Security Enhanced Linux (SELINUX)

Date Index

[Prev Page][Next Page]

Re: [GIT PULL] SELinux fixes for v6.1 (#1), (continued)
- Re: [GIT PULL] SELinux fixes for v6.1 (#1), Linus Torvalds
  - Re: [GIT PULL] SELinux fixes for v6.1 (#1), Paul Moore
- Re: [GIT PULL] SELinux fixes for v6.1 (#1), pr-tracker-bot
[PATCH] python: Do not query the local database if the fcontext is non-local, James Carter
- Re: [PATCH] python: Do not query the local database if the fcontext is non-local, James Carter
[PATCH 6.0 202/862] selinux: use "grep -E" instead of "egrep", Greg Kroah-Hartman
[PATCH v2] selinux: use GFP_ATOMIC in convert_context(), GONG, Ruiqi
- Re: [PATCH v2] selinux: use GFP_ATOMIC in convert_context(), Ondrej Mosnacek
- Re: [PATCH v2] selinux: use GFP_ATOMIC in convert_context(), Paul Moore
[PATCH] python: Harden tools against "rogue" modules, Vit Mojzis
- Re: [PATCH] python: Harden tools against "rogue" modules, James Carter
  - Re: [PATCH] python: Harden tools against "rogue" modules, James Carter
[PATCH] selinux: use GFP_ATOMIC in convert_context(), GONG, Ruiqi
- Re: [PATCH] selinux: use GFP_ATOMIC in convert_context(), Ondrej Mosnacek
  - Re: [PATCH] selinux: use GFP_ATOMIC in convert_context(), Paul Moore
[PATCH v5 10/30] selinux: implement get, set and remove acl hook, Christian Brauner
[PATCH V2] docs: Add GPG fingerprints, James Carter
- Re: [PATCH V2] docs: Add GPG fingerprints, Paul Moore
  - Re: [PATCH V2] docs: Add GPG fingerprints, James Carter
[PATCH] docs: Add GPG fingerprints, James Carter
- Re: [PATCH] docs: Add GPG fingerprints, Paul Moore
[PATCH 1/2] sandbox: Do not try to remove tmpdir twice if uid == 0, Petr Lautrbach
- [PATCH 2/2] sandbox: Use temporary directory for XDG_RUNTIME_DIR, Petr Lautrbach
- Re: [PATCH 1/2] sandbox: Do not try to remove tmpdir twice if uid == 0, James Carter
  - Re: [PATCH 1/2] sandbox: Do not try to remove tmpdir twice if uid == 0, James Carter
[PATCH] libsepol/cil: restore error on context rule conflicts, Christian Göttsche
- Re: [PATCH] libsepol/cil: restore error on context rule conflicts, James Carter
  - Re: [PATCH] libsepol/cil: restore error on context rule conflicts, Petr Lautrbach
    - Re: [PATCH] libsepol/cil: restore error on context rule conflicts, James Carter
[DPKG PATCH] selinux: install log callback to filter messages, Christian Göttsche
- Re: [DPKG PATCH] selinux: install log callback to filter messages, Guillem Jover
[PATCH] gui: Fix export file chooser dialog, Petr Lautrbach
- Re: [PATCH] gui: Fix export file chooser dialog, James Carter
  - Re: [PATCH] gui: Fix export file chooser dialog, James Carter
[PATCH] libselinux: Add missing '\n' to avc_log() messages, Petr Lautrbach
- Re: [PATCH] libselinux: Add missing '\n' to avc_log() messages, Daniel Burgener
- Re: [PATCH] libselinux: Add missing '\n' to avc_log() messages, Petr Lautrbach
  - Re: [PATCH] libselinux: Add missing '\n' to avc_log() messages, Daniel Burgener
    - Re: [PATCH] libselinux: Add missing '\n' to avc_log() messages, Petr Lautrbach
      - Re: [PATCH] libselinux: Add missing '\n' to avc_log() messages, Christian Göttsche
        
        Re: [PATCH] libselinux: Add missing '\n' to avc_log() messages, Petr Lautrbach
[PATCH] lsm: make security_socket_getpeersec_stream() sockptr_t safe, Paul Moore
- Re: [PATCH] lsm: make security_socket_getpeersec_stream() sockptr_t safe, Paul Moore
  - Re: [PATCH] lsm: make security_socket_getpeersec_stream() sockptr_t safe, Casey Schaufler
    - Re: [PATCH] lsm: make security_socket_getpeersec_stream() sockptr_t safe, Paul Moore
  - Re: [PATCH] lsm: make security_socket_getpeersec_stream() sockptr_t safe, John Johansen
- Re: [PATCH] lsm: make security_socket_getpeersec_stream() sockptr_t safe, Jakub Kicinski
  - Re: [PATCH] lsm: make security_socket_getpeersec_stream() sockptr_t safe, Paul Moore
    - Re: [PATCH] lsm: make security_socket_getpeersec_stream() sockptr_t safe, Alexei Starovoitov
      - Re: [PATCH] lsm: make security_socket_getpeersec_stream() sockptr_t safe, Paul Moore
- Re: [PATCH] lsm: make security_socket_getpeersec_stream() sockptr_t safe, Casey Schaufler
  - Re: [PATCH] lsm: make security_socket_getpeersec_stream() sockptr_t safe, Paul Moore
    - Re: [PATCH] lsm: make security_socket_getpeersec_stream() sockptr_t safe, Paul Moore
- Re: [PATCH] lsm: make security_socket_getpeersec_stream() sockptr_t safe, John Johansen
  - Re: [PATCH] lsm: make security_socket_getpeersec_stream() sockptr_t safe, Paul Moore
systemd socket activation selinux context pr review, Ted Toth
- Re: systemd socket activation selinux context pr review, Paul Moore
unnecessary log output in selinux_status_updated, Petr Lautrbach
- Re: unnecessary log output in selinux_status_updated, Stephen Smalley
  - Re: unnecessary log output in selinux_status_updated, Petr Lautrbach
    - Re: unnecessary log output in selinux_status_updated, Stephen Smalley
      - Re: unnecessary log output in selinux_status_updated, Petr Lautrbach
Re: [PATCH] Fix race condition when exec'ing setuid files, Kees Cook
- Re: [PATCH] Fix race condition when exec'ing setuid files, Theodore Ts'o
  - RE: [PATCH] Fix race condition when exec'ing setuid files, David Laight
[PATCH 0/2] fs/exec: Explicitly unshare fs_struct on exec, Kees Cook
- [PATCH 2/2] exec: Remove LSM_UNSAFE_SHARE, Kees Cook
- [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec, Kees Cook
  - Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec, Christian Brauner
    - RE: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec, David Laight
    - Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec, Jann Horn
      - Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec, Kees Cook
        
        Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec, Jann Horn
      - Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec, Andy Lutomirski
        
        Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec, Kees Cook
        
        Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec, Jann Horn
        
        Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec, Kees Cook
        
        Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec, Jann Horn
        
        RE: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec, David Laight
        
        Re: [PATCH 1/2] fs/exec: Explicitly unshare fs_struct on exec, Eric W. Biederman
SO_PEERSEC protections in sk_getsockopt()?, Paul Moore
- Re: SO_PEERSEC protections in sk_getsockopt()?, Paul Moore
  - Re: SO_PEERSEC protections in sk_getsockopt()?, Alexei Starovoitov
    - Re: SO_PEERSEC protections in sk_getsockopt()?, Paul Moore
      - Re: SO_PEERSEC protections in sk_getsockopt()?, Alexei Starovoitov
        
