Security Enhanced Linux (SELINUX)

Date Index

[Prev Page][Next Page]

Re: cgroup2 labeling question, (continued)
[PATCH] selinux: remove the runtime disable functionality, Paul Moore
- Re: [PATCH] selinux: remove the runtime disable functionality, Daniel Burgener
  - Re: [PATCH] selinux: remove the runtime disable functionality, Paul Moore
- Re: [PATCH] selinux: remove the runtime disable functionality, Casey Schaufler
  - Re: [PATCH] selinux: remove the runtime disable functionality, Paul Moore
- Re: [PATCH] selinux: remove the runtime disable functionality, Ondrej Mosnacek
  - Re: [PATCH] selinux: remove the runtime disable functionality, Paul Moore
- Re: [PATCH] selinux: remove the runtime disable functionality, Mickaël Salaün
  - Re: [PATCH] selinux: remove the runtime disable functionality, Paul Moore
    - Re: [PATCH] selinux: remove the runtime disable functionality, Paul Moore
[PATCH v2] selinux: remove the 'checkreqprot' functionality, Paul Moore
- Re: [PATCH v2] selinux: remove the 'checkreqprot' functionality, Stephen Smalley
  - Re: [PATCH v2] selinux: remove the 'checkreqprot' functionality, Paul Moore
    - Re: [PATCH v2] selinux: remove the 'checkreqprot' functionality, Paul Moore
[PATCH] selinux: remove the 'checkreqprot' functionality, Paul Moore
- Re: [PATCH] selinux: remove the 'checkreqprot' functionality, Stephen Smalley
  - Re: [PATCH] selinux: remove the 'checkreqprot' functionality, Paul Moore
[PATCH v7 10/11] SELinux: Add selfattr hooks, Casey Schaufler
- Re: [PATCH v7 10/11] SELinux: Add selfattr hooks, Paul Moore
  - Re: [PATCH v7 10/11] SELinux: Add selfattr hooks, Casey Schaufler
    - Re: [PATCH v7 10/11] SELinux: Add selfattr hooks, Paul Moore
Re: [PATCH v2] selinux: stop passing selinux_state pointers and their offspring, Paul Moore
[PATCH testsuite] tests/atsecure: avoid running bash under test domains, Ondrej Mosnacek
- Re: [PATCH testsuite] tests/atsecure: avoid running bash under test domains, Ondrej Mosnacek
[RFC PATCH v2] selinux: cache access vector decisions in the inode security blob, Stephen Smalley
- Re: [RFC PATCH v2] selinux: cache access vector decisions in the inode security blob, Paul Moore
  - Re: [RFC PATCH v2] selinux: cache access vector decisions in the inode security blob, Stephen Smalley
    - Re: [RFC PATCH v2] selinux: cache access vector decisions in the inode security blob, Linus Torvalds
      - Re: [RFC PATCH v2] selinux: cache access vector decisions in the inode security blob, Stephen Smalley
        
        Re: [RFC PATCH v2] selinux: cache access vector decisions in the inode security blob, Paul Moore
[PATCH v8 0/6] evm: Do HMAC of multiple per LSM xattrs for new inodes, Roberto Sassu
- [PATCH v8 3/6] security: Remove security_old_inode_init_security(), Roberto Sassu
  - Re: [PATCH v8 3/6] security: Remove security_old_inode_init_security(), Paul Moore
- [PATCH v8 2/6] ocfs2: Switch to security_inode_init_security(), Roberto Sassu
  - Re: [PATCH v8 2/6] ocfs2: Switch to security_inode_init_security(), Mimi Zohar
  - Re: [PATCH v8 2/6] ocfs2: Switch to security_inode_init_security(), Paul Moore
- [PATCH v8 1/6] reiserfs: Switch to security_inode_init_security(), Roberto Sassu
  - Re: [PATCH v8 1/6] reiserfs: Switch to security_inode_init_security(), Paul Moore
- [PATCH v8 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Roberto Sassu
  - Re: [PATCH v8 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Paul Moore
    - Re: [PATCH v8 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Casey Schaufler
      - Re: [PATCH v8 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Paul Moore
    - Re: [PATCH v8 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Roberto Sassu
      - Re: [PATCH v8 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Roberto Sassu
        
        Re: [PATCH v8 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Paul Moore
        
        Re: [PATCH v8 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Roberto Sassu
        
        Re: [PATCH v8 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Paul Moore
        
        Re: [PATCH v8 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Roberto Sassu
        
        Re: [PATCH v8 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Paul Moore
        
        Re: [PATCH v8 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Roberto Sassu
      - Re: [PATCH v8 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Paul Moore
        
        Re: [PATCH v8 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Roberto Sassu
- [PATCH v8 5/6] evm: Align evm_inode_init_security() definition with LSM infrastructure, Roberto Sassu
- [PATCH v8 6/6] evm: Support multiple LSMs providing an xattr, Roberto Sassu
- Re: [PATCH v8 0/6] evm: Do HMAC of multiple per LSM xattrs for new inodes, Roberto Sassu
Re: [PATCH net-next v2] scm: fix MSG_CTRUNC setting condition for SO_PASSSEC, Paul Moore
- Re: [PATCH net-next v2] scm: fix MSG_CTRUNC setting condition for SO_PASSSEC, Aleksandr Mikhalitsyn
[RFC PATCH] selinux: cache access vector decisions in the inode security blob, Stephen Smalley
[PATCH testsuite] defconfig: add FAT and GRE config options, Stephen Smalley
- Re: [PATCH testsuite] defconfig: add FAT and GRE config options, Ondrej Mosnacek
[RFC PATCH 0/9 v2] Add CIL Deny Rule, James Carter
- [RFC PATCH 2/9 v2] libsepol/cil: Add cil_list_is_empty macro, James Carter
- [RFC PATCH 1/9 v2] libsepol/cil: Parse and add deny rule to AST, but do not process, James Carter
- [RFC PATCH 3/9 v2] libsepol/cil: Add cil_tree_node_remove function, James Carter
- [RFC PATCH 5/9 v2] libsepol/cil: Add cil_write_post_ast function, James Carter
- [RFC PATCH 6/9 v2] libsepol: Export the cil_write_post_ast function, James Carter
- [RFC PATCH 7/9 v2] secilc/secil2tree: Add option to write CIL AST after post processing, James Carter
- [RFC PATCH 4/9 v2] libsepol/cil: Process deny rules, James Carter
- [RFC PATCH 9/9 v2] secilc/docs: Add deny rule to CIL documentation, James Carter
- [RFC PATCH 8/9 v2] secilc/test: Add deny rule tests, James Carter
Re: [PATCH] selinux: stop passing selinux_state pointers and their offspring, Paul Moore
- Re: [PATCH] selinux: stop passing selinux_state pointers and their offspring, Stephen Smalley
  - Re: [PATCH] selinux: stop passing selinux_state pointers and their offspring, Paul Moore
    - Re: [PATCH] selinux: stop passing selinux_state pointers and their offspring, Stephen Smalley
      - Re: [PATCH] selinux: stop passing selinux_state pointers and their offspring, Paul Moore
        
        Re: [PATCH] selinux: stop passing selinux_state pointers and their offspring, Stephen Smalley
        
