Security Enhanced Linux (SELINUX)

Date Index

[Prev Page][Next Page]

ANN: a new release of The SELinux Notebook, Paul Moore
[PATCH] notebook: make use of "allowlist" instead of "whitelist", Paul Moore
[PATCH] notebook: fix broken sepgsql.googlecode.com URL, Paul Moore
Re: memory leak in inet_create, Willy Tarreau
- <Possible follow-ups>
- Re: memory leak in inet_create, Greg KH
- Re: memory leak in inet_create, Eric Dumazet
  - Re: memory leak in inet_create, Eric Dumazet
[PATCH] sepolicy: fix a spelling mistake, kkz
- Re: [PATCH] sepolicy: fix a spelling mistake, Petr Lautrbach
- <Possible follow-ups>
- [PATCH] sepolicy: fix a spelling mistake, zhaoshuang
- [PATCH] sepolicy: fix a spelling mistake, zhaoshuang
  - Re: [PATCH] sepolicy: fix a spelling mistake, James Carter
    - Re: [PATCH] sepolicy: fix a spelling mistake, James Carter
[RFC PATCH 0/9] Add CIL Deny Rule, James Carter
- [RFC PATCH 2/9] libsepol/cil: Add cil_list_is_empty macro, James Carter
- [RFC PATCH 1/9] libsepol/cil: Parse and add deny rule to AST, but do not process, James Carter
- [RFC PATCH 6/9] libsepol: Export the cil_write_post_ast function, James Carter
- [RFC PATCH 9/9] secilc/docs: Add deny rule to CIL documentation, James Carter
  - Re: [RFC PATCH 9/9] secilc/docs: Add deny rule to CIL documentation, Daniel Burgener
    - Re: [RFC PATCH 9/9] secilc/docs: Add deny rule to CIL documentation, James Carter
- [RFC PATCH 3/9] libsepol/cil: Add cil_tree_remove_node function, James Carter
  - Re: [RFC PATCH 3/9] libsepol/cil: Add cil_tree_remove_node function, Daniel Burgener
    - Re: [RFC PATCH 3/9] libsepol/cil: Add cil_tree_remove_node function, James Carter
- [RFC PATCH 7/9] secilc/secil2tree: Add option to write CIL AST after post processing, James Carter
- [RFC PATCH 4/9] libsepol/cil: Process deny rules, James Carter
  - Re: [RFC PATCH 4/9] libsepol/cil: Process deny rules, Daniel Burgener
    - Re: [RFC PATCH 4/9] libsepol/cil: Process deny rules, James Carter
- [RFC PATCH 8/9] secilc/test: Add a deny rule test, James Carter
  - Re: [RFC PATCH 8/9] secilc/test: Add a deny rule test, Daniel Burgener
    - Re: [RFC PATCH 8/9] secilc/test: Add a deny rule test, James Carter
- [RFC PATCH 5/9] libsepol/cil: Add cil_write_post_ast function, James Carter
- Re: [RFC PATCH 0/9] Add CIL Deny Rule, Daniel Burgener
  - Re: [RFC PATCH 0/9] Add CIL Deny Rule, James Carter
[PATCH 0/2] lsm: introduce and use security_mptcp_add_subflow(), Paolo Abeni
- [PATCH 1/2] security, lsm: Introduce security_mptcp_add_subflow(), Paolo Abeni
  - Re: [PATCH 1/2] security, lsm: Introduce security_mptcp_add_subflow(), kernel test robot
  - Re: [PATCH 1/2] security, lsm: Introduce security_mptcp_add_subflow(), kernel test robot
- [PATCH 2/2] selinux: Implement mptcp_add_subflow hook, Paolo Abeni
  - Re: [PATCH 2/2] selinux: Implement mptcp_add_subflow hook, kernel test robot
- Re: [PATCH 0/2] lsm: introduce and use security_mptcp_add_subflow(), Paolo Abeni
[PATCH 0/1][RFC] SELINUX: Remove obsolete deferred inode security, Alexander Kozhevnikov
- [PATCH 1/1] [RFC] SELINUX: Remove obsolete deferred inode security init list., Alexander Kozhevnikov
  - Re: [PATCH 1/1] [RFC] SELINUX: Remove obsolete deferred inode security init list., Paul Moore
    - Re: [PATCH 1/1] [RFC] SELINUX: Remove obsolete deferred inode security init list., Paul Moore
[GIT PULL] SELinux patches for v6.2, Paul Moore
- Re: [GIT PULL] SELinux patches for v6.2, Linus Torvalds
  - Re: [GIT PULL] SELinux patches for v6.2, Paul Moore
- Re: [GIT PULL] SELinux patches for v6.2, pr-tracker-bot
[PATCH] sepolicy: Call os.makedirs() with exist_ok=True, Petr Lautrbach
- Re: [PATCH] sepolicy: Call os.makedirs() with exist_ok=True, James Carter
  - Re: [PATCH] sepolicy: Call os.makedirs() with exist_ok=True, James Carter
BUG: selinux-testsuite failures in tests/cap_userns, Paul Moore
- Re: BUG: selinux-testsuite failures in tests/cap_userns, Ondrej Mosnacek
[PATCH testsuite] policy: allow user_namespace::create where appropriate, Ondrej Mosnacek
- Re: [PATCH testsuite] policy: allow user_namespace::create where appropriate, Ondrej Mosnacek
  - Re: [PATCH testsuite] policy: allow user_namespace::create where appropriate, Paul Moore
[RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
- Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Greg KH
  - Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
    - Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Greg KH
      - Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Greg KH
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Greg KH
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Greg KH
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
- Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Mimi Zohar
  - Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
    - Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Mimi Zohar
      - Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Mimi Zohar
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Mimi Zohar
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Paul Moore
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Paul Moore
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Mimi Zohar
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Guozihua (Scott)
        
        Re: [RFC] IMA LSM based rule race condition issue on 4.19 LTS, Mimi Zohar
[PATCH 1/2] sepolicy: Switch main selection menu to GtkPopover, Petr Lautrbach
- [PATCH 2/2] python: Fix detection of sepolicy.glade location, Petr Lautrbach
- Re: [PATCH 1/2] sepolicy: Switch main selection menu to GtkPopover, James Carter
  - Re: [PATCH 1/2] sepolicy: Switch main selection menu to GtkPopover, James Carter
[PATCH testsuite 0/4] Bump Fedora versions in CI, Ondrej Mosnacek
- [PATCH testsuite 4/4] ci: bump Fedora versions, Ondrej Mosnacek
- [PATCH testsuite 3/4] tests/execshare: remove special cases for arcane architectures, Ondrej Mosnacek
- [PATCH testsuite 1/4] tests: adapt style to new perltidy, Ondrej Mosnacek
- [PATCH testsuite 2/4] tests: use correct type for context string variables, Ondrej Mosnacek
- Re: [PATCH testsuite 0/4] Bump Fedora versions in CI, Ondrej Mosnacek
[PATCH mptcp-net] mptcp: fix LSM labeling for passive msk, Paolo Abeni
- Re: [PATCH mptcp-net] mptcp: fix LSM labeling for passive msk, Mat Martineau
  - Re: [PATCH mptcp-net] mptcp: fix LSM labeling for passive msk, Casey Schaufler
    - Re: [PATCH mptcp-net] mptcp: fix LSM labeling for passive msk, Mat Martineau
  - Re: [PATCH mptcp-net] mptcp: fix LSM labeling for passive msk, Paul Moore
    - Re: [PATCH mptcp-net] mptcp: fix LSM labeling for passive msk, Paolo Abeni
      - Re: [PATCH mptcp-net] mptcp: fix LSM labeling for passive msk, Paul Moore
Intent to release SELinux userspace 3.5-rc1, Jason Zaman
- Re: Intent to release SELinux userspace 3.5-rc1, Paul Moore
[PATCH 1/3] libselinux: fix potential NULL reference and memory leak in audit2why, Jie Lu
- [PATCH 3/3] policycoreutils: fix potential NULL reference in load_checks, Jie Lu
  - Re: [PATCH 3/3] policycoreutils: fix potential NULL reference in load_checks, James Carter
    - Re: [PATCH 3/3] policycoreutils: fix potential NULL reference in load_checks, James Carter
- [PATCH 2/3] libsepol: fix potential memory leak in common_copy_callback, Jie Lu
  - Re: [PATCH 2/3] libsepol: fix potential memory leak in common_copy_callback, James Carter
- Re: [PATCH 1/3] libselinux: fix potential NULL reference and memory leak in audit2why, James Carter
[PATCH security-next] selinux: use sysfs_emit() to instead of scnprintf(), ye.xingchen
- Re: [PATCH security-next] selinux: use sysfs_emit() to instead of scnprintf(), Paul Moore
  - Re: [PATCH security-next] selinux: use sysfs_emit() to instead of scnprintf(), Paul Moore
Broken SELinux/LSM labeling with MPTCP and accept(2), Ondrej Mosnacek
- Re: Broken SELinux/LSM labeling with MPTCP and accept(2), Paolo Abeni
  - Re: Broken SELinux/LSM labeling with MPTCP and accept(2), Paul Moore
    - Re: Broken SELinux/LSM labeling with MPTCP and accept(2), Paolo Abeni
      - Re: Broken SELinux/LSM labeling with MPTCP and accept(2), Florian Westphal
      - Re: Broken SELinux/LSM labeling with MPTCP and accept(2), Paul Moore
        
