Return directly after a failed kzalloc() in sens_read(), Paul Moore
- [PATCH 26/46] selinux: Improve another size determination in sens_read(), SF Markus Elfring
  - Re: [PATCH 26/46] selinux: Improve another size determination in sens_read(), Paul Moore
- [PATCH 27/46] selinux: Move an assignment for the variable "rc" in sens_read(), SF Markus Elfring
  - Re: [PATCH 27/46] selinux: Move an assignment for the variable "rc" in sens_read(), Paul Moore
- [PATCH 28/46] selinux: Return directly after a failed kzalloc() in user_read(), SF Markus Elfring
  - Re: [PATCH 28/46] selinux: Return directly after a failed kzalloc() in user_read(), Paul Moore
- [PATCH 29/46] selinux: Return directly after a failed kzalloc() in type_read(), SF Markus Elfring
  - Re: [PATCH 29/46] selinux: Return directly after a failed kzalloc() in type_read(), Paul Moore
- [PATCH 30/46] selinux: Return directly after a failed kzalloc() in role_read(), SF Markus Elfring
  - Re: [PATCH 30/46] selinux: Return directly after a failed kzalloc() in role_read(), Paul Moore
- [PATCH 31/46] selinux: Move an assignment for the variable "rc" in role_read(), SF Markus Elfring
- [PATCH 32/46] selinux: Return directly after a failed kzalloc() in class_read(), SF Markus Elfring
  - Re: [PATCH 32/46] selinux: Return directly after a failed kzalloc() in class_read(), Paul Moore
- [PATCH 33/46] selinux: Move an assignment for the variable "rc" in class_read(), SF Markus Elfring
  - Re: [PATCH 33/46] selinux: Move an assignment for the variable "rc" in class_read(), Paul Moore
- [PATCH 34/46] selinux: Return directly after a failed kzalloc() in common_read(), SF Markus Elfring
  - Re: [PATCH 34/46] selinux: Return directly after a failed kzalloc() in common_read(), Paul Moore
- [PATCH 35/46] selinux: Return directly after a failed kzalloc() in perm_read(), SF Markus Elfring
  - Re: [PATCH 35/46] selinux: Return directly after a failed kzalloc() in perm_read(), Paul Moore
- [PATCH 36/46] selinux: Move an assignment for the variable "rc" in mls_read_range_helper(), SF Markus Elfring
  - Re: [PATCH 36/46] selinux: Move an assignment for the variable "rc" in mls_read_range_helper(), Paul Moore
- [PATCH 37/46] selinux: Move an assignment for the variable "rc" in policydb_load_isids(), SF Markus Elfring
  - Re: [PATCH 37/46] selinux: Move an assignment for the variable "rc" in policydb_load_isids(), Paul Moore
- [PATCH 38/46] selinux: One function call less in five functions after null pointer detection, SF Markus Elfring
  - Re: [PATCH 38/46] selinux: One function call less in five functions after null pointer detection, Paul Moore
- [PATCH 39/46] selinux: Move two assignments for the variable "rc" in ocontext_read(), SF Markus Elfring
  - Re: [PATCH 39/46] selinux: Move two assignments for the variable "rc" in ocontext_read(), Paul Moore
- [PATCH 40/46] selinux: Return directly after a failed kzalloc() in roles_init(), SF Markus Elfring
  - Re: [PATCH 40/46] selinux: Return directly after a failed kzalloc() in roles_init(), Paul Moore
- [PATCH 41/46] selinux: Move two assignments for the variable "rc" in roles_init(), SF Markus Elfring
  - Re: [PATCH 41/46] selinux: Move two assignments for the variable "rc" in roles_init(), Paul Moore
- [PATCH 42/46] selinux: One function call less in roles_init() after error detection, SF Markus Elfring
  - Re: [PATCH 42/46] selinux: One function call less in roles_init() after error detection, Paul Moore
- [PATCH 43/46] selinux: Use kmalloc_array() in sidtab_init(), SF Markus Elfring
  - Re: [PATCH 43/46] selinux: Use kmalloc_array() in sidtab_init(), Paul Moore
- [PATCH 44/46] selinux: Adjust two checks for null pointers, SF Markus Elfring
  - Re: [PATCH 44/46] selinux: Adjust two checks for null pointers, Paul Moore
- [PATCH 45/46] selinux: Use common error handling code in sidtab_insert(), SF Markus Elfring
  - Re: [PATCH 45/46] selinux: Use common error handling code in sidtab_insert(), Casey Schaufler
- [PATCH 46/46] selinuxfs: Use seq_puts() in sel_avc_stats_seq_show(), SF Markus Elfring
  - Re: [PATCH 46/46] selinuxfs: Use seq_puts() in sel_avc_stats_seq_show(), Paul Moore
- Re: [PATCH 00/46] SELinux: Fine-tuning for several function implementations, Eric Paris
  - Re: [PATCH 00/46] SELinux: Fine-tuning for several function implementations, Paul Moore
  - Re: SELinux: Checking source code positions for the setting of error codes, SF Markus Elfring
- Re: [PATCH 00/46] SELinux: Fine-tuning for several function implementations, Paul Moore
  - Re: SELinux: Fine-tuning for several function implementations, SF Markus Elfring
    - Re: SELinux: Fine-tuning for several function implementations, Paul Moore
- [PATCH 0/3] SELinux: Fine-tuning for two function implementations, SF Markus Elfring
  - [PATCH 1/3] selinux: Return directly after a failed memory allocation in policydb_index(), SF Markus Elfring
    - Re: [PATCH 1/3] selinux: Return directly after a failed memory allocation in policydb_index(), Paul Moore
  - [PATCH 2/3] selinux: Return an error code only as a constant in sidtab_insert(), SF Markus Elfring
    - Re: [PATCH 2/3] selinux: Return an error code only as a constant in sidtab_insert(), Paul Moore
  - [PATCH 3/3] selinux: Use an other error code for an input validation failure in sidtab_insert(), SF Markus Elfring
    - Re: [PATCH 3/3] selinux: Use an other error code for an input validation failure in sidtab_insert(), Paul Moore
      - Re: selinux: Use an other error code for an input validation failure in sidtab_insert(), SF Markus Elfring
[PATCH 1/5] libsepol: use constant keys in hashtab functions, Nicolas Iooss
- [PATCH 3/5] libsepol: remove useless assignments, Nicolas Iooss
- [PATCH 4/5] libselinux: always free catalog in db_init(), Nicolas Iooss
- [PATCH 2/5] libsepol: verify the right variable after calling calloc(), Nicolas Iooss
- [PATCH 5/5] libselinux: fix argument order in get_default_context_with_rolelevel() doc, Nicolas Iooss
  - Re: [PATCH 5/5] libselinux: fix argument order in get_default_context_with_rolelevel() doc, Stephen Smalley
audit.py required for seobject.py, Sven Vermeulen
- Re: audit.py required for seobject.py, Stephen Smalley
  - Re: audit.py required for seobject.py, Jason Zaman
audit.py required for seobject.py?, Sven Vermeulen
[PATCH 1/1] semanage, sepolicy: make tests not fail on systems without SELinux, Nicolas Iooss
- Re: [PATCH 1/1] semanage, sepolicy: make tests not fail on systems without SELinux, Stephen Smalley
[PATCH 1/1] Re-link programs after libsepol.a is updated, Nicolas Iooss
- Re: [PATCH 1/1] Re-link programs after libsepol.a is updated, Stephen Smalley
  - Re: [PATCH 1/1] Re-link programs after libsepol.a is updated, Nicolas Iooss
    - Re: [PATCH 1/1] Re-link programs after libsepol.a is updated, Stephen Smalley
[PATCH 1/1] checkpolicy: do not leak memory when declaring a type which has been required, Nicolas Iooss
- Re: [PATCH 1/1] checkpolicy: do not leak memory when declaring a type which has been required, Stephen Smalley
  - Re: [PATCH 1/1] checkpolicy: do not leak memory when declaring a type which has been required, James Carter
- Re: [PATCH 1/1] checkpolicy: do not leak memory when declaring a type which has been required, James Carter
Wrong alignment when listing user/login with semanage in French, Laurent Bigonville
- Re: Wrong alignment when listing user/login with semanage in French, Stephen Smalley
  - Re: Wrong alignment when listing user/login with semanage in French, Laurent Bigonville
[PATCH 1/1] libsemanage: genhomedircon: consider SEMANAGE_FCONTEXT_DIR in fcontext_matches(), Nicolas Iooss
- Re: [PATCH 1/1] libsemanage: genhomedircon: consider SEMANAGE_FCONTEXT_DIR in fcontext_matches(), Stephen Smalley
[PATCH] libselinux: selinux_restorecon: only log no default label warning for caller-supplied pathname, Stephen Smalley
- Re: [PATCH] libselinux: selinux_restorecon: only log no default label warning for caller-supplied pathname, Alan Jenkins
  - Re: [PATCH] libselinux: selinux_restorecon: only log no default label warning for caller-supplied pathname, Stephen Smalley
New Blog on how SELinux blocked Docker container escape., Daniel J Walsh
- Re: New Blog on how SELinux blocked Docker container escape., Dominick Grift
- Re: New Blog on how SELinux blocked Docker container escape., Tracy Reed
  - Re: New Blog on how SELinux blocked Docker container escape., Marko Rauhamaa
    - Re: New Blog on how SELinux blocked Docker container escape., Daniel J Walsh
      - Re: New Blog on how SELinux blocked Docker container escape., 面和毅
        