        Re: [PATCH] selinux: stop passing selinux_state pointers and their offspring, Paul Moore
[PATCH userspace] libsemanage: include more parameters in the module checksum, Ondrej Mosnacek
- Re: [PATCH userspace] libsemanage: include more parameters in the module checksum, Stephen Smalley
  - Re: [PATCH userspace] libsemanage: include more parameters in the module checksum, Ondrej Mosnacek
[PATCH v3 0/3] Improve efficiency of detecting duplicate in libselinux, wanghuizhao
- [PATCH v3 2/3] libselinux: adapting hashtab to libselinux, wanghuizhao
- [PATCH v3 1/3] libselinux: migrating hashtab from policycoreutils, wanghuizhao
  - Re: [PATCH v3 1/3] libselinux: migrating hashtab from policycoreutils, James Carter
    - Re: [PATCH v3 1/3] libselinux: migrating hashtab from policycoreutils, James Carter
- [PATCH v3 3/3] libselinux: performance optimization for duplicate detection, wanghuizhao
[RFC PATCH] selinux: uninline unlikely parts of avc_has_perm_noaudit(), Paul Moore
- Re: [RFC PATCH] selinux: uninline unlikely parts of avc_has_perm_noaudit(), Paul Moore
- Re: [RFC PATCH] selinux: uninline unlikely parts of avc_has_perm_noaudit(), Linus Torvalds
  - Re: [RFC PATCH] selinux: uninline unlikely parts of avc_has_perm_noaudit(), Paul Moore
[PATCH 00/28] security: Move IMA and EVM to the LSM infrastructure, Roberto Sassu
- [PATCH 12/28] fs: Fix description of vfs_tmpfile(), Roberto Sassu
  - Re: [PATCH 12/28] fs: Fix description of vfs_tmpfile(), Christian Brauner
    - Re: [PATCH 12/28] fs: Fix description of vfs_tmpfile(), Roberto Sassu
- [PATCH 13/28] security: Align inode_setattr hook definition with EVM, Roberto Sassu
  - Re: [PATCH 13/28] security: Align inode_setattr hook definition with EVM, Casey Schaufler
  - Re: [PATCH 13/28] security: Align inode_setattr hook definition with EVM, Stefan Berger
- [PATCH 14/28] security: Introduce inode_post_setattr hook, Roberto Sassu
  - Re: [PATCH 14/28] security: Introduce inode_post_setattr hook, Stefan Berger
  - Re: [PATCH 14/28] security: Introduce inode_post_setattr hook, Mimi Zohar
- [PATCH 15/28] security: Introduce inode_post_removexattr hook, Roberto Sassu
  - Re: [PATCH 15/28] security: Introduce inode_post_removexattr hook, Stefan Berger
  - Re: [PATCH 15/28] security: Introduce inode_post_removexattr hook, Mimi Zohar
    - Re: [PATCH 15/28] security: Introduce inode_post_removexattr hook, Roberto Sassu
    - Re: [PATCH 15/28] security: Introduce inode_post_removexattr hook, Roberto Sassu
      - Re: [PATCH 15/28] security: Introduce inode_post_removexattr hook, Christian Brauner
- [PATCH 16/28] security: Introduce file_post_open hook, Roberto Sassu
  - Re: [PATCH 16/28] security: Introduce file_post_open hook, Stefan Berger
- [PATCH 17/28] security: Introduce file_pre_free_security hook, Roberto Sassu
  - Re: [PATCH 17/28] security: Introduce file_pre_free_security hook, Stefan Berger
- [PATCH 18/28] security: Introduce path_post_mknod hook, Roberto Sassu
  - Re: [PATCH 18/28] security: Introduce path_post_mknod hook, Stefan Berger
  - Re: [PATCH 18/28] security: Introduce path_post_mknod hook, Mimi Zohar
- [PATCH 19/28] security: Introduce inode_post_create_tmpfile hook, Roberto Sassu
  - Re: [PATCH 19/28] security: Introduce inode_post_create_tmpfile hook, Stefan Berger
- [PATCH 20/28] security: Introduce inode_post_set_acl hook, Roberto Sassu
  - Re: [PATCH 20/28] security: Introduce inode_post_set_acl hook, Stefan Berger
- [PATCH 23/28] security: Introduce LSM_ORDER_LAST, Roberto Sassu
  - Re: [PATCH 23/28] security: Introduce LSM_ORDER_LAST, Stefan Berger
    - Re: [PATCH 23/28] security: Introduce LSM_ORDER_LAST, Roberto Sassu
  - Re: [PATCH 23/28] security: Introduce LSM_ORDER_LAST, Mimi Zohar
    - Re: [PATCH 23/28] security: Introduce LSM_ORDER_LAST, Roberto Sassu
      - Re: [PATCH 23/28] security: Introduce LSM_ORDER_LAST, Mimi Zohar
        
        Re: [PATCH 23/28] security: Introduce LSM_ORDER_LAST, Roberto Sassu
        
        Re: [PATCH 23/28] security: Introduce LSM_ORDER_LAST, Mimi Zohar
- [PATCH 26/28] evm: Move to LSM infrastructure, Roberto Sassu
  - Re: [PATCH 26/28] evm: Move to LSM infrastructure, Casey Schaufler
    - Re: [PATCH 26/28] evm: Move to LSM infrastructure, Roberto Sassu
      - Re: [PATCH 26/28] evm: Move to LSM infrastructure, Casey Schaufler
        
        Re: [PATCH 26/28] evm: Move to LSM infrastructure, Roberto Sassu
- [PATCH 25/28] ima: Move IMA-Appraisal to LSM infrastructure, Roberto Sassu
- [PATCH 24/28] ima: Move to LSM infrastructure, Roberto Sassu
- [PATCH 28/28] integrity: Switch from rbtree to LSM-managed blob for integrity_iint_cache, Roberto Sassu
- [PATCH 05/28] ima: Align ima_inode_setxattr() definition with LSM infrastructure, Roberto Sassu
  - Re: [PATCH 05/28] ima: Align ima_inode_setxattr() definition with LSM infrastructure, Stefan Berger
- [PATCH 04/28] ima: Align ima_file_mprotect() definition with LSM infrastructure, Roberto Sassu
  - Re: [PATCH 04/28] ima: Align ima_file_mprotect() definition with LSM infrastructure, Stefan Berger
- [PATCH 10/28] evm: Align evm_inode_post_setxattr() definition with LSM infrastructure, Roberto Sassu
  - Re: [PATCH 10/28] evm: Align evm_inode_post_setxattr() definition with LSM infrastructure, Stefan Berger
- [PATCH 02/28] ima: Align ima_post_path_mknod() definition with LSM infrastructure, Roberto Sassu
  - Re: [PATCH 02/28] ima: Align ima_post_path_mknod() definition with LSM infrastructure, Stefan Berger
- [PATCH 08/28] evm: Align evm_inode_post_setattr() definition with LSM infrastructure, Roberto Sassu
  - Re: [PATCH 08/28] evm: Align evm_inode_post_setattr() definition with LSM infrastructure, Stefan Berger
- [PATCH 06/28] ima: Align ima_inode_removexattr() definition with LSM infrastructure, Roberto Sassu
  - Re: [PATCH 06/28] ima: Align ima_inode_removexattr() definition with LSM infrastructure, Stefan Berger
- [PATCH 01/28] ima: Align ima_inode_post_setattr() definition with LSM infrastructure, Roberto Sassu
  - Re: [PATCH 01/28] ima: Align ima_inode_post_setattr() definition with LSM infrastructure, Stefan Berger
- [PATCH 09/28] evm: Align evm_inode_setxattr() definition with LSM infrastructure, Roberto Sassu
  - Re: [PATCH 09/28] evm: Align evm_inode_setxattr() definition with LSM infrastructure, Stefan Berger
- [PATCH 07/28] ima: Align ima_post_read_file() definition with LSM infrastructure, Roberto Sassu
  - Re: [PATCH 07/28] ima: Align ima_post_read_file() definition with LSM infrastructure, Stefan Berger
- [PATCH 11/28] evm: Complete description of evm_inode_setattr(), Roberto Sassu
  - Re: [PATCH 11/28] evm: Complete description of evm_inode_setattr(), Stefan Berger
    - Re: [PATCH 11/28] evm: Complete description of evm_inode_setattr(), Roberto Sassu
- [PATCH 03/28] ima: Align ima_post_create_tmpfile() definition with LSM infrastructure, Roberto Sassu
  - Re: [PATCH 03/28] ima: Align ima_post_create_tmpfile() definition with LSM infrastructure, Stefan Berger
  - Re: [PATCH 03/28] ima: Align ima_post_create_tmpfile() definition with LSM infrastructure, Mimi Zohar
    - Re: [PATCH 03/28] ima: Align ima_post_create_tmpfile() definition with LSM infrastructure, Roberto Sassu
- [PATCH 21/28] security: Introduce inode_post_remove_acl hook, Roberto Sassu
  - Re: [PATCH 21/28] security: Introduce inode_post_remove_acl hook, Stefan Berger
    - Re: [PATCH 21/28] security: Introduce inode_post_remove_acl hook, Roberto Sassu
      - Re: [PATCH 21/28] security: Introduce inode_post_remove_acl hook, Stefan Berger
        