        Re: Broken SELinux/LSM labeling with MPTCP and accept(2), Paolo Abeni
        
        Re: Broken SELinux/LSM labeling with MPTCP and accept(2), Ondrej Mosnacek
        
        Re: Broken SELinux/LSM labeling with MPTCP and accept(2), Paolo Abeni
        
        Re: Broken SELinux/LSM labeling with MPTCP and accept(2), Paul Moore
[PATCH v7 0/6] evm: Do HMAC of multiple per LSM xattrs for new inodes, Roberto Sassu
- [PATCH v7 1/6] reiserfs: Switch to security_inode_init_security(), Roberto Sassu
  - Re: [PATCH v7 1/6] reiserfs: Switch to security_inode_init_security(), Mimi Zohar
- [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Roberto Sassu
  - Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Roberto Sassu
    - Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Paul Moore
      - Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Roberto Sassu
        
        Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Paul Moore
    - Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Joseph Qi
      - Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Roberto Sassu
  - Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Mimi Zohar
    - Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Mimi Zohar
      - Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Roberto Sassu
        
        Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Mimi Zohar
        
        Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Roberto Sassu
        
        Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Mimi Zohar
    - Re: [PATCH v7 2/6] ocfs2: Switch to security_inode_init_security(), Roberto Sassu
- [PATCH v7 3/6] security: Remove security_old_inode_init_security(), Roberto Sassu
  - Re: [PATCH v7 3/6] security: Remove security_old_inode_init_security(), Mimi Zohar
- [PATCH v7 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Roberto Sassu
  - Re: [PATCH v7 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Mimi Zohar
- [PATCH v7 6/6] evm: Support multiple LSMs providing an xattr, Roberto Sassu
  - Re: [PATCH v7 6/6] evm: Support multiple LSMs providing an xattr, Mimi Zohar
    - Re: [PATCH v7 6/6] evm: Support multiple LSMs providing an xattr, Roberto Sassu
      - Re: [PATCH v7 6/6] evm: Support multiple LSMs providing an xattr, Mimi Zohar
- [PATCH v7 5/6] evm: Align evm_inode_init_security() definition with LSM infrastructure, Roberto Sassu
  - Re: [PATCH v7 5/6] evm: Align evm_inode_init_security() definition with LSM infrastructure, Mimi Zohar
- Re: [PATCH v7 0/6] evm: Do HMAC of multiple per LSM xattrs for new inodes, Paul Moore
  - Re: [PATCH v7 0/6] evm: Do HMAC of multiple per LSM xattrs for new inodes, Roberto Sassu
- Re: [PATCH v7 0/6] evm: Do HMAC of multiple per LSM xattrs for new inodes, Paul Moore
  - Re: [PATCH v7 0/6] evm: Do HMAC of multiple per LSM xattrs for new inodes, Roberto Sassu
ANN/RFC: SELinux Reference Policy 3 pre-alpha, Chris PeBenito
[PATCH v2] Use `pip install` instead of `setup.py install`, Petr Lautrbach
- Re: [PATCH v2] Use `pip install` instead of `setup.py install`, James Carter
[PATCH] libselinux:add check for malloc, Jie Lu
- Re: [PATCH] libselinux:add check for malloc, James Carter
  - Re: [PATCH] libselinux:add check for malloc, James Carter
semanage export does not distinguish between --modify and --add, Vit Mojzis
[RFC PATCH v4 0/6] not-self neverallow support, Christian Göttsche
- [RFC PATCH v4 4/6] libsepol/tests: add tests for not self neverallow rules, Christian Göttsche
  - Re: [RFC PATCH v4 4/6] libsepol/tests: add tests for not self neverallow rules, James Carter
    - Re: [RFC PATCH v4 4/6] libsepol/tests: add tests for not self neverallow rules, James Carter
- [RFC PATCH v4 1/6] libsepol: Add not self support for neverallow rules, Christian Göttsche
  - Re: [RFC PATCH v4 1/6] libsepol: Add not self support for neverallow rules, James Carter
    - Re: [RFC PATCH v4 1/6] libsepol: Add not self support for neverallow rules, James Carter
- [RFC PATCH v4 3/6] checkpolicy: add not-self neverallow support, Christian Göttsche
  - Re: [RFC PATCH v4 3/6] checkpolicy: add not-self neverallow support, James Carter
    - Re: [RFC PATCH v4 3/6] checkpolicy: add not-self neverallow support, James Carter
- [RFC PATCH v4 6/6] libsepol: update CIL generation for trivial not-self rules, Christian Göttsche
  - Re: [RFC PATCH v4 6/6] libsepol: update CIL generation for trivial not-self rules, James Carter
    - Re: [RFC PATCH v4 6/6] libsepol: update CIL generation for trivial not-self rules, James Carter
- [RFC PATCH v4 5/6] libsepol/tests: add tests for minus self neverallow rules, Christian Göttsche
  - Re: [RFC PATCH v4 5/6] libsepol/tests: add tests for minus self neverallow rules, James Carter
    - Re: [RFC PATCH v4 5/6] libsepol/tests: add tests for minus self neverallow rules, James Carter
- [RFC PATCH v4 2/6] libsepol/cil: Add notself and minusself support to CIL, Christian Göttsche
  - Re: [RFC PATCH v4 2/6] libsepol/cil: Add notself and minusself support to CIL, James Carter
    - Re: [RFC PATCH v4 2/6] libsepol/cil: Add notself and minusself support to CIL, Petr Lautrbach
      - Re: [RFC PATCH v4 2/6] libsepol/cil: Add notself and minusself support to CIL, James Carter
[PATCH 1/2] checkpolicy: Improve error message for type bounds, Vit Mojzis
- [PATCH 2/2] libsemanage: Use more conscious language, Vit Mojzis
- Re: [PATCH 1/2] checkpolicy: Improve error message for type bounds, James Carter
  - Re: [PATCH 1/2] checkpolicy: Improve error message for type bounds, James Carter
secilc genfscon parsing error, Matthew Sheets
- Re: secilc genfscon parsing error, James Carter
  - Re: secilc genfscon parsing error, Matthew Sheets
- Re: secilc genfscon parsing error, Dominick Grift
  - Re: secilc genfscon parsing error, Dominick Grift
    - Re: secilc genfscon parsing error, Matthew Sheets
[PATCH v6 0/6] evm: Do HMAC of multiple per LSM xattrs for new inodes, Roberto Sassu
- [PATCH v6 2/6] ocfs2: Switch to security_inode_init_security(), Roberto Sassu
- [PATCH v6 1/6] reiserfs: Switch to security_inode_init_security(), Roberto Sassu
- [PATCH v6 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Roberto Sassu
  - Re: [PATCH v6 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Casey Schaufler
    - Re: [PATCH v6 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Roberto Sassu
  - Re: [PATCH v6 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Mimi Zohar
    - Re: [PATCH v6 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Roberto Sassu
      - Re: [PATCH v6 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Mimi Zohar
        