        Re: New Blog on how SELinux blocked Docker container escape., Daniel J Walsh
        
        Re: New Blog on how SELinux blocked Docker container escape., Daniel J Walsh
        
        Re: New Blog on how SELinux blocked Docker container escape., 面和毅
        
        Re: New Blog on how SELinux blocked Docker container escape., Daniel J Walsh
        
        Re: New Blog on how SELinux blocked Docker container escape., 面和毅
        
        Re: New Blog on how SELinux blocked Docker container escape., 面和毅
        
        Re: New Blog on how SELinux blocked Docker container escape., Daniel J Walsh
        
        Re: New Blog on how SELinux blocked Docker container escape., 面和毅
        
        Re: New Blog on how SELinux blocked Docker container escape., 面和毅
[PATCH] policy_define.c: don't free memory returned from queue_head(), Nick Kralevich
- Re: [PATCH] policy_define.c: don't free memory returned from queue_head(), Stephen Smalley
[PATCH] selinux-testsuite: extend sockcreate to support other address families, Stephen Smalley
- Re: [PATCH] selinux-testsuite: extend sockcreate to support other address families, Paul Moore
[PATCH] libselinux: selinux_restorecon: only log no default label warning if recursive, Stephen Smalley
[PATCH] can: Fix kernel panic at security_sock_rcv_skb, william . c . roberts
- Re: [PATCH] can: Fix kernel panic at security_sock_rcv_skb, Eric Dumazet
[PATCH] libselinux: replace all malloc + memset by calloc in android label backend., Sandeep Patil
- Re: [PATCH] libselinux: replace all malloc + memset by calloc in android label backend., Stephen Smalley
[PATCH] selinux: drop unused socket security classes, Stephen Smalley
- Re: [PATCH] selinux: drop unused socket security classes, Paul Moore
[PATCH] policycoreutils, python: Fix bad manpage formatting in "SEE ALSO", Alan Jenkins
- [PATCH] restorecon manpage: link back to fixfiles, Alan Jenkins
  - Re: [PATCH] restorecon manpage: link back to fixfiles, Stephen Smalley
    - Re: [PATCH] restorecon manpage: link back to fixfiles, Alan Jenkins
      - Re: [PATCH] restorecon manpage: link back to fixfiles, Stephen Smalley
        
