[PATCH v2] Documentation/admin-guide/LSM/SELinux.rst: add links to resources
2025-06-20 12:05 UTC (3+ messages)
[PATCH] selinux: add __GFP_NOWARN to hashtab_init() allocations
2025-06-19 21:24 UTC (2+ messages)
[PATCH v2 2/2] selinux: optimize selinux_inode_getattr/permission() based on neveraudit|permissive
2025-06-19 21:23 UTC (2+ messages)
[PATCH v2 1/2] selinux: introduce neveraudit types
2025-06-19 21:23 UTC (2+ messages)
[PATCH v2] security,fs,nfs,net: update security_inode_listsecurity() interface
2025-06-19 21:18 UTC (7+ messages)
[PATCH v2] selinux: change security_compute_sid to return the ssid or tsid on match
2025-06-19 20:13 UTC (9+ messages)
[PATCH v2 bpf-next 0/4] af_unix: Allow BPF LSM to filter SCM_RIGHTS at sendmsg()
2025-06-19 18:55 UTC (11+ messages)
` [PATCH v2 bpf-next 1/4] af_unix: Don't pass struct socket to security_unix_may_send()
` [PATCH v2 bpf-next 2/4] af_unix: Call security_unix_may_send() in sendmsg() for all socket types
` [PATCH v2 bpf-next 3/4] af_unix: Pass skb to security_unix_may_send()
` [PATCH v2 bpf-next 4/4] selftest: bpf: Add test for BPF LSM on unix_may_send()
[PATCH 1/2] fs: Provide function that allocates a secure anonymous inode
2025-06-19 5:36 UTC (6+ messages)
ANN: Reference Policy 2.20250618
2025-06-18 18:30 UTC
[GIT PULL] selinux/selinux-pr-20250618
2025-06-18 18:08 UTC (2+ messages)
[PATCH] tests/mac_admin: skip another test on nfs
2025-06-18 16:29 UTC
[PATCH testsuite] tests/mac_admin: disable test of getting undefined label on nfs
2025-06-18 16:15 UTC (2+ messages)
[PATCH] Expect Key error for module_load test in lockdown mode
2025-06-18 15:35 UTC (3+ messages)
[PATCH testsuite] README.md: update dependency from iptables to iptables-nft
2025-06-18 15:26 UTC (2+ messages)
[syzbot] [selinux?] WARNING in hashtab_init
2025-06-18 15:07 UTC (4+ messages)
[PATCH testsuite] tests/inet_socket: properly detect IPSEC support
2025-06-18 14:50 UTC (4+ messages)
[PATCH] libsemanage: Ignore missing field initializers in swig generated code
2025-06-18 14:36 UTC (2+ messages)
[PATCH 0/3] LSM: Multiple LSM mount options
2025-06-17 21:01 UTC (4+ messages)
` [PATCH 1/3] LSM: Add mount opts blob size tracking
` [PATCH 2/3] LSM: allocate mnt_opts blobs instead of module specific data
` [PATCH 3/3] LSM: Infrastructure management of the mnt_opts security blob
[PATCH v5 00/42] SELinux namespace support
2025-06-17 14:05 UTC (43+ messages)
` [PATCH v5 01/42] selinux: restore passing of selinux_state
` [PATCH v5 02/42] selinux: introduce current_selinux_state
` [PATCH v5 03/42] selinux: support multiple selinuxfs instances
` [PATCH v5 04/42] selinux: dynamically allocate selinux namespace
` [PATCH v5 05/42] netstate,selinux: create the selinux netlink socket per network namespace
` [PATCH v5 06/42] selinux: limit selinux netlink notifications to init namespace
` [PATCH v5 07/42] selinux: support per-task/cred selinux namespace
` [PATCH v5 08/42] selinux: introduce cred_selinux_state() and use it
` [PATCH v5 09/42] selinux: init inode from nearest initialized namespace
` [PATCH v5 10/42] selinux: add a selinuxfs interface to unshare selinux namespace
` [PATCH v5 11/42] selinux: add limits for SELinux namespaces
` [PATCH v5 12/42] selinux: exempt creation of init SELinux namespace from limits
` [PATCH v5 13/42] selinux: refactor selinux_state_create()