        Re: [PATCH v6 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Casey Schaufler
        
        Re: [PATCH v6 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Mimi Zohar
- [PATCH v6 3/6] security: Remove security_old_inode_init_security(), Roberto Sassu
- [PATCH v6 6/6] evm: Support multiple LSMs providing an xattr, Roberto Sassu
- [PATCH v6 5/6] evm: Align evm_inode_init_security() definition with LSM infrastructure, Roberto Sassu
- Re: [PATCH v6 0/6] evm: Do HMAC of multiple per LSM xattrs for new inodes, Mimi Zohar
- Re: [PATCH v6 0/6] evm: Do HMAC of multiple per LSM xattrs for new inodes, Casey Schaufler
[PATCH v5 0/6] evm: Prepare for moving to the LSM infrastructure, Roberto Sassu
- [PATCH v5 4/6] security: Allow all LSMs to provide xattrs for inode_init_security hook, Roberto Sassu
- [PATCH v5 5/6] evm: Align evm_inode_init_security() definition with LSM infrastructure, Roberto Sassu
- [PATCH v5 2/6] ocfs2: Switch to security_inode_init_security(), Roberto Sassu
  - Re: [PATCH v5 2/6] ocfs2: Switch to security_inode_init_security(), Mimi Zohar
    - Re: [PATCH v5 2/6] ocfs2: Switch to security_inode_init_security(), Roberto Sassu
      - Re: [PATCH v5 2/6] ocfs2: Switch to security_inode_init_security(), Mimi Zohar
        
        Re: [PATCH v5 2/6] ocfs2: Switch to security_inode_init_security(), Roberto Sassu
- [PATCH v5 1/6] reiserfs: Switch to security_inode_init_security(), Roberto Sassu
  - Re: [PATCH v5 1/6] reiserfs: Switch to security_inode_init_security(), Mimi Zohar
- [PATCH v5 3/6] security: Remove security_old_inode_init_security(), Roberto Sassu
- [PATCH v5 6/6] evm: Support multiple LSMs providing an xattr, Roberto Sassu
- Re: [PATCH v5 0/6] evm: Prepare for moving to the LSM infrastructure, Mimi Zohar
  - Re: [PATCH v5 0/6] evm: Prepare for moving to the LSM infrastructure, Roberto Sassu
    - Re: [PATCH v5 0/6] evm: Prepare for moving to the LSM infrastructure, Mimi Zohar
[RFC PATCH] Use `pip install` instead of `setup.py install`, Petr Lautrbach
- Re: [RFC PATCH] Use `pip install` instead of `setup.py install`, James Carter
  - Re: [RFC PATCH] Use `pip install` instead of `setup.py install`, James Carter
    - Re: [RFC PATCH] Use `pip install` instead of `setup.py install`, Petr Lautrbach
      - Re: [RFC PATCH] Use `pip install` instead of `setup.py install`, Petr Lautrbach
Kernel Panic while accessing avtab_search_node, Jaihind Yadav (QUIC)
- Re: Kernel Panic while accessing avtab_search_node, Paul Moore
  - RE: Kernel Panic while accessing avtab_search_node, Jaihind Yadav (QUIC)
    - Re: Kernel Panic while accessing avtab_search_node, Paul Moore
[PATCH v2] libselinux: fix some memory issues in db_init, Jie Lu
- Re: [PATCH v2] libselinux: fix some memory issues in db_init, James Carter
  - Re: [PATCH v2] libselinux: fix some memory issues in db_init, James Carter
[PATCH] libselinux: fix some memory issues in db_init, Jie Lu
- Re: [PATCH] libselinux: fix some memory issues in db_init, James Carter
[PATCH] Fix E275 missing whitespace after keyword, Petr Lautrbach
- Re: [PATCH] Fix E275 missing whitespace after keyword, James Carter
  - Re: [PATCH] Fix E275 missing whitespace after keyword, James Carter
[PATCH v3 1/3] python/sepolicy: Fix sepolicy manpage -w ..., Petr Lautrbach
- [PATCH v3 2/3] python/sepolicy: Use distro module to get os version, Petr Lautrbach
- [PATCH v3 3/3] python/sepolicy: Simplify generation of man pages, Petr Lautrbach
- Re: [PATCH v3 1/3] python/sepolicy: Fix sepolicy manpage -w ..., James Carter
  - Re: [PATCH v3 1/3] python/sepolicy: Fix sepolicy manpage -w ..., James Carter
New SELinux Notebook release?, Paul Moore
[PATCH v2 1/3] python/sepolicy: Fix sepolicy manpage -w ..., Petr Lautrbach
- [PATCH v2 3/3] python/sepolicy: Simplify generation of man pages, Petr Lautrbach
  - Re: [PATCH v2 3/3] python/sepolicy: Simplify generation of man pages, Petr Lautrbach
- [PATCH v2 2/3] python/sepolicy: Use distro module to get os version, Petr Lautrbach
- Re: [PATCH v2 1/3] python/sepolicy: Fix sepolicy manpage -w ..., James Carter
  - Re: [PATCH v2 1/3] python/sepolicy: Fix sepolicy manpage -w ..., Petr Lautrbach
    - Re: [PATCH v2 1/3] python/sepolicy: Fix sepolicy manpage -w ..., James Carter
- Re: [PATCH v2 1/3] python/sepolicy: Fix sepolicy manpage -w ..., James Carter
- Re: [PATCH v2 1/3] python/sepolicy: Fix sepolicy manpage -w ..., Ondrej Mosnacek
[PATCH] libselinux: fix memory leaks on the audit2why module init, Jie Lu
- Re: [PATCH] libselinux: fix memory leaks on the audit2why module init, James Carter
  - Re: [PATCH] libselinux: fix memory leaks on the audit2why module init, James Carter
- <Possible follow-ups>
- [PATCH] libselinux: fix memory leaks on the audit2why module init, Jie Lu
[RFC PATCH 1/6] libsepol: rename struct member, Christian Göttsche
- [RFC PATCH 2/6] checkpolicy: update cond_expr_t struct member name, Christian Göttsche
- [RFC PATCH 3/6] libsepol/tests: rename bool indentifiers, Christian Göttsche
- [RFC PATCH 5/6] libsepol: rename bool identifiers, Christian Göttsche
- [RFC PATCH 6/6] libsemanage/tests: rename bool identifiers, Christian Göttsche
- [RFC PATCH 4/6] checkpolicy: rename bool identifiers, Christian Göttsche
- Re: [RFC PATCH 1/6] libsepol: rename struct member, James Carter
  - Re: [RFC PATCH 1/6] libsepol: rename struct member, Christian Göttsche
    - Re: [RFC PATCH 1/6] libsepol: rename struct member, James Carter
      - Re: [RFC PATCH 1/6] libsepol: rename struct member, Christian Göttsche
[PATCH 1/2] libsepol/tests: use more strict compiler options, Christian Göttsche
- [PATCH 2/2] libsepol/tests: add tests for neverallow assertions, Christian Göttsche
  - Re: [PATCH 2/2] libsepol/tests: add tests for neverallow assertions, James Carter
- Re: [PATCH 1/2] libsepol/tests: use more strict compiler options, James Carter
  - Re: [PATCH 1/2] libsepol/tests: use more strict compiler options, James Carter
[PATCH] [RFC] SELINUX: Remove obsolete deferred inode security init list., Konstantin Meskhidze
- Re: [PATCH] [RFC] SELINUX: Remove obsolete deferred inode security init list., Paul Moore
  - Re: [PATCH] [RFC] SELINUX: Remove obsolete deferred inode security init list., Paul Moore
    - Message not available
      - Message not available
        
