Security Enhanced Linux (SELINUX)

Date Index

[Prev Page][Next Page]

Re: [PATCH v9 23/25] evm: Make it independent from 'integrity' LSM, (continued)
- [PATCH v9 24/25] ima: Make it independent from 'integrity' LSM, Roberto Sassu
  - Re: [PATCH v9 24/25] ima: Make it independent from 'integrity' LSM, Casey Schaufler
  - Re: [PATCH v9 24/25] ima: Make it independent from 'integrity' LSM, Stefan Berger
- [PATCH v9 25/25] integrity: Remove LSM, Roberto Sassu
  - Re: [PATCH v9 25/25] integrity: Remove LSM, Casey Schaufler
  - Re: [PATCH v9 25/25] integrity: Remove LSM, Paul Moore
  - Re: [PATCH v9 25/25] integrity: Remove LSM, Stefan Berger
- [PATCH v9 04/25] ima: Align ima_inode_removexattr() definition with LSM infrastructure, Roberto Sassu
  - Re: [PATCH v9 4/25] ima: Align ima_inode_removexattr() definition with LSM infrastructure, Paul Moore
- [PATCH v9 13/25] security: Introduce file_release hook, Roberto Sassu
  - Re: [PATCH v9 13/25] security: Introduce file_release hook, Al Viro
    - Re: [PATCH v9 13/25] security: Introduce file_release hook, Roberto Sassu
      - Re: [PATCH v9 13/25] security: Introduce file_release hook, Casey Schaufler
        
        Re: [PATCH v9 13/25] security: Introduce file_release hook, Al Viro
        
        Re: [PATCH v9 13/25] security: Introduce file_release hook, Casey Schaufler
  - Re: [PATCH v9 13/25] security: Introduce file_release hook, Paul Moore
  - Re: [PATCH v9 13/25] security: Introduce file_release hook, Christian Brauner
  - Re: [PATCH v9 13/25] security: Introduce file_release hook, Stefan Berger
- Re: [PATCH v9 0/25] security: Move IMA and EVM to the LSM infrastructure, Paul Moore
  - Re: [PATCH v9 0/25] security: Move IMA and EVM to the LSM infrastructure, Roberto Sassu
    - Re: [PATCH v9 0/25] security: Move IMA and EVM to the LSM infrastructure, Paul Moore
[PATCH] libselinux: use reentrant strtok_r(3), Christian Göttsche
- Re: [PATCH] libselinux: use reentrant strtok_r(3), James Carter
  - Re: [PATCH] libselinux: use reentrant strtok_r(3), James Carter
ANN: SELint 1.5, Daniel Burgener
[PATCH] libsepol/src/Makefile: fix reallocarray detection, Fabrice Fontaine
- Re: [PATCH] libsepol/src/Makefile: fix reallocarray detection, James Carter
  - Re: [PATCH] libsepol/src/Makefile: fix reallocarray detection, James Carter
[RFC PATCH] libselinux: disable capturing in fcontext matching, Christian Göttsche
- Re: [RFC PATCH] libselinux: disable capturing in fcontext matching, James Carter
[GIT PULL] selinux/selinux-pr-20240105, Paul Moore
- Re: [GIT PULL] selinux/selinux-pr-20240105, pr-tracker-bot
[PATCH] libselinux: Fix ordering of arguments to calloc, James Carter
- Re: [PATCH] libselinux: Fix ordering of arguments to calloc, James Carter
[PATCH 1/4] libsepol: reorder calloc(3) arguments, Christian Göttsche
- [PATCH 2/4] libselinux: reorder calloc(3) arguments, Christian Göttsche
- [PATCH 4/4] mcstrans: check memory allocations, Christian Göttsche
- [PATCH 3/4] sandbox: do not override warning CFLAGS, Christian Göttsche
- Re: [PATCH 1/4] libsepol: reorder calloc(3) arguments, James Carter
  - Re: [PATCH 1/4] libsepol: reorder calloc(3) arguments, James Carter
SELinux style fixes, Paul Moore
- [PATCH 03/15] selinux: align avc_has_perm_noaudit() prototype with definition, Paul Moore
- [PATCH 02/15] selinux: fix style issues in security/selinux/include/avc.h, Paul Moore
- [PATCH 01/15] selinux: fix style issues in security/selinux/include/audit.h, Paul Moore
  - Re: [PATCH 1/15] selinux: fix style issues in security/selinux/include/audit.h, Paul Moore
- [PATCH 06/15] selinux: fix style issues in security/selinux/include/conditional.h, Paul Moore
- [PATCH 04/15] selinux: fix style issues in security/selinux/include/avc_ss.h, Paul Moore
- [PATCH 05/15] selinux: fix style issues in security/selinux/include/classmap.h, Paul Moore
- [PATCH 08/15] selinux: fix style issues in security/selinux/include/netif.h, Paul Moore
- [PATCH 09/15] selinux: fix style issues with security/selinux/include/netlabel.h, Paul Moore
- [PATCH 07/15] selinux: fix style issues in security/selinux/include/ima.h, Paul Moore
- [PATCH 10/15] selinux: fix style issues in security/selinux/include/objsec.h, Paul Moore
- [PATCH 11/15] selinux: fix style issues in security/selinux/include/policycap.h, Paul Moore
- [PATCH 13/15] selinux: fix style issues in security/selinux/include/security.h, Paul Moore
- [PATCH 12/15] selinux: fix style issues with security/selinux/include/policycap_names.h, Paul Moore
- [PATCH 14/15] selinux: fix style issues in security/selinux/include/xfrm.h, Paul Moore
- [PATCH 15/15] selinux: fix style issues in security/selinux/include/initial_sid_to_string.h, Paul Moore
[PATCH] MAINTAINERS: drop Eric Paris from his SELinux role, Paul Moore
- Re: [PATCH] MAINTAINERS: drop Eric Paris from his SELinux role, Stephen Smalley
- Re: [PATCH] MAINTAINERS: drop Eric Paris from his SELinux role, Paul Moore
[PATCH] MAINTAINERS: add Ondrej Mosnacek as a SELinux reviewer, Paul Moore
- Re: [PATCH] MAINTAINERS: add Ondrej Mosnacek as a SELinux reviewer, Stephen Smalley
- Re: [PATCH] MAINTAINERS: add Ondrej Mosnacek as a SELinux reviewer, Ondrej Mosnacek
- Re: [PATCH] MAINTAINERS: add Ondrej Mosnacek as a SELinux reviewer, Paul Moore
[PATCH 01/11] libselinux/man: mention errno for regex compilation failure, Christian Göttsche
- [PATCH 02/11] libselinux/man: sync selinux_check_securetty_context(3), Christian Göttsche
- [PATCH 06/11] libselinux: fail selabel_open(3) on invalid option, Christian Göttsche
- [PATCH 04/11] libselinux/utils: improve compute_av output, Christian Göttsche
- [PATCH 03/11] libselinux/utils: free allocated resources, Christian Göttsche
- [PATCH 05/11] libselinux: align SELABEL_OPT_DIGEST usage with man page, Christian Göttsche
- [PATCH 07/11] libselinux: use logging wrapper in getseuser(3) and get_default_context(3) family, Christian Göttsche
- [PATCH 09/11] libsemanage: support huge passwd entries, Christian Göttsche
- [PATCH 08/11] libselinux: support huge passwd/group entries, Christian Göttsche
- [PATCH 11/11] setfiles: avoid unsigned integer underflow, Christian Göttsche
- [PATCH 10/11] libselinux: enable usage with pedantic UB sanitizers, Christian Göttsche
- Re: [PATCH 01/11] libselinux/man: mention errno for regex compilation failure, James Carter
  - Re: [PATCH 01/11] libselinux/man: mention errno for regex compilation failure, James Carter
[PATCH] SELinux: Introduce security_file_ioctl_compat hook, Alfred Piccioni
- Re: [PATCH] SELinux: Introduce security_file_ioctl_compat hook, Alfred Piccioni
- Re: [PATCH] SELinux: Introduce security_file_ioctl_compat hook, Stephen Smalley
  - Re: [PATCH] SELinux: Introduce security_file_ioctl_compat hook, Stephen Smalley
- Re: [PATCH] SELinux: Introduce security_file_ioctl_compat hook, Casey Schaufler
  - Re: [PATCH] SELinux: Introduce security_file_ioctl_compat hook, Stephen Smalley
    - Re: [PATCH] SELinux: Introduce security_file_ioctl_compat hook, Casey Schaufler
[PATCH v8 00/24] security: Move IMA and EVM to the LSM infrastructure, Roberto Sassu
- [PATCH v8 01/24] ima: Align ima_inode_post_setattr() definition with LSM infrastructure, Roberto Sassu
- [PATCH v8 02/24] ima: Align ima_file_mprotect() definition with LSM infrastructure, Roberto Sassu
- [PATCH v8 03/24] ima: Align ima_inode_setxattr() definition with LSM infrastructure, Roberto Sassu
- [PATCH v8 04/24] ima: Align ima_inode_removexattr() definition with LSM infrastructure, Roberto Sassu
- [PATCH v8 05/24] ima: Align ima_post_read_file() definition with LSM infrastructure, Roberto Sassu
- [PATCH v8 06/24] evm: Align evm_inode_post_setattr() definition with LSM infrastructure, Roberto Sassu
- [PATCH v8 07/24] evm: Align evm_inode_setxattr() definition with LSM infrastructure, Roberto Sassu
- [PATCH v8 08/24] evm: Align evm_inode_post_setxattr() definition with LSM infrastructure, Roberto Sassu
- [PATCH v8 09/24] security: Align inode_setattr hook definition with EVM, Roberto Sassu
- [PATCH v8 10/24] security: Introduce inode_post_setattr hook, Roberto Sassu
- [PATCH v8 11/24] security: Introduce inode_post_removexattr hook, Roberto Sassu
  - Re: [PATCH v8 11/24] security: Introduce inode_post_removexattr hook, Casey Schaufler
- [PATCH v8 12/24] security: Introduce file_post_open hook, Roberto Sassu
- [PATCH v8 13/24] security: Introduce file_release hook, Roberto Sassu
  - Re: [PATCH v8 13/24] security: Introduce file_release hook, Casey Schaufler
- [PATCH v8 14/24] security: Introduce path_post_mknod hook, Roberto Sassu
- [PATCH v8 15/24] security: Introduce inode_post_create_tmpfile hook, Roberto Sassu
- [PATCH v8 16/24] security: Introduce inode_post_set_acl hook, Roberto Sassu
- [PATCH v8 17/24] security: Introduce inode_post_remove_acl hook, Roberto Sassu
- [PATCH v8 18/24] security: Introduce key_post_create_or_update hook, Roberto Sassu
- [PATCH v8 19/24] ima: Move to LSM infrastructure, Roberto Sassu
  - Re: [PATCH v8 19/24] ima: Move to LSM infrastructure, Mimi Zohar
    - Re: [PATCH v8 19/24] ima: Move to LSM infrastructure, Casey Schaufler
      - Re: [PATCH v8 19/24] ima: Move to LSM infrastructure, Mimi Zohar
        