        Re: SO_PEERSEC protections in sk_getsockopt()?, Paul Moore
        
        Re: SO_PEERSEC protections in sk_getsockopt()?, Alexei Starovoitov
        
        Re: SO_PEERSEC protections in sk_getsockopt()?, Paul Moore
        
        Re: SO_PEERSEC protections in sk_getsockopt()?, Alexei Starovoitov
        
        Re: SO_PEERSEC protections in sk_getsockopt()?, Paul Moore
        
        RE: SO_PEERSEC protections in sk_getsockopt()?, David Laight
        
        Re: SO_PEERSEC protections in sk_getsockopt()?, Paul Moore
        
        RE: SO_PEERSEC protections in sk_getsockopt()?, David Laight
        
        Re: SO_PEERSEC protections in sk_getsockopt()?, Paul Moore
[GIT PULL] SELinux patches for v6.1, Paul Moore
- Re: [GIT PULL] SELinux patches for v6.1, pr-tracker-bot
[PATCH v3] docs: update the README.md with a basic SELinux description, Paul Moore
- Re: [PATCH v3] docs: update the README.md with a basic SELinux description, Petr Lautrbach
  - Re: [PATCH v3] docs: update the README.md with a basic SELinux description, Paul Moore
    - Re: [PATCH v3] docs: update the README.md with a basic SELinux description, Petr Lautrbach
[PATCH =v2] docs: update the README.md with a basic SELinux description, Paul Moore
- Re: [PATCH =v2] docs: update the README.md with a basic SELinux description, Daniel Burgener
  - Re: [PATCH =v2] docs: update the README.md with a basic SELinux description, Paul Moore
[PATCH] docs: provide a top level LICENSE file, Paul Moore
- Re: [PATCH] docs: provide a top level LICENSE file, James Carter
  - Re: [PATCH] docs: provide a top level LICENSE file, James Carter
    - Re: [PATCH] docs: provide a top level LICENSE file, Paul Moore
[PATCH] docs: update the README.md with a basic SELinux description, Paul Moore
- Re: [PATCH] docs: update the README.md with a basic SELinux description, Topi Miettinen
  - Re: [PATCH] docs: update the README.md with a basic SELinux description, Paul Moore
bug report: semodule doesn't reject policices with duplicate fc's, Petr Lautrbach
[PATCH v4 10/30] selinux: implement get, set and remove acl hook, Christian Brauner
- Re: [PATCH v4 10/30] selinux: implement get, set and remove acl hook, Paul Moore
  - Re: [PATCH v4 10/30] selinux: implement get, set and remove acl hook, Christian Brauner
[PATCH v3 10/29] selinux: implement get, set and remove acl hook, Christian Brauner
GREETIPNGS REAR BELOVED, Mrs Aisha Gaddafi
[PATCH v38 00/39] LSM: Module stacking for AppArmor, Casey Schaufler
- [PATCH v38 02/39] LSM: Add an LSM identifier for external use, Casey Schaufler
  - Re: [PATCH v38 02/39] LSM: Add an LSM identifier for external use, Mickaël Salaün
    - Re: [PATCH v38 02/39] LSM: Add an LSM identifier for external use, Casey Schaufler
  - Re: [PATCH v38 02/39] LSM: Add an LSM identifier for external use, Georgia Garcia
- [PATCH v38 01/39] LSM: Identify modules by more than name, Casey Schaufler
  - Re: [PATCH v38 01/39] LSM: Identify modules by more than name, Mickaël Salaün
  - Re: [PATCH v38 01/39] LSM: Identify modules by more than name, Georgia Garcia
    - Re: [PATCH v38 01/39] LSM: Identify modules by more than name, Casey Schaufler
- [PATCH v38 05/39] proc: Use lsmids instead of lsm names for attrs, Casey Schaufler
- [PATCH v38 03/39] LSM: Identify the process attributes for each module, Casey Schaufler
- [PATCH v38 04/39] LSM: Maintain a table of LSM attribute data, Casey Schaufler
  - Re: [PATCH v38 04/39] LSM: Maintain a table of LSM attribute data, Tetsuo Handa
    - Re: [PATCH v38 04/39] LSM: Maintain a table of LSM attribute data, Casey Schaufler
      - Re: [PATCH v38 04/39] LSM: Maintain a table of LSM attribute data, Tetsuo Handa
        
        Re: [PATCH v38 04/39] LSM: Maintain a table of LSM attribute data, Tetsuo Handa
        
        Re: [PATCH v38 04/39] LSM: Maintain a table of LSM attribute data, Casey Schaufler
        
        Re: [PATCH v38 04/39] LSM: Maintain a table of LSM attribute data, Casey Schaufler
        
        Re: [PATCH v38 04/39] LSM: Maintain a table of LSM attribute data, Tetsuo Handa
        
        Re: [PATCH v38 04/39] LSM: Maintain a table of LSM attribute data, Casey Schaufler
        
        Re: [PATCH v38 04/39] LSM: Maintain a table of LSM attribute data, Tetsuo Handa
- [PATCH v38 06/39] LSM: lsm_self_attr syscall for LSM self attributes, Casey Schaufler
  - Re: [PATCH v38 06/39] LSM: lsm_self_attr syscall for LSM self attributes, kernel test robot
  - Re: [PATCH v38 06/39] LSM: lsm_self_attr syscall for LSM self attributes, Mickaël Salaün
  - Re: [PATCH v38 06/39] LSM: lsm_self_attr syscall for LSM self attributes, Paul Moore
    - Re: [PATCH v38 06/39] LSM: lsm_self_attr syscall for LSM self attributes, Casey Schaufler
- [PATCH v38 07/39] integrity: disassociate ima_filter_rule from security_audit_rule, Casey Schaufler
- [PATCH v38 08/39] LSM: Infrastructure management of the sock security, Casey Schaufler
  - Re: [PATCH v38 08/39] LSM: Infrastructure management of the sock security, Mickaël Salaün
- [PATCH v38 09/39] LSM: Add the lsmblob data structure., Casey Schaufler
  - Re: [PATCH v38 09/39] LSM: Add the lsmblob data structure., Mickaël Salaün
- [PATCH v38 10/39] LSM: provide lsm name and id slot mappings, Casey Schaufler
- [PATCH v38 11/39] IMA: avoid label collisions with stacked LSMs, Casey Schaufler
- [PATCH v38 14/39] LSM: Use lsmblob in security_secctx_to_secid, Casey Schaufler
- [PATCH v38 12/39] LSM: Use lsmblob in security_audit_rule_match, Casey Schaufler
- [PATCH v38 13/39] LSM: Use lsmblob in security_kernel_act_as, Casey Schaufler
- [PATCH v38 16/39] LSM: Use lsmblob in security_ipc_getsecid, Casey Schaufler
- [PATCH v38 17/39] LSM: Use lsmblob in security_current_getsecid, Casey Schaufler
- [PATCH v38 15/39] LSM: Use lsmblob in security_secid_to_secctx, Casey Schaufler
- [PATCH v38 23/39] LSM: Use lsmcontext in security_inode_getsecctx, Casey Schaufler
- [PATCH v38 20/39] LSM: Specify which LSM to display, Casey Schaufler
  - Re: [PATCH v38 20/39] LSM: Specify which LSM to display, Mickaël Salaün
- [PATCH v38 19/39] LSM: Use lsmblob in security_cred_getsecid, Casey Schaufler
- [PATCH v38 18/39] LSM: Use lsmblob in security_inode_getsecid, Casey Schaufler
- [PATCH v38 21/39] LSM: Ensure the correct LSM context releaser, Casey Schaufler
- [PATCH v38 22/39] LSM: Use lsmcontext in security_secid_to_secctx, Casey Schaufler
- [PATCH v38 24/39] Use lsmcontext in security_dentry_init_security, Casey Schaufler
- [PATCH v38 25/39] LSM: security_secid_to_secctx in netlink netfilter, Casey Schaufler
- [PATCH v38 26/39] NET: Store LSM netlabel data in a lsmblob, Casey Schaufler
- [PATCH v38 27/39] binder: Pass LSM identifier for confirmation, Casey Schaufler
- [PATCH v38 30/39] Audit: Create audit_stamp structure, Casey Schaufler
- [PATCH v38 31/39] LSM: Add a function to report multiple LSMs, Casey Schaufler
- [PATCH v38 29/39] Audit: Keep multiple LSM data in audit_names, Casey Schaufler
- [PATCH v38 28/39] LSM: security_secid_to_secctx module selection, Casey Schaufler
- [PATCH v38 32/39] Audit: Allow multiple records in an audit_buffer, Casey Schaufler
- [PATCH v38 34/39] audit: multiple subject lsm values for netlabel, Casey Schaufler
- [PATCH v38 36/39] netlabel: Use a struct lsmblob in audit data, Casey Schaufler
- [PATCH v38 35/39] Audit: Add record for multiple object contexts, Casey Schaufler
- [PATCH v38 37/39] LSM: Removed scaffolding function lsmcontext_init, Casey Schaufler
- [PATCH v38 33/39] Audit: Add record for multiple task security contexts, Casey Schaufler
- [PATCH v38 38/39] AppArmor: Remove the exclusive flag, Casey Schaufler
- [PATCH v38 39/39] LSM: Create lsm_module_list system call, Casey Schaufler
  - Re: [PATCH v38 39/39] LSM: Create lsm_module_list system call, kernel test robot
  - Re: [PATCH v38 39/39] LSM: Create lsm_module_list system call, Mickaël Salaün
    - Re: [PATCH v38 39/39] LSM: Create lsm_module_list system call, Casey Schaufler
  - Re: [PATCH v38 39/39] LSM: Create lsm_module_list system call, Kees Cook
    - Re: [PATCH v38 39/39] LSM: Create lsm_module_list system call, Casey Schaufler
[PATCH v2 11/30] selinux: implement set acl hook, Christian Brauner
- Re: [PATCH v2 11/30] selinux: implement set acl hook, Paul Moore
[RFC PATCH] selinux: increase the deprecation sleep for checkreqprot and runtime disable, Paul Moore
- Re: [RFC PATCH] selinux: increase the deprecation sleep for checkreqprot and runtime disable, Paul Moore
  - Re: [RFC PATCH] selinux: increase the deprecation sleep for checkreqprot and runtime disable, Paul Moore
- Re: [RFC PATCH] selinux: increase the deprecation sleep for checkreqprot and runtime disable, Casey Schaufler
  - Re: [RFC PATCH] selinux: increase the deprecation sleep for checkreqprot and runtime disable, Paul Moore
[PATCH] docs: add Paul Moore's GPG fingerprint, Paul Moore
- Re: [PATCH] docs: add Paul Moore's GPG fingerprint, James Carter
  - Re: [PATCH] docs: add Paul Moore's GPG fingerprint, James Carter
    - Re: [PATCH] docs: add Paul Moore's GPG fingerprint, Paul Moore
[PATCH] libsemanage: Allow user to set SYSCONFDIR, Matt Sheets
- Re: [PATCH] libsemanage: Allow user to set SYSCONFDIR, Daniel Burgener
  - Re: [PATCH] libsemanage: Allow user to set SYSCONFDIR, Daniel Burgener
    - Re: [PATCH] libsemanage: Allow user to set SYSCONFDIR, Matthew Sheets
    - Re: [PATCH] libsemanage: Allow user to set SYSCONFDIR, James Carter
      - Re: [PATCH] libsemanage: Allow user to set SYSCONFDIR, James Carter
[PATCH 10/29] selinux: implement set acl hook, Christian Brauner
- Re: [PATCH 10/29] selinux: implement set acl hook, Paul Moore
  - Re: [PATCH 10/29] selinux: implement set acl hook, Christoph Hellwig
    - Re: [PATCH 10/29] selinux: implement set acl hook, Christian Brauner
      - Re: [PATCH 10/29] selinux: implement set acl hook, Paul Moore
        