        Re: [PATCH] [RFC] SELINUX: Remove obsolete deferred inode security init list., Paul Moore
[PATCH v4 0/5] evm: Prepare for moving to the LSM infrastructure, Roberto Sassu
- [PATCH v4 3/5] security: Allow all LSMs to provide xattrs for inode_init_security hook, Roberto Sassu
  - Re: [PATCH v4 3/5] security: Allow all LSMs to provide xattrs for inode_init_security hook, Mimi Zohar
    - Re: [PATCH v4 3/5] security: Allow all LSMs to provide xattrs for inode_init_security hook, Casey Schaufler
      - Re: [PATCH v4 3/5] security: Allow all LSMs to provide xattrs for inode_init_security hook, Mimi Zohar
        
        Re: [PATCH v4 3/5] security: Allow all LSMs to provide xattrs for inode_init_security hook, Casey Schaufler
        
        Re: [PATCH v4 3/5] security: Allow all LSMs to provide xattrs for inode_init_security hook, Mimi Zohar
      - Re: [PATCH v4 3/5] security: Allow all LSMs to provide xattrs for inode_init_security hook, Roberto Sassu
        
        Re: [PATCH v4 3/5] security: Allow all LSMs to provide xattrs for inode_init_security hook, Mimi Zohar
    - Re: [PATCH v4 3/5] security: Allow all LSMs to provide xattrs for inode_init_security hook, Roberto Sassu
      - Re: [PATCH v4 3/5] security: Allow all LSMs to provide xattrs for inode_init_security hook, Mimi Zohar
        
        Re: [PATCH v4 3/5] security: Allow all LSMs to provide xattrs for inode_init_security hook, Casey Schaufler
        
        Re: [PATCH v4 3/5] security: Allow all LSMs to provide xattrs for inode_init_security hook, Roberto Sassu
        
        Re: [PATCH v4 3/5] security: Allow all LSMs to provide xattrs for inode_init_security hook, Mimi Zohar
      - Re: [PATCH v4 3/5] security: Allow all LSMs to provide xattrs for inode_init_security hook, Casey Schaufler
- [PATCH v4 4/5] evm: Align evm_inode_init_security() definition with LSM infrastructure, Roberto Sassu
  - Re: [PATCH v4 4/5] evm: Align evm_inode_init_security() definition with LSM infrastructure, Mimi Zohar
    - Re: [PATCH v4 4/5] evm: Align evm_inode_init_security() definition with LSM infrastructure, Roberto Sassu
      - Re: [PATCH v4 4/5] evm: Align evm_inode_init_security() definition with LSM infrastructure, Mimi Zohar
      - Re: [PATCH v4 4/5] evm: Align evm_inode_init_security() definition with LSM infrastructure, Mimi Zohar
- [PATCH v4 1/5] reiserfs: Add missing calls to reiserfs_security_free(), Roberto Sassu
  - Re: [PATCH v4 1/5] reiserfs: Add missing calls to reiserfs_security_free(), Mimi Zohar
  - Re: [PATCH v4 1/5] reiserfs: Add missing calls to reiserfs_security_free(), Paul Moore
    - Re: [PATCH v4 1/5] reiserfs: Add missing calls to reiserfs_security_free(), Roberto Sassu
      - Re: [PATCH v4 1/5] reiserfs: Add missing calls to reiserfs_security_free(), Paul Moore
- [PATCH v4 5/5] evm: Support multiple LSMs providing an xattr, Roberto Sassu
  - Re: [PATCH v4 5/5] evm: Support multiple LSMs providing an xattr, Mimi Zohar
- [PATCH v4 2/5] security: Rewrite security_old_inode_init_security(), Roberto Sassu
  - Re: [PATCH v4 2/5] security: Rewrite security_old_inode_init_security(), Mimi Zohar
    - Re: [PATCH v4 2/5] security: Rewrite security_old_inode_init_security(), Roberto Sassu
    - Re: [PATCH v4 2/5] security: Rewrite security_old_inode_init_security(), Roberto Sassu
      - Re: [PATCH v4 2/5] security: Rewrite security_old_inode_init_security(), Mimi Zohar
        
        Re: [PATCH v4 2/5] security: Rewrite security_old_inode_init_security(), Paul Moore
        
        Re: [PATCH v4 2/5] security: Rewrite security_old_inode_init_security(), Roberto Sassu
[PATCH] libselinux: drop set but not used internal variable, Christian Göttsche
- Re: [PATCH] libselinux: drop set but not used internal variable, James Carter
  - Re: [PATCH] libselinux: drop set but not used internal variable, James Carter
[PATCH 1/3] libselinux: simplify string copying, Christian Göttsche
- [PATCH 2/3] checkpolicy: simplify string copying, Christian Göttsche
- [PATCH 3/3] libsepol: simplify string copying, Christian Göttsche
- Re: [PATCH 1/3] libselinux: simplify string copying, James Carter
  - Re: [PATCH 1/3] libselinux: simplify string copying, James Carter
[PATCH 1/3] libselinux: make use of strndup, Christian Göttsche
- [PATCH 2/3] libselinux: bail out on path truncations, Christian Göttsche
  - Re: [PATCH 2/3] libselinux: bail out on path truncations, James Carter
  - [PATCH v2 2/3] libselinux: bail out on path truncations, Christian Göttsche
- [PATCH 3/3] libselinux: filter arguments with path separators, Christian Göttsche
  - Re: [PATCH 3/3] libselinux: filter arguments with path separators, James Carter
  - [PATCH v3 3/3] libselinux: filter arguments with path separators, Christian Göttsche
    - Re: [PATCH v3 3/3] libselinux: filter arguments with path separators, James Carter
      - Re: [PATCH v3 3/3] libselinux: filter arguments with path separators, James Carter
[PATCH v2] python: Fix typo in audit2allow.1 example, Petr Lautrbach
- Re: [PATCH v2] python: Fix typo in audit2allow.1 example, James Carter
  - Re: [PATCH v2] python: Fix typo in audit2allow.1 example, James Carter
[PATCH] selinux: remove the sidtab context conversion indirect calls, Paul Moore
- Re: [PATCH] selinux: remove the sidtab context conversion indirect calls, Ondrej Mosnacek
  - Re: [PATCH] selinux: remove the sidtab context conversion indirect calls, Paul Moore
- Re: [PATCH] selinux: remove the sidtab context conversion indirect calls, Casey Schaufler
[PATCH] python: Fix typo in audit2allow.1 example, Petr Lautrbach
- Re: [PATCH] python: Fix typo in audit2allow.1 example, James Carter
  - Re: [PATCH] python: Fix typo in audit2allow.1 example, Petr Lautrbach
[PATCH v1 0/2] Add LSM access controls for io_uring_setup, Gil Cukierman
- [PATCH v1 2/2] selinux: add support for the io_uring setup permission, Gil Cukierman
- Re: [PATCH v1 0/2] Add LSM access controls for io_uring_setup, Paul Moore
  - Re: [PATCH v1 0/2] Add LSM access controls for io_uring_setup, Jeffrey Vander Stoep
    - Re: [PATCH v1 0/2] Add LSM access controls for io_uring_setup, Paul Moore
      - Message not available
        
        Re: [PATCH v1 0/2] Add LSM access controls for io_uring_setup, Joel Granados
        
        Re: [PATCH v1 0/2] Add LSM access controls for io_uring_setup, Jeffrey Vander Stoep
      - Re: [PATCH v1 0/2] Add LSM access controls for io_uring_setup, Dmytro Maluka
        