        Re: [PATCH v8 19/24] ima: Move to LSM infrastructure, Casey Schaufler
- [PATCH v8 20/24] ima: Move IMA-Appraisal to LSM infrastructure, Roberto Sassu
  - Re: [PATCH v8 20/24] ima: Move IMA-Appraisal to LSM infrastructure, Mimi Zohar
- [PATCH v8 21/24] evm: Move to LSM infrastructure, Roberto Sassu
  - Re: [PATCH v8 21/24] evm: Move to LSM infrastructure, Casey Schaufler
  - Re: [PATCH v8 21/24] evm: Move to LSM infrastructure, Mimi Zohar
    - Re: [PATCH v8 21/24] evm: Move to LSM infrastructure, Roberto Sassu
      - Re: [PATCH v8 21/24] evm: Move to LSM infrastructure, Mimi Zohar
- [PATCH v8 22/24] evm: Make it independent from 'integrity' LSM, Roberto Sassu
  - Re: [PATCH v8 22/24] evm: Make it independent from 'integrity' LSM, Mimi Zohar
- [PATCH v8 23/24] ima: Make it independent from 'integrity' LSM, Roberto Sassu
  - Re: [PATCH v8 23/24] ima: Make it independent from 'integrity' LSM, Roberto Sassu
  - Re: [PATCH v8 23/24] ima: Make it independent from 'integrity' LSM, Mimi Zohar
    - Re: [PATCH v8 23/24] ima: Make it independent from 'integrity' LSM, Roberto Sassu
      - Re: [PATCH v8 23/24] ima: Make it independent from 'integrity' LSM, Mimi Zohar
        
        Re: [PATCH v8 23/24] ima: Make it independent from 'integrity' LSM, Roberto Sassu
- [PATCH v8 24/24] integrity: Remove LSM, Roberto Sassu
Fwd: SELinux mprotect EACCES/execheap for memory segment directly adjacent to heap, Bagas Sanjaya
- Re: SELinux mprotect EACCES/execheap for memory segment directly adjacent to heap, Ondrej Mosnacek
[UTIL-LINUX PATCH] sulogin: relabel terminal according to SELinux policy, Christian Göttsche
- Re: [UTIL-LINUX PATCH] sulogin: relabel terminal according to SELinux policy, James Carter
  - Re: [UTIL-LINUX PATCH] sulogin: relabel terminal according to SELinux policy, Christian Göttsche
[PATCH v2] libsepol: Use a dynamic buffer in sepol_av_to_string(), James Carter
- Re: [PATCH v2] libsepol: Use a dynamic buffer in sepol_av_to_string(), Christian Göttsche
  - Re: [PATCH v2] libsepol: Use a dynamic buffer in sepol_av_to_string(), James Carter
- Re: [PATCH v2] libsepol: Use a dynamic buffer in sepol_av_to_string(), James Carter
[PATCH v5 0/4] vduse: add support for networking devices, Maxime Coquelin
- [PATCH v5 1/4] vduse: validate block features only with block devices, Maxime Coquelin
- [PATCH v5 2/4] vduse: Temporarily disable control queue features, Maxime Coquelin
  - Re: [PATCH v5 2/4] vduse: Temporarily disable control queue features, Jason Wang
    - Re: [PATCH v5 2/4] vduse: Temporarily disable control queue features, Maxime Coquelin
      - Re: [PATCH v5 2/4] vduse: Temporarily disable control queue features, Jason Wang
        
        Re: [PATCH v5 2/4] vduse: Temporarily disable control queue features, Maxime Coquelin
        
        Re: [PATCH v5 2/4] vduse: Temporarily disable control queue features, Jason Wang
- [PATCH v5 3/4] vduse: enable Virtio-net device type, Maxime Coquelin
- [PATCH v5 4/4] vduse: Add LSM hook to check Virtio device type, Maxime Coquelin
  - Re: [PATCH v5 4/4] vduse: Add LSM hook to check Virtio device type, Casey Schaufler
    - Re: [PATCH v5 4/4] vduse: Add LSM hook to check Virtio device type, Michael S. Tsirkin
      - Re: [PATCH v5 4/4] vduse: Add LSM hook to check Virtio device type, Casey Schaufler
        