        Re: [PATCH] restorecon manpage: link back to fixfiles, Alan Jenkins
        
        Re: [PATCH] restorecon manpage: link back to fixfiles, Stephen Smalley
        
        Re: [PATCH] restorecon manpage: link back to fixfiles, Stephen Smalley
        
        Re: [PATCH] restorecon manpage: link back to fixfiles, Daniel J Walsh
        
        Re: [PATCH] restorecon manpage: link back to fixfiles, Stephen Smalley
        
        Re: [PATCH] restorecon manpage: link back to fixfiles, Alan Jenkins
        
        Re: [PATCH] restorecon manpage: link back to fixfiles, Alan Jenkins
      - Re: [PATCH] restorecon manpage: link back to fixfiles, Stephen Smalley
[PATCH] selinux-testsuite: remove wait test, Stephen Smalley
- Re: [PATCH] selinux-testsuite: remove wait test, Paul Moore
[PATCH] security,selinux,smack: kill security_task_wait hook, Stephen Smalley
- Re: [PATCH] security,selinux,smack: kill security_task_wait hook, Casey Schaufler
- Re: [PATCH] security,selinux,smack: kill security_task_wait hook, Oleg Nesterov
- Re: [PATCH] security,selinux,smack: kill security_task_wait hook, Paul Moore
  - Re: [PATCH] security,selinux,smack: kill security_task_wait hook, Casey Schaufler
    - Re: [PATCH] security,selinux,smack: kill security_task_wait hook, Paul Moore
Fwd: Will security-next be updated for 4.10?, Paul Moore
SELinux lead to soft lockup when pid 1 proceess reap child, yangshukui
- Re: SELinux lead to soft lockup when pid 1 proceess reap child, Oleg Nesterov
  - Re: SELinux lead to soft lockup when pid 1 proceess reap child, Oleg Nesterov
    - Re: SELinux lead to soft lockup when pid 1 proceess reap child, Stephen Smalley
      - Re: SELinux lead to soft lockup when pid 1 proceess reap child, Paul Moore
      - Re: SELinux lead to soft lockup when pid 1 proceess reap child, Casey Schaufler
- isolate selinux_enforcing, yangshukui
  - Re: isolate selinux_enforcing, Stephen Smalley
    - Re: isolate selinux_enforcing, Stephen Smalley
  - Re: isolate selinux_enforcing, Casey Schaufler
    - Re: isolate selinux_enforcing, Eric W. Biederman
      - Re: isolate selinux_enforcing, Paul Moore
      - Re: isolate selinux_enforcing, James Morris
        
        Re: isolate selinux_enforcing, Casey Schaufler
[PATCH 1/3] libselinux: include errno.h instead of sys/errno.h, Nicolas Iooss
- [PATCH 3/3] mcstransd: fix and reorder includes, Nicolas Iooss
- [PATCH 2/3] checkpolicy: always include ctypes.h, Nicolas Iooss
  - Re: [PATCH 2/3] checkpolicy: always include ctypes.h, Stephen Smalley
[PATCH 1/1] libsepol: make capability index an unsigned int, Nicolas Iooss
- Re: [PATCH 1/1] libsepol: make capability index an unsigned int, William Roberts
  - Re: [PATCH 1/1] libsepol: make capability index an unsigned int, Nicolas Iooss
- Re: [PATCH 1/1] libsepol: make capability index an unsigned int, Stephen Smalley
[PATCH 1/2] libsemanage: genhomedircon: remove duplicated test condition, Nicolas Iooss
- [PATCH 2/2] libsemanage: increment the right index variable in for loop, Nicolas Iooss
  - Re: [PATCH 2/2] libsemanage: increment the right index variable in for loop, James Carter
- Re: [PATCH 1/2] libsemanage: genhomedircon: remove duplicated test condition, James Carter
- Re: [PATCH 1/2] libsemanage: genhomedircon: remove duplicated test condition, Stephen Smalley
[PATCH] policycoreutils/restorecond: Decrease loglevel of termination message, Vit Mojzis
- Re: [PATCH] policycoreutils/restorecond: Decrease loglevel of termination message, James Carter
libsemanage: special handling of the identity reserved to system objects, Guido Trentalancia
- Re: libsemanage: special handling of the identity reserved to system objects, Dominick Grift
  - Re: libsemanage: special handling of the identity reserved to system objects, Guido Trentalancia
- [PATCH v2] libsemanage: special handling of the identity reserved to system objects, Guido Trentalancia
  - Re: [PATCH v2] libsemanage: special handling of the identity reserved to system objects, Stephen Smalley
    - Re: [PATCH v2] libsemanage: special handling of the identity reserved to system objects, Guido Trentalancia
      - Re: [PATCH v2] libsemanage: special handling of the identity reserved to system objects, Stephen Smalley
        