        Re: [PATCH 21/28] security: Introduce inode_post_remove_acl hook, Roberto Sassu
- [PATCH 22/28] security: Introduce key_post_create_or_update hook, Roberto Sassu
  - Re: [PATCH 22/28] security: Introduce key_post_create_or_update hook, Stefan Berger
  - Re: [PATCH 22/28] security: Introduce key_post_create_or_update hook, Mimi Zohar
- [PATCH 27/28] integrity: Move integrity functions to the LSM infrastructure, Roberto Sassu
- Re: [PATCH 00/28] security: Move IMA and EVM to the LSM infrastructure, Mimi Zohar
  - Re: [PATCH 00/28] security: Move IMA and EVM to the LSM infrastructure, Roberto Sassu
[PATCH 2/6] libsepol/cil: Add notself and other support to CIL, James Carter
[PATCH testsuite] tests/file: make the SIGIO tests work with CONFIG_LEGACY_TIOCSTI=n, Ondrej Mosnacek
- Re: [PATCH testsuite] tests/file: make the SIGIO tests work with CONFIG_LEGACY_TIOCSTI=n, Paul Moore
  - Re: [PATCH testsuite] tests/file: make the SIGIO tests work with CONFIG_LEGACY_TIOCSTI=n, Ondrej Mosnacek
[PATCH testsuite 0/3] Infiniband test fixes/improvements, Ondrej Mosnacek
- [PATCH testsuite 1/3] policy: make sure test_ibpkey_access_t can lock enough memory, Ondrej Mosnacek
  - Re: [PATCH testsuite 1/3] policy: make sure test_ibpkey_access_t can lock enough memory, Paul Moore
    - Re: [PATCH testsuite 1/3] policy: make sure test_ibpkey_access_t can lock enough memory, Mimi Zohar
    - Re: [PATCH testsuite 1/3] policy: make sure test_ibpkey_access_t can lock enough memory, Ondrej Mosnacek
      - Re: [PATCH testsuite 1/3] policy: make sure test_ibpkey_access_t can lock enough memory, Paul Moore
        
        Re: [PATCH testsuite 1/3] policy: make sure test_ibpkey_access_t can lock enough memory, Ondrej Mosnacek
        
        Re: [PATCH testsuite 1/3] policy: make sure test_ibpkey_access_t can lock enough memory, Paul Moore
- [PATCH testsuite 2/3] policy: allow test_ibpkey_access_t to use RDMA netlink sockets, Ondrej Mosnacek
  - Re: [PATCH testsuite 2/3] policy: allow test_ibpkey_access_t to use RDMA netlink sockets, Paul Moore
    - Re: [PATCH testsuite 2/3] policy: allow test_ibpkey_access_t to use RDMA netlink sockets, Ondrej Mosnacek
      - Re: [PATCH testsuite 2/3] policy: allow test_ibpkey_access_t to use RDMA netlink sockets, Paul Moore
- [PATCH testsuite 3/3] tests/infiniband*: simplify test activation, Ondrej Mosnacek
- <Possible follow-ups>
- [PATCH testsuite 0/3] Infiniband test fixes/improvements, Ondrej Mosnacek
  - [PATCH testsuite 1/3] policy: make sure test_ibpkey_access_t can lock enough memory, Ondrej Mosnacek
  - [PATCH testsuite 2/3] policy: allow test_ibpkey_access_t to use RDMA netlink sockets, Ondrej Mosnacek
  - [PATCH testsuite 3/3] tests/infiniband*: simplify test activation, Ondrej Mosnacek
  - Re: [PATCH testsuite 0/3] Infiniband test fixes/improvements, Ondrej Mosnacek
    - Re: [PATCH testsuite 0/3] Infiniband test fixes/improvements, Ondrej Mosnacek
ANN: SELinux userspace 3.5 release, Jason Zaman
What's wrong with this usage of semanage fcontext?, Alan Stern
- Re: What's wrong with this usage of semanage fcontext?, Stephen Smalley
  - Re: What's wrong with this usage of semanage fcontext?, Alan Stern
[UTIL-LINUX PATCH] mount: add rootcontext=@target, Christian Göttsche
SELinux pull request for Linux v6.3, Paul Moore
[PATCH v2] kernel/sys.c: fix and improve control flow in __sys_setres[ug]id(), Ondrej Mosnacek
- Re: [PATCH v2] kernel/sys.c: fix and improve control flow in __sys_setres[ug]id(), Ondrej Mosnacek
- Re: [PATCH v2] kernel/sys.c: fix and improve control flow in __sys_setres[ug]id(), Andrew Morton
  - Re: [PATCH v2] kernel/sys.c: fix and improve control flow in __sys_setres[ug]id(), Ondrej Mosnacek
[PATCH] selinux: allow to opt-out from skipping kernel sockets in sock_has_perm(), Ondrej Mosnacek
- Re: [PATCH] selinux: allow to opt-out from skipping kernel sockets in sock_has_perm(), Stephen Smalley
  - Re: [PATCH] selinux: allow to opt-out from skipping kernel sockets in sock_has_perm(), Paul Moore
[PATCH] kernel/sys.c: fix and improve control flow in __sys_setres[ug]id(), Ondrej Mosnacek
- Re: [PATCH] kernel/sys.c: fix and improve control flow in __sys_setres[ug]id(), Andrew Morton
  - Re: [PATCH] kernel/sys.c: fix and improve control flow in __sys_setres[ug]id(), Eric W. Biederman
    - Re: [PATCH] kernel/sys.c: fix and improve control flow in __sys_setres[ug]id(), Ondrej Mosnacek
  - Re: [PATCH] kernel/sys.c: fix and improve control flow in __sys_setres[ug]id(), Ondrej Mosnacek
ANN: SELinux userspace 3.5-rc3 release, Jason Zaman
selinux-testsuite failures, CONFIG_LEGACY_TIOCSTI, and recent Rawhide builds, Paul Moore
- Re: selinux-testsuite failures, CONFIG_LEGACY_TIOCSTI, and recent Rawhide builds, Ondrej Mosnacek
  - Re: selinux-testsuite failures, CONFIG_LEGACY_TIOCSTI, and recent Rawhide builds, Ondrej Mosnacek
  - Re: selinux-testsuite failures, CONFIG_LEGACY_TIOCSTI, and recent Rawhide builds, Paul Moore
    - Re: selinux-testsuite failures, CONFIG_LEGACY_TIOCSTI, and recent Rawhide builds, Paul Moore
      - Re: selinux-testsuite failures, CONFIG_LEGACY_TIOCSTI, and recent Rawhide builds, Paul Moore
        
        Re: selinux-testsuite failures, CONFIG_LEGACY_TIOCSTI, and recent Rawhide builds, Ondrej Mosnacek
        
        Re: selinux-testsuite failures, CONFIG_LEGACY_TIOCSTI, and recent Rawhide builds, Paul Moore
[PATCH 0/2] Improve efficiency of detecting duplicate in libselinux, wanghuizhao
- [PATCH 1/2] libselinux: migrating hashtab from policycoreutils, wanghuizhao
  - Re: [PATCH 1/2] libselinux: migrating hashtab from policycoreutils, Christian Göttsche
    - Re: [PATCH 1/2] libselinux: migrating hashtab from policycoreutils, wanghuizhao
- [PATCH 2/2] libselinux: performance optimization for duplicate detection, wanghuizhao
  - Re: [PATCH 2/2] libselinux: performance optimization for duplicate detection, Christian Göttsche
    - Re: [PATCH 2/2] libselinux: performance optimization for duplicate detection, wanghuizhao
- [PATCH v2 0/3] Improve efficiency of detecting duplicate in libselinux, wanghuizhao
  - [PATCH v2 1/3] libselinux: migrating hashtab from policycoreutils, wanghuizhao
  - [PATCH v2 2/3] libselinux: adapting hashtab to libselinux, wanghuizhao
  - [PATCH v2 3/3] libselinux: performance optimization for duplicate detection, wanghuizhao
    - Re: [PATCH v2 3/3] libselinux: performance optimization for duplicate detection, wanghuizhao
    - Re: [PATCH v2 3/3] libselinux: performance optimization for duplicate detection, Christian Göttsche
      - Re: [PATCH v2 3/3] libselinux: performance optimization for duplicate detection, wanghuizhao
        