        Re: [PATCH v5 4/4] vduse: Add LSM hook to check Virtio device type, Serge E. Hallyn
  - Re: [PATCH v5 4/4] vduse: Add LSM hook to check Virtio device type, Stephen Smalley
    - Re: [PATCH v5 4/4] vduse: Add LSM hook to check Virtio device type, Stephen Smalley
      - Re: [PATCH v5 4/4] vduse: Add LSM hook to check Virtio device type, Maxime Coquelin
    - Re: [PATCH v5 4/4] vduse: Add LSM hook to check Virtio device type, Paul Moore
[PATCH] libsepol: Use a dynamic buffer in sepol_av_to_string(), James Carter
- Re: [PATCH] libsepol: Use a dynamic buffer in sepol_av_to_string(), Christian Göttsche
  - Re: [PATCH] libsepol: Use a dynamic buffer in sepol_av_to_string(), James Carter
[PATCH 1/3] libselinux: update const qualifier of parameters in man pages, Christian Göttsche
- [PATCH 2/3] libselinux: always set errno on context translation failure, Christian Göttsche
- [PATCH 3/3] libselinux: state setexecfilecon(3) sets errno on failure, Christian Göttsche
- Re: [PATCH 1/3] libselinux: update const qualifier of parameters in man pages, James Carter
  - Re: [PATCH 1/3] libselinux: update const qualifier of parameters in man pages, James Carter
[PATCH] libsepol: validate empty common classes in scope indices, Christian Göttsche
- Re: [PATCH] libsepol: validate empty common classes in scope indices, James Carter
  - Re: [PATCH] libsepol: validate empty common classes in scope indices, James Carter
[RFC PATCH] libsepol: handle long permission names in sepol_av_to_string(), Christian Göttsche
- Re: [RFC PATCH] libsepol: handle long permission names in sepol_av_to_string(), James Carter
  - Re: [RFC PATCH] libsepol: handle long permission names in sepol_av_to_string(), Stephen Smalley
    - Re: [RFC PATCH] libsepol: handle long permission names in sepol_av_to_string(), James Carter
[PATCH 1/3] libsepol: constify tokenized input, Christian Göttsche
- [PATCH 2/3] libsepol: avoid integer overflow in add_i_to_a(), Christian Göttsche
- [PATCH 3/3] libsepol: extended permission formatting cleanup, Christian Göttsche
- Re: [PATCH 1/3] libsepol: constify tokenized input, James Carter
  - Re: [PATCH 1/3] libsepol: constify tokenized input, James Carter
Where's 3.6-rc3 and plan with 3.6 release, Petr Lautrbach
- Re: Where's 3.6-rc3 and plan with 3.6 release, Johannes Segitz
  - Re: Where's 3.6-rc3 and plan with 3.6 release, James Carter
    - Re: Where's 3.6-rc3 and plan with 3.6 release, Petr Lautrbach
[PATCH] libsepol: validate common classes in scope indices, Christian Göttsche
- Re: [PATCH] libsepol: validate common classes in scope indices, James Carter
[PATCH v2] checkpolicy/dispol: misc updates, Christian Göttsche
- Re: [PATCH v2] checkpolicy/dispol: misc updates, James Carter
  - Re: [PATCH v2] checkpolicy/dispol: misc updates, James Carter
[RFC PATCH] libsepol: validate permission identifier length, Christian Göttsche
- Re: [RFC PATCH] libsepol: validate permission identifier length, Stephen Smalley
  - Re: [RFC PATCH] libsepol: validate permission identifier length, Stephen Smalley
  - Re: [RFC PATCH] libsepol: validate permission identifier length, James Carter
ANN: SETools 4.4.4, Chris PeBenito
[PATCH] mm: fix VMA heap bounds checking, Kefeng Wang
- Re: [PATCH] mm: fix VMA heap bounds checking, Andrew Morton
  - Re: [PATCH] mm: fix VMA heap bounds checking, Kefeng Wang
[PATCH] python: Harden more tools agains "rogue" modules, Vit Mojzis
- Re: [PATCH] python: Harden more tools agains "rogue" modules, James Carter
  - Re: [PATCH] python: Harden more tools agains "rogue" modules, James Carter
[PATCH 0/11] vfs: inode cache scalability improvements, Dave Chinner
- [PATCH 06/11] vfs: factor out inode hash head calculation, Dave Chinner
  - Re: [PATCH 06/11] vfs: factor out inode hash head calculation, Al Viro
- [PATCH 07/11] hlist-bl: add hlist_bl_fake(), Dave Chinner
  - Re: [PATCH 07/11] hlist-bl: add hlist_bl_fake(), Al Viro
- [PATCH 05/11] selinux: use dlist for isec inode list, Dave Chinner
  - Re: [PATCH 05/11] selinux: use dlist for isec inode list, Paul Moore
    - Re: [PATCH 05/11] selinux: use dlist for isec inode list, Dave Chinner
      - Re: [PATCH 05/11] selinux: use dlist for isec inode list, Paul Moore
- [PATCH 02/11] vfs: Remove unnecessary list_for_each_entry_safe() variants, Dave Chinner
  - Re: [PATCH 02/11] vfs: Remove unnecessary list_for_each_entry_safe() variants, Al Viro
  - Re: [PATCH 02/11] vfs: Remove unnecessary list_for_each_entry_safe() variants, Kent Overstreet
- [PATCH 09/11] hash-bl: explicitly initialise hash-bl heads, Dave Chinner
  - Re: [PATCH 09/11] hash-bl: explicitly initialise hash-bl heads, Al Viro
- [PATCH 11/11] hlist-bl: introduced nested locking for dm-snap, Dave Chinner
- [PATCH 04/11] lib/dlock-list: Make sibling CPUs share the same linked list, Dave Chinner
  - Re: [PATCH 04/11] lib/dlock-list: Make sibling CPUs share the same linked list, Kent Overstreet
  - Re: [PATCH 04/11] lib/dlock-list: Make sibling CPUs share the same linked list, Kent Overstreet
    - Re: [PATCH 04/11] lib/dlock-list: Make sibling CPUs share the same linked list, Dave Chinner
  - Re: [PATCH 04/11] lib/dlock-list: Make sibling CPUs share the same linked list, Al Viro
- [PATCH 01/11] lib/dlock-list: Distributed and lock-protected lists, Dave Chinner
  - Re: [PATCH 01/11] lib/dlock-list: Distributed and lock-protected lists, Al Viro
- [PATCH 10/11] list_bl: don't use bit locks for PREEMPT_RT or lockdep, Dave Chinner
  - Re: [PATCH 10/11] list_bl: don't use bit locks for PREEMPT_RT or lockdep, Kent Overstreet
    - Re: [PATCH 10/11] list_bl: don't use bit locks for PREEMPT_RT or lockdep, Dave Chinner
- [PATCH 08/11] vfs: inode cache conversion to hash-bl, Dave Chinner
  - Re: [PATCH 08/11] vfs: inode cache conversion to hash-bl, Kent Overstreet
    - Re: [PATCH 08/11] vfs: inode cache conversion to hash-bl, Dave Chinner
  - Re: [PATCH 08/11] vfs: inode cache conversion to hash-bl, Al Viro
- [PATCH 03/11] vfs: Use dlock list for superblock's inode list, Dave Chinner
  - Re: [PATCH 03/11] vfs: Use dlock list for superblock's inode list, Al Viro
    - Re: [PATCH 03/11] vfs: Use dlock list for superblock's inode list, Dave Chinner
      - Re: [PATCH 03/11] vfs: Use dlock list for superblock's inode list, Kent Overstreet
- Re: [PATCH 0/11] vfs: inode cache scalability improvements, Kent Overstreet
[PATCH v6] checkpolicy,libsepol: add prefix/suffix matching to filename type transitions, Juraj Marcin
- Re: [PATCH v6] checkpolicy,libsepol: add prefix/suffix matching to filename type transitions, James Carter
setools build is broken by 61f21385004 ("libsepol: rename struct member"), revert?, Petr Lautrbach
- Re: setools build is broken by 61f21385004 ("libsepol: rename struct member"), revert?, James Carter
- [PATCH 1/2] Revert "libsepol/tests: rename bool indentifiers", Petr Lautrbach
  - [PATCH 2/2] Revert "libsepol: rename struct member", Petr Lautrbach
  - Re: [PATCH 1/2] Revert "libsepol/tests: rename bool indentifiers", James Carter
    - Re: [PATCH 1/2] Revert "libsepol/tests: rename bool indentifiers", Christian Göttsche
      - Re: [PATCH 1/2] Revert "libsepol/tests: rename bool indentifiers", James Carter
      - Re: [PATCH 1/2] Revert "libsepol/tests: rename bool indentifiers", Petr Lautrbach
        