        Re: [PATCH 10/29] selinux: implement set acl hook, Christian Brauner
        
        Re: [PATCH 10/29] selinux: implement set acl hook, Paul Moore
        
        Re: [PATCH 10/29] selinux: implement set acl hook, Christian Brauner
        
        Re: [PATCH 10/29] selinux: implement set acl hook, Paul Moore
        
        Re: [PATCH 10/29] selinux: implement set acl hook, Christoph Hellwig
[PATCH 0/1] Add CONFIG_SECURITY_SELINUX_PERMISSIVE_DONTAUDIT, jeffxu
- [PATCH 1/1] Add CONFIG_SECURITY_SELINUX_PERMISSIVE_DONTAUDIT, jeffxu
  - Re: [PATCH 1/1] Add CONFIG_SECURITY_SELINUX_PERMISSIVE_DONTAUDIT, Paul Moore
    - Re: [PATCH 1/1] Add CONFIG_SECURITY_SELINUX_PERMISSIVE_DONTAUDIT, Jeff Xu
      - Re: [PATCH 1/1] Add CONFIG_SECURITY_SELINUX_PERMISSIVE_DONTAUDIT, Paul Moore
        
        Re: [PATCH 1/1] Add CONFIG_SECURITY_SELINUX_PERMISSIVE_DONTAUDIT, Dominick Grift
        
        Re: [PATCH 1/1] Add CONFIG_SECURITY_SELINUX_PERMISSIVE_DONTAUDIT, Jeff Xu
        
        Re: [PATCH 1/1] Add CONFIG_SECURITY_SELINUX_PERMISSIVE_DONTAUDIT, Paul Moore
        
        Re: [PATCH 1/1] Add CONFIG_SECURITY_SELINUX_PERMISSIVE_DONTAUDIT, Jeff Xu
        
        Re: [PATCH 1/1] Add CONFIG_SECURITY_SELINUX_PERMISSIVE_DONTAUDIT, Jeff Xu
        
        Re: [PATCH 1/1] Add CONFIG_SECURITY_SELINUX_PERMISSIVE_DONTAUDIT, Dominick Grift
        
        Re: [PATCH 1/1] Add CONFIG_SECURITY_SELINUX_PERMISSIVE_DONTAUDIT, Stephen Smalley
        
        Re: [PATCH 1/1] Add CONFIG_SECURITY_SELINUX_PERMISSIVE_DONTAUDIT, Stephen Smalley
        
        Re: [PATCH 1/1] Add CONFIG_SECURITY_SELINUX_PERMISSIVE_DONTAUDIT, Jeff Xu
- Re: [PATCH 0/1] Add CONFIG_SECURITY_SELINUX_PERMISSIVE_DONTAUDIT, Casey Schaufler
[PATCH] selinux: remove runtime disable message in the install_policy.sh script, Paul Moore
- Re: [PATCH] selinux: remove runtime disable message in the install_policy.sh script, Paul Moore
[PATCH] scripts/selinux: use "grep -E" instead of "egrep", Greg Kroah-Hartman
- Re: [PATCH] scripts/selinux: use "grep -E" instead of "egrep", Paul Moore
[PATCH] secilc/doc: classmap is also allowed in permissionx, Dominick Grift
- Re: [PATCH] secilc/doc: classmap is also allowed in permissionx, James Carter
  - Re: [PATCH] secilc/doc: classmap is also allowed in permissionx, James Carter
[PATCH userspace] fixfiles: do not cross mounts when traversing directories, Ondrej Mosnacek
- Re: [PATCH userspace] fixfiles: do not cross mounts when traversing directories, Christian Göttsche
  - Re: [PATCH userspace] fixfiles: do not cross mounts when traversing directories, Ondrej Mosnacek
    - Re: [PATCH userspace] fixfiles: do not cross mounts when traversing directories, Dominick Grift
      - Re: [PATCH userspace] fixfiles: do not cross mounts when traversing directories, Ondrej Mosnacek
        
        Re: [PATCH userspace] fixfiles: do not cross mounts when traversing directories, Dominick Grift
/dev/random MLS policy, Ted Toth
- Re: /dev/random MLS policy, Matthew Sheets
[PATCH] fixfiles: Unmount temporary bind mounts on SIGINT, Petr Lautrbach
- Re: [PATCH] fixfiles: Unmount temporary bind mounts on SIGINT, Ondrej Mosnacek
  - Re: [PATCH] fixfiles: Unmount temporary bind mounts on SIGINT, Petr Lautrbach
    - Re: [PATCH] fixfiles: Unmount temporary bind mounts on SIGINT, Ondrej Mosnacek
      - Re: [PATCH] fixfiles: Unmount temporary bind mounts on SIGINT, Petr Lautrbach
  - [PATCH v2] fixfiles: Unmount temporary bind mounts on SIGINT, Petr Lautrbach
    - [PATCH v3] fixfiles: Unmount temporary bind mounts on SIGINT, Petr Lautrbach
      - Re: [PATCH v3] fixfiles: Unmount temporary bind mounts on SIGINT, Christian Göttsche
        