` [PATCH v5 14/42] selinux: allow userspace to detect non-init SELinux namespace
` [PATCH v5 15/42] selinuxfs: restrict write operations to the same selinux namespace
` [PATCH v5 16/42] selinux: introduce a global SID table
` [PATCH v5 17/42] selinux: wrap security server interfaces to use the "
` [PATCH v5 18/42] selinux: introduce a Kconfig option for SELinux namespaces
` [PATCH v5 19/42] selinux: eliminate global SID table if !CONFIG_SECURITY_SELINUX_NS
` [PATCH v5 20/42] selinux: maintain a small cache in the global SID table
` [PATCH v5 21/42] selinux: update hook functions to use correct selinux namespace
` [PATCH v5 22/42] selinux: introduce cred_task_has_perm()
` [PATCH v5 23/42] selinux: introduce cred_has_extended_perms()
` [PATCH v5 24/42] selinux: introduce cred_self_has_perm()
` [PATCH v5 25/42] selinux: introduce cred_has_perm()
` [PATCH v5 26/42] selinux: introduce cred_ssid_has_perm() and cred_other_has_perm()
` [PATCH v5 27/42] selinux: introduce task_obj_has_perm()
` [PATCH v5 28/42] selinux: update bprm hooks for selinux namespaces
` [PATCH v5 29/42] selinux: add kerneldoc to new permission checking functions
` [PATCH v5 30/42] selinux: convert selinux_file_send_sigiotask() to namespace-aware helper
` [PATCH v5 31/42] selinux: rename cred_has_perm*() to cred_tsid_has_perm*()
` [PATCH v5 32/42] selinux: update cred_tsid_has_perm_noaudit() to return the combined avd
` [PATCH v5 33/42] selinux: convert additional checks to cred_ssid_has_perm()
` [PATCH v5 34/42] selinux: introduce selinux_state_has_perm()
` [PATCH v5 35/42] selinux: annotate selinuxfs permission checks
` [PATCH v5 36/42] selinux: annotate process transition "
` [PATCH v5 37/42] selinux: convert xfrm and netlabel "
` [PATCH v5 38/42] selinux: switch selinux_lsm_setattr() checks to current namespace
` [PATCH v5 39/42] selinux: make open_perms namespace-aware
` [PATCH v5 40/42] selinux: split cred_ssid_has_perm() into two cases
` [PATCH v5 41/42] selinux: convert nlmsg_sock_has_extended_perms() to namespace-aware
` [PATCH v5 42/42] selinux: disallow writes to /sys/fs/selinux/user in non-init namespaces
[PATCH] fs/xattr.c: fix simple_xattr_list()
2025-06-17 0:27 UTC (12+ messages)
[PATCH] selinux: fix selinux_xfrm_alloc_user() to set correct ctx_len
2025-06-16 23:02 UTC (3+ messages)
ANN: LSM and SELinux trees to rebase to v6.16-rc2 next week
2025-06-16 22:50 UTC (3+ messages)
[PATCH v4 3/4] Audit: Add record for multiple task security contexts
2025-06-16 20:54 UTC (2+ messages)
[PATCH v4 4/4] Audit: Add record for multiple object contexts
2025-06-16 20:54 UTC (2+ messages)
[PATCH v4 2/4] LSM: security_lsmblob_to_secctx module selection
2025-06-16 20:54 UTC (2+ messages)
[PATCH v3 2/5] libsepol: add netif_wildcard polcap
2025-06-16 15:25 UTC (5+ messages)
` [PATCH v3 3/5] checkpolicy: add support for wildcard netifcon names
` [PATCH v3 4/5] secilc/test: add test for wildcard netifcon statement
` [PATCH v3 5/5] libsepol/cil: reject wildcard only network interface names
` [PATCH v3 1/5] libsepol: update sort order for netifcon definitions
[PATCH v2] userspace: replace all links to selinuxproject.org
2025-06-16 13:44 UTC
[PATCH] Documentation/admin-guide/LSM/SELinux.rst: add links to resources
2025-06-16 13:35 UTC
[PATCH] userspace: replace all links to selinuxproject.org
2025-06-16 13:27 UTC
selinuxproject.org down?