        Re: [PATCH v2 3/3] libselinux: performance optimization for duplicate detection, wanghuizhao
ANN: SETools 4.4.1, Chris PeBenito
- Re: ANN: SETools 4.4.1, Petr Lautrbach
  - Re: ANN: SETools 4.4.1, Chris PeBenito
[PATCH 1/3] libselinux: drop obsolete optimization flag, Christian Göttsche
- [PATCH 2/3] libselinux: restore: misc tweaks, Christian Göttsche
- [PATCH 3/3] libselinux: restore: use fixed sized integer for hash index, Christian Göttsche
- Re: [PATCH 1/3] libselinux: drop obsolete optimization flag, Jason Zaman
Looking at profile data once again - avc lookup, Linus Torvalds
- Re: Looking at profile data once again - avc lookup, Paul Moore
  - Re: Looking at profile data once again - avc lookup, Linus Torvalds
    - Re: Looking at profile data once again - avc lookup, Paul Moore
      - Re: Looking at profile data once again - avc lookup, Paul Moore
        
        Re: Looking at profile data once again - avc lookup, Linus Torvalds
        
        Re: Looking at profile data once again - avc lookup, Paul Moore
[PATCH v2 0/6] introduce vm_flags modifier functions, Suren Baghdasaryan
- [PATCH v2 1/6] mm: introduce vma->vm_flags modifier functions, Suren Baghdasaryan
  - Re: [PATCH v2 1/6] mm: introduce vma->vm_flags modifier functions, Michal Hocko
  - Re: [PATCH v2 1/6] mm: introduce vma->vm_flags modifier functions, Peter Zijlstra
    - Re: [PATCH v2 1/6] mm: introduce vma->vm_flags modifier functions, Suren Baghdasaryan
      - Re: [PATCH v2 1/6] mm: introduce vma->vm_flags modifier functions, Matthew Wilcox
        
        Re: [PATCH v2 1/6] mm: introduce vma->vm_flags modifier functions, Suren Baghdasaryan
  - Re: [PATCH v2 1/6] mm: introduce vma->vm_flags modifier functions, Matthew Wilcox
    - Re: [PATCH v2 1/6] mm: introduce vma->vm_flags modifier functions, Suren Baghdasaryan
  - Re: [PATCH v2 1/6] mm: introduce vma->vm_flags modifier functions, Mike Rapoport
    - Re: [PATCH v2 1/6] mm: introduce vma->vm_flags modifier functions, Mike Rapoport
      - Re: [PATCH v2 1/6] mm: introduce vma->vm_flags modifier functions, Matthew Wilcox
        
        Re: [PATCH v2 1/6] mm: introduce vma->vm_flags modifier functions, Suren Baghdasaryan
- [PATCH v2 6/6] mm: export dump_mm(), Suren Baghdasaryan
  - Re: [PATCH v2 6/6] mm: export dump_mm(), Michal Hocko
  - Re: [PATCH v2 6/6] mm: export dump_mm(), Mike Rapoport
- [PATCH v2 2/6] mm: replace VM_LOCKED_CLEAR_MASK with VM_LOCKED_MASK, Suren Baghdasaryan
  - Re: [PATCH v2 2/6] mm: replace VM_LOCKED_CLEAR_MASK with VM_LOCKED_MASK, Michal Hocko
  - Re: [PATCH v2 2/6] mm: replace VM_LOCKED_CLEAR_MASK with VM_LOCKED_MASK, Mike Rapoport
- [PATCH v2 4/6] mm: replace vma->vm_flags indirect modification in ksm_madvise, Suren Baghdasaryan
  - Re: [PATCH v2 4/6] mm: replace vma->vm_flags indirect modification in ksm_madvise, Michal Hocko
    - Re: [PATCH v2 4/6] mm: replace vma->vm_flags indirect modification in ksm_madvise, Suren Baghdasaryan
      - Re: [PATCH v2 4/6] mm: replace vma->vm_flags indirect modification in ksm_madvise, Michal Hocko
        
        Re: [PATCH v2 4/6] mm: replace vma->vm_flags indirect modification in ksm_madvise, Suren Baghdasaryan
  - Re: [PATCH v2 4/6] mm: replace vma->vm_flags indirect modification in ksm_madvise, Mike Rapoport
- [PATCH v2 3/6] mm: replace vma->vm_flags direct modifications with modifier calls, Suren Baghdasaryan
  - Re: [PATCH v2 3/6] mm: replace vma->vm_flags direct modifications with modifier calls, Michal Hocko
    - Re: [PATCH v2 3/6] mm: replace vma->vm_flags direct modifications with modifier calls, Suren Baghdasaryan
  - Re: [PATCH v2 3/6] mm: replace vma->vm_flags direct modifications with modifier calls, Mike Rapoport
  - Re: [PATCH v2 3/6] mm: replace vma->vm_flags direct modifications with modifier calls, Sebastian Reichel
- [PATCH v2 5/6] mm: introduce mod_vm_flags_nolock and use it in untrack_pfn, Suren Baghdasaryan
  - Re: [PATCH v2 5/6] mm: introduce mod_vm_flags_nolock and use it in untrack_pfn, Michal Hocko
    - Re: [PATCH v2 5/6] mm: introduce mod_vm_flags_nolock and use it in untrack_pfn, Suren Baghdasaryan
  - Re: [PATCH v2 5/6] mm: introduce mod_vm_flags_nolock and use it in untrack_pfn, Mike Rapoport
[PATCH] python/sepolicy: Cache conditional rule queries, Vit Mojzis
- [PATCH v2] python/sepolicy: Cache conditional rule queries, Vit Mojzis
  - Re: [PATCH v2] python/sepolicy: Cache conditional rule queries, James Carter
    - Re: [PATCH v2] python/sepolicy: Cache conditional rule queries, Petr Lautrbach
selinux-testsuite broken pipe noise, Paul Moore
- Re: selinux-testsuite broken pipe noise, Ondrej Mosnacek
  - Message not available
    - Re: selinux-testsuite broken pipe noise, Ondrej Mosnacek
      - Re: selinux-testsuite broken pipe noise, Stephen Smalley
[PATCH net-next v6 0/2] Add IP_LOCAL_PORT_RANGE socket option, Jakub Sitnicki
- [PATCH net-next v6 1/2] inet: Add IP_LOCAL_PORT_RANGE socket option, Jakub Sitnicki
  - Re: [PATCH net-next v6 1/2] inet: Add IP_LOCAL_PORT_RANGE socket option, Eric Dumazet
- [PATCH net-next v6 2/2] selftests/net: Cover the IP_LOCAL_PORT_RANGE socket option, Jakub Sitnicki
- Re: [PATCH net-next v6 0/2] Add IP_LOCAL_PORT_RANGE socket option, Leon Romanovsky
- Re: [PATCH net-next v6 0/2] Add IP_LOCAL_PORT_RANGE socket option, patchwork-bot+netdevbpf
[PATCH net-next v5 0/2] Add IP_LOCAL_PORT_RANGE socket option, Jakub Sitnicki
- [PATCH net-next v5 1/2] inet: Add IP_LOCAL_PORT_RANGE socket option, Jakub Sitnicki
  - Re: [PATCH net-next v5 1/2] inet: Add IP_LOCAL_PORT_RANGE socket option, Leon Romanovsky
    - Re: [PATCH net-next v5 1/2] inet: Add IP_LOCAL_PORT_RANGE socket option, Jakub Sitnicki
      - Re: [PATCH net-next v5 1/2] inet: Add IP_LOCAL_PORT_RANGE socket option, Leon Romanovsky
        