        Re: [PATCH v3] fixfiles: Unmount temporary bind mounts on SIGINT, Ondrej Mosnacek
        
        Re: [PATCH v3] fixfiles: Unmount temporary bind mounts on SIGINT, Christian Göttsche
        
        [PATCH v4] fixfiles: Unmount temporary bind mounts on SIGINT, Petr Lautrbach
        
        Re: [PATCH v4] fixfiles: Unmount temporary bind mounts on SIGINT, Petr Lautrbach
        
        Re: [PATCH v4] fixfiles: Unmount temporary bind mounts on SIGINT, Christian Göttsche
        
        Re: [PATCH v4] fixfiles: Unmount temporary bind mounts on SIGINT, Petr Lautrbach
        
        Re: [PATCH v4] fixfiles: Unmount temporary bind mounts on SIGINT, Dominick Grift
[PATCH] python: Hide error message when modifying non-local fcontext, Vit Mojzis
- Re: [PATCH] python: Hide error message when modifying non-local fcontext, James Carter
  - Re: [PATCH] python: Hide error message when modifying non-local fcontext, Vit Mojzis
[PATCH RFC] LSM: Specify which LSM to display, Casey Schaufler
[PATCH linux-next] selinux/hooks: remove the unneeded result variable, cgel . zte
- Re: [PATCH linux-next] selinux/hooks: remove the unneeded result variable, Paul Moore
[PATCH] python/chcat: Don't fail on missing translation files, Johannes Segitz
- Re: [PATCH] python/chcat: Don't fail on missing translation files, Daniel Burgener
  - Re: [PATCH] python/chcat: Don't fail on missing translation files, Johannes Segitz
[PATCH RFC] LSM: lsm_self_attr system call to get security module attributes, Casey Schaufler
- Re: [PATCH RFC] LSM: lsm_self_attr system call to get security module attributes, Serge E. Hallyn
- [PATCH v2 RFC] LSM: lsm_self_attr syscall for LSM self attributes, Casey Schaufler
Re: Does NFS support Linux Capabilities, Chuck Lever III
- Re: Does NFS support Linux Capabilities, Jeff Layton
  - Re: Does NFS support Linux Capabilities, Chuck Lever III
    - Re: Does NFS support Linux Capabilities, Jeff Layton
      - Message not available
        
        Re: Does NFS support Linux Capabilities, Jeff Layton
- Re: Does NFS support Linux Capabilities, Theodore Ts'o
  - Re: Does NFS support Linux Capabilities, J. Bruce Fields
    - Re: Does NFS support Linux Capabilities, Chuck Lever III
  - Re: Does NFS support Linux Capabilities, Casey Schaufler
    - Re: Does NFS support Linux Capabilities, battery dude
    - Re: Does NFS support Linux Capabilities, Theodore Ts'o
      - Re: Does NFS support Linux Capabilities, Casey Schaufler
context of socket passed between processes, Ted Toth
- Re: context of socket passed between processes, Dominick Grift
  - Re: context of socket passed between processes, Paul Moore
    - Re: context of socket passed between processes, Ted Toth
      - Re: context of socket passed between processes, Ted Toth
        
        Re: context of socket passed between processes, Ondrej Mosnacek
        
        Re: context of socket passed between processes, Dominick Grift
        
        Re: context of socket passed between processes, Ted Toth
- Re: context of socket passed between processes, Paul Moore
  - Re: context of socket passed between processes, Ted Toth
    - Re: context of socket passed between processes, Paul Moore
      - Re: context of socket passed between processes, Dominick Grift
      - Re: context of socket passed between processes, Ted Toth
        
        Re: context of socket passed between processes, Ted Toth
        
        Re: context of socket passed between processes, Paul Moore
        
        Re: context of socket passed between processes, Ted Toth
        
        Re: context of socket passed between processes, Paul Moore
[PATCH] Update translations, Vit Mojzis
- Re: [PATCH] Update translations, James Carter
  - Re: [PATCH] Update translations, James Carter
- <Possible follow-ups>
- [PATCH] Update translations, Petr Lautrbach
  - Re: [PATCH] Update translations, James Carter
    - Re: [PATCH] Update translations, Petr Lautrbach
- [PATCH] Update translations, Petr Lautrbach
  - Re: [PATCH] Update translations, James Carter
    - Re: [PATCH] Update translations, James Carter
[v5.19.y PATCH 0/3] Backport the io_uring/LSM CMD passthrough controls, Paul Moore
- [v5.19.y PATCH 3/3] Smack: Provide read control for io_uring_cmd, Paul Moore
  - Re: [v5.19.y PATCH 3/3] Smack: Provide read control for io_uring_cmd, Casey Schaufler
- [v5.19.y PATCH 1/3] lsm,io_uring: add LSM hooks for the new uring_cmd file op, Paul Moore
- [v5.19.y PATCH 2/3] selinux: implement the security_uring_cmd() LSM hook, Paul Moore
- Re: [v5.19.y PATCH 0/3] Backport the io_uring/LSM CMD passthrough controls, Greg KH
[PATCH testsuite] tests/Makefile: add missing condition for userfaultfd test, Ondrej Mosnacek
- Re: [PATCH testsuite] tests/Makefile: add missing condition for userfaultfd test, Ondrej Mosnacek
[PATCH 0/2] fs: fix capable() call in simple_xattr_list(), Ondrej Mosnacek
- [PATCH 2/2] fs: don't call capable() prematurely in simple_xattr_list(), Ondrej Mosnacek
- [PATCH 1/2] fs: convert simple_xattrs to RCU list, Ondrej Mosnacek
- Re: [PATCH 0/2] fs: fix capable() call in simple_xattr_list(), Christian Brauner
  - Re: [PATCH 0/2] fs: fix capable() call in simple_xattr_list(), Ondrej Mosnacek
    - Re: [PATCH 0/2] fs: fix capable() call in simple_xattr_list(), Christian Brauner
      - Re: [PATCH 0/2] fs: fix capable() call in simple_xattr_list(), Christian Brauner
        