        Re: [PATCH v1 0/2] Add LSM access controls for io_uring_setup, Paul Moore
        
        Re: [PATCH v1 0/2] Add LSM access controls for io_uring_setup, Dmytro Maluka
        
        Re: [PATCH v1 0/2] Add LSM access controls for io_uring_setup, Paul Moore
        
        Re: [PATCH v1 0/2] Add LSM access controls for io_uring_setup, Dmytro Maluka
        
        Re: [PATCH v1 0/2] Add LSM access controls for io_uring_setup, Dmytro Maluka
        
        Re: [PATCH v1 0/2] Add LSM access controls for io_uring_setup, Stephen Smalley
[PATCH v2] fixfiles: Unmount temporary bind mounts on SIGINT, Petr Lautrbach
- Re: [PATCH v2] fixfiles: Unmount temporary bind mounts on SIGINT, Petr Lautrbach
  - Re: [PATCH v2] fixfiles: Unmount temporary bind mounts on SIGINT, Petr Lautrbach
    - Re: [PATCH v2] fixfiles: Unmount temporary bind mounts on SIGINT, Christian Göttsche
- Re: [PATCH v2] fixfiles: Unmount temporary bind mounts on SIGINT, James Carter
  - Re: [PATCH v2] fixfiles: Unmount temporary bind mounts on SIGINT, James Carter
Constraints of policy identifiers, Christian Göttsche
- Re: Constraints of policy identifiers, James Carter
Security context of root inode of in-memory filesystems, Christian Göttsche
[PATCH 0/5 v3] Remove dependency on the Python module distutils, James Carter
- [PATCH 1/5 v3] libselinux: Remove dependency on the Python module distutils, James Carter
- [PATCH 2/5 v3] libsemanage: Remove dependency on the Python module distutils, James Carter
- [PATCH 3/5] python: Remove dependency on the Python module distutils, James Carter
- [PATCH 4/5 v3] scripts: Remove dependency on the Python module distutils, James Carter
- [PATCH 5/5 v3] README.md: Remove mention of python3-distutils dependency, James Carter
- Re: [PATCH 0/5 v3] Remove dependency on the Python module distutils, Petr Lautrbach
  - Re: [PATCH 0/5 v3] Remove dependency on the Python module distutils, James Carter
[PATCH v2] fs: don't audit the capability check in simple_xattr_list(), Ondrej Mosnacek
- Re: [PATCH v2] fs: don't audit the capability check in simple_xattr_list(), Christian Brauner
- Re: [PATCH v2] fs: don't audit the capability check in simple_xattr_list(), Paul Moore
  - Re: [PATCH v2] fs: don't audit the capability check in simple_xattr_list(), Christian Brauner
    - Re: [PATCH v2] fs: don't audit the capability check in simple_xattr_list(), Paul Moore
[PATCH 0/5 v2] Remove dependency on the Python module distutils, James Carter
- [PATCH 1/5 v2] libselinux: Remove dependency on the Python module distutils, James Carter
- [PATCH 2/5 v2] libsemanage: Remove dependency on the Python module distutils, James Carter
- [PATCH 3/5 v2] python: Remove dependency on the Python module distutils, James Carter
  - Re: [PATCH 3/5 v2] python: Remove dependency on the Python module distutils, Petr Lautrbach
- [PATCH 5/5 v2] README.md: Remove mention of python3-distutils dependency, James Carter
- [PATCH 4/5 v2] scripts: Remove dependency on the Python module distutils, James Carter
ANN: Reference Policy 2.20221101, Chris PeBenito
[PATCH] libselinux: Ignore missing directories when -i is used, Vit Mojzis
- Re: [PATCH] libselinux: Ignore missing directories when -i is used, James Carter
  - Re: [PATCH] libselinux: Ignore missing directories when -i is used, James Carter
[PATCH 0/5] Remove dependency on the Python module distutils, James Carter
- [PATCH 1/5] libselinux: Remove dependency on the Python module distutils, James Carter
- [PATCH 2/5] libsemanage: Remove dependency on the Python module distutils, James Carter
- [PATCH 3/5] python: Remove dependency on the Python module distutils, James Carter
  - Re: [PATCH 3/5] python: Remove dependency on the Python module distutils, Petr Lautrbach
    - Re: [PATCH 3/5] python: Remove dependency on the Python module distutils, James Carter
- [PATCH 5/5] README.md: Remove mention of python3-distutils dependency, James Carter
- [PATCH 4/5] scripts: Remove dependency on the Python module distutils, James Carter
- Re: [PATCH 0/5] Remove dependency on the Python module distutils, Petr Lautrbach
[PATCH] libselinux: Drop '\n' from avc_log() messages, Petr Lautrbach
- Re: [PATCH] libselinux: Drop '\n' from avc_log() messages, Daniel Burgener
  - Re: [PATCH] libselinux: Drop '\n' from avc_log() messages, Petr Lautrbach
    - Re: [PATCH] libselinux: Drop '\n' from avc_log() messages, Daniel Burgener
[PATCH 5.15 135/530] selinux: use "grep -E" instead of "egrep", Greg Kroah-Hartman
[PATCH 4.14 080/210] selinux: use "grep -E" instead of "egrep", Greg Kroah-Hartman
[PATCH 5.10 091/390] selinux: use "grep -E" instead of "egrep", Greg Kroah-Hartman
[PATCH 5.4 057/255] selinux: use "grep -E" instead of "egrep", Greg Kroah-Hartman
[PATCH 4.19 069/229] selinux: use "grep -E" instead of "egrep", Greg Kroah-Hartman
[PATCH 4.9 063/159] selinux: use "grep -E" instead of "egrep", Greg Kroah-Hartman
[PATCH] libselinux: ignore invalid class name lookup, Thiébaud Weksteen
- Re: [PATCH] libselinux: ignore invalid class name lookup, Thiébaud Weksteen
- Re: [PATCH] libselinux: ignore invalid class name lookup, James Carter
  - Re: [PATCH] libselinux: ignore invalid class name lookup, Christian Göttsche
    - Re: [PATCH] libselinux: ignore invalid class name lookup, Thiébaud Weksteen
      - Re: [PATCH] libselinux: ignore invalid class name lookup, James Carter
- Re: [PATCH] libselinux: ignore invalid class name lookup, James Carter
  - Re: [PATCH] libselinux: ignore invalid class name lookup, James Carter
[PATCH 5.19 176/717] selinux: use "grep -E" instead of "egrep", Greg Kroah-Hartman
[GIT PULL] SELinux fixes for v6.1 (#1), Paul Moore
- Re: [GIT PULL] SELinux fixes for v6.1 (#1), Linus Torvalds
  - Re: [GIT PULL] SELinux fixes for v6.1 (#1), Paul Moore
- Re: [GIT PULL] SELinux fixes for v6.1 (#1), pr-tracker-bot
[PATCH] python: Do not query the local database if the fcontext is non-local, James Carter
- Re: [PATCH] python: Do not query the local database if the fcontext is non-local, James Carter
[PATCH 6.0 202/862] selinux: use "grep -E" instead of "egrep", Greg Kroah-Hartman
[PATCH v2] selinux: use GFP_ATOMIC in convert_context(), GONG, Ruiqi
- Re: [PATCH v2] selinux: use GFP_ATOMIC in convert_context(), Ondrej Mosnacek
- Re: [PATCH v2] selinux: use GFP_ATOMIC in convert_context(), Paul Moore
[PATCH] python: Harden tools against "rogue" modules, Vit Mojzis
- Re: [PATCH] python: Harden tools against "rogue" modules, James Carter
  - Re: [PATCH] python: Harden tools against "rogue" modules, James Carter
[PATCH] selinux: use GFP_ATOMIC in convert_context(), GONG, Ruiqi
- Re: [PATCH] selinux: use GFP_ATOMIC in convert_context(), Ondrej Mosnacek
  - Re: [PATCH] selinux: use GFP_ATOMIC in convert_context(), Paul Moore
[PATCH v5 10/30] selinux: implement get, set and remove acl hook, Christian Brauner
[PATCH V2] docs: Add GPG fingerprints, James Carter
- Re: [PATCH V2] docs: Add GPG fingerprints, Paul Moore
  - Re: [PATCH V2] docs: Add GPG fingerprints, James Carter
[PATCH] docs: Add GPG fingerprints, James Carter
- Re: [PATCH] docs: Add GPG fingerprints, Paul Moore
[PATCH 1/2] sandbox: Do not try to remove tmpdir twice if uid == 0, Petr Lautrbach
- [PATCH 2/2] sandbox: Use temporary directory for XDG_RUNTIME_DIR, Petr Lautrbach
- Re: [PATCH 1/2] sandbox: Do not try to remove tmpdir twice if uid == 0, James Carter
  - Re: [PATCH 1/2] sandbox: Do not try to remove tmpdir twice if uid == 0, James Carter
[PATCH] libsepol/cil: restore error on context rule conflicts, Christian Göttsche
- Re: [PATCH] libsepol/cil: restore error on context rule conflicts, James Carter
  - Re: [PATCH] libsepol/cil: restore error on context rule conflicts, Petr Lautrbach
    - Re: [PATCH] libsepol/cil: restore error on context rule conflicts, James Carter
[DPKG PATCH] selinux: install log callback to filter messages, Christian Göttsche
- Re: [DPKG PATCH] selinux: install log callback to filter messages, Guillem Jover
[PATCH] gui: Fix export file chooser dialog, Petr Lautrbach
- Re: [PATCH] gui: Fix export file chooser dialog, James Carter
  - Re: [PATCH] gui: Fix export file chooser dialog, James Carter
[PATCH] libselinux: Add missing '\n' to avc_log() messages, Petr Lautrbach
- Re: [PATCH] libselinux: Add missing '\n' to avc_log() messages, Daniel Burgener
- Re: [PATCH] libselinux: Add missing '\n' to avc_log() messages, Petr Lautrbach
  - Re: [PATCH] libselinux: Add missing '\n' to avc_log() messages, Daniel Burgener
    - Re: [PATCH] libselinux: Add missing '\n' to avc_log() messages, Petr Lautrbach
      - Re: [PATCH] libselinux: Add missing '\n' to avc_log() messages, Christian Göttsche
        