        Re: [PATCH v2] libsemanage: special handling of the identity reserved to system objects, Petr Lautrbach
        
        Re: [PATCH v2] libsemanage: special handling of the identity reserved to system objects, Guido Trentalancia
        
        Re: [PATCH v2] libsemanage: special handling of the identity reserved to system objects, Jason Zaman
        
        Re: [PATCH v2] libsemanage: special handling of the identity reserved to system objects, Guido Trentalancia
checkpolicy: memory leak in declare_type(), Nicolas Iooss
- Re: checkpolicy: memory leak in declare_type(), Stephen Smalley
Domain of kernel module initalization code, Luis Ressel
- Re: Domain of kernel module initalization code, Stephen Smalley
[PATCH 1/5] checkpolicy: fix memory usage in define_bool_tunable(), Nicolas Iooss
- [PATCH 3/5] checkpolicy: fix memory leaks in genfscon statements parsing, Nicolas Iooss
  - Re: [PATCH 3/5] checkpolicy: fix memory leaks in genfscon statements parsing, James Carter
- [PATCH 4/5] checkpolicy: do not leak queue elements in queue_destroy(), Nicolas Iooss
  - Re: [PATCH 4/5] checkpolicy: do not leak queue elements in queue_destroy(), James Carter
- [PATCH 5/5] checkpolicy: free id where it was leaked, Nicolas Iooss
  - Re: [PATCH 5/5] checkpolicy: free id where it was leaked, James Carter
- [PATCH 2/5] checkpolicy: free id in define_port_context(), Nicolas Iooss
  - Re: [PATCH 2/5] checkpolicy: free id in define_port_context(), James Carter
- Re: [PATCH 1/5] checkpolicy: fix memory usage in define_bool_tunable(), James Carter
- Re: [PATCH 1/5] checkpolicy: fix memory usage in define_bool_tunable(), Stephen Smalley
[PATCH 1/2] libsepol/tests: fix -Wsometimes-uninitialized clang warnings, Nicolas Iooss
- [PATCH 2/2] libsepol/tests: fix some memory leaks, Nicolas Iooss
  - Re: [PATCH 2/2] libsepol/tests: fix some memory leaks, James Carter
- Re: [PATCH 1/2] libsepol/tests: fix -Wsometimes-uninitialized clang warnings, James Carter
Re: Another getcon() vs getcon_raw() issue in systemd, Russell Coker
- Re: Another getcon() vs getcon_raw() issue in systemd, Nicolas Iooss
  - Re: Another getcon() vs getcon_raw() issue in systemd, Russell Coker
    - Re: Another getcon() vs getcon_raw() issue in systemd, Stephen Smalley
      - Re: Another getcon() vs getcon_raw() issue in systemd, Russell Coker
      - Re: Another getcon() vs getcon_raw() issue in systemd, Laurent Bigonville
Re: [PATCH v2 2/2] selinux: default to security isid in sel_make_bools() if no sid is found, Paul Moore
Re: [PATCH v2 1/2] selinux: log errors when loading new policy, Paul Moore
[PATCH 1/2] libselinux: fix optimized compile errors, Guido Trentalancia
- [PATCH 2/2] libsemanage: fix optimized compile errors, Guido Trentalancia
  - Re: [PATCH 2/2] libsemanage: fix optimized compile errors, Nicolas Iooss
    - Re: [PATCH 2/2] libsemanage: fix optimized compile errors, Guido Trentalancia
  - Re: [PATCH 2/2] libsemanage: fix optimized compile errors, James Carter
- Re: [PATCH 1/2] libselinux: fix optimized compile errors, James Carter
Rewrite restorecon python method, Petr Lautrbach
- [PATCH 1/2] libselinux: Generate SWIG wrappers for selinux_restorecon(), Petr Lautrbach
- [PATCH 2/2] libselinux: Rewrite restorecon() python method, Petr Lautrbach
  - Re: [PATCH 2/2] libselinux: Rewrite restorecon() python method, Stephen Smalley
[PATCH 1/1] libselinux/utils: do not create an empty /sbin directory, Nicolas Iooss
- Re: [PATCH 1/1] libselinux/utils: do not create an empty /sbin directory, Stephen Smalley
[GIT PULL] SELinux fixes for 4.10 (#1), Paul Moore
[PATCH v2 0/7] Remove ustr library dependency, Nicolas Iooss
- [PATCH v2 1/7] libsemanage/tests: make "make test" fail when a CUnit test fails, Nicolas Iooss
- [PATCH v2 2/7] libsemanage/tests: make tests standalone, Nicolas Iooss
- [PATCH v2 4/7] libsemanage: simplify string utilities functions, Nicolas Iooss
- [PATCH v2 3/7] libsemanage/tests: test more cases of semanage_split*(), Nicolas Iooss
- [PATCH v2 5/7] libsemanage: add semanage_str_replace() utility function, Nicolas Iooss
- [PATCH v2 7/7] libsemanage: remove ustr library from Makefiles, README and pkg-config, Nicolas Iooss
- [PATCH v2 6/7] libsemanage: genhomedircon: drop ustr dependency, Nicolas Iooss
- Re: [PATCH v2 0/7] Remove ustr library dependency, Stephen Smalley
[PATCH v2] selinux: use the kernel headers when building scripts/selinux, Paul Moore
- Re: [PATCH v2] selinux: use the kernel headers when building scripts/selinux, Nicolas Iooss
  - Re: [PATCH v2] selinux: use the kernel headers when building scripts/selinux, Paul Moore
Re: [PATCH 4/7] libsemanage: simplify string utilities functions, Nicolas Iooss
Re: [PATCH 6/7] libsemanage: genhomedircon: drop ustr dependency, Nicolas Iooss
- Re: [PATCH 6/7] libsemanage: genhomedircon: drop ustr dependency, Stephen Smalley
[PATCH] policycoreutils/setfiles: Mention customizable types in restorecon man page, Vit Mojzis
- Re: [PATCH] policycoreutils/setfiles: Mention customizable types in restorecon man page, Stephen Smalley
Issues Confined domain, Naina Emmanuel
- Re: Issues Confined domain, Daniel J Walsh
  - Message not available
    - Re: Issues Confined domain, Naina Emmanuel
[PATCH] selinux: use the kernel headers when building scripts/selinux/genheaders, Paul Moore
- Re: [PATCH] selinux: use the kernel headers when building scripts/selinux/genheaders, Stephen Smalley
  - Re: [PATCH] selinux: use the kernel headers when building scripts/selinux/genheaders, Paul Moore
    - Re: [PATCH] selinux: use the kernel headers when building scripts/selinux/genheaders, Stephen Smalley
Re: [PATCH 2/2] proc,security: move restriction on writing /proc/pid/attr nodes to proc, Stephen Smalley
- Re: [PATCH 2/2] proc,security: move restriction on writing /proc/pid/attr nodes to proc, José Bollo
  - Re: [PATCH 2/2] proc,security: move restriction on writing /proc/pid/attr nodes to proc, Stephen Smalley
    - Re: [PATCH 2/2] proc,security: move restriction on writing /proc/pid/attr nodes to proc, Casey Schaufler
      - Re: [PATCH 2/2] proc,security: move restriction on writing /proc/pid/attr nodes to proc, Stephen Smalley
        