        Re: [PATCH 0/2] fs: fix capable() call in simple_xattr_list(), Serge E. Hallyn
        
        Re: [PATCH 0/2] fs: fix capable() call in simple_xattr_list(), Ondrej Mosnacek
        
        Re: [PATCH 0/2] fs: fix capable() call in simple_xattr_list(), Christian Brauner
        
        Re: [PATCH 0/2] fs: fix capable() call in simple_xattr_list(), Ondrej Mosnacek
[PATCH v5] vfs, security: Fix automount superblock LSM init problem, preventing NFS sb sharing, David Howells
- Re: [PATCH v5] vfs, security: Fix automount superblock LSM init problem, preventing NFS sb sharing, Christian Brauner
- Re: [PATCH v5] vfs, security: Fix automount superblock LSM init problem, preventing NFS sb sharing, Jeff Layton
- Re: [PATCH v5] vfs, security: Fix automount superblock LSM init problem, preventing NFS sb sharing, David Howells
  - Re: [PATCH v5] vfs, security: Fix automount superblock LSM init problem, preventing NFS sb sharing, Jeff Layton
- <Possible follow-ups>
- [PATCH v5] vfs, security: Fix automount superblock LSM init problem, preventing NFS sb sharing, David Howells
  - Re: [PATCH v5] vfs, security: Fix automount superblock LSM init problem, preventing NFS sb sharing, Paul Moore
    - Re: [PATCH v5] vfs, security: Fix automount superblock LSM init problem, preventing NFS sb sharing, Paul Moore
  - Re: [PATCH v5] vfs, security: Fix automount superblock LSM init problem, preventing NFS sb sharing, Al Viro
[PATCH v2] tests/secretmem: add test, Christian Göttsche
- Re: [PATCH v2] tests/secretmem: add test, Ondrej Mosnacek
  - Re: [PATCH v2] tests/secretmem: add test, Ondrej Mosnacek
    - Re: [PATCH v2] tests/secretmem: add test, Christian Göttsche
[PATCH] tests/secretmem: add test, Christian Göttsche
[PATCH] libselinux: support objname in compute_create, Christian Göttsche
- Re: [PATCH] libselinux: support objname in compute_create, Christian Göttsche
- Re: [PATCH] libselinux: support objname in compute_create, James Carter
  - Re: [PATCH] libselinux: support objname in compute_create, James Carter
[PATCH] selinux: declare read-only parameters const, Christian Göttsche
- Re: [PATCH] selinux: declare read-only parameters const, Paul Moore
[PATCH] selinux: use int arrays for boolean values, Christian Göttsche
- Re: [PATCH] selinux: use int arrays for boolean values, Paul Moore
[RFC PATCH 2/2] fs/xattr: wire up syscalls, Christian Göttsche
- [RFC PATCH 1/2] fs/xattr: add *at family syscalls, Christian Göttsche
  - Re: [RFC PATCH 1/2] fs/xattr: add *at family syscalls, Christian Brauner
  - Re: [RFC PATCH 1/2] fs/xattr: add *at family syscalls, Al Viro
    - Re: [RFC PATCH 1/2] fs/xattr: add *at family syscalls, Amir Goldstein
    - Re: [RFC PATCH 1/2] fs/xattr: add *at family syscalls, Casey Schaufler
- Re: [RFC PATCH 2/2] fs/xattr: wire up syscalls, Christian Brauner
- Re: [RFC PATCH 2/2] fs/xattr: wire up syscalls, Richard Guy Briggs
[PATCH linux-next] selinux: remove redundant variables rc, cgel . zte
- Re: [PATCH linux-next] selinux: remove redundant variables rc, Paul Moore
[PATCH linux-next] selinux: Remove the unneeded result variable, cgel . zte
- Re: [PATCH linux-next] selinux: Remove the unneeded result variable, Paul Moore
[GIT PULL] LSM fixes for v6.0 (#1), Paul Moore
- Re: [GIT PULL] LSM fixes for v6.0 (#1), pr-tracker-bot
[PATCH] checkpolicy: avoid passing NULL pointer to memset(), Juraj Marcin
- Re: [PATCH] checkpolicy: avoid passing NULL pointer to memset(), James Carter
  - Re: [PATCH] checkpolicy: avoid passing NULL pointer to memset(), James Carter
[PATCH 3/3] secilc/docs: disable pandoc default css for html docs, bauen1
- Re: [PATCH 3/3] secilc/docs: disable pandoc default css for html docs, James Carter
  - Re: [PATCH 3/3] secilc/docs: disable pandoc default css for html docs, James Carter
[PATCH 2/3] secilc/docs: fix syntax highlighting, bauen1
- Re: [PATCH 2/3] secilc/docs: fix syntax highlighting, James Carter
  - Re: [PATCH 2/3] secilc/docs: fix syntax highlighting, James Carter
[PATCH 1/3] secilc/docs: selinuxuser actually takes a string not identifier, bauen1
- Re: [PATCH 1/3] secilc/docs: selinuxuser actually takes a string not identifier, James Carter
  - Re: [PATCH 1/3] secilc/docs: selinuxuser actually takes a string not identifier, James Carter
    - Re: [PATCH 1/3] secilc/docs: selinuxuser actually takes a string not identifier, bauen1
[PATCH testsuite] tests: remove more stray flag/temporary files with 'make clean', Ondrej Mosnacek
- Re: [PATCH testsuite] tests: remove more stray flag/temporary files with 'make clean', Ondrej Mosnacek
[PATCH] libsepol: fix missing double quotes in typetransition CIL rule, Juraj Marcin
- Re: [PATCH] libsepol: fix missing double quotes in typetransition CIL rule, James Carter
  - Re: [PATCH] libsepol: fix missing double quotes in typetransition CIL rule, James Carter
Fwd: [systemd-devel] socket activation selinux context on create, Ted Toth
- Re: [systemd-devel] socket activation selinux context on create, Ted Toth
  - Re: [systemd-devel] socket activation selinux context on create, Ted Toth
- Re: [systemd-devel] socket activation selinux context on create, Paul Moore
  - Re: [systemd-devel] socket activation selinux context on create, Ted Toth
    - Re: [systemd-devel] socket activation selinux context on create, Paul Moore
      - Re: [systemd-devel] socket activation selinux context on create, Christian Göttsche
        
        Re: [systemd-devel] socket activation selinux context on create, Ted Toth
        
        Re: [systemd-devel] socket activation selinux context on create, Dominick Grift
        
        Re: [systemd-devel] socket activation selinux context on create, Ted Toth
        
        Re: [systemd-devel] socket activation selinux context on create, Dominick Grift
        
        Re: [systemd-devel] socket activation selinux context on create, Ted Toth
[PATCH] tests/filesystem/xfs: use a 300M xfs filesystem image, Paul Moore
- Re: [PATCH] tests/filesystem/xfs: use a 300M xfs filesystem image, Ondrej Mosnacek
[PATCH testsuite 0/2] Prepare userfaultfd policy for Fedora policy changes, Ondrej Mosnacek
- [PATCH testsuite 2/2] test_userfaultfd.te: adapt to upcoming Fedora policy changes, Ondrej Mosnacek
  - Re: [PATCH testsuite 2/2] test_userfaultfd.te: adapt to upcoming Fedora policy changes, Daniel Burgener
    - Re: [PATCH testsuite 2/2] test_userfaultfd.te: adapt to upcoming Fedora policy changes, Ondrej Mosnacek
- [PATCH testsuite 1/2] policy: remove CIL workarounds for missing anon_inode class, Ondrej Mosnacek
- Re: [PATCH testsuite 0/2] Prepare userfaultfd policy for Fedora policy changes, Ondrej Mosnacek
[PATCH v4] vfs, security: Fix automount superblock LSM init problem, preventing NFS sb sharing, David Howells
- Re: [PATCH v4] vfs, security: Fix automount superblock LSM init problem, preventing NFS sb sharing, Christian Brauner
  - Re: [PATCH v4] vfs, security: Fix automount superblock LSM init problem, preventing NFS sb sharing, Casey Schaufler
  - Re: [PATCH v4] vfs, security: Fix automount superblock LSM init problem, preventing NFS sb sharing, David Howells
    - Re: [PATCH v4] vfs, security: Fix automount superblock LSM init problem, preventing NFS sb sharing, Casey Schaufler
    - Re: [PATCH v4] vfs, security: Fix automount superblock LSM init problem, preventing NFS sb sharing, David Howells
      - Re: [PATCH v4] vfs, security: Fix automount superblock LSM init problem, preventing NFS sb sharing, Casey Schaufler
- Re: [PATCH v4] vfs, security: Fix automount superblock LSM init problem, preventing NFS sb sharing, Al Viro
- Re: [PATCH v4] vfs, security: Fix automount superblock LSM init problem, preventing NFS sb sharing, David Howells
- Re: [PATCH v4] vfs, security: Fix automount superblock LSM init problem, preventing NFS sb sharing, Anna Schumaker
- Re: [PATCH v4] vfs, security: Fix automount superblock LSM init problem, preventing NFS sb sharing, David Howells
[PATCH 0/3] LSM hooks for IORING_OP_URING_CMD, Paul Moore
- Re: [PATCH 0/3] LSM hooks for IORING_OP_URING_CMD, Paul Moore
- <Possible follow-ups>
- [PATCH 0/3] LSM hooks for IORING_OP_URING_CMD, Paul Moore
  - [PATCH 1/3] lsm,io_uring: add LSM hooks for the new uring_cmd file op, Paul Moore
    - Re: [PATCH 1/3] lsm,io_uring: add LSM hooks for the new uring_cmd file op, Greg Kroah-Hartman
      - Re: [PATCH 1/3] lsm,io_uring: add LSM hooks for the new uring_cmd file op, Paul Moore
        