        Re: [PATCH] libselinux: Add missing '\n' to avc_log() messages, Petr Lautrbach
[PATCH] lsm: make security_socket_getpeersec_stream() sockptr_t safe, Paul Moore
- Re: [PATCH] lsm: make security_socket_getpeersec_stream() sockptr_t safe, Paul Moore
  - Re: [PATCH] lsm: make security_socket_getpeersec_stream() sockptr_t safe, Casey Schaufler
    - Re: [PATCH] lsm: make security_socket_getpeersec_stream() sockptr_t safe, Paul Moore
  - Re: [PATCH] lsm: make security_socket_getpeersec_stream() sockptr_t safe, John Johansen
- Re: [PATCH] lsm: make security_socket_getpeersec_stream() sockptr_t safe, Jakub Kicinski
  - Re: [PATCH] lsm: make security_socket_getpeersec_stream() sockptr_t safe, Paul Moore
    - Re: [PATCH] lsm: make security_socket_getpeersec_stream() sockptr_t safe, Alexei Starovoitov
      - Re: [PATCH] lsm: make security_socket_getpeersec_stream() sockptr_t safe, Paul Moore
- Re: [PATCH] lsm: make security_socket_getpeersec_stream() sockptr_t safe, Casey Schaufler
  - Re: [PATCH] lsm: make security_socket_getpeersec_stream() sockptr_t safe, Paul Moore
    - Re: [PATCH] lsm: make security_socket_getpeersec_stream() sockptr_t safe, Paul Moore
- Re: [PATCH] lsm: make security_socket_getpeersec_stream() sockptr_t safe, John Johansen
  - Re: [PATCH] lsm: make security_socket_getpeersec_stream() sockptr_t safe, Paul Moore
systemd socket activation selinux context pr review, Ted Toth
- Re: systemd socket activation selinux context pr review, Paul Moore
unnecessary log output in selinux_status_updated, Petr Lautrbach
- Re: unnecessary log output in selinux_status_updated, Stephen Smalley
  - Re: unnecessary log output in selinux_status_updated, Petr Lautrbach
    - Re: unnecessary log output in selinux_status_updated, Stephen Smalley
      - Re: unnecessary log output in selinux_status_updated, Petr Lautrbach
Re: [PATCH] Fix race condition when exec'ing setuid files, Kees Cook
- Re: [PATCH] Fix race condition when exec'ing setuid files, Theodore Ts'o
  - RE: [PATCH] Fix race condition when exec'ing setuid files, David Laight
[PATCH 0/2] fs/exec: Explicitly unshare fs_struct on exec, Kees Cook
- [PATCH 2/2] exec: Remove LSM_UNSAFE_SHARE, Kees Cook
- [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec, Kees Cook
  - Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec, Christian Brauner
    - RE: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec, David Laight
    - Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec, Jann Horn
      - Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec, Kees Cook
        
        Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec, Jann Horn
      - Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec, Andy Lutomirski
        
        Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec, Kees Cook
        
        Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec, Jann Horn
        
        Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec, Kees Cook
        
        Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec, Jann Horn
        
        RE: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec, David Laight
        
        Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec, Eric W. Biederman
SO_PEERSEC protections in sk_getsockopt()?, Paul Moore
- Re: SO_PEERSEC protections in sk_getsockopt()?, Paul Moore
  - Re: SO_PEERSEC protections in sk_getsockopt()?, Alexei Starovoitov
    - Re: SO_PEERSEC protections in sk_getsockopt()?, Paul Moore
      - Re: SO_PEERSEC protections in sk_getsockopt()?, Alexei Starovoitov
        