        Re: [PATCH 1/2] Revert "libsepol/tests: rename bool indentifiers", Chris PeBenito
[PATCH] libsemanage: fix src/genhomedircon.c build on `gcc-14` (`-Werror=alloc-size`), Sergei Trofimovich
- Re: [PATCH] libsemanage: fix src/genhomedircon.c build on `gcc-14` (`-Werror=alloc-size`), James Carter
  - Re: [PATCH] libsemanage: fix src/genhomedircon.c build on `gcc-14` (`-Werror=alloc-size`), James Carter
[PATCH v2 0/3] clean up io_uring cmd header structure, Pavel Begunkov
- [PATCH v2 2/3] io_uring/cmd: inline io_uring_cmd_do_in_task_lazy, Pavel Begunkov
  - Re: [PATCH v2 2/3] io_uring/cmd: inline io_uring_cmd_do_in_task_lazy, Ming Lei
- [PATCH v2 3/3] io_uring/cmd: inline io_uring_cmd_get_task, Pavel Begunkov
  - Re: [PATCH v2 3/3] io_uring/cmd: inline io_uring_cmd_get_task, Ming Lei
- [PATCH v2 1/3] io_uring: split out cmd api into a separate header, Pavel Begunkov
  - Re: [PATCH v2 1/3] io_uring: split out cmd api into a separate header, Ming Lei
- Re: [PATCH v2 0/3] clean up io_uring cmd header structure, Jens Axboe
[PATCH v7 19/23] ima: Move to LSM infrastructure, Roberto Sassu
- [PATCH v7 20/23] ima: Move IMA-Appraisal to LSM infrastructure, Roberto Sassu
- [PATCH v7 21/23] evm: Move to LSM infrastructure, Roberto Sassu
- [PATCH v7 22/23] integrity: Remove 'integrity' LSM and move integrity functions to 'ima' LSM, Roberto Sassu
- [PATCH v7 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Roberto Sassu
  - Re: [PATCH v7 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Roberto Sassu
[PATCH] selinux: bring the comment about multithreaded process handling back, Munehisa Kamata
- Re: [PATCH] selinux: bring the comment about multithreaded process handling back, Paul Moore
  - [PATCH v2] selinux: remove the wrong comment about multithreaded process handling, Munehisa Kamata
    - Re: [PATCH v2] selinux: remove the wrong comment about multithreaded process handling, Paul Moore
      - Re: [PATCH v2] selinux: remove the wrong comment about multithreaded process handling, Munehisa Kamata
[PATCH] libsepol/cil: Clear AST node after destroying bad filecon rule, James Carter
- Re: [PATCH] libsepol/cil: Clear AST node after destroying bad filecon rule, James Carter
  - Re: [PATCH] libsepol/cil: Clear AST node after destroying bad filecon rule, James Carter
[PATCH 1/7] libsepol: validate conditional type rules have a simple default type, Christian Göttsche
- [PATCH 3/7] checkpolicy/dismod: avoid duplicate initialization and fix module linking, Christian Göttsche
- [PATCH 2/7] libsepol: use correct type to avoid truncations, Christian Göttsche
- [PATCH 4/7] checkpolicy/dispol: misc updates, Christian Göttsche
  - Re: [PATCH 4/7] checkpolicy/dispol: misc updates, James Carter
- [PATCH 5/7] libsepol: reject invalid class datums, Christian Göttsche
- [PATCH 6/7] libsepol/fuzz: handle empty and non kernel policies, Christian Göttsche
- [PATCH 7/7] libsepol: reject linking modules with no avrules, Christian Göttsche
- Re: [PATCH 1/7] libsepol: validate conditional type rules have a simple default type, James Carter
  - Re: [PATCH 1/7] libsepol: validate conditional type rules have a simple default type, James Carter
[PATCH] libsepol: simplify string formatting, Christian Göttsche
- Re: [PATCH] libsepol: simplify string formatting, James Carter
  - Re: [PATCH] libsepol: simplify string formatting, James Carter
[PATCH testsuite] defconfig: add NF_TABLES dependency for netlink_socket tests to pass, Alan Wandke
- Re: [PATCH testsuite] defconfig: add NF_TABLES dependency for netlink_socket tests to pass, Stephen Smalley
  - Re: [PATCH testsuite] defconfig: add NF_TABLES dependency for netlink_socket tests to pass, Ondrej Mosnacek
[PATCH v5] checkpolicy,libsepol: add prefix/suffix matching to filename type transitions, Juraj Marcin
- Re: [PATCH v5] checkpolicy,libsepol: add prefix/suffix matching to filename type transitions, James Carter
PSA: this list has moved to new vger infra (no action required), Konstantin Ryabitsev
ANN: SELinux userspace 3.6-rc2 release, Petr Lautrbach
- <Possible follow-ups>
- ANN: SELinux userspace 3.6-rc2 release, Petr Lautrbach
  - Re: ANN: SELinux userspace 3.6, Petr Lautrbach
    - Re: ANN: SELinux userspace 3.6, Cathy Hu
      - Re: ANN: SELinux userspace 3.6, Petr Lautrbach
        
        Re: ANN: SELinux userspace 3.6, Paul Moore
getpolicyload returns 0, 2, 3, 4, ..., Petr Lautrbach
- Re: getpolicyload returns 0, 2, 3, 4, ..., William Roberts
  - Re: getpolicyload returns 0, 2, 3, 4, ..., Christian Göttsche
[PATCH v4] checkpolicy,libsepol: add prefix/suffix matching to filename type transitions, Juraj Marcin
- Re: [PATCH v4] checkpolicy,libsepol: add prefix/suffix matching to filename type transitions, James Carter
[PATCH v4] selinux: add prefix/suffix matching to filename type transitions, Juraj Marcin
- Re: [PATCH v4] selinux: add prefix/suffix matching to filename type transitions, Stephen Smalley
- Re: [PATCH v4] selinux: add prefix/suffix matching to filename type transitions, Paul Moore
  - Re: [PATCH v4] selinux: add prefix/suffix matching to filename type transitions, Juraj Marcin
    - Re: [PATCH v4] selinux: add prefix/suffix matching to filename type transitions, Paul Moore
      - Re: [PATCH v4] selinux: add prefix/suffix matching to filename type transitions, Juraj Marcin
        
        [PATCH v5] selinux: add prefix/suffix matching to filename type transitions, Juraj Marcin
        
        Re: [PATCH v5] selinux: add prefix/suffix matching to filename type transitions, Paul Moore
        
        Re: [PATCH v5] selinux: add prefix/suffix matching to filename type transitions, Juraj Marcin
        