        Re: [PATCH 1/3] lsm,io_uring: add LSM hooks for the new uring_cmd file op, Greg Kroah-Hartman
        
        Re: [PATCH 1/3] lsm,io_uring: add LSM hooks for the new uring_cmd file op, Paul Moore
  - [PATCH 2/3] selinux: implement the security_uring_cmd() LSM hook, Paul Moore
    - Re: [PATCH 2/3] selinux: implement the security_uring_cmd() LSM hook, Greg Kroah-Hartman
      - Re: [PATCH 2/3] selinux: implement the security_uring_cmd() LSM hook, Paul Moore
    - Message not available
      - Re: [PATCH 2/3] selinux: implement the security_uring_cmd() LSM hook, Joel Granados
        
        Re: [PATCH 2/3] selinux: implement the security_uring_cmd() LSM hook, Paul Moore
        
        Re: [PATCH 2/3] selinux: implement the security_uring_cmd() LSM hook, Joel Granados
        
        Re: [PATCH 2/3] selinux: implement the security_uring_cmd() LSM hook, Joel Granados
  - [PATCH 3/3] /dev/null: add IORING_OP_URING_CMD support, Paul Moore
    - Re: [PATCH 3/3] /dev/null: add IORING_OP_URING_CMD support, Jens Axboe
      - Re: [PATCH 3/3] /dev/null: add IORING_OP_URING_CMD support, Paul Moore
        
        Re: [PATCH 3/3] /dev/null: add IORING_OP_URING_CMD support, Jens Axboe
        
        Re: [PATCH 3/3] /dev/null: add IORING_OP_URING_CMD support, Paul Moore
        
        Re: [PATCH 3/3] /dev/null: add IORING_OP_URING_CMD support, Jens Axboe
        
        Re: [PATCH 3/3] /dev/null: add IORING_OP_URING_CMD support, Paul Moore
    - Re: [PATCH 3/3] /dev/null: add IORING_OP_URING_CMD support, Greg Kroah-Hartman
      - Re: [PATCH 3/3] /dev/null: add IORING_OP_URING_CMD support, Jens Axboe
        
        Re: [PATCH 3/3] /dev/null: add IORING_OP_URING_CMD support, Paul Moore
    - Re: [PATCH 3/3] /dev/null: add IORING_OP_URING_CMD support, Greg Kroah-Hartman
      - Re: [PATCH 3/3] /dev/null: add IORING_OP_URING_CMD support, Paul Moore
        
        Re: [PATCH 3/3] /dev/null: add IORING_OP_URING_CMD support, Greg Kroah-Hartman
        
        Re: [PATCH 3/3] /dev/null: add IORING_OP_URING_CMD support, Paul Moore
  - Re: [PATCH 0/3] LSM hooks for IORING_OP_URING_CMD, Paul Moore
Re: SELinux testsuite on 6.0-rc2 binder BUG, Paul Moore
- Re: SELinux testsuite on 6.0-rc2 binder BUG, Casey Schaufler
[PATCH v1] selinux/ss/services.c: check the return value of audit_log_start() in security_sid_mls_copy(), lily
- Re: [PATCH v1] selinux/ss/services.c: check the return value of audit_log_start() in security_sid_mls_copy(), Paul Moore
[PATCH] selinux: Variable type completion, Xin Gao
[syzbot] KASAN: use-after-free Read in sock_has_perm, syzbot
- Re: [syzbot] KASAN: use-after-free Read in sock_has_perm, Paul Moore
  - Re: [syzbot] KASAN: use-after-free Read in sock_has_perm, Casey Schaufler
  - Re: [syzbot] KASAN: use-after-free Read in sock_has_perm, Dmitry Vyukov
[selinux-testsuite PATCH] tests/binder: remove stray flag files with 'make clean', Paul Moore
- Re: [selinux-testsuite PATCH] tests/binder: remove stray flag files with 'make clean', Ondrej Mosnacek
  - Re: [selinux-testsuite PATCH] tests/binder: remove stray flag files with 'make clean', Paul Moore
    - Re: [selinux-testsuite PATCH] tests/binder: remove stray flag files with 'make clean', Ondrej Mosnacek
      - Re: [selinux-testsuite PATCH] tests/binder: remove stray flag files with 'make clean', Paul Moore
- Re: [selinux-testsuite PATCH] tests/binder: remove stray flag files with 'make clean', Ondrej Mosnacek
[PATCH v5 0/4] Introduce security_create_user_ns(), Frederick Lawler
- [PATCH v5 1/4] security, lsm: Introduce security_create_user_ns(), Frederick Lawler
- [PATCH v5 2/4] bpf-lsm: Make bpf_lsm_userns_create() sleepable, Frederick Lawler
- [PATCH v5 4/4] selinux: Implement userns_create hook, Frederick Lawler
- [PATCH v5 3/4] selftests/bpf: Add tests verifying bpf lsm userns_create hook, Frederick Lawler
- Re: [PATCH v5 0/4] Introduce security_create_user_ns(), Paul Moore
  - Re: [PATCH v5 0/4] Introduce security_create_user_ns(), Eric W. Biederman
    - Re: [PATCH v5 0/4] Introduce security_create_user_ns(), Paul Moore
      - Re: [PATCH v5 0/4] Introduce security_create_user_ns(), Eric W. Biederman
        