        Re: [PATCH 2/2] proc,security: move restriction on writing /proc/pid/attr nodes to proc, Casey Schaufler
        
        Re: [PATCH 2/2] proc,security: move restriction on writing /proc/pid/attr nodes to proc, Stephen Smalley
        
        Re: [PATCH 2/2] proc,security: move restriction on writing /proc/pid/attr nodes to proc, Casey Schaufler
        
        Re: [PATCH 2/2] proc,security: move restriction on writing /proc/pid/attr nodes to proc, José Bollo
        
        Re: [PATCH 2/2] proc,security: move restriction on writing /proc/pid/attr nodes to proc, Stephen Smalley
        
        Re: [PATCH 2/2] proc,security: move restriction on writing /proc/pid/attr nodes to proc, John Johansen
- <Possible follow-ups>
- Re: [PATCH 2/2] proc,security: move restriction on writing /proc/pid/attr nodes to proc, Casey Schaufler
- Re: [PATCH 2/2] proc,security: move restriction on writing /proc/pid/attr nodes to proc, Paul Moore
  - Re: [PATCH 2/2] proc,security: move restriction on writing /proc/pid/attr nodes to proc, José Bollo
    - Re: [PATCH 2/2] proc,security: move restriction on writing /proc/pid/attr nodes to proc, Paul Moore
Re: Mailing list not receiving/sending mail?, Stephen Smalley
[RFC PATCH 1/1] kernel: Add SELinux SCTP protocol support, Richard Haines
- RE: [RFC PATCH 1/1] kernel: Add SELinux SCTP protocol support, David Laight
  - Message not available
    - Re: [RFC PATCH 1/1] kernel: Add SELinux SCTP protocol support, Richard Haines
- Re: [RFC PATCH 1/1] kernel: Add SELinux SCTP protocol support, Casey Schaufler
- Re: [RFC PATCH 1/1] kernel: Add SELinux SCTP protocol support, Stephen Smalley
  - Re: [RFC PATCH 1/1] kernel: Add SELinux SCTP protocol support, Richard Haines
    - Re: [RFC PATCH 1/1] kernel: Add SELinux SCTP protocol support, marcelo . leitner
- Re: [RFC PATCH 1/1] kernel: Add SELinux SCTP protocol support, Marcelo Ricardo Leitner
  - Re: [RFC PATCH 1/1] kernel: Add SELinux SCTP protocol support, Richard Haines
[RFC PATCH 0/1] kernel: Add SELinux SCTP protocol support, Richard Haines
Re: Unconfined label, Naina Emmanuel
- Re: Unconfined label, Daniel J Walsh
Possible SELinux problem on Fedora 25 Install, Parker, Michael D.
- Re: Possible SELinux problem on Fedora 25 Install, Petr Lautrbach
- Re: Possible SELinux problem on Fedora 25 Install, Daniel J Walsh
  - RE: -EXT-Re: Possible SELinux problem on Fedora 25 Install, Parker, Michael D.
[PATCH 1/2] selinux(8): fix display of man page references, Mike Frysinger
- [PATCH 2/2] man: standardize spacing with pointers in prototypes, Mike Frysinger
  - Re: [PATCH 2/2] man: standardize spacing with pointers in prototypes, Stephen Smalley
ANN: SETools 4.1.0-rc, Chris PeBenito
[PATCH] libselinux: add O_CLOEXEC, Nick Kralevich
- Re: [PATCH] libselinux: add O_CLOEXEC, William Roberts
  - Re: [PATCH] libselinux: add O_CLOEXEC, Nick Kralevich
    - Re: [PATCH] libselinux: add O_CLOEXEC, William Roberts
      - Re: [PATCH] libselinux: add O_CLOEXEC, Stephen Smalley
        
