1. cc1bd5e libsepol: fix reallocarray imports by Thiébaud Weksteen · 2 years, 8 months ago
  2. 2d35696 libsepol: NULL pointer offset fix by Christian Göttsche · 2 years, 9 months ago
  3. 71bcdcc libsepol: Add 'ioctl_skip_cloexec' policy capability by Richard Haines · 2 years, 9 months ago
  4. c900816 libsepol: Populate and use policy name by Thiébaud Weksteen · 2 years, 9 months ago
  5. bc26ddc libsepol/cil: Limit the amount of reporting for context rule conflicts by James Carter · 2 years, 10 months ago
  6. c964fe1 libsepol/cil: Limit the neverallow violations reported by James Carter · 2 years, 10 months ago
  7. 3c45d91 libsepol/cil: Provide more control over reporting bounds failures by James Carter · 2 years, 10 months ago
  8. 3ffb84e libsepol/cil: Add cil_get_log_level() function by James Carter · 2 years, 10 months ago
  9. 7129138 libsepol: Fix two problems with neverallowxperm reporting by James Carter · 2 years, 10 months ago
  10. 931380c libsepol: Set args avtab pointer when reporting assertion violations by James Carter · 2 years, 10 months ago
  11. fb3a383 libsepol: The src and tgt must be the same if neverallow uses self by James Carter · 2 years, 10 months ago
  12. 4610672 libsepol: Make return value clearer when reporting neverallowx errors by James Carter · 2 years, 10 months ago
  13. 88c79c6 libsepol: Refactor match_any_class_permissions() to be clearer by James Carter · 2 years, 10 months ago
  14. 3b71e51 libsepol: Make use of previously created ebitmap when checking self by James Carter · 2 years, 10 months ago
  15. cfdf4ec libsepol: Move assigning outer loop index out of inner loop by James Carter · 2 years, 10 months ago
  16. 8f64382 libsepol: Remove unnessesary check for matching class by James Carter · 2 years, 10 months ago
  17. 68d32d2 libsepol: Use (rc < 0) instead of (rc) when calling ebitmap functions by James Carter · 2 years, 10 months ago
  18. 7312d3c libsepol: Create function check_assertion_self_match() and use it by James Carter · 2 years, 10 months ago
  19. d4456cb libsepol: Move check of target types to before check for self by James Carter · 2 years, 10 months ago
  20. a9d5688 libsepol: Use consistent return checking style by James Carter · 2 years, 10 months ago
  21. 18e1ae1 libsepol: Check for error from check_assertion_extended_permissions() by James Carter · 2 years, 10 months ago
  22. a700e42 libsepol: Remove uneeded error messages in assertion checking by James Carter · 2 years, 10 months ago
  23. c2af893 libsepol: Change label in check_assertion_avtab_match() by James Carter · 2 years, 10 months ago
  24. 521e6ad libsepol: Return an error if check_assertion() returns an error. by James Carter · 2 years, 10 months ago
  25. ff25475 libsepol: validate several flags by Christian Göttsche · 2 years, 9 months ago
  26. 9bee80d libsepol: more strict constraint validation by Christian Göttsche · 2 years, 9 months ago
  27. 496002e libsepol: use correct error type to please UBSAN by Christian Göttsche · 2 years, 9 months ago
  28. 86cdb9f libsepol/cil: Ensure that the class in a classcommon is a kernel class by James Carter · 2 years, 10 months ago
  29. f0823bb libsepol/cil: Do not resolve names to declarations in abstract blocks by James Carter · 2 years, 10 months ago
  30. 6d783e5 libsepol/cil: Mark as abstract all sub-blocks of an abstract block by James Carter · 2 years, 10 months ago
  31. e642996 libsepol/cil: Do not copy blockabstracts when inheriting a block by James Carter · 2 years, 10 months ago
  32. 58443a0 libsepol: do not add gaps to string list by Christian Göttsche · 2 years, 10 months ago
  33. 7385004 libsepol: invert only valid range of role bitmap by Christian Göttsche · 2 years, 10 months ago
  34. 42a8dc4 libsepol: handle type gaps by Christian Göttsche · 2 years, 10 months ago
  35. b8cba27 libsepol: drop trailing newlines in log messages by Christian Göttsche · 2 years, 10 months ago
  36. f52f5e2 libsepol: return failure on saturated class name length by Christian Göttsche · 2 years, 10 months ago
  37. c3d52a6 libsepol: check for saturated class name length by Christian Göttsche · 2 years, 10 months ago
  38. ad2ff8a ci: run the tests under ASan/UBsan on GHActions by Evgeny Vereshchagin · 3 years ago
  39. b78560f libsepol: check for valid sensitivity before lookup by Christian Göttsche · 2 years, 11 months ago
  40. b2ba721 libsepol/cil: bail out on snprintf failure by Christian Göttsche · 2 years, 11 months ago
  41. 5e6e516 libsepol: validate class default targets by Christian Göttsche · 3 years ago
  42. 24618ad libsepol: validate fsuse types by Christian Göttsche · 3 years ago
  43. 8a7215c libsepol: validate categories by Christian Göttsche · 3 years ago
  44. 80b9441 libsepol: validate policy properties by Christian Göttsche · 3 years ago
  45. 2c4da50 libsepol: validate permissive types by Christian Göttsche · 3 years ago
  46. 88e280a libsepol: validate genfs contexts by Christian Göttsche · 3 years ago
  47. 8628133 libsepol: validate ocontexts by Christian Göttsche · 3 years ago
  48. 5f81623 libsepol: validate type of avtab type rules by Christian Göttsche · 3 years ago