2025-06-16 13:06 UTC (4+ messages)
[PATCH v4 00/42] SELinux namespace support
2025-06-16 12:47 UTC (34+ messages)
` [PATCH v4 04/42] selinux: dynamically allocate selinux namespace
` [PATCH v4 11/42] selinux: add limits for SELinux namespaces
` [PATCH v4 17/42] selinux: wrap security server interfaces to use the global SID table
` [PATCH v4 19/42] selinux: eliminate global SID table if !CONFIG_SECURITY_SELINUX_NS
` [PATCH v4 20/42] selinux: maintain a small cache in the global SID table
` [PATCH v4 21/42] selinux: update hook functions to use correct selinux namespace
` [PATCH v4 22/42] selinux: introduce cred_task_has_perm()
` [PATCH v4 23/42] selinux: introduce cred_has_extended_perms()
` [PATCH v4 24/42] selinux: introduce cred_self_has_perm()
` [PATCH v4 25/42] selinux: introduce cred_has_perm()
` [PATCH v4 26/42] selinux: introduce cred_ssid_has_perm() and cred_other_has_perm()
` [PATCH v4 27/42] selinux: introduce task_obj_perm()
` [PATCH v4 28/42] selinux: update bprm hooks for selinux namespaces
` [PATCH v4 29/42] selinux: add kerneldoc to new permission checking functions
` [PATCH v4 30/42] selinux: convert selinux_file_send_sigiotask() to namespace-aware helper
` [PATCH v4 31/42] selinux: rename cred_has_perm*() to cred_tsid_has_perm*()
` [PATCH v4 32/42] selinux: update cred_tsid_has_perm_noaudit() to return the combined avd
` [PATCH v4 33/42] selinux: convert additional checks to cred_ssid_has_perm()
` [PATCH v4 34/42] selinux: introduce selinux_state_has_perm()
` [PATCH v4 35/42] selinux: annotate selinuxfs permission checks
` [PATCH v4 36/42] selinux: annotate process transition "
` [PATCH v4 37/42] selinux: convert xfrm and netlabel "
` [PATCH v4 38/42] selinux: switch selinux_lsm_setattr() checks to current namespace
` [PATCH v4 39/42] selinux: make open_perms namespace-aware
` [PATCH v4 40/42] selinux: split cred_ssid_has_perm() into two cases
` [PATCH v4 41/42] selinux: convert nlmsg_sock_has_extended_perms() to namespace-aware
` [PATCH v4 42/42] selinux: disallow writes to /sys/fs/selinux/user in non-init namespaces
[RFC PATCH 0/29] Rework the LSM initialization
2025-06-13 20:34 UTC (7+ messages)
` [RFC PATCH 25/29] ima,evm: move initcalls to the LSM framework
UBSAN warning during selinux-testsuite inet_socket xfrm tests
2025-06-13 19:38 UTC (6+ messages)
[PATCH 1/4] libsepol: update sort order for netifcon definitions
2025-06-13 18:01 UTC (4+ messages)
` [PATCH 3/4] checkpolicy: add support for wildcard netifcon names
[PATCH testsuite] tests/inet_socket: invoke ip{6}tables-legacy when appropriate
2025-06-13 15:24 UTC (16+ messages)
[PATCH v3 1/2] libsepol: Allow multiple policycap statements
2025-06-13 4:27 UTC (2+ messages)
` [PATCH v3 2/2] libsepol: Support genfs_seclabel_wildcard
ANN: SELinux userspace 3.9-rc1 release
2025-06-11 19:35 UTC
[PATCH] libselinux: Do not inline compile_regex()
2025-06-11 19:17 UTC (5+ messages)
[PATCH v2 1/3] libsepol: support wildcard network interface names
2025-06-11 15:30 UTC (6+ messages)
` [PATCH v2 2/3] libsepol: Allow multiple policycap statements
` [PATCH v2 3/3] libsepol: Support genfs_seclabel_wildcard
[PATCH] libselinux: Document thread caveat for security_compute_av.3
2025-06-11 7:02 UTC
[PATCH] Fix variable type to be 'bool' instead of incorrect 'int'
2025-06-11 0:11 UTC (3+ messages)
[PATCH] A trivial simplification to shorten the code a bit
2025-06-11 0:00 UTC (2+ messages)
[PATCH] selinux: change security_compute_sid to return the ssid or tsid on match
2025-06-10 18:16 UTC (2+ messages)
[PATCH v2 1/2] libselinux: prioritize local literal fcontext definitions
2025-06-10 18:09 UTC (5+ messages)
` [PATCH v2 2/2] libselinux: retain LIFO order for path substitutions
page: next (older)
- recent:[subjects (threaded)|topics (new)|topics (active)]
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).