        Re: [PATCH] libselinux: add O_CLOEXEC, William Roberts
        
        Re: [PATCH] libselinux: add O_CLOEXEC, William Roberts
- Re: [PATCH] libselinux: add O_CLOEXEC, Stephen Smalley
[PATCH] selinux: clean up cred usage and simplify, Stephen Smalley
- Re: [PATCH] selinux: clean up cred usage and simplify, Casey Schaufler
- Re: [PATCH] selinux: clean up cred usage and simplify, Paul Moore
  - Re: [PATCH] selinux: clean up cred usage and simplify, Stephen Smalley
    - Re: [PATCH] selinux: clean up cred usage and simplify, Paul Moore
[PATCH] selinux-testsuite: Add tests for extended socket classes., Stephen Smalley
- Re: [PATCH] selinux-testsuite: Add tests for extended socket classes., Stephen Smalley
  - Re: [PATCH] selinux-testsuite: Add tests for extended socket classes., Paul Moore
[PATCH 1/2] python/sepolicy/sepolicy: Cleanup of gui code, Vit Mojzis
- [PATCH 2/2] python/sepolicy/sepolicy: optimise sepolicy gui loading, Vit Mojzis
  - Re: [PATCH 2/2] python/sepolicy/sepolicy: optimise sepolicy gui loading, Stephen Smalley
[PATCH] selinux: handle ICMPv6 consistently with ICMP, Stephen Smalley
- Re: [PATCH] selinux: handle ICMPv6 consistently with ICMP, Paul Moore
[PATCH] libsepol: Define extended_socket_class policy capability, Stephen Smalley
[PATCH v2] selinux: allow context mounts on tmpfs, ramfs, devpts within user namespaces, Stephen Smalley
- Re: [PATCH v2] selinux: allow context mounts on tmpfs, ramfs, devpts within user namespaces, Daniel J Walsh
  - Re: [PATCH v2] selinux: allow context mounts on tmpfs, ramfs, devpts within user namespaces, Paul Moore
- Re: [PATCH v2] selinux: allow context mounts on tmpfs, ramfs, devpts within user namespaces, Paul Moore
[RFC][PATCH] selinux: allow context mounts on tmpfs, ramfs, devpts within user namespaces, Stephen Smalley
- Re: [RFC][PATCH] selinux: allow context mounts on tmpfs, ramfs, devpts within user namespaces, Stephen Smalley
[PATCH] cil: remove avrules that have no associated types, Gary Tierney
- [PATCH] libsepol/cil: remove avrules with no affected types, Gary Tierney
  - Message not available
    - Re: [PATCH] libsepol/cil: remove avrules with no affected types, Gary Tierney
  - Re: [PATCH] libsepol/cil: remove avrules with no affected types, James Carter
Why do we block context="foobar" from User Namespace, Daniel J Walsh
- Re: Why do we block context="foobar" from User Namespace, Stephen Smalley
  - Re: Why do we block context="foobar" from User Namespace, Paul Moore
    - Re: Why do we block context="foobar" from User Namespace, Stephen Smalley
      - Re: Why do we block context="foobar" from User Namespace, Stephen Smalley
        
        Re: Why do we block context="foobar" from User Namespace, Daniel J Walsh
[PATCH v3] selinux: add security in-core xattr support for tracefs, william . c . roberts
- Re: [PATCH v3] selinux: add security in-core xattr support for tracefs, Stephen Smalley
- Re: [PATCH v3] selinux: add security in-core xattr support for tracefs, Paul Moore
[PATCH v2] selinux: add security in-core xattr support for tracefs, william . c . roberts
- Re: [PATCH v2] selinux: add security in-core xattr support for tracefs, Stephen Smalley
[PATCH] quick selinux support for tracefs, william . c . roberts
- [PATCH] quick selinux support for tracefs, william . c . roberts
  - Re: [PATCH] quick selinux support for tracefs, Stephen Smalley
    - RE: [PATCH] quick selinux support for tracefs, Roberts, William C
      - Re: [PATCH] quick selinux support for tracefs, Stephen Smalley
        
        RE: [PATCH] quick selinux support for tracefs, Roberts, William C
        
        Re: [PATCH] quick selinux support for tracefs, YongQin Liu
        
        RE: [PATCH] quick selinux support for tracefs, Roberts, William C
        
        Re: [PATCH] quick selinux support for tracefs, YongQin Liu
Filtering an avtab in libsepol, Gary Tierney
- Re: Filtering an avtab in libsepol, Stephen Smalley
  - Re: Filtering an avtab in libsepol, Stephen Smalley
    - Re: Filtering an avtab in libsepol, Gary Tierney
  - Re: Filtering an avtab in libsepol, Gary Tierney
[PATCH v2] selinux: support distinctions among all network address families, Stephen Smalley
- Re: [PATCH v2] selinux: support distinctions among all network address families, Paul Moore
  - Re: [PATCH v2] selinux: support distinctions among all network address families, Stephen Smalley
    - Re: [PATCH v2] selinux: support distinctions among all network address families, Paul Moore
      - Re: [PATCH v2] selinux: support distinctions among all network address families, Stephen Smalley
        
        Re: [PATCH v2] selinux: support distinctions among all network address families, Paul Moore
        
        Re: [PATCH v2] selinux: support distinctions among all network address families, Stephen Smalley
        
        Re: [PATCH v2] selinux: support distinctions among all network address families, Stephen Smalley
        