        Re: [PATCH v5] selinux: add prefix/suffix matching to filename type transitions, Paul Moore
[PATCH v6 00/25] security: Move IMA and EVM to the LSM infrastructure, Roberto Sassu
- [PATCH v6 01/25] ima: Align ima_inode_post_setattr() definition with LSM infrastructure, Roberto Sassu
- [PATCH v6 05/25] ima: Align ima_post_read_file() definition with LSM infrastructure, Roberto Sassu
- [PATCH v6 03/25] ima: Align ima_inode_setxattr() definition with LSM infrastructure, Roberto Sassu
- [PATCH v6 02/25] ima: Align ima_file_mprotect() definition with LSM infrastructure, Roberto Sassu
- [PATCH v6 04/25] ima: Align ima_inode_removexattr() definition with LSM infrastructure, Roberto Sassu
- [PATCH v6 06/25] evm: Align evm_inode_post_setattr() definition with LSM infrastructure, Roberto Sassu
- [PATCH v6 07/25] evm: Align evm_inode_setxattr() definition with LSM infrastructure, Roberto Sassu
- [PATCH v6 08/25] evm: Align evm_inode_post_setxattr() definition with LSM infrastructure, Roberto Sassu
- [PATCH v6 09/25] security: Align inode_setattr hook definition with EVM, Roberto Sassu
- [PATCH v6 10/25] security: Introduce inode_post_setattr hook, Roberto Sassu
- [PATCH v6 11/25] security: Introduce inode_post_removexattr hook, Roberto Sassu
- [PATCH v6 12/25] security: Introduce file_post_open hook, Roberto Sassu
- [PATCH v6 13/25] security: Introduce file_release hook, Roberto Sassu
- [PATCH v6 14/25] security: Introduce path_post_mknod hook, Roberto Sassu
- [PATCH v6 15/25] security: Introduce inode_post_create_tmpfile hook, Roberto Sassu
- [PATCH v6 16/25] security: Introduce inode_post_set_acl hook, Roberto Sassu
- [PATCH v6 19/25] ima: Move to LSM infrastructure, Roberto Sassu
  - Re: [PATCH v6 19/25] ima: Move to LSM infrastructure, Roberto Sassu
- [PATCH v6 17/25] security: Introduce inode_post_remove_acl hook, Roberto Sassu
- [PATCH v6 18/25] security: Introduce key_post_create_or_update hook, Roberto Sassu
- [PATCH v6 21/25] evm: Move to LSM infrastructure, Roberto Sassu
- [PATCH v6 24/25] integrity: Remove LSM, Roberto Sassu
- [PATCH v6 22/25] ima: Remove dependency on 'integrity' LSM, Roberto Sassu
- [PATCH v6 25/25] security: Enforce ordering of 'ima' and 'evm' LSMs, Roberto Sassu
  - Re: [PATCH v6 25/25] security: Enforce ordering of 'ima' and 'evm' LSMs, Casey Schaufler
    - Re: [PATCH v6 25/25] security: Enforce ordering of 'ima' and 'evm' LSMs, Roberto Sassu
- [PATCH v6 23/25] evm: Remove dependency on 'integrity' LSM, Roberto Sassu
- [PATCH v6 20/25] ima: Move IMA-Appraisal to LSM infrastructure, Roberto Sassu
[PATCH] sepolicy: port to dnf4 python API, Petr Lautrbach
- Re: [PATCH] sepolicy: port to dnf4 python API, James Carter
- Re: [PATCH] sepolicy: port to dnf4 python API, Ondrej Mosnacek
  - [PATCH v2] sepolicy: port to dnf4 python API, Petr Lautrbach
    - Re: [PATCH v2] sepolicy: port to dnf4 python API, Ondrej Mosnacek
      - Re: [PATCH v2] sepolicy: port to dnf4 python API, James Carter
[PATCH v2 1/2] libsepol: avoid fixed sized format buffer for xperms, Christian Göttsche
- [PATCH v2 2/2] libsepol: avoid fixed sized format buffer for xperms, Christian Göttsche
  - Re: [PATCH v2 2/2] libsepol: avoid fixed sized format buffer for xperms, James Carter
    - Re: [PATCH v2 2/2] libsepol: avoid fixed sized format buffer for xperms, James Carter
[PATCH 1/2] libsepol: avoid fixed sized format buffer for xperms, Christian Göttsche
- [PATCH 2/2] libsepol: avoid fixed sized format buffer for xperms, Christian Göttsche
[PATCH v2] libsepol: add check for category value before printing, luhuaxin1
- Re: [PATCH v2] libsepol: add check for category value before printing, James Carter
  - Re: [PATCH v2] libsepol: add check for category value before printing, James Carter
[PATCH] MAINTAINERS: update the SELinux entry, Paul Moore
- Re: [PATCH] MAINTAINERS: update the SELinux entry, Paul Moore
  - Re: [PATCH] MAINTAINERS: update the SELinux entry, Paul Moore
[PATCH v3] selinux: introduce an initial SID for early boot processes, Ondrej Mosnacek
- Re: [PATCH v3] selinux: introduce an initial SID for early boot processes, Paul Moore
  - Re: [PATCH v3] selinux: introduce an initial SID for early boot processes, Ondrej Mosnacek
  - Re: [PATCH v3] selinux: introduce an initial SID for early boot processes, Michael Ellerman
- Re: [PATCH v3] selinux: introduce an initial SID for early boot processes, Stephen Smalley
  - Re: [PATCH v3] selinux: introduce an initial SID for early boot processes, Ondrej Mosnacek
    - Re: [PATCH v3] selinux: introduce an initial SID for early boot processes, Paul Moore
[RFC PATCH] selinux: assorted hash table improvements, Paul Moore
- Re: [RFC PATCH] selinux: assorted hash table improvements, Linus Torvalds
[PATCH v1] libsepol: add check for category value before printing, luhuaxin1
- Re: [PATCH v1] libsepol: add check for category value before printing, James Carter
[PATCH] libsepol: add check for category value before printing, l00564439
[PATCH] libsepol: validate common classes have at least one permissions, Christian Göttsche
- Re: [PATCH] libsepol: validate common classes have at least one permissions, James Carter
  - Re: [PATCH] libsepol: validate common classes have at least one permissions, James Carter
[PATCH] selinux: update filenametr_hash() to use full_name_hash(), Paul Moore
- Re: [PATCH] selinux: update filenametr_hash() to use full_name_hash(), Linus Torvalds
  - Re: [PATCH] selinux: update filenametr_hash() to use full_name_hash(), Linus Torvalds
  - Re: [PATCH] selinux: update filenametr_hash() to use full_name_hash(), Paul Moore
Proposed feature: fine-grained file descriptors in SELinux, Chris PeBenito
- Re: Proposed feature: fine-grained file descriptors in SELinux, Paul Moore
  - Re: Proposed feature: fine-grained file descriptors in SELinux, Stephen Smalley
    - Re: Proposed feature: fine-grained file descriptors in SELinux, Paul Moore
    - Re: Proposed feature: fine-grained file descriptors in SELinux, Chris PeBenito
      - Re: Proposed feature: fine-grained file descriptors in SELinux, Stephen Smalley
[PATCH] github: bump action dependencies, Christian Göttsche
- Re: [PATCH] github: bump action dependencies, James Carter
  - Re: [PATCH] github: bump action dependencies, James Carter
[PATCH] libsepol: update policy capabilities array, Christian Göttsche
- Re: [PATCH] libsepol: update policy capabilities array, James Carter
  - Re: [PATCH] libsepol: update policy capabilities array, James Carter
[PATCH 1/5] semodule_link: avoid NULL dereference on OOM, Christian Göttsche
- [PATCH 2/5] libsepol: set number of target names, Christian Göttsche
- [PATCH 5/5] libsepol: avoid memory corruption on realloc failure, Christian Göttsche
- [PATCH 3/5] libselinux: fix memory leak in customizable_init(), Christian Göttsche
- [PATCH 4/5] libsepol: avoid leak in OOM branch, Christian Göttsche
- Re: [PATCH 1/5] semodule_link: avoid NULL dereference on OOM, James Carter
  - Re: [PATCH 1/5] semodule_link: avoid NULL dereference on OOM, James Carter
[PATCH 1/7] Drop LGTM.com configuration, Christian Göttsche
- [PATCH 7/7] scripts: update run-scan-build, Christian Göttsche
- [PATCH 6/7] Update Python installation on Debian, Christian Göttsche
- [PATCH 3/7] scripts: ignore unavailable interpreters, Christian Göttsche
- [PATCH 2/7] Drop Travis CI configuration, Christian Göttsche
- [PATCH 4/7] ci: bump Fedora to version 39, Christian Göttsche
- [PATCH 5/7] libselinux: update Python binding, Christian Göttsche
- Re: [PATCH 1/7] Drop LGTM.com configuration, James Carter
  - Re: [PATCH 1/7] Drop LGTM.com configuration, James Carter
[PATCH v2 1/4] libsepol: use str_read() where appropriate, Christian Göttsche
- [PATCH v2 4/4] libsepol: validate the identifier for initials SID is valid, Christian Göttsche
- [PATCH v2 3/4] libsepol: enhance saturation check, Christian Göttsche
- [PATCH v2 2/4] libsepol: adjust type for saturation check, Christian Göttsche
- Re: [PATCH v2 1/4] libsepol: use str_read() where appropriate, James Carter
  - Re: [PATCH v2 1/4] libsepol: use str_read() where appropriate, James Carter
[PATCH] libsepol/tests: Update the order of neverallow test results, James Carter
- Re: [PATCH] libsepol/tests: Update the order of neverallow test results, James Carter
  - Re: [PATCH] libsepol/tests: Update the order of neverallow test results, James Carter
ANN: SELinux userspace 3.6-rc1 release, Petr Lautrbach
[PATCH v3] checkpolicy,libsepol: add prefix/suffix matching to filename type transitions, Juraj Marcin
- Re: [PATCH v3] checkpolicy,libsepol: add prefix/suffix matching to filename type transitions, James Carter
  - Re: [PATCH v3] checkpolicy,libsepol: add prefix/suffix matching to filename type transitions, Christian Göttsche
- Re: [PATCH v3] checkpolicy,libsepol: add prefix/suffix matching to filename type transitions, James Carter
  - Re: [PATCH v3] checkpolicy,libsepol: add prefix/suffix matching to filename type transitions, Juraj Marcin
[PATCH v3] selinux: add prefix/suffix matching to filename type transitions, Juraj Marcin
- Re: [PATCH v3] selinux: add prefix/suffix matching to filename type transitions, Stephen Smalley
[PATCH v5 00/23] security: Move IMA and EVM to the LSM infrastructure, Roberto Sassu
- [PATCH v5 01/23] ima: Align ima_inode_post_setattr() definition with LSM infrastructure, Roberto Sassu
  - Re: [PATCH v5 01/23] ima: Align ima_inode_post_setattr() definition with LSM infrastructure, Casey Schaufler
- [PATCH v5 02/23] ima: Align ima_file_mprotect() definition with LSM infrastructure, Roberto Sassu
  - Re: [PATCH v5 02/23] ima: Align ima_file_mprotect() definition with LSM infrastructure, Casey Schaufler
- [PATCH v5 03/23] ima: Align ima_inode_setxattr() definition with LSM infrastructure, Roberto Sassu
  - Re: [PATCH v5 03/23] ima: Align ima_inode_setxattr() definition with LSM infrastructure, Casey Schaufler
- [PATCH v5 04/23] ima: Align ima_inode_removexattr() definition with LSM infrastructure, Roberto Sassu
  - Re: [PATCH v5 04/23] ima: Align ima_inode_removexattr() definition with LSM infrastructure, Casey Schaufler
- [PATCH v5 05/23] ima: Align ima_post_read_file() definition with LSM infrastructure, Roberto Sassu
  - Re: [PATCH v5 05/23] ima: Align ima_post_read_file() definition with LSM infrastructure, Casey Schaufler
- [PATCH v5 06/23] evm: Align evm_inode_post_setattr() definition with LSM infrastructure, Roberto Sassu
  - Re: [PATCH v5 06/23] evm: Align evm_inode_post_setattr() definition with LSM infrastructure, Casey Schaufler
- [PATCH v5 07/23] evm: Align evm_inode_setxattr() definition with LSM infrastructure, Roberto Sassu
  - Re: [PATCH v5 07/23] evm: Align evm_inode_setxattr() definition with LSM infrastructure, Casey Schaufler
- [PATCH v5 08/23] evm: Align evm_inode_post_setxattr() definition with LSM infrastructure, Roberto Sassu
  - Re: [PATCH v5 08/23] evm: Align evm_inode_post_setxattr() definition with LSM infrastructure, Casey Schaufler
- [PATCH v5 09/23] security: Align inode_setattr hook definition with EVM, Roberto Sassu
- [PATCH v5 10/23] security: Introduce inode_post_setattr hook, Roberto Sassu
  - Re: [PATCH v5 10/23] security: Introduce inode_post_setattr hook, Casey Schaufler
  - Re: [PATCH v5 10/23] security: Introduce inode_post_setattr hook, Paul Moore
    - Re: [PATCH v5 10/23] security: Introduce inode_post_setattr hook, Roberto Sassu
      - Re: [PATCH v5 10/23] security: Introduce inode_post_setattr hook, Paul Moore
- [PATCH v5 11/23] security: Introduce inode_post_removexattr hook, Roberto Sassu
  - Re: [PATCH v5 11/23] security: Introduce inode_post_removexattr hook, Casey Schaufler
    - Re: [PATCH v5 11/23] security: Introduce inode_post_removexattr hook, Roberto Sassu
    - Re: [PATCH v5 11/23] security: Introduce inode_post_removexattr hook, Roberto Sassu
      - Re: [PATCH v5 11/23] security: Introduce inode_post_removexattr hook, Casey Schaufler
        