        Re: [PATCH v5 0/4] Introduce security_create_user_ns(), Paul Moore
        
        Re: [PATCH v5 0/4] Introduce security_create_user_ns(), Eric W. Biederman
        
        Re: [PATCH v5 0/4] Introduce security_create_user_ns(), Paul Moore
        
        Re: [PATCH v5 0/4] Introduce security_create_user_ns(), Eric W. Biederman
        
        Re: [PATCH v5 0/4] Introduce security_create_user_ns(), Paul Moore
        
        RE: [PATCH v5 0/4] Introduce security_create_user_ns(), Jonathan Chapman-Moore
        
        Re: [PATCH v5 0/4] Introduce security_create_user_ns(), Serge E. Hallyn
        
        Re: [PATCH v5 0/4] Introduce security_create_user_ns(), Paul Moore
        
        Re: [PATCH v5 0/4] Introduce security_create_user_ns(), Serge E. Hallyn
        
        Re: [PATCH v5 0/4] Introduce security_create_user_ns(), Paul Moore
        
        Re: [PATCH v5 0/4] Introduce security_create_user_ns(), Eric W. Biederman
        
        Re: [PATCH v5 0/4] Introduce security_create_user_ns(), Paul Moore
        
        Re: [PATCH v5 0/4] Introduce security_create_user_ns(), Song Liu
        
        Re: [PATCH v5 0/4] Introduce security_create_user_ns(), Paul Moore
        
        Re: [PATCH v5 0/4] Introduce security_create_user_ns(), Song Liu
        
        Re: [PATCH v5 0/4] Introduce security_create_user_ns(), Paul Moore
        
        Re: [PATCH v5 0/4] Introduce security_create_user_ns(), Song Liu
        
        Re: [PATCH v5 0/4] Introduce security_create_user_ns(), Serge E. Hallyn
        
        Re: [PATCH v5 0/4] Introduce security_create_user_ns(), Song Liu
        
        Re: [PATCH v5 0/4] Introduce security_create_user_ns(), Serge E. Hallyn
        
        Re: [PATCH v5 0/4] Introduce security_create_user_ns(), Song Liu
        
        Re: [PATCH v5 0/4] Introduce security_create_user_ns(), Christian Brauner
        
        Re: [PATCH v5 0/4] Introduce security_create_user_ns(), Serge E. Hallyn
        
        Re: [PATCH v5 0/4] Introduce security_create_user_ns(), Ignat Korchagin
        
        Re: [PATCH v5 0/4] Introduce security_create_user_ns(), Paul Moore
        
        Re: [PATCH v5 0/4] Introduce security_create_user_ns(), Serge E. Hallyn
[BUG] (fsuse xattr "fuse" mycontext) causes deadlock for mount/sync syscall, bauen1
[PATCH] tests/sctp: reenable the SCTP ASCONF tests, Paul Moore
[PATCH] tests/sctp: allow both ENOSPC and EINPROGRESS for CIPSO tag space errors, Paul Moore
- Re: [PATCH] tests/sctp: allow both ENOSPC and EINPROGRESS for CIPSO tag space errors, Ondrej Mosnacek
  - Re: [PATCH] tests/sctp: allow both ENOSPC and EINPROGRESS for CIPSO tag space errors, Paul Moore
[PATCH] selinux: SCTP fixes, including ASCONF, Paul Moore
- Re: [PATCH] selinux: SCTP fixes, including ASCONF, Ondrej Mosnacek
  - Re: [PATCH] selinux: SCTP fixes, including ASCONF, Paul Moore
    - Re: [PATCH] selinux: SCTP fixes, including ASCONF, Paul Moore
    - Re: [PATCH] selinux: SCTP fixes, including ASCONF, Ondrej Mosnacek
[PATCH 1/4] ci: bump versions in GitHub Actions, Christian Göttsche
- [PATCH 2/4] scripts/ci: use F36 image instead of F34, Christian Göttsche
- [PATCH 3/4] scripts: ignore Flake8 tag E275, Christian Göttsche
- [PATCH 4/4] Ignore egg-info directories and clean them, Christian Göttsche
- Re: [PATCH 1/4] ci: bump versions in GitHub Actions, James Carter
  - Re: [PATCH 1/4] ci: bump versions in GitHub Actions, James Carter
[PATCH 1/2] checkpolicy: use strict function prototype for definitions, Christian Göttsche
- [PATCH 2/2] restorecond: use strict function prototype for definition, Christian Göttsche
  - Re: [PATCH 2/2] restorecond: use strict function prototype for definition, Daniel Burgener
- Re: [PATCH 1/2] checkpolicy: use strict function prototype for definitions, Daniel Burgener
  - Re: [PATCH 1/2] checkpolicy: use strict function prototype for definitions, James Carter
    - Re: [PATCH 1/2] checkpolicy: use strict function prototype for definitions, James Carter
[PATCH] libselinux/utils: install into bin PATH, Christian Göttsche
- Re: [PATCH] libselinux/utils: install into bin PATH, Daniel Burgener
[PATCH] libselinux: avoid newline in avc message, Christian Göttsche
- Re: [PATCH] libselinux: avoid newline in avc message, James Carter
  - Re: [PATCH] libselinux: avoid newline in avc message, James Carter
[PATCH] selinux: add a new warn_on_audited debug flag to selinuxfs, Ondrej Mosnacek
- Re: [PATCH] selinux: add a new warn_on_audited debug flag to selinuxfs, Paul Moore
  - Re: [PATCH] selinux: add a new warn_on_audited debug flag to selinuxfs, Ondrej Mosnacek
Re: Race conditioned discovered between ima_match_rules and ima_update_lsm_update_rules, Guozihua (Scott)
- Re: Race conditioned discovered between ima_match_rules and ima_update_lsm_update_rules, Paul Moore
  - Re: Race conditioned discovered between ima_match_rules and ima_update_lsm_update_rules, Mimi Zohar
    - Re: Race conditioned discovered between ima_match_rules and ima_update_lsm_update_rules, Paul Moore
      - Re: Race conditioned discovered between ima_match_rules and ima_update_lsm_update_rules, Guozihua (Scott)
        
        Re: Race conditioned discovered between ima_match_rules and ima_update_lsm_update_rules, Guozihua (Scott)
        
        Re: Race conditioned discovered between ima_match_rules and ima_update_lsm_update_rules, Mimi Zohar
        
        Re: Race conditioned discovered between ima_match_rules and ima_update_lsm_update_rules, Paul Moore
        
        Re: Race conditioned discovered between ima_match_rules and ima_update_lsm_update_rules, Guozihua (Scott)
[PATCH AUTOSEL 4.9 8/8] selinux: Add boundary check in put_entry(), Sasha Levin
[PATCH AUTOSEL 4.14 12/12] selinux: Add boundary check in put_entry(), Sasha Levin
[PATCH AUTOSEL 5.4 23/23] selinux: Add boundary check in put_entry(), Sasha Levin
[PATCH AUTOSEL 4.19 16/16] selinux: Add boundary check in put_entry(), Sasha Levin
[PATCH AUTOSEL 5.15 42/45] selinux: fix memleak in security_read_state_kernel(), Sasha Levin
[PATCH AUTOSEL 5.10 29/29] selinux: Add boundary check in put_entry(), Sasha Levin
[PATCH AUTOSEL 5.15 43/45] selinux: Add boundary check in put_entry(), Sasha Levin
[PATCH AUTOSEL 5.18 51/53] selinux: Add boundary check in put_entry(), Sasha Levin
[PATCH AUTOSEL 5.18 50/53] selinux: fix memleak in security_read_state_kernel(), Sasha Levin
[PATCH AUTOSEL 5.19 53/58] selinux: fix memleak in security_read_state_kernel(), Sasha Levin
[PATCH AUTOSEL 5.19 54/58] selinux: Add boundary check in put_entry(), Sasha Levin
[PATCH v3] nfs: Fix automount superblock LSM init problem, preventing sb sharing, David Howells
- Re: [PATCH v3] nfs: Fix automount superblock LSM init problem, preventing sb sharing, Jeff Layton
- Re: [PATCH v3] nfs: Fix automount superblock LSM init problem, preventing sb sharing, Ondrej Mosnacek
  - Re: [PATCH v3] nfs: Fix automount superblock LSM init problem, preventing sb sharing, Paul Moore
  - Re: [PATCH v3] nfs: Fix automount superblock LSM init problem, preventing sb sharing, David Howells
    - Re: [PATCH v3] nfs: Fix automount superblock LSM init problem, preventing sb sharing, Paul Moore
[PATCH v2] nfs: Fix automount superblock LSM init problem, preventing sb sharing, David Howells
- Re: [PATCH v2] nfs: Fix automount superblock LSM init problem, preventing sb sharing, Jeff Layton
- Re: [PATCH v2] nfs: Fix automount superblock LSM init problem, preventing sb sharing, David Howells
[PATCH] nfs: Fix automount superblock LSM init problem, preventing sb sharing, David Howells
- Re: [PATCH] nfs: Fix automount superblock LSM init problem, preventing sb sharing, David Howells
LSM stacking in next for 6.1?, Casey Schaufler
- Re: LSM stacking in next for 6.1?, Paul Moore
  - Re: LSM stacking in next for 6.1?, John Johansen
  - Re: LSM stacking in next for 6.1?, Casey Schaufler
    - Re: LSM stacking in next for 6.1?, Paul Moore
  - Re: LSM stacking in next for 6.1?, Steve Grubb
    - Re: LSM stacking in next for 6.1?, Paul Moore
  - Re: LSM stacking in next for 6.1?, Paul Moore
    - Re: LSM stacking in next for 6.1?, Casey Schaufler
      - Re: LSM stacking in next for 6.1?, Casey Schaufler
      - Re: LSM stacking in next for 6.1?, Paul Moore
        