        Re: SO_PEERSEC protections in sk_getsockopt()?, Paul Moore
        
        Re: SO_PEERSEC protections in sk_getsockopt()?, Alexei Starovoitov
        
        Re: SO_PEERSEC protections in sk_getsockopt()?, Paul Moore
        
        Re: SO_PEERSEC protections in sk_getsockopt()?, Alexei Starovoitov
        
        Re: SO_PEERSEC protections in sk_getsockopt()?, Paul Moore
        
        RE: SO_PEERSEC protections in sk_getsockopt()?, David Laight
        
        Re: SO_PEERSEC protections in sk_getsockopt()?, Paul Moore
        
        RE: SO_PEERSEC protections in sk_getsockopt()?, David Laight
        
        Re: SO_PEERSEC protections in sk_getsockopt()?, Paul Moore
[GIT PULL] SELinux patches for v6.1, Paul Moore
- Re: [GIT PULL] SELinux patches for v6.1, pr-tracker-bot
[PATCH v3] docs: update the README.md with a basic SELinux description, Paul Moore
- Re: [PATCH v3] docs: update the README.md with a basic SELinux description, Petr Lautrbach
  - Re: [PATCH v3] docs: update the README.md with a basic SELinux description, Paul Moore
    - Re: [PATCH v3] docs: update the README.md with a basic SELinux description, Petr Lautrbach
[PATCH =v2] docs: update the README.md with a basic SELinux description, Paul Moore
- Re: [PATCH =v2] docs: update the README.md with a basic SELinux description, Daniel Burgener
  - Re: [PATCH =v2] docs: update the README.md with a basic SELinux description, Paul Moore
[PATCH] docs: provide a top level LICENSE file, Paul Moore
- Re: [PATCH] docs: provide a top level LICENSE file, James Carter
  - Re: [PATCH] docs: provide a top level LICENSE file, James Carter
    - Re: [PATCH] docs: provide a top level LICENSE file, Paul Moore
[PATCH] docs: update the README.md with a basic SELinux description, Paul Moore
- Re: [PATCH] docs: update the README.md with a basic SELinux description, Topi Miettinen
  - Re: [PATCH] docs: update the README.md with a basic SELinux description, Paul Moore
bug report: semodule doesn't reject policices with duplicate fc's, Petr Lautrbach
[PATCH v4 10/30] selinux: implement get, set and remove acl hook, Christian Brauner
- Re: [PATCH v4 10/30] selinux: implement get, set and remove acl hook, Paul Moore
  - Re: [PATCH v4 10/30] selinux: implement get, set and remove acl hook, Christian Brauner
[PATCH v3 10/29] selinux: implement get, set and remove acl hook, Christian Brauner
GREETIPNGS REAR BELOVED, Mrs Aisha Gaddafi
[PATCH v38 00/39] LSM: Module stacking for AppArmor, Casey Schaufler
- [PATCH v38 02/39] LSM: Add an LSM identifier for external use, Casey Schaufler
  - Re: [PATCH v38 02/39] LSM: Add an LSM identifier for external use, Mickaël Salaün
    - Re: [PATCH v38 02/39] LSM: Add an LSM identifier for external use, Casey Schaufler
  - Re: [PATCH v38 02/39] LSM: Add an LSM identifier for external use, Georgia Garcia
- [PATCH v38 01/39] LSM: Identify modules by more than name, Casey Schaufler
  - Re: [PATCH v38 01/39] LSM: Identify modules by more than name, Mickaël Salaün
  - Re: [PATCH v38 01/39] LSM: Identify modules by more than name, Georgia Garcia
    - Re: [PATCH v38 01/39] LSM: Identify modules by more than name, Casey Schaufler
- [PATCH v38 05/39] proc: Use lsmids instead of lsm names for attrs, Casey Schaufler
- [PATCH v38 03/39] LSM: Identify the process attributes for each module, Casey Schaufler
- [PATCH v38 04/39] LSM: Maintain a table of LSM attribute data, Casey Schaufler
  - Re: [PATCH v38 04/39] LSM: Maintain a table of LSM attribute data, Tetsuo Handa
    - Re: [PATCH v38 04/39] LSM: Maintain a table of LSM attribute data, Casey Schaufler
      - Re: [PATCH v38 04/39] LSM: Maintain a table of LSM attribute data, Tetsuo Handa
        
        Re: [PATCH v38 04/39] LSM: Maintain a table of LSM attribute data, Tetsuo Handa
        
        Re: [PATCH v38 04/39] LSM: Maintain a table of LSM attribute data, Casey Schaufler
        
        Re: [PATCH v38 04/39] LSM: Maintain a table of LSM attribute data, Casey Schaufler
        
        Re: [PATCH v38 04/39] LSM: Maintain a table of LSM attribute data, Tetsuo Handa
        
        Re: [PATCH v38 04/39] LSM: Maintain a table of LSM attribute data, Casey Schaufler
        
        Re: [PATCH v38 04/39] LSM: Maintain a table of LSM attribute data, Tetsuo Handa
- [PATCH v38 06/39] LSM: lsm_self_attr syscall for LSM self attributes, Casey Schaufler
  - Re: [PATCH v38 06/39] LSM: lsm_self_attr syscall for LSM self attributes, kernel test robot
  - Re: [PATCH v38 06/39] LSM: lsm_self_attr syscall for LSM self attributes, Mickaël Salaün
  - Re: [PATCH v38 06/39] LSM: lsm_self_attr syscall for LSM self attributes, Paul Moore
    - Re: [PATCH v38 06/39] LSM: lsm_self_attr syscall for LSM self attributes, Casey Schaufler
- [PATCH v38 07/39] integrity: disassociate ima_filter_rule from security_audit_rule, Casey Schaufler
- [PATCH v38 08/39] LSM: Infrastructure management of the sock security, Casey Schaufler
  - Re: [PATCH v38 08/39] LSM: Infrastructure management of the sock security, Mickaël Salaün
- [PATCH v38 09/39] LSM: Add the lsmblob data structure., Casey Schaufler
  - Re: [PATCH v38 09/39] LSM: Add the lsmblob data structure., Mickaël Salaün
- [PATCH v38 10/39] LSM: provide lsm name and id slot mappings, Casey Schaufler
- [PATCH v38 11/39] IMA: avoid label collisions with stacked LSMs, Casey Schaufler
- [PATCH v38 14/39] LSM: Use lsmblob in security_secctx_to_secid, Casey Schaufler
- [PATCH v38 12/39] LSM: Use lsmblob in security_audit_rule_match, Casey Schaufler
- [PATCH v38 13/39] LSM: Use lsmblob in security_kernel_act_as, Casey Schaufler
- [PATCH v38 16/39] LSM: Use lsmblob in security_ipc_getsecid, Casey Schaufler
- [PATCH v38 17/39] LSM: Use lsmblob in security_current_getsecid, Casey Schaufler
- [PATCH v38 15/39] LSM: Use lsmblob in security_secid_to_secctx, Casey Schaufler
- [PATCH v38 23/39] LSM: Use lsmcontext in security_inode_getsecctx, Casey Schaufler
- [PATCH v38 20/39] LSM: Specify which LSM to display, Casey Schaufler
  - Re: [PATCH v38 20/39] LSM: Specify which LSM to display, Mickaël Salaün
- [PATCH v38 19/39] LSM: Use lsmblob in security_cred_getsecid, Casey Schaufler
- [PATCH v38 18/39] LSM: Use lsmblob in security_inode_getsecid, Casey Schaufler
- [PATCH v38 21/39] LSM: Ensure the correct LSM context releaser, Casey Schaufler
- [PATCH v38 22/39] LSM: Use lsmcontext in security_secid_to_secctx, Casey Schaufler
- [PATCH v38 24/39] Use lsmcontext in security_dentry_init_security, Casey Schaufler
- [PATCH v38 25/39] LSM: security_secid_to_secctx in netlink netfilter, Casey Schaufler
- [PATCH v38 26/39] NET: Store LSM netlabel data in a lsmblob, Casey Schaufler
- [PATCH v38 27/39] binder: Pass LSM identifier for confirmation, Casey Schaufler
- [PATCH v38 30/39] Audit: Create audit_stamp structure, Casey Schaufler
- [PATCH v38 31/39] LSM: Add a function to report multiple LSMs, Casey Schaufler
- [PATCH v38 29/39] Audit: Keep multiple LSM data in audit_names, Casey Schaufler
- [PATCH v38 28/39] LSM: security_secid_to_secctx module selection, Casey Schaufler
- [PATCH v38 32/39] Audit: Allow multiple records in an audit_buffer, Casey Schaufler
- [PATCH v38 34/39] audit: multiple subject lsm values for netlabel, Casey Schaufler
- [PATCH v38 36/39] netlabel: Use a struct lsmblob in audit data, Casey Schaufler
- [PATCH v38 35/39] Audit: Add record for multiple object contexts, Casey Schaufler
- [PATCH v38 37/39] LSM: Removed scaffolding function lsmcontext_init, Casey Schaufler
- [PATCH v38 33/39] Audit: Add record for multiple task security contexts, Casey Schaufler
- [PATCH v38 38/39] AppArmor: Remove the exclusive flag, Casey Schaufler
- [PATCH v38 39/39] LSM: Create lsm_module_list system call, Casey Schaufler
  - Re: [PATCH v38 39/39] LSM: Create lsm_module_list system call, kernel test robot
  - Re: [PATCH v38 39/39] LSM: Create lsm_module_list system call, Mickaël Salaün
    - Re: [PATCH v38 39/39] LSM: Create lsm_module_list system call, Casey Schaufler
  - Re: [PATCH v38 39/39] LSM: Create lsm_module_list system call, Kees Cook
    - Re: [PATCH v38 39/39] LSM: Create lsm_module_list system call, Casey Schaufler
[PATCH v2 11/30] selinux: implement set acl hook, Christian Brauner
- Re: [PATCH v2 11/30] selinux: implement set acl hook, Paul Moore
[RFC PATCH] selinux: increase the deprecation sleep for checkreqprot and runtime disable, Paul Moore
- Re: [RFC PATCH] selinux: increase the deprecation sleep for checkreqprot and runtime disable, Paul Moore
  - Re: [RFC PATCH] selinux: increase the deprecation sleep for checkreqprot and runtime disable, Paul Moore
- Re: [RFC PATCH] selinux: increase the deprecation sleep for checkreqprot and runtime disable, Casey Schaufler
  - Re: [RFC PATCH] selinux: increase the deprecation sleep for checkreqprot and runtime disable, Paul Moore
[PATCH] docs: add Paul Moore's GPG fingerprint, Paul Moore
- Re: [PATCH] docs: add Paul Moore's GPG fingerprint, James Carter
  - Re: [PATCH] docs: add Paul Moore's GPG fingerprint, James Carter
    - Re: [PATCH] docs: add Paul Moore's GPG fingerprint, Paul Moore
[PATCH] libsemanage: Allow user to set SYSCONFDIR, Matt Sheets
- Re: [PATCH] libsemanage: Allow user to set SYSCONFDIR, Daniel Burgener
  - Re: [PATCH] libsemanage: Allow user to set SYSCONFDIR, Daniel Burgener
    - Re: [PATCH] libsemanage: Allow user to set SYSCONFDIR, Matthew Sheets
    - Re: [PATCH] libsemanage: Allow user to set SYSCONFDIR, James Carter
      - Re: [PATCH] libsemanage: Allow user to set SYSCONFDIR, James Carter
[PATCH 10/29] selinux: implement set acl hook, Christian Brauner
- Re: [PATCH 10/29] selinux: implement set acl hook, Paul Moore
  - Re: [PATCH 10/29] selinux: implement set acl hook, Christoph Hellwig
    - Re: [PATCH 10/29] selinux: implement set acl hook, Christian Brauner
      - Re: [PATCH 10/29] selinux: implement set acl hook, Paul Moore
        