  49. 8c59d61 libsepol: validate constraint expression operators and attributes by Christian Göttsche · 3 years ago
  50. 312eac1 libsepol: validate avtab and avrule types by Christian Göttsche · 3 years ago
  51. ba6d822 libsepol: resolve log message mismatch by Christian Göttsche · 3 years ago
  52. e39cf0a libsepol: validate permission count of classes by Christian Göttsche · 3 years ago
  53. fffb160 libsepol: validate expanded user range and level by Christian Göttsche · 3 years ago
  54. 8fdb3eb libsepol: validate MLS levels by Christian Göttsche · 3 years ago
  55. e2e60d9 libsepol: split validation of datum array gaps and entries by Christian Göttsche · 3 years ago
  56. 691e6af libsepol: do not create a string list with initial size zero by Christian Göttsche · 3 years ago
  57. 35ef9b9 libsepol: use correct size for initial string list by Christian Göttsche · 3 years ago
  58. 7315402 libsepol: do not crash on user gaps by Christian Göttsche · 3 years ago
  59. b76eda5 libsepol: do not crash on class gaps by Christian Göttsche · 3 years ago
  60. c12b7d9 libsepol: do not underflow on short format arguments by Christian Göttsche · 3 years ago
  61. 47c3d96 libsepol: use size_t for indexes in strs helpers by Christian Göttsche · 3 years ago
  62. 8565e2c libsepol: zero member before potential dereference by Christian Göttsche · 3 years ago
  63. 1b4979c libsepol: reject invalid filetrans source type by Christian Göttsche · 3 years ago
  64. 8750fb6 libsepol: reject abnormal huge sid ids by Christian Göttsche · 3 years ago
  65. f571438 libsepol: clean memory on conditional insertion failure by Christian Göttsche · 3 years ago
  66. 2331dca libsepol: enforce avtab item limit by Christian Göttsche · 3 years ago
  67. 97af65f libsepol: add checks for read sizes by Christian Göttsche · 3 years ago
  68. f0a5f6e libsepol: use reallocarray wrapper to avoid overflows by Christian Göttsche · 3 years ago
  69. 18303c8 libsepol: use mallocarray wrapper to avoid overflows by Christian Göttsche · 3 years ago
  70. 852f14d libsepol: use logging framework in ebitmap.c by Christian Göttsche · 3 years ago
  71. 5c178f9 libsepol: use logging framework in conditional.c by Christian Göttsche · 3 years ago
  72. 5139433 libsepol/fuzz: limit element sizes for fuzzing by Christian Göttsche · 3 years ago
  73. 8243834 libsepol: add libfuzz based fuzzer for reading binary policies by Christian Göttsche · 3 years ago
  74. e0ba116 libsepol/fuzz: silence secilc-fuzzer by Christian Göttsche · 3 years ago
  75. 413518a libsepol/cil: support IPv4/IPv6 address embedding by Christian Göttsche · 3 years ago
  76. a46ade3 libsepol: Write out genfscon file type when writing out CIL policy by James Carter · 3 years ago
  77. 3677af8 libsepol/cil: Allow optional file type in genfscon rules by James Carter · 3 years ago
  78. c9ed552 libsepol/cil: Refactor filecon file type handling by James Carter · 3 years ago
  79. 55e6748 libsepol: Add support for file types in writing out policy.conf by James Carter · 3 years ago
  80. c42dcf5 libsepol: use string literals as format strings by Christian Göttsche · 3 years ago
  81. f95dbf2 libsepol: avoid passing NULL pointer to memcpy by Christian Göttsche · 3 years ago
  82. b98d3c4 libsepol: do not pass NULL to memcpy by Christian Göttsche · 3 years, 1 month ago
  83. 7f600c4 Update VERSIONs to 3.3 for release. by Petr Lautrbach · 3 years, 1 month ago
  84. 974da80 libsepol/cil: Fix potential undefined shifts by James Carter · 3 years, 1 month ago
  85. 14197e6 libsepol: Fix potential undefined shifts by James Carter · 3 years, 1 month ago
  86. 5319c49 Update VERSIONs to 3.3-rc3 for release. by Petr Lautrbach · 3 years, 1 month ago
  87. 85d0a06 libsepol/cil: Do not skip macros when resolving until later passes by James Carter · 3 years, 1 month ago
  88. 4b2e2a2 libsepol/cil: Limit the amount of reporting for bounds failures by James Carter · 3 years, 2 months ago
  89. 6c81478 libsepol/cil: silence clang void-pointer-to-enum-cast warning by Christian Göttsche · 3 years, 2 months ago
  90. e0968a8 libsepol: resolve GCC warning about null-dereference by Christian Göttsche · 3 years, 2 months ago
  91. a9f4a2c libsepol: use correct cast by Christian Göttsche · 3 years, 2 months ago
  92. 1ba9d98 libsepol: ebitmap: mark nodes of const ebitmaps const by Christian Göttsche · 3 years, 2 months ago
  93. 0b83397 Update VERSIONs to 3.3-rc2 for release. by Petr Lautrbach · 3 years, 2 months ago
  94. 18f8747 libsepol/cil: Handle operations in a class mapping when verifying by James Carter · 3 years, 2 months ago
  95. 34f7a55 libsepol/cil: Do not use original type and typeattribute datums by James Carter · 3 years, 2 months ago
  96. 474b271 libsepol: free memory after policy validation by Christian Göttsche · 3 years, 2 months ago
  97. 12e9846 libsepol: avoid implicit conversions by Christian Göttsche · 3 years, 2 months ago
  98. 92cc1b0 libsepol: fix typo by Topi Miettinen · 3 years, 2 months ago
  99. 799ef8b libsepol/cil: Free duplicate datums in original calling function by James Carter · 3 years, 2 months ago
  100. 2771dc4 libsepol/cil: Fix detected RESOURCE_LEAK (CWE-772) by Petr Lautrbach · 3 years, 2 months ago