        Re: LSM stacking in next for 6.1?, John Johansen
        
        Re: LSM stacking in next for 6.1?, Casey Schaufler
        
        Re: LSM stacking in next for 6.1?, John Johansen
        
        Re: LSM stacking in next for 6.1?, Paul Moore
        
        Re: LSM stacking in next for 6.1?, Casey Schaufler
        
        Re: LSM stacking in next for 6.1?, John Johansen
        
        Re: LSM stacking in next for 6.1?, Paul Moore
        
        Re: LSM stacking in next for 6.1?, Paul Moore
        
        Re: LSM stacking in next for 6.1?, Casey Schaufler
        
        Re: LSM stacking in next for 6.1?, John Johansen
        
        Re: LSM stacking in next for 6.1?, Paul Moore
        
        Re: LSM stacking in next for 6.1?, Casey Schaufler
        
        Re: LSM stacking in next for 6.1?, John Johansen
        
        Re: LSM stacking in next for 6.1?, Paul Moore
        
        Re: LSM stacking in next for 6.1?, Casey Schaufler
        
        Re: LSM stacking in next for 6.1?, Tetsuo Handa
        
        Re: LSM stacking in next for 6.1?, Casey Schaufler
        
        Re: LSM stacking in next for 6.1?, Tetsuo Handa
        
        Re: LSM stacking in next for 6.1?, Casey Schaufler
        
        Re: LSM stacking in next for 6.1?, Tetsuo Handa
        
        Re: LSM stacking in next for 6.1?, Casey Schaufler
        
        Re: LSM stacking in next for 6.1?, Tetsuo Handa
        
        Re: LSM stacking in next for 6.1?, John Johansen
        
        Re: LSM stacking in next for 6.1?, John Johansen
        
        Re: LSM stacking in next for 6.1?, Tetsuo Handa
        
        Re: LSM stacking in next for 6.1?, Tetsuo Handa
        
        Re: LSM stacking in next for 6.1?, John Johansen
        
        Re: LSM stacking in next for 6.1?, Tetsuo Handa
        
        Re: LSM stacking in next for 6.1?, Casey Schaufler
        
        Re: LSM stacking in next for 6.1?, Tetsuo Handa
        
        Re: LSM stacking in next for 6.1?, Casey Schaufler
        
        Re: LSM stacking in next for 6.1?, Tetsuo Handa
        
        Re: LSM stacking in next for 6.1?, Casey Schaufler
        
        Re: LSM stacking in next for 6.1?, John Johansen
        
        Re: LSM stacking in next for 6.1?, Tetsuo Handa
        
        Re: LSM stacking in next for 6.1?, John Johansen
        
        Re: LSM stacking in next for 6.1?, Tetsuo Handa
        
        Re: LSM stacking in next for 6.1?, Kees Cook
        
        Re: LSM stacking in next for 6.1?, Casey Schaufler
        
        Re: LSM stacking in next for 6.1?, Tetsuo Handa
        
        Re: LSM stacking in next for 6.1?, Casey Schaufler
        
        Re: LSM stacking in next for 6.1?, Paul Moore
        
        Re: LSM stacking in next for 6.1?, Tetsuo Handa
        
        Re: LSM stacking in next for 6.1?, Paul Moore
        
        Re: LSM stacking in next for 6.1?, Tetsuo Handa
        
        Re: LSM stacking in next for 6.1?, Kees Cook
        
        Re: LSM stacking in next for 6.1?, Tetsuo Handa
        
        Re: LSM stacking in next for 6.1?, Paul Moore
        
        Re: LSM stacking in next for 6.1?, Casey Schaufler
        
        Re: LSM stacking in next for 6.1?, Paul Moore
        
        Re: LSM stacking in next for 6.1?, Casey Schaufler
        
        Re: LSM stacking in next for 6.1?, Paul Moore
        
        Re: LSM stacking in next for 6.1?, Casey Schaufler
        
        Re: LSM stacking in next for 6.1?, Paul Moore
        
        Re: LSM stacking in next for 6.1?, Casey Schaufler
- Re: LSM stacking in next for 6.1?, Tetsuo Handa
  - Re: LSM stacking in next for 6.1?, Casey Schaufler
  - Re: LSM stacking in next for 6.1?, Paul Moore
    - Re: LSM stacking in next for 6.1?, Tetsuo Handa
      - Re: LSM stacking in next for 6.1?, Paul Moore
        
        Re: LSM stacking in next for 6.1?, Tetsuo Handa
        
        Re: LSM stacking in next for 6.1?, Casey Schaufler
        
        Re: LSM stacking in next for 6.1?, Tetsuo Handa
[GIT PULL] SELinux patches for v6.0, Paul Moore
- Re: [GIT PULL] SELinux patches for v6.0, pr-tracker-bot
[PATCH v4 0/4] Introduce security_create_user_ns(), Frederick Lawler
- [PATCH v4 1/4] security, lsm: Introduce security_create_user_ns(), Frederick Lawler
  - Re: [PATCH v4 1/4] security, lsm: Introduce security_create_user_ns(), KP Singh
    - Re: [PATCH v4 1/4] security, lsm: Introduce security_create_user_ns(), Frederick Lawler
- [PATCH v4 2/4] bpf-lsm: Make bpf_lsm_userns_create() sleepable, Frederick Lawler
  - Re: [PATCH v4 2/4] bpf-lsm: Make bpf_lsm_userns_create() sleepable, Alexei Starovoitov
    - Re: [PATCH v4 2/4] bpf-lsm: Make bpf_lsm_userns_create() sleepable, Paul Moore
  - Re: [PATCH v4 2/4] bpf-lsm: Make bpf_lsm_userns_create() sleepable, KP Singh
- [PATCH v4 4/4] selinux: Implement userns_create hook, Frederick Lawler
- [PATCH v4 3/4] selftests/bpf: Add tests verifying bpf lsm userns_create hook, Frederick Lawler
  - Re: [PATCH v4 3/4] selftests/bpf: Add tests verifying bpf lsm userns_create hook, KP Singh
- Re: [PATCH v4 0/4] Introduce security_create_user_ns(), Eric W. Biederman
  - Re: [PATCH v4 0/4] Introduce security_create_user_ns(), Paul Moore
    - Re: [PATCH v4 0/4] Introduce security_create_user_ns(), Eric W. Biederman
      - Re: [PATCH v4 0/4] Introduce security_create_user_ns(), Paul Moore
        
        Re: [PATCH v4 0/4] Introduce security_create_user_ns(), Eric W. Biederman
        
        Re: [PATCH v4 0/4] Introduce security_create_user_ns(), Eric W. Biederman
        
        Re: [PATCH v4 0/4] Introduce security_create_user_ns(), Paul Moore
        
        Re: [PATCH v4 0/4] Introduce security_create_user_ns(), Eric W. Biederman
        
        Re: [PATCH v4 0/4] Introduce security_create_user_ns(), Paul Moore
        
        Re: [PATCH v4 0/4] Introduce security_create_user_ns(), Eric W. Biederman
        
        Re: [PATCH v4 0/4] Introduce security_create_user_ns(), Paul Moore
        
        Re: [PATCH v4 0/4] Introduce security_create_user_ns(), Alexei Starovoitov
        
        Re: [PATCH v4 0/4] Introduce security_create_user_ns(), Casey Schaufler
        
        Re: [PATCH v4 0/4] Introduce security_create_user_ns(), Eric W. Biederman
        
        Re: [PATCH v4 0/4] Introduce security_create_user_ns(), Paul Moore
        
        Re: [PATCH v4 0/4] Introduce security_create_user_ns(), Eric W. Biederman
        
        Re: [PATCH v4 0/4] Introduce security_create_user_ns(), Serge E. Hallyn
        
        Re: [PATCH v4 0/4] Introduce security_create_user_ns(), Paul Moore
        
        Re: [PATCH v4 0/4] Introduce security_create_user_ns(), Serge E. Hallyn
        
        Re: [PATCH v4 0/4] Introduce security_create_user_ns(), Paul Moore
Adjust sepolgen grammar to support allowxperm, et. al., chris . lindee
- [PATCH 2/2] sepolgen: Support named xperms, chris . lindee
- [PATCH 1/2] sepolgen: Update refparser to handle xperm, chris . lindee
  - Re: [PATCH 1/2] sepolgen: Update refparser to handle xperm, Christian Göttsche
- Re: Adjust sepolgen grammar to support allowxperm, et. al., James Carter
KVM / virtual networking access control, Karl MacMillan
- Re: KVM / virtual networking access control, Paul Moore
  - Re: KVM / virtual networking access control, Karl MacMillan
    - Re: KVM / virtual networking access control, Paul Moore

[Index of Archives] [Selinux Refpolicy] [Fedora Users] [Fedora Desktop] [Kernel] [KDE Users] [Gnome Users]