        Re: [PATCH 10/29] selinux: implement set acl hook, Christian Brauner
        
        Re: [PATCH 10/29] selinux: implement set acl hook, Paul Moore
        
        Re: [PATCH 10/29] selinux: implement set acl hook, Christian Brauner
        
        Re: [PATCH 10/29] selinux: implement set acl hook, Paul Moore
        
        Re: [PATCH 10/29] selinux: implement set acl hook, Christoph Hellwig
[PATCH 0/1] Add CONFIG_SECURITY_SELINUX_PERMISSIVE_DONTAUDIT, jeffxu
- [PATCH 1/1] Add CONFIG_SECURITY_SELINUX_PERMISSIVE_DONTAUDIT, jeffxu
  - Re: [PATCH 1/1] Add CONFIG_SECURITY_SELINUX_PERMISSIVE_DONTAUDIT, Paul Moore
    - Re: [PATCH 1/1] Add CONFIG_SECURITY_SELINUX_PERMISSIVE_DONTAUDIT, Jeff Xu
      - Re: [PATCH 1/1] Add CONFIG_SECURITY_SELINUX_PERMISSIVE_DONTAUDIT, Paul Moore
        
        Re: [PATCH 1/1] Add CONFIG_SECURITY_SELINUX_PERMISSIVE_DONTAUDIT, Dominick Grift
        
        Re: [PATCH 1/1] Add CONFIG_SECURITY_SELINUX_PERMISSIVE_DONTAUDIT, Jeff Xu
        
        Re: [PATCH 1/1] Add CONFIG_SECURITY_SELINUX_PERMISSIVE_DONTAUDIT, Paul Moore
        
        Re: [PATCH 1/1] Add CONFIG_SECURITY_SELINUX_PERMISSIVE_DONTAUDIT, Jeff Xu
        
        Re: [PATCH 1/1] Add CONFIG_SECURITY_SELINUX_PERMISSIVE_DONTAUDIT, Jeff Xu
        
        Re: [PATCH 1/1] Add CONFIG_SECURITY_SELINUX_PERMISSIVE_DONTAUDIT, Dominick Grift
        
        Re: [PATCH 1/1] Add CONFIG_SECURITY_SELINUX_PERMISSIVE_DONTAUDIT, Stephen Smalley
        
        Re: [PATCH 1/1] Add CONFIG_SECURITY_SELINUX_PERMISSIVE_DONTAUDIT, Stephen Smalley
        
        Re: [PATCH 1/1] Add CONFIG_SECURITY_SELINUX_PERMISSIVE_DONTAUDIT, Jeff Xu
- Re: [PATCH 0/1] Add CONFIG_SECURITY_SELINUX_PERMISSIVE_DONTAUDIT, Casey Schaufler
[PATCH] selinux: remove runtime disable message in the install_policy.sh script, Paul Moore
- Re: [PATCH] selinux: remove runtime disable message in the install_policy.sh script, Paul Moore
[PATCH] scripts/selinux: use "grep -E" instead of "egrep", Greg Kroah-Hartman
- Re: [PATCH] scripts/selinux: use "grep -E" instead of "egrep", Paul Moore
[PATCH] secilc/doc: classmap is also allowed in permissionx, Dominick Grift
- Re: [PATCH] secilc/doc: classmap is also allowed in permissionx, James Carter
  - Re: [PATCH] secilc/doc: classmap is also allowed in permissionx, James Carter
[PATCH userspace] fixfiles: do not cross mounts when traversing directories, Ondrej Mosnacek
- Re: [PATCH userspace] fixfiles: do not cross mounts when traversing directories, Christian Göttsche
  - Re: [PATCH userspace] fixfiles: do not cross mounts when traversing directories, Ondrej Mosnacek
    - Re: [PATCH userspace] fixfiles: do not cross mounts when traversing directories, Dominick Grift
      - Re: [PATCH userspace] fixfiles: do not cross mounts when traversing directories, Ondrej Mosnacek
        
        Re: [PATCH userspace] fixfiles: do not cross mounts when traversing directories, Dominick Grift
/dev/random MLS policy, Ted Toth
- Re: /dev/random MLS policy, Matthew Sheets
[PATCH] fixfiles: Unmount temporary bind mounts on SIGINT, Petr Lautrbach
- Re: [PATCH] fixfiles: Unmount temporary bind mounts on SIGINT, Ondrej Mosnacek
  - Re: [PATCH] fixfiles: Unmount temporary bind mounts on SIGINT, Petr Lautrbach
    - Re: [PATCH] fixfiles: Unmount temporary bind mounts on SIGINT, Ondrej Mosnacek
      - Re: [PATCH] fixfiles: Unmount temporary bind mounts on SIGINT, Petr Lautrbach
  - [PATCH v2] fixfiles: Unmount temporary bind mounts on SIGINT, Petr Lautrbach
    - [PATCH v3] fixfiles: Unmount temporary bind mounts on SIGINT, Petr Lautrbach
      - Re: [PATCH v3] fixfiles: Unmount temporary bind mounts on SIGINT, Christian Göttsche
        
        Re: [PATCH v3] fixfiles: Unmount temporary bind mounts on SIGINT, Ondrej Mosnacek
        
        Re: [PATCH v3] fixfiles: Unmount temporary bind mounts on SIGINT, Christian Göttsche

[Index of Archives] [Selinux Refpolicy] [Fedora Users] [Fedora Desktop] [Kernel] [KDE Users] [Gnome Users]