        Re: [PATCH v5 11/23] security: Introduce inode_post_removexattr hook, Paul Moore
  - Re: [PATCH v5 11/23] security: Introduce inode_post_removexattr hook, Paul Moore
- [PATCH v5 12/23] security: Introduce file_post_open hook, Roberto Sassu
  - Re: [PATCH v5 12/23] security: Introduce file_post_open hook, Casey Schaufler
- [PATCH v5 14/23] security: Introduce path_post_mknod hook, Roberto Sassu
  - Re: [PATCH v5 14/23] security: Introduce path_post_mknod hook, Casey Schaufler
- [PATCH v5 13/23] security: Introduce file_pre_free_security hook, Roberto Sassu
  - Re: [PATCH v5 13/23] security: Introduce file_pre_free_security hook, Casey Schaufler
  - Re: [PATCH v5 13/23] security: Introduce file_pre_free_security hook, Paul Moore
    - Re: [PATCH v5 13/23] security: Introduce file_pre_free_security hook, Roberto Sassu
      - Re: [PATCH v5 13/23] security: Introduce file_pre_free_security hook, Paul Moore
- [PATCH v5 15/23] security: Introduce inode_post_create_tmpfile hook, Roberto Sassu
  - Re: [PATCH v5 15/23] security: Introduce inode_post_create_tmpfile hook, Casey Schaufler
  - Re: [PATCH v5 15/23] security: Introduce inode_post_create_tmpfile hook, Paul Moore
- [PATCH v5 16/23] security: Introduce inode_post_set_acl hook, Roberto Sassu
  - Re: [PATCH v5 16/23] security: Introduce inode_post_set_acl hook, Casey Schaufler
  - Re: [PATCH v5 16/23] security: Introduce inode_post_set_acl hook, Paul Moore
- [PATCH v5 17/23] security: Introduce inode_post_remove_acl hook, Roberto Sassu
  - Re: [PATCH v5 17/23] security: Introduce inode_post_remove_acl hook, Casey Schaufler
  - Re: [PATCH v5 17/23] security: Introduce inode_post_remove_acl hook, Paul Moore
- [PATCH v5 18/23] security: Introduce key_post_create_or_update hook, Roberto Sassu
  - Re: [PATCH v5 18/23] security: Introduce key_post_create_or_update hook, Casey Schaufler
- [PATCH v5 19/23] ima: Move to LSM infrastructure, Roberto Sassu
  - Re: [PATCH v5 19/23] ima: Move to LSM infrastructure, Casey Schaufler
- [PATCH v5 20/23] ima: Move IMA-Appraisal to LSM infrastructure, Roberto Sassu
  - Re: [PATCH v5 20/23] ima: Move IMA-Appraisal to LSM infrastructure, Casey Schaufler
- [PATCH v5 22/23] integrity: Move integrity functions to the LSM infrastructure, Roberto Sassu
  - Re: [PATCH v5 22/23] integrity: Move integrity functions to the LSM infrastructure, Casey Schaufler
  - Re: [PATCH v5 22/23] integrity: Move integrity functions to the LSM infrastructure, Paul Moore
    - Re: [PATCH v5 22/23] integrity: Move integrity functions to the LSM infrastructure, Roberto Sassu
      - Re: [PATCH v5 22/23] integrity: Move integrity functions to the LSM infrastructure, Paul Moore
        
        Re: [PATCH v5 22/23] integrity: Move integrity functions to the LSM infrastructure, Roberto Sassu
- [PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Roberto Sassu
  - Re: [PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Paul Moore
    - Re: [PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Roberto Sassu
      - Re: [PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Paul Moore
        