        Re: [PATCH net-next v5 1/2] inet: Add IP_LOCAL_PORT_RANGE socket option, Jakub Sitnicki
- [PATCH net-next v5 2/2] selftests/net: Cover the IP_LOCAL_PORT_RANGE socket option, Jakub Sitnicki
[PATCH v2 0/4] Track exported dma-buffers with memcg, T.J. Mercier
- [PATCH v2 1/4] memcg: Track exported dma-buffers, T.J. Mercier
  - Re: [PATCH v2 1/4] memcg: Track exported dma-buffers, Michal Hocko
    - Re: [PATCH v2 1/4] memcg: Track exported dma-buffers, T.J. Mercier
      - Re: [PATCH v2 1/4] memcg: Track exported dma-buffers, Michal Hocko
        
        Re: [PATCH v2 1/4] memcg: Track exported dma-buffers, T.J. Mercier
    - Re: [PATCH v2 1/4] memcg: Track exported dma-buffers, Shakeel Butt
      - Re: [PATCH v2 1/4] memcg: Track exported dma-buffers, Michal Hocko
        
        Re: [PATCH v2 1/4] memcg: Track exported dma-buffers, Tvrtko Ursulin
        
        Re: [PATCH v2 1/4] memcg: Track exported dma-buffers, T.J. Mercier
        
        Re: [PATCH v2 1/4] memcg: Track exported dma-buffers, Tvrtko Ursulin
        
        Re: [PATCH v2 1/4] memcg: Track exported dma-buffers, T.J. Mercier
        
        Re: [PATCH v2 1/4] memcg: Track exported dma-buffers, Tvrtko Ursulin
        
        Re: [PATCH v2 1/4] memcg: Track exported dma-buffers, Tvrtko Ursulin
        
        Re: [PATCH v2 1/4] memcg: Track exported dma-buffers, T.J. Mercier
        
        Re: [PATCH v2 1/4] memcg: Track exported dma-buffers, Tvrtko Ursulin
        
        Re: [PATCH v2 1/4] memcg: Track exported dma-buffers, T.J. Mercier
        
        Re: [PATCH v2 1/4] memcg: Track exported dma-buffers, Tvrtko Ursulin
- [PATCH v2 2/4] dmabuf: Add cgroup charge transfer function, T.J. Mercier
- [PATCH v2 3/4] binder: Add flags to relinquish ownership of fds, T.J. Mercier
  - Re: [PATCH v2 3/4] binder: Add flags to relinquish ownership of fds, kernel test robot
  - Re: [PATCH v2 3/4] binder: Add flags to relinquish ownership of fds, Carlos Llamas
    - Re: [PATCH v2 3/4] binder: Add flags to relinquish ownership of fds, T.J. Mercier
- [PATCH v2 4/4] security: binder: Add binder object flags to selinux_binder_transfer_file, T.J. Mercier
  - Re: [PATCH v2 4/4] security: binder: Add binder object flags to selinux_binder_transfer_file, Paul Moore
    - Message not available
      - Re: [PATCH v2 4/4] security: binder: Add binder object flags to selinux_binder_transfer_file, T.J. Mercier
[PATCH net-next v4 0/2] Add IP_LOCAL_PORT_RANGE socket option, Jakub Sitnicki
- [PATCH net-next v4 1/2] inet: Add IP_LOCAL_PORT_RANGE socket option, Jakub Sitnicki
  - Re: [PATCH net-next v4 1/2] inet: Add IP_LOCAL_PORT_RANGE socket option, Leon Romanovsky
    - Re: [PATCH net-next v4 1/2] inet: Add IP_LOCAL_PORT_RANGE socket option, Jakub Sitnicki
      - Re: [PATCH net-next v4 1/2] inet: Add IP_LOCAL_PORT_RANGE socket option, Jakub Kicinski
  - Re: [PATCH net-next v4 1/2] inet: Add IP_LOCAL_PORT_RANGE socket option, Kuniyuki Iwashima
    - Re: [PATCH net-next v4 1/2] inet: Add IP_LOCAL_PORT_RANGE socket option, Jakub Sitnicki
- [PATCH net-next v4 2/2] selftests/net: Cover the IP_LOCAL_PORT_RANGE socket option, Jakub Sitnicki
  - Re: [PATCH net-next v4 2/2] selftests/net: Cover the IP_LOCAL_PORT_RANGE socket option, Kuniyuki Iwashima
[RFC PATCH] libselinux: improve performance with pcre matches, Carlo Marcelo Arenas Belón
- [PATCH 0/3] improve performance of pcre matches, Carlo Marcelo Arenas Belón
  - [PATCH 1/3] scripts: respect an initial LD_LIBRARY_PATH with env_use_destdir, Carlo Marcelo Arenas Belón
  - [PATCH 2/3] libselinux: improve performance with pcre matches, Carlo Marcelo Arenas Belón
    - Re: [PATCH 2/3] libselinux: improve performance with pcre matches, Eric Biggers
      - Re: [PATCH 2/3] libselinux: improve performance with pcre matches, Stephen Smalley
  - [PATCH 3/3] libselinux: use a static match_data if single threaded, Carlo Marcelo Arenas Belón
  - Re: [PATCH 0/3] improve performance of pcre matches, Stephen Smalley
[ANNOUNCE] Linux Security Summit North Americ (LSS-NA) CfP, James Morris
[PATCH net-next v3 0/2] Add IP_LOCAL_PORT_RANGE socket option, Jakub Sitnicki
- [PATCH net-next v3 1/2] inet: Add IP_LOCAL_PORT_RANGE socket option, Jakub Sitnicki
- [PATCH net-next v3 2/2] selftests/net: Cover the IP_LOCAL_PORT_RANGE socket option, Jakub Sitnicki
- Re: [PATCH net-next v3 0/2] Add IP_LOCAL_PORT_RANGE socket option, Neal Cardwell
  - Re: [PATCH net-next v3 0/2] Add IP_LOCAL_PORT_RANGE socket option, Jakub Sitnicki
[PATCH] mcstrans: preserve runtime directory, Christian Göttsche
- Re: [PATCH] mcstrans: preserve runtime directory, James Carter
- Re: [PATCH] mcstrans: preserve runtime directory, Petr Lautrbach
[TESTSUITE PATCH] policy: drop usage of files_list_pids(), Christian Göttsche
- Re: [TESTSUITE PATCH] policy: drop usage of files_list_pids(), Ondrej Mosnacek
  - Re: [TESTSUITE PATCH] policy: drop usage of files_list_pids(), Christian Göttsche
    - Re: [TESTSUITE PATCH] policy: drop usage of files_list_pids(), Ondrej Mosnacek
- [TESTSUITE PATCH v2] policy: handle files_list_pids() renaming in Refpolicy, Christian Göttsche
  - Re: [TESTSUITE PATCH v2] policy: handle files_list_pids() renaming in Refpolicy, Ondrej Mosnacek
ANN: SELinux userspace 3.5-rc2 release, Jason Zaman
[PATCH] ci: bump to python 3.11 in GitHub Actions, Jason Zaman
- Re: [PATCH] ci: bump to python 3.11 in GitHub Actions, Petr Lautrbach
Re: [PATCH net-next 06/10] cipso_ipv4: use iph_set_totlen in skbuff_setattr, Paul Moore
- Re: [PATCH net-next 06/10] cipso_ipv4: use iph_set_totlen in skbuff_setattr, Xin Long
  - Re: [PATCH net-next 06/10] cipso_ipv4: use iph_set_totlen in skbuff_setattr, Paul Moore
    - Re: [PATCH net-next 06/10] cipso_ipv4: use iph_set_totlen in skbuff_setattr, Xin Long
      - Re: [PATCH net-next 06/10] cipso_ipv4: use iph_set_totlen in skbuff_setattr, Paul Moore
        
        Re: [PATCH net-next 06/10] cipso_ipv4: use iph_set_totlen in skbuff_setattr, Xin Long
        
        Re: [PATCH net-next 06/10] cipso_ipv4: use iph_set_totlen in skbuff_setattr, David Ahern
        