        Re: [PATCH v2] selinux: support distinctions among all network address families, Paul Moore
    - Re: [PATCH v2] selinux: support distinctions among all network address families, Guido Trentalancia
[PATCH] selinux-testsuite: Add IPv6 client/server support plus tests, Richard Haines
- Re: [PATCH] selinux-testsuite: Add IPv6 client/server support plus tests, Stephen Smalley
[PATCH] python: Fix some typos, Vit Mojzis
- Re: [PATCH] python: Fix some typos, Stephen Smalley
[RFC PATCH 1/1] selinux-testsuite: Add IPv6 client/server support plus tests, Richard Haines
- Re: [RFC PATCH 1/1] selinux-testsuite: Add IPv6 client/server support plus tests, Stephen Smalley
  - Re: [RFC PATCH 1/1] selinux-testsuite: Add IPv6 client/server support plus tests, Paul Moore
[RFC PATCH 0/1] selinux-testsuite: Add IPv6 client/server support plus tests, Richard Haines
INTERP ELF header and SELinux, Nick Kralevich
- Re: INTERP ELF header and SELinux, Stephen Smalley
  - Re: INTERP ELF header and SELinux, Stephen Smalley
SETools 4 segfault - sepolicy gui, Vit Mojzis
- Re: SETools 4 segfault - sepolicy gui, Stephen Smalley
[RFC][PATCH] selinux: support distinctions among all network address families, Stephen Smalley
- Re: [RFC][PATCH] selinux: support distinctions among all network address families, Stephen Smalley
  - Re: [RFC][PATCH] selinux: support distinctions among all network address families, Stephen Smalley
  - Re: [RFC][PATCH] selinux: support distinctions among all network address families, Guido Trentalancia
    - Re: [RFC][PATCH] selinux: support distinctions among all network address families, Stephen Smalley
      - Re: [RFC][PATCH] selinux: support distinctions among all network address families, Stephen Smalley
        
        Re: [RFC][PATCH] selinux: support distinctions among all network address families, Guido Trentalancia
      - Re: [RFC][PATCH] selinux: support distinctions among all network address families, Guido Trentalancia
        
        Re: [RFC][PATCH] selinux: support distinctions among all network address families, Stephen Smalley
  - Re: [RFC][PATCH] selinux: support distinctions among all network address families, Stephen Smalley
    - Re: [RFC][PATCH] selinux: support distinctions among all network address families, Paul Moore
      - Re: [RFC][PATCH] selinux: support distinctions among all network address families, Stephen Smalley
        
        Re: [RFC][PATCH] selinux: support distinctions among all network address families, Paul Moore
        
        Re: [RFC][PATCH] selinux: support distinctions among all network address families, Richard Haines
        
        Re: [RFC][PATCH] selinux: support distinctions among all network address families, Stephen Smalley
        
        Re: [RFC][PATCH] selinux: support distinctions among all network address families, Stephen Smalley
        
        Re: [RFC][PATCH] selinux: support distinctions among all network address families, Paul Moore
        
        Re: [RFC][PATCH] selinux: support distinctions among all network address families, Paul Moore
- Re: [RFC][PATCH] selinux: support distinctions among all network address families, Guido Trentalancia
[PATCH] seobject: Handle python error returns correctly, Kyle Walker
- Re: [PATCH] seobject: Handle python error returns correctly, Stephen Smalley
  - Re: [PATCH] seobject: Handle python error returns correctly, Kyle Walker
    - Re: [PATCH] seobject: Handle python error returns correctly, Stephen Smalley
      - Re: [PATCH] seobject: Handle python error returns correctly, Kyle Walker
[PATCH] python/semanage/semanage: Unify argument handling, Vit Mojzis
- Re: [PATCH] python/semanage/semanage: Unify argument handling, Stephen Smalley
[PATCH] libsepol: Fix neverallow checking to also check the other types when self is included in a target type set., James Carter
[PATCH] libsepol, libselinux, audit2allow: teach audit2why about type bounds failures, Stephen Smalley
[PATCH] libsepol: sepol_av_to_string: clear static buffer, Stephen Smalley
[PATCH] libselinux: avcstat: Clean up redundant condition, Stephen Smalley
[PATCH] libsepol: do not #include <sys/cdefs.h>, Stephen Smalley
[PATCH] policycoreutils/sepolicy/gui: fix current selinux state radiobutton, Vit Mojzis
- Re: [PATCH] policycoreutils/sepolicy/gui: fix current selinux state radiobutton, Stephen Smalley
  - Message not available
    - Re: [PATCH] policycoreutils/sepolicy/gui: fix current selinux state radiobutton, Stephen Smalley
      - Re: [PATCH] policycoreutils/sepolicy/gui: fix current selinux state radiobutton, Vit Mojzis
        
        [PATCH] python/sepolicy/sepolicy/gui: Reflect sepolicy changes into gui, Vit Mojzis
        
        [PATCH] python/sepolicy/sepolicy/gui: Reflect sepolicy changes into gui, Vit Mojzis
        