        Re: [PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Roberto Sassu
        
        Re: [PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Roberto Sassu
        
        Re: [PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Paul Moore
        
        Re: [PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Roberto Sassu
        
        Re: [PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Casey Schaufler
        
        Re: [PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Petr Tesarik
        
        Re: [PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Casey Schaufler
        
        Re: [PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Roberto Sassu
        
        Re: [PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Casey Schaufler
        
        Re: [PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Roberto Sassu
        
        Re: [PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Casey Schaufler
        
        Re: [PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Mimi Zohar
        
        Re: [PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Paul Moore
        
        Re: [PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Paul Moore
        
        Re: [PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Paul Moore
        
        Re: [PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Roberto Sassu
        
        Re: [PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Roberto Sassu
        
        Re: [PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Mimi Zohar
        
        Re: [PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Roberto Sassu
        
        Re: [PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Mimi Zohar
        
        Re: [PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Roberto Sassu
        
        Re: [PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Dr. Greg
        
        Re: [PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Casey Schaufler
        
        Re: [PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Dr. Greg
        
        Re: [PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Casey Schaufler
    - Re: [PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Roberto Sassu
      - Re: [PATCH v5 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Casey Schaufler
- [PATCH v5 21/23] evm: Move to LSM infrastructure, Roberto Sassu
  - Re: [PATCH v5 21/23] evm: Move to LSM infrastructure, Casey Schaufler
- Re: [PATCH v5 00/23] security: Move IMA and EVM to the LSM infrastructure, Roberto Sassu
  - Re: [PATCH v5 00/23] security: Move IMA and EVM to the LSM infrastructure, Mimi Zohar
  - Re: [PATCH v5 00/23] security: Move IMA and EVM to the LSM infrastructure, Paul Moore
[PATCH v2 1/3] libsepol: validate default type of transition is not an attribute, Christian Göttsche
- [PATCH v2 3/3] libsepol: more strict validation, Christian Göttsche
  - Re: [PATCH v2 3/3] libsepol: more strict validation, James Carter
- [PATCH v2 2/3] libsepol: validate constraint depth, Christian Göttsche
  - Re: [PATCH v2 2/3] libsepol: validate constraint depth, James Carter
- Re: [PATCH v2 1/3] libsepol: validate default type of transition is not an attribute, James Carter
  - Re: [PATCH v2 1/3] libsepol: validate default type of transition is not an attribute, James Carter
[PATCH] libsepol: reject unsupported policy capabilities, Christian Göttsche
- Re: [PATCH] libsepol: reject unsupported policy capabilities, James Carter
  - Re: [PATCH] libsepol: reject unsupported policy capabilities, James Carter
[PATCH v5 0/3] selinux: avtab arrays and refactors, Jacob Satterfield
- [PATCH v5 1/3] selinux: refactor avtab_node comparisons, Jacob Satterfield
  - Re: [PATCH v5 1/3] selinux: refactor avtab_node comparisons, Paul Moore
- [PATCH v5 2/3] selinux: fix conditional avtab slot hint, Jacob Satterfield
  - Re: [PATCH v5 2/3] selinux: fix conditional avtab slot hint, Stephen Smalley
  - Re: [PATCH v5 2/3] selinux: fix conditional avtab slot hint, Paul Moore
    - Re: [PATCH v5 2/3] selinux: fix conditional avtab slot hint, Jacob Satterfield
      - Re: [PATCH v5 2/3] selinux: fix conditional avtab slot hint, Paul Moore
        
        Re: [PATCH v5 2/3] selinux: fix conditional avtab slot hint, Jacob Satterfield
        
        Re: [PATCH v5 2/3] selinux: fix conditional avtab slot hint, Paul Moore
- [PATCH v5 3/3] selinux: use arrays for avtab hashtable nodes, Jacob Satterfield
  - Re: [PATCH v5 3/3] selinux: use arrays for avtab hashtable nodes, Stephen Smalley
[PATCH v4 0/3] selinux: avtab arrays and refactors, Jacob Satterfield
- [PATCH v4 1/3] selinux: refactor avtab_node comparisons, Jacob Satterfield
- [PATCH v4 3/3] selinux: use arrays for avtab hashtable nodes, Jacob Satterfield
  - Re: [PATCH v4 3/3] selinux: use arrays for avtab hashtable nodes, Stephen Smalley
    - Re: [PATCH v4 3/3] selinux: use arrays for avtab hashtable nodes, Jacob Satterfield
- [PATCH v4 2/3] selinux: fix conditional avtab slot hint, Jacob Satterfield
[PATCH v3 1/2] libselinux: cast to unsigned char for character handling function, Christian Göttsche
- [PATCH v3 2/2] libselinux: introduce reallocarray(3), Christian Göttsche
  - Re: [PATCH v3 2/2] libselinux: introduce reallocarray(3), James Carter
- Re: [PATCH v3 1/2] libselinux: cast to unsigned char for character handling function, James Carter
  - Re: [PATCH v3 1/2] libselinux: cast to unsigned char for character handling function, James Carter
[PATCH 1/2] libsepol: use str_read() where appropriate, Christian Göttsche
- [PATCH 2/2] libsepol: rework saturation check, Christian Göttsche
  - Re: [PATCH 2/2] libsepol: rework saturation check, James Carter
[PATCH] libsepol: ignore writing invalid polcaps in fuzzer, Christian Göttsche
- Re: [PATCH] libsepol: ignore writing invalid polcaps in fuzzer, James Carter
[PATCH 1/3] libsepol: validate default type of transition is not an attribute, Christian Göttsche
- [PATCH 2/3] libsepol: validate constraint depth, Christian Göttsche
  - Re: [PATCH 2/3] libsepol: validate constraint depth, James Carter
- [PATCH 3/3] libsepol: more strict validation, Christian Göttsche
  - Re: [PATCH 3/3] libsepol: more strict validation, James Carter
- Re: [PATCH 1/3] libsepol: validate default type of transition is not an attribute, James Carter
[PATCH] libselinux/utils: update getdefaultcon, Christian Göttsche
- Re: [PATCH] libselinux/utils: update getdefaultcon, James Carter
  - Re: [PATCH] libselinux/utils: update getdefaultcon, James Carter
[PATCH v2 1/2] libsepol: reject avtab entries with invalid specifier, Christian Göttsche
- [PATCH v2 2/2] libsepol: avtab: check read counts for saturation, Christian Göttsche
- Re: [PATCH v2 1/2] libsepol: reject avtab entries with invalid specifier, James Carter
  - Re: [PATCH v2 1/2] libsepol: reject avtab entries with invalid specifier, James Carter
SELinux userspace 3.6 release - the current status and plan, Petr Lautrbach
- Re: SELinux userspace 3.6 release - the current status and plan, James Carter
  - Re: SELinux userspace 3.6 release - the current status and plan, James Carter
- Re: SELinux userspace 3.6 release - the current status and plan, Daniel Burgener
[GIT PULL] selinux/selinux-pr-20231030, Paul Moore
- Re: [GIT PULL] selinux/selinux-pr-20231030, Linus Torvalds
  - Re: [GIT PULL] selinux/selinux-pr-20231030, Paul Moore
- Re: [GIT PULL] selinux/selinux-pr-20231030, pr-tracker-bot
[PATCH v4 00/23] security: Move IMA and EVM to the LSM infrastructure, Roberto Sassu
- [PATCH v4 01/23] ima: Align ima_inode_post_setattr() definition with LSM infrastructure, Roberto Sassu
- [PATCH v4 02/23] ima: Align ima_file_mprotect() definition with LSM infrastructure, Roberto Sassu
- [PATCH v4 03/23] ima: Align ima_inode_setxattr() definition with LSM infrastructure, Roberto Sassu
- [PATCH v4 04/23] ima: Align ima_inode_removexattr() definition with LSM infrastructure, Roberto Sassu
- [PATCH v4 05/23] ima: Align ima_post_read_file() definition with LSM infrastructure, Roberto Sassu
- [PATCH v4 06/23] evm: Align evm_inode_post_setattr() definition with LSM infrastructure, Roberto Sassu
- [PATCH v4 07/23] evm: Align evm_inode_setxattr() definition with LSM infrastructure, Roberto Sassu
- [PATCH v4 08/23] evm: Align evm_inode_post_setxattr() definition with LSM infrastructure, Roberto Sassu
- [PATCH v4 09/23] security: Align inode_setattr hook definition with EVM, Roberto Sassu
- [PATCH v4 10/23] security: Introduce inode_post_setattr hook, Roberto Sassu
- [PATCH v4 11/23] security: Introduce inode_post_removexattr hook, Roberto Sassu
- [PATCH v4 12/23] security: Introduce file_post_open hook, Roberto Sassu
  - Re: [PATCH v4 12/23] security: Introduce file_post_open hook, Mimi Zohar
- [PATCH v4 13/23] security: Introduce file_pre_free_security hook, Roberto Sassu
- [PATCH v4 14/23] security: Introduce path_post_mknod hook, Roberto Sassu
- [PATCH v4 15/23] security: Introduce inode_post_create_tmpfile hook, Roberto Sassu
- [PATCH v4 16/23] security: Introduce inode_post_set_acl hook, Roberto Sassu
- [PATCH v4 17/23] security: Introduce inode_post_remove_acl hook, Roberto Sassu
  - Re: [PATCH v4 17/23] security: Introduce inode_post_remove_acl hook, Mimi Zohar
- [PATCH v4 18/23] security: Introduce key_post_create_or_update hook, Roberto Sassu
- [PATCH v4 19/23] ima: Move to LSM infrastructure, Roberto Sassu
- [PATCH v4 20/23] ima: Move IMA-Appraisal to LSM infrastructure, Roberto Sassu
  - Re: [PATCH v4 20/23] ima: Move IMA-Appraisal to LSM infrastructure, Mimi Zohar
- [PATCH v4 21/23] evm: Move to LSM infrastructure, Roberto Sassu
- [PATCH v4 23/23] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Roberto Sassu
- [PATCH v4 22/23] integrity: Move integrity functions to the LSM infrastructure, Roberto Sassu
- Re: [PATCH v4 00/23] security: Move IMA and EVM to the LSM infrastructure, Mimi Zohar
ANN: kernel git branches and process changes, Paul Moore
- Re: ANN: kernel git branches and process changes, Bagas Sanjaya
  - Re: ANN: kernel git branches and process changes, Paul Moore
    - Re: ANN: kernel git branches and process changes, Bagas Sanjaya
SELinux Userspace Release?, James Carter
- Re: SELinux Userspace Release?, Petr Lautrbach
[PATCH] sepolicy/manpage.py: make output deterministic, Cathy Hu
- Re: [PATCH] sepolicy/manpage.py: make output deterministic, Petr Lautrbach
  - [PATCH v2] sepolicy/manpage.py: make output deterministic, Cathy Hu
    - Re: [PATCH v2] sepolicy/manpage.py: make output deterministic, Petr Lautrbach
      - Re: [PATCH v2] sepolicy/manpage.py: make output deterministic, James Carter
[RFC PATCH 0/3] LSM syscall tweaks, Paul Moore
- [RFC PATCH 1/3] lsm: cleanup the size counters in security_getselfattr(), Paul Moore
  - Re: [RFC PATCH 1/3] lsm: cleanup the size counters in security_getselfattr(), Casey Schaufler
    - Re: [RFC PATCH 1/3] lsm: cleanup the size counters in security_getselfattr(), Paul Moore
      - Re: [RFC PATCH 1/3] lsm: cleanup the size counters in security_getselfattr(), Casey Schaufler
        