        Re: [PATCH net-next 06/10] cipso_ipv4: use iph_set_totlen in skbuff_setattr, Paul Moore
        
        Re: [PATCH net-next 06/10] cipso_ipv4: use iph_set_totlen in skbuff_setattr, Paul Moore
        
        Re: [PATCH net-next 06/10] cipso_ipv4: use iph_set_totlen in skbuff_setattr, David Ahern
        
        Re: [PATCH net-next 06/10] cipso_ipv4: use iph_set_totlen in skbuff_setattr, Paul Moore
[PATCH v2 RESEND] libselinux: Workaround for heap overhead of pcre, Inseob Kim
- Re: [PATCH v2 RESEND] libselinux: Workaround for heap overhead of pcre, Jason Zaman
[PATCH testsuite] tests/filesystem: use native quota support for ext4, Ondrej Mosnacek
- Re: [PATCH testsuite] tests/filesystem: use native quota support for ext4, Ondrej Mosnacek
[PATCH 0/4] Track exported dma-buffers with memcg, T.J. Mercier
- [PATCH 4/4] security: binder: Add transfer_charge SElinux hook, T.J. Mercier
  - Re: [PATCH 4/4] security: binder: Add transfer_charge SElinux hook, Casey Schaufler
    - Re: [PATCH 4/4] security: binder: Add transfer_charge SElinux hook, T.J. Mercier
      - Re: [PATCH 4/4] security: binder: Add transfer_charge SElinux hook, Casey Schaufler
        
        Re: [PATCH 4/4] security: binder: Add transfer_charge SElinux hook, T.J. Mercier
  - Re: [PATCH 4/4] security: binder: Add transfer_charge SElinux hook, Paul Moore
    - Re: [PATCH 4/4] security: binder: Add transfer_charge SElinux hook, T.J. Mercier
      - Re: [PATCH 4/4] security: binder: Add transfer_charge SElinux hook, Paul Moore
        
        Re: [PATCH 4/4] security: binder: Add transfer_charge SElinux hook, T.J. Mercier
        
        Re: [PATCH 4/4] security: binder: Add transfer_charge SElinux hook, Paul Moore
- Re: [PATCH 0/4] Track exported dma-buffers with memcg, Shakeel Butt
  - Re: [PATCH 0/4] Track exported dma-buffers with memcg, Daniel Vetter
    - Re: [PATCH 0/4] Track exported dma-buffers with memcg, T.J. Mercier
      - Re: [PATCH 0/4] Track exported dma-buffers with memcg, Shakeel Butt
        
        Re: [PATCH 0/4] Track exported dma-buffers with memcg, Christian König
    - Re: [PATCH 0/4] Track exported dma-buffers with memcg, Shakeel Butt
      - Re: [PATCH 0/4] Track exported dma-buffers with memcg, Michal Hocko
[PATCH testsuite] tests/keys: remove extraneous zero byte from the DH prime, Ondrej Mosnacek
- Re: [PATCH testsuite] tests/keys: remove extraneous zero byte from the DH prime, Ondrej Mosnacek
[PATCH] libselinux: add getpidprevcon, Christian Göttsche
- Re: [PATCH] libselinux: add getpidprevcon, Stephen Smalley
  - Re: [PATCH] libselinux: add getpidprevcon, Christian Göttsche
    - Re: [PATCH] libselinux: add getpidprevcon, Stephen Smalley
      - Re: [PATCH] libselinux: add getpidprevcon, Stephen Smalley
- [PATCH v2 1/2] libselinux: add getpidprevcon, Christian Göttsche
  - [PATCH v2 2/2] libselinux: getcon.3: add note about PID races, Christian Göttsche
    - Re: [PATCH v2 2/2] libselinux: getcon.3: add note about PID races, Jason Zaman
  - Re: [PATCH v2 1/2] libselinux: add getpidprevcon, Jason Zaman
[PATCH] python/sepolicy: add missing booleans to man pages, Vit Mojzis
- [PATCH v2] python/sepolicy: add missing booleans to man pages, Vit Mojzis
  - Re: [PATCH v2] python/sepolicy: add missing booleans to man pages, Jason Zaman
[PATCH 1/2] libsepol: do not write empty class definitions, Christian Göttsche
- [PATCH 2/2] checkpolicy: add simple round-trip test, Christian Göttsche
  - Re: [PATCH 2/2] checkpolicy: add simple round-trip test, James Carter
- Re: [PATCH 1/2] libsepol: do not write empty class definitions, James Carter
  - Re: [PATCH 1/2] libsepol: do not write empty class definitions, James Carter
[PATCH] sepolicy: Make generated boolean descriptions translatable, Petr Lautrbach
- Re: [PATCH] sepolicy: Make generated boolean descriptions translatable, James Carter
  - Re: [PATCH] sepolicy: Make generated boolean descriptions translatable, James Carter
[PATCH v2] libselinux: Workaround for heap overhead of pcre, Inseob Kim
ANN: SELinux userspace 3.5-rc1 release, Jason Zaman
[PATCH 1/2] libselinux: Ignore installed when installing python bindings to DESTDIR, Jason Zaman
- [PATCH 2/2] python: Ignore installed when installing to DESTDIR, Jason Zaman
  - Re: [PATCH 2/2] python: Ignore installed when installing to DESTDIR, Petr Lautrbach
- Re: [PATCH 1/2] libselinux: Ignore installed when installing python bindings to DESTDIR, Jason Zaman
- Re: [PATCH 1/2] libselinux: Ignore installed when installing python bindings to DESTDIR, Petr Lautrbach
[PATCH] libsepol: reject attributes in type av rules for kernel policies, Christian Göttsche
- Re: [PATCH] libsepol: reject attributes in type av rules for kernel policies, James Carter
  - Re: [PATCH] libsepol: reject attributes in type av rules for kernel policies, James Carter
[PATCH RESEND 0/2] Provide matching audit timestamp in the SELinux AVC trace event, Ondrej Mosnacek
- [PATCH RESEND 1/2] audit: introduce a struct to represent an audit timestamp, Ondrej Mosnacek
- [PATCH RESEND 2/2] selinux: provide matching audit timestamp in the AVC trace event, Ondrej Mosnacek
  - Re: [PATCH RESEND 2/2] selinux: provide matching audit timestamp in the AVC trace event, Paul Moore
[PATCH 0/2] Provide matching audit timestamp in the SELinux AVC trace event, Ondrej Mosnacek
- [PATCH 1/2] audit: introduce a struct to represent an audit timestamp, Ondrej Mosnacek
  - Re: [PATCH 1/2] audit: introduce a struct to represent an audit timestamp, Casey Schaufler
    - Re: [PATCH 1/2] audit: introduce a struct to represent an audit timestamp, Paul Moore
[PATCH v2 0/2] lsm: introduce and use security_mptcp_add_subflow(), Paolo Abeni
- [PATCH v2 2/2] selinux: Implement mptcp_add_subflow hook, Paolo Abeni
  - Re: [PATCH v2 2/2] selinux: Implement mptcp_add_subflow hook, Paul Moore
    - Re: [PATCH v2 2/2] selinux: Implement mptcp_add_subflow hook, Paolo Abeni
      - Re: [PATCH v2 2/2] selinux: Implement mptcp_add_subflow hook, Paul Moore
        