        Re: [PATCH] python/sepolicy/sepolicy/gui: Reflect sepolicy changes into gui, Stephen Smalley
[PATCH 1/4] mcstrans/utils: make "make all" use $DESTDIR, Nicolas Iooss
- [PATCH 2/4] libsepol/tests: use LDFLAGS when linking, Nicolas Iooss
- [PATCH 3/4] checkpolicy: remove -lfl from LDLIBS, Nicolas Iooss
- [PATCH 4/4] libsepol,libsemanage: write file name in flex output, Nicolas Iooss
  - Re: [PATCH 4/4] libsepol,libsemanage: write file name in flex output, Stephen Smalley
[PATCH 1/2 v2] libsepol: check decl_id bounds before using it, Nicolas Iooss
- [PATCH 2/2 v2] libsepol: detect duplicated symbol IDs, Nicolas Iooss
  - Re: [PATCH 2/2 v2] libsepol: detect duplicated symbol IDs, Stephen Smalley
[PATCH 0/2 v2] Enable direct compare of policy file with kernel policy, Stephen Smalley
- [PATCH 1/2 v2] libsepol: do not write object_r types to policy file, Stephen Smalley
- [PATCH 2/2 v2] libsepol, checkpolicy: convert rangetrans and filenametrans to hashtabs, Stephen Smalley
  - Re: [PATCH 2/2 v2] libsepol, checkpolicy: convert rangetrans and filenametrans to hashtabs, Stephen Smalley
- Re: [PATCH 0/2 v2] Enable direct compare of policy file with kernel policy, Stephen Smalley
setools: cast increases required alignment of target type, Laurent Bigonville
- Re: setools: cast increases required alignment of target type, Laurent Bigonville
[PATCH] procattr.c: Use __ANDROID__ instead of ANDROID, Nick Kralevich
- Re: [PATCH] procattr.c: Use __ANDROID__ instead of ANDROID, Stephen Smalley
[GIT PULL] SELinux patches for 4.10, Paul Moore
[PATCH] enabled.c: Remove stdio_ext.h header, Nick Kralevich
- Re: [PATCH] enabled.c: Remove stdio_ext.h header, Stephen Smalley
[PATCH 1/5] libsepol: do not modify p->p_roles.nprim in role_set_expand, Nicolas Iooss
- [PATCH 2/5] libsepol: do not check decl->symtab[i].nprim, Nicolas Iooss
  - Re: [PATCH 2/5] libsepol: do not check decl->symtab[i].nprim, Stephen Smalley
- [PATCH 5/5] libsepol: detect duplicated symbol IDs, Nicolas Iooss
  - Re: [PATCH 5/5] libsepol: detect duplicated symbol IDs, Stephen Smalley
    - Re: [PATCH 5/5] libsepol: detect duplicated symbol IDs, Nicolas Iooss
- [PATCH 4/5] libsepol: check decl_id bounds before using it, Nicolas Iooss
  - Re: [PATCH 4/5] libsepol: check decl_id bounds before using it, Stephen Smalley
- [PATCH 3/5] libsepol: ebitmap: reject loading bitmaps with incorrect high bit, Nicolas Iooss
  - Re: [PATCH 3/5] libsepol: ebitmap: reject loading bitmaps with incorrect high bit, Stephen Smalley
- Re: [PATCH 1/5] libsepol: do not modify p->p_roles.nprim in role_set_expand, Stephen Smalley
[PATCH v6 0/9] SELinux support for Infiniband RDMA, Dan Jurgens
- [PATCH v6 4/9] IB/core: Enforce security on management datagrams, Dan Jurgens
- [PATCH v6 3/9] selinux lsm IB/core: Implement LSM notification system, Dan Jurgens
  - Re: [PATCH v6 3/9] selinux lsm IB/core: Implement LSM notification system, Stephen Smalley
    - Re: [PATCH v6 3/9] selinux lsm IB/core: Implement LSM notification system, Daniel Jurgens
- [PATCH v6 7/9] selinux: Implement Infiniband PKey "Access" access vector, Dan Jurgens
- [PATCH v6 1/9] IB/core: IB cache enhancements to support Infiniband security, Dan Jurgens
- [PATCH v6 8/9] selinux: Add IB Port SMP access vector, Dan Jurgens
- [PATCH v6 5/9] selinux: Create policydb version for Infiniband support, Dan Jurgens
  - Re: [PATCH v6 5/9] selinux: Create policydb version for Infiniband support, Stephen Smalley
    - Re: [PATCH v6 5/9] selinux: Create policydb version for Infiniband support, Daniel Jurgens
- [PATCH v6 9/9] selinux: Add a cache for quicker retreival of PKey SIDs, Dan Jurgens
- [PATCH v6 2/9] IB/core: Enforce PKey security on QPs, Dan Jurgens
- [PATCH v6 6/9] selinux: Allocate and free infiniband security hooks, Dan Jurgens
- Re: [PATCH v6 0/9] SELinux support for Infiniband RDMA, Doug Ledford
- Re: [PATCH v6 0/9] SELinux support for Infiniband RDMA, Stephen Smalley
  - Re: [PATCH v6 0/9] SELinux support for Infiniband RDMA, Daniel Jurgens
    - Re: [PATCH v6 0/9] SELinux support for Infiniband RDMA, Paul Moore
      - Re: [PATCH v6 0/9] SELinux support for Infiniband RDMA, Doug Ledford
        
        Re: [PATCH v6 0/9] SELinux support for Infiniband RDMA, Doug Ledford
        
        Re: [PATCH v6 0/9] SELinux support for Infiniband RDMA, Daniel Jurgens
        
        Re: [PATCH v6 0/9] SELinux support for Infiniband RDMA, Doug Ledford
        
        Re: [PATCH v6 0/9] SELinux support for Infiniband RDMA, Paul Moore
        
        Re: [PATCH v6 0/9] SELinux support for Infiniband RDMA, Doug Ledford
        
        Re: [PATCH v6 0/9] SELinux support for Infiniband RDMA, Paul Moore

[Index of Archives] [Selinux Refpolicy] [Fedora Users] [Fedora Desktop] [Kernel] [KDE Users] [Gnome Users]