        Re: [RFC PATCH 1/3] lsm: cleanup the size counters in security_getselfattr(), Paul Moore
  - Re: [RFC PATCH 1/3] lsm: cleanup the size counters in security_getselfattr(), Mickaël Salaün
- [RFC PATCH 2/3] lsm: correct error codes in security_getselfattr(), Paul Moore
  - Re: [RFC PATCH 2/3] lsm: correct error codes in security_getselfattr(), Casey Schaufler
  - Re: [RFC PATCH 2/3] lsm: correct error codes in security_getselfattr(), Mickaël Salaün
- [RFC PATCH 3/3] lsm: consolidate buffer size handling into lsm_fill_user_ctx(), Paul Moore
  - Re: [RFC PATCH 3/3] lsm: consolidate buffer size handling into lsm_fill_user_ctx(), Mickaël Salaün
    - Re: [RFC PATCH 3/3] lsm: consolidate buffer size handling into lsm_fill_user_ctx(), Paul Moore
  - Re: [RFC PATCH 3/3] lsm: consolidate buffer size handling into lsm_fill_user_ctx(), Aishwarya TCV
    - Re: [RFC PATCH 3/3] lsm: consolidate buffer size handling into lsm_fill_user_ctx(), Paul Moore
      - Re: [RFC PATCH 3/3] lsm: consolidate buffer size handling into lsm_fill_user_ctx(), Mark Brown
        
        Re: [RFC PATCH 3/3] lsm: consolidate buffer size handling into lsm_fill_user_ctx(), Paul Moore
        
        Re: [RFC PATCH 3/3] lsm: consolidate buffer size handling into lsm_fill_user_ctx(), Mark Brown
- Re: [RFC PATCH 0/3] LSM syscall tweaks, Paul Moore
  - Re: [RFC PATCH 0/3] LSM syscall tweaks, Casey Schaufler
- Re: [RFC PATCH 0/3] LSM syscall tweaks, Paul Moore
[PATCH v4 0/4] vduse: add support for networking devices, Maxime Coquelin
- [PATCH v4 2/4] vduse: enable Virtio-net device type, Maxime Coquelin
- [PATCH v4 1/4] vduse: validate block features only with block devices, Maxime Coquelin
  - Re: [PATCH v4 1/4] vduse: validate block features only with block devices, Casey Schaufler
    - Re: [PATCH v4 1/4] vduse: validate block features only with block devices, Maxime Coquelin
- [PATCH v4 3/4] vduse: Temporarily disable control queue features, Maxime Coquelin
  - Re: [PATCH v4 3/4] vduse: Temporarily disable control queue features, Jason Wang
    - Re: [PATCH v4 3/4] vduse: Temporarily disable control queue features, Maxime Coquelin
- [PATCH v4 4/4] vduse: Add LSM hooks to check Virtio device type, Maxime Coquelin
  - Re: [PATCH v4 4/4] vduse: Add LSM hooks to check Virtio device type, Casey Schaufler
    - Re: [PATCH v4 4/4] vduse: Add LSM hooks to check Virtio device type, Maxime Coquelin
      - Re: [PATCH v4 4/4] vduse: Add LSM hooks to check Virtio device type, Casey Schaufler
        
        Re: [PATCH v4 4/4] vduse: Add LSM hooks to check Virtio device type, Maxime Coquelin
        
        Re: [PATCH v4 4/4] vduse: Add LSM hooks to check Virtio device type, Casey Schaufler
        
        Re: [PATCH v4 4/4] vduse: Add LSM hooks to check Virtio device type, Maxime Coquelin
        
        Re: [PATCH v4 4/4] vduse: Add LSM hooks to check Virtio device type, Michael S. Tsirkin
        
        Re: [PATCH v4 4/4] vduse: Add LSM hooks to check Virtio device type, Maxime Coquelin
        
        Re: [PATCH v4 4/4] vduse: Add LSM hooks to check Virtio device type, Michael S. Tsirkin
  - Re: [PATCH v4 4/4] vduse: Add LSM hooks to check Virtio device type, Jason Wang
  - Re: [PATCH v4 4/4] vduse: Add LSM hooks to check Virtio device type, Paul Moore
    - Re: [PATCH v4 4/4] vduse: Add LSM hooks to check Virtio device type, Maxime Coquelin
      - Re: [PATCH v4 4/4] vduse: Add LSM hooks to check Virtio device type, Michael S. Tsirkin
        
        Re: [PATCH v4 4/4] vduse: Add LSM hooks to check Virtio device type, Maxime Coquelin
        
        Re: [PATCH v4 4/4] vduse: Add LSM hooks to check Virtio device type, Michael S. Tsirkin
        
        Re: [PATCH v4 4/4] vduse: Add LSM hooks to check Virtio device type, Maxime Coquelin
[PATCH v3 0/3] selinux: avtab arrays and refactors, Jacob Satterfield
- [PATCH v3 1/3] selinux: refactor avtab_node comparisons, Jacob Satterfield
  - Re: [PATCH v3 1/3] selinux: refactor avtab_node comparisons, Stephen Smalley
    - Re: [PATCH v3 1/3] selinux: refactor avtab_node comparisons, Jacob Satterfield
- [PATCH v3 2/3] selinux: avtab iteration macros, Jacob Satterfield
  - Re: [PATCH v3 2/3] selinux: avtab iteration macros, Jacob Satterfield
- [PATCH v3 3/3] selinux: use arrays for avtab hashtable nodes, Jacob Satterfield
  - Re: [PATCH v3 3/3] selinux: use arrays for avtab hashtable nodes, Stephen Smalley
    - Re: [PATCH v3 3/3] selinux: use arrays for avtab hashtable nodes, Jacob Satterfield

[Index of Archives] [Selinux Refpolicy] [Fedora Users] [Fedora Desktop] [Kernel] [KDE Users] [Gnome Users]

Powered by Linux