        Re: [PATCH v2 2/2] selinux: Implement mptcp_add_subflow hook, Paolo Abeni
        
        Re: [PATCH v2 2/2] selinux: Implement mptcp_add_subflow hook, Paul Moore
        
        Re: [PATCH v2 2/2] selinux: Implement mptcp_add_subflow hook, Paolo Abeni
        
        Re: [PATCH v2 2/2] selinux: Implement mptcp_add_subflow hook, Paul Moore
- [PATCH v2 1/2] security, lsm: Introduce security_mptcp_add_subflow(), Paolo Abeni
  - Re: [PATCH v2 1/2] security, lsm: Introduce security_mptcp_add_subflow(), Mat Martineau
[PATCH] libselinux: Workaround for heap overhead of pcre, Inseob Kim
- Re: [PATCH] libselinux: Workaround for heap overhead of pcre, Christian Göttsche
  - Re: [PATCH] libselinux: Workaround for heap overhead of pcre, Inseob Kim
    - Re: [PATCH] libselinux: Workaround for heap overhead of pcre, Christian Göttsche
ANN: a new release of The SELinux Notebook, Paul Moore
[PATCH] notebook: make use of "allowlist" instead of "whitelist", Paul Moore
[PATCH] notebook: fix broken sepgsql.googlecode.com URL, Paul Moore
Re: memory leak in inet_create, Willy Tarreau
- <Possible follow-ups>
- Re: memory leak in inet_create, Greg KH
- Re: memory leak in inet_create, Eric Dumazet
  - Re: memory leak in inet_create, Eric Dumazet
[PATCH] sepolicy: fix a spelling mistake, kkz
- Re: [PATCH] sepolicy: fix a spelling mistake, Petr Lautrbach
- <Possible follow-ups>
- [PATCH] sepolicy: fix a spelling mistake, zhaoshuang
- [PATCH] sepolicy: fix a spelling mistake, zhaoshuang
  - Re: [PATCH] sepolicy: fix a spelling mistake, James Carter
    - Re: [PATCH] sepolicy: fix a spelling mistake, James Carter
[RFC PATCH 0/9] Add CIL Deny Rule, James Carter
- [RFC PATCH 2/9] libsepol/cil: Add cil_list_is_empty macro, James Carter
- [RFC PATCH 1/9] libsepol/cil: Parse and add deny rule to AST, but do not process, James Carter
- [RFC PATCH 6/9] libsepol: Export the cil_write_post_ast function, James Carter
- [RFC PATCH 9/9] secilc/docs: Add deny rule to CIL documentation, James Carter
  - Re: [RFC PATCH 9/9] secilc/docs: Add deny rule to CIL documentation, Daniel Burgener
    - Re: [RFC PATCH 9/9] secilc/docs: Add deny rule to CIL documentation, James Carter
- [RFC PATCH 3/9] libsepol/cil: Add cil_tree_remove_node function, James Carter
  - Re: [RFC PATCH 3/9] libsepol/cil: Add cil_tree_remove_node function, Daniel Burgener
    - Re: [RFC PATCH 3/9] libsepol/cil: Add cil_tree_remove_node function, James Carter
- [RFC PATCH 7/9] secilc/secil2tree: Add option to write CIL AST after post processing, James Carter
- [RFC PATCH 4/9] libsepol/cil: Process deny rules, James Carter
  - Re: [RFC PATCH 4/9] libsepol/cil: Process deny rules, Daniel Burgener
    - Re: [RFC PATCH 4/9] libsepol/cil: Process deny rules, James Carter
- [RFC PATCH 8/9] secilc/test: Add a deny rule test, James Carter
  - Re: [RFC PATCH 8/9] secilc/test: Add a deny rule test, Daniel Burgener
    - Re: [RFC PATCH 8/9] secilc/test: Add a deny rule test, James Carter
- [RFC PATCH 5/9] libsepol/cil: Add cil_write_post_ast function, James Carter
- Re: [RFC PATCH 0/9] Add CIL Deny Rule, Daniel Burgener
  - Re: [RFC PATCH 0/9] Add CIL Deny Rule, James Carter
[PATCH 0/2] lsm: introduce and use security_mptcp_add_subflow(), Paolo Abeni
- [PATCH 1/2] security, lsm: Introduce security_mptcp_add_subflow(), Paolo Abeni
  - Re: [PATCH 1/2] security, lsm: Introduce security_mptcp_add_subflow(), kernel test robot
  - Re: [PATCH 1/2] security, lsm: Introduce security_mptcp_add_subflow(), kernel test robot
- [PATCH 2/2] selinux: Implement mptcp_add_subflow hook, Paolo Abeni
  - Re: [PATCH 2/2] selinux: Implement mptcp_add_subflow hook, kernel test robot
- Re: [PATCH 0/2] lsm: introduce and use security_mptcp_add_subflow(), Paolo Abeni
[PATCH 0/1][RFC] SELINUX: Remove obsolete deferred inode security, Alexander Kozhevnikov
- [PATCH 1/1] [RFC] SELINUX: Remove obsolete deferred inode security init list., Alexander Kozhevnikov
  - Re: [PATCH 1/1] [RFC] SELINUX: Remove obsolete deferred inode security init list., Paul Moore
    - Re: [PATCH 1/1] [RFC] SELINUX: Remove obsolete deferred inode security init list., Paul Moore
[GIT PULL] SELinux patches for v6.2, Paul Moore
- Re: [GIT PULL] SELinux patches for v6.2, Linus Torvalds
  - Re: [GIT PULL] SELinux patches for v6.2, Paul Moore
- Re: [GIT PULL] SELinux patches for v6.2, pr-tracker-bot
[PATCH] sepolicy: Call os.makedirs() with exist_ok=True, Petr Lautrbach
- Re: [PATCH] sepolicy: Call os.makedirs() with exist_ok=True, James Carter
  - Re: [PATCH] sepolicy: Call os.makedirs() with exist_ok=True, James Carter
BUG: selinux-testsuite failures in tests/cap_userns, Paul Moore
- Re: BUG: selinux-testsuite failures in tests/cap_userns, Ondrej Mosnacek
[PATCH testsuite] policy: allow user_namespace::create where appropriate, Ondrej Mosnacek
- Re: [PATCH testsuite] policy: allow user_namespace::create where appropriate, Ondrej Mosnacek
  - Re: [PATCH testsuite] policy: allow user_namespace::create where appropriate, Paul Moore
[RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
- Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Greg KH
  - Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
    - Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Greg KH
      - Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Greg KH
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Greg KH
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Greg KH
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
- Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Mimi Zohar
  - Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
    - Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Mimi Zohar
      - Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Mimi Zohar
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Mimi Zohar
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Paul Moore
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Paul Moore
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Mimi Zohar
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Mimi Zohar
[PATCH 1/2] sepolicy: Switch main selection menu to GtkPopover, Petr Lautrbach
- [PATCH 2/2] python: Fix detection of sepolicy.glade location, Petr Lautrbach
- Re: [PATCH 1/2] sepolicy: Switch main selection menu to GtkPopover, James Carter
  - Re: [PATCH 1/2] sepolicy: Switch main selection menu to GtkPopover, James Carter
[PATCH testsuite 0/4] Bump Fedora versions in CI, Ondrej Mosnacek
- [PATCH testsuite 4/4] ci: bump Fedora versions, Ondrej Mosnacek
- [PATCH testsuite 3/4] tests/execshare: remove special cases for arcane architectures, Ondrej Mosnacek
- [PATCH testsuite 1/4] tests: adapt style to new perltidy, Ondrej Mosnacek
- [PATCH testsuite 2/4] tests: use correct type for context string variables, Ondrej Mosnacek
- Re: [PATCH testsuite 0/4] Bump Fedora versions in CI, Ondrej Mosnacek
[PATCH mptcp-net] mptcp: fix LSM labeling for passive msk, Paolo Abeni
- Re: [PATCH mptcp-net] mptcp: fix LSM labeling for passive msk, Mat Martineau
  - Re: [PATCH mptcp-net] mptcp: fix LSM labeling for passive msk, Casey Schaufler
    - Re: [PATCH mptcp-net] mptcp: fix LSM labeling for passive msk, Mat Martineau
  - Re: [PATCH mptcp-net] mptcp: fix LSM labeling for passive msk, Paul Moore
    - Re: [PATCH mptcp-net] mptcp: fix LSM labeling for passive msk, Paolo Abeni
      - Re: [PATCH mptcp-net] mptcp: fix LSM labeling for passive msk, Paul Moore
Intent to release SELinux userspace 3.5-rc1, Jason Zaman
- Re: Intent to release SELinux userspace 3.5-rc1, Paul Moore
[PATCH 1/3] libselinux: fix potential NULL reference and memory leak in audit2why, Jie Lu
- [PATCH 3/3] policycoreutils: fix potential NULL reference in load_checks, Jie Lu
  - Re: [PATCH 3/3] policycoreutils: fix potential NULL reference in load_checks, James Carter
    - Re: [PATCH 3/3] policycoreutils: fix potential NULL reference in load_checks, James Carter
- [PATCH 2/3] libsepol: fix potential memory leak in common_copy_callback, Jie Lu
  - Re: [PATCH 2/3] libsepol: fix potential memory leak in common_copy_callback, James Carter
- Re: [PATCH 1/3] libselinux: fix potential NULL reference and memory leak in audit2why, James Carter
[PATCH security-next] selinux: use sysfs_emit() to instead of scnprintf(), ye.xingchen
- Re: [PATCH security-next] selinux: use sysfs_emit() to instead of scnprintf(), Paul Moore
  - Re: [PATCH security-next] selinux: use sysfs_emit() to instead of scnprintf(), Paul Moore
Broken SELinux/LSM labeling with MPTCP and accept(2), Ondrej Mosnacek
- Re: Broken SELinux/LSM labeling with MPTCP and accept(2), Paolo Abeni
  - Re: Broken SELinux/LSM labeling with MPTCP and accept(2), Paul Moore
    - Re: Broken SELinux/LSM labeling with MPTCP and accept(2), Paolo Abeni
      - Re: Broken SELinux/LSM labeling with MPTCP and accept(2), Florian Westphal
      - Re: Broken SELinux/LSM labeling with MPTCP and accept(2), Paul Moore
        
        Re: Broken SELinux/LSM labeling with MPTCP and accept(2), Paolo Abeni
        
        Re: Broken SELinux/LSM labeling with MPTCP and accept(2), Ondrej Mosnacek
        
        Re: Broken SELinux/LSM labeling with MPTCP and accept(2), Paolo Abeni
        
        Re: Broken SELinux/LSM labeling with MPTCP and accept(2), Paul Moore
[PATCH v7 0/6] evm: Do HMAC of multiple per LSM xattrs for new inodes, Roberto Sassu
- [PATCH v7 1/6] reiserfs: Switch to security_inode_init_security(), Roberto Sassu
  - Re: [PATCH v7 1/6] reiserfs: Switch to security_inode_init_security(), Mimi Zohar
- [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Roberto Sassu
  - Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Roberto Sassu
    - Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Paul Moore
      - Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Roberto Sassu
        
        Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Paul Moore
    - Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Joseph Qi
      - Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Roberto Sassu
  - Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Mimi Zohar
    - Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Mimi Zohar
      - Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Roberto Sassu
        
        Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Mimi Zohar
        
        Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Roberto Sassu
        
        Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Mimi Zohar
    - Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Roberto Sassu
- [PATCH v7 3/6] security: Remove security_old_inode_init_security(), Roberto Sassu
  - Re: [PATCH v7 3/6] security: Remove security_old_inode_init_security(), Mimi Zohar
- [PATCH v7 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Roberto Sassu
  - Re: [PATCH v7 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Mimi Zohar
- [PATCH v7 6/6] evm: Support multiple LSMs providing an xattr, Roberto Sassu
  - Re: [PATCH v7 6/6] evm: Support multiple LSMs providing an xattr, Mimi Zohar
    - Re: [PATCH v7 6/6] evm: Support multiple LSMs providing an xattr, Roberto Sassu
      - Re: [PATCH v7 6/6] evm: Support multiple LSMs providing an xattr, Mimi Zohar
- [PATCH v7 5/6] evm: Align evm_inode_init_security() definition with LSM infrastructure, Roberto Sassu
  - Re: [PATCH v7 5/6] evm: Align evm_inode_init_security() definition with LSM infrastructure, Mimi Zohar
- Re: [PATCH v7 0/6] evm: Do HMAC of multiple per LSM xattrs for new inodes, Paul Moore
  - Re: [PATCH v7 0/6] evm: Do HMAC of multiple per LSM xattrs for new inodes, Roberto Sassu
- Re: [PATCH v7 0/6] evm: Do HMAC of multiple per LSM xattrs for new inodes, Paul Moore
  - Re: [PATCH v7 0/6] evm: Do HMAC of multiple per LSM xattrs for new inodes, Roberto Sassu
ANN/RFC: SELinux Reference Policy 3 pre-alpha, Chris PeBenito
[PATCH v2] Use `pip install` instead of `setup.py install`, Petr Lautrbach
- Re: [PATCH v2] Use `pip install` instead of `setup.py install`, James Carter
[PATCH] libselinux:add check for malloc, Jie Lu
- Re: [PATCH] libselinux:add check for malloc, James Carter
  - Re: [PATCH] libselinux:add check for malloc, James Carter
semanage export does not distinguish between --modify and --add, Vit Mojzis
[RFC PATCH v4 0/6] not-self neverallow support, Christian Göttsche
- [RFC PATCH v4 4/6] libsepol/tests: add tests for not self neverallow rules, Christian Göttsche
  - Re: [RFC PATCH v4 4/6] libsepol/tests: add tests for not self neverallow rules, James Carter
    - Re: [RFC PATCH v4 4/6] libsepol/tests: add tests for not self neverallow rules, James Carter
- [RFC PATCH v4 1/6] libsepol: Add not self support for neverallow rules, Christian Göttsche
  - Re: [RFC PATCH v4 1/6] libsepol: Add not self support for neverallow rules, James Carter
    - Re: [RFC PATCH v4 1/6] libsepol: Add not self support for neverallow rules, James Carter
- [RFC PATCH v4 3/6] checkpolicy: add not-self neverallow support, Christian Göttsche
  - Re: [RFC PATCH v4 3/6] checkpolicy: add not-self neverallow support, James Carter
    - Re: [RFC PATCH v4 3/6] checkpolicy: add not-self neverallow support, James Carter
- [RFC PATCH v4 6/6] libsepol: update CIL generation for trivial not-self rules, Christian Göttsche
  - Re: [RFC PATCH v4 6/6] libsepol: update CIL generation for trivial not-self rules, James Carter
    - Re: [RFC PATCH v4 6/6] libsepol: update CIL generation for trivial not-self rules, James Carter
- [RFC PATCH v4 5/6] libsepol/tests: add tests for minus self neverallow rules, Christian Göttsche
  - Re: [RFC PATCH v4 5/6] libsepol/tests: add tests for minus self neverallow rules, James Carter
    - Re: [RFC PATCH v4 5/6] libsepol/tests: add tests for minus self neverallow rules, James Carter
- [RFC PATCH v4 2/6] libsepol/cil: Add notself and minusself support to CIL, Christian Göttsche
  - Re: [RFC PATCH v4 2/6] libsepol/cil: Add notself and minusself support to CIL, James Carter
    - Re: [RFC PATCH v4 2/6] libsepol/cil: Add notself and minusself support to CIL, Petr Lautrbach
      - Re: [RFC PATCH v4 2/6] libsepol/cil: Add notself and minusself support to CIL, James Carter
[PATCH 1/2] checkpolicy: Improve error message for type bounds, Vit Mojzis
- [PATCH 2/2] libsemanage: Use more conscious language, Vit Mojzis
- Re: [PATCH 1/2] checkpolicy: Improve error message for type bounds, James Carter
  - Re: [PATCH 1/2] checkpolicy: Improve error message for type bounds, James Carter
secilc genfscon parsing error, Matthew Sheets
- Re: secilc genfscon parsing error, James Carter
  - Re: secilc genfscon parsing error, Matthew Sheets
- Re: secilc genfscon parsing error, Dominick Grift
  - Re: secilc genfscon parsing error, Dominick Grift
    - Re: secilc genfscon parsing error, Matthew Sheets
[PATCH v6 0/6] evm: Do HMAC of multiple per LSM xattrs for new inodes, Roberto Sassu
- [PATCH v6 2/6] ocfs2: Switch to security_inode_init_security(), Roberto Sassu
- [PATCH v6 1/6] reiserfs: Switch to security_inode_init_security(), Roberto Sassu

[Index of Archives] [Selinux Refpolicy] [Fedora Users] [Fedora Desktop] [Kernel] [KDE Users] [Gnome Users]

Powered by Linux