Linux-Security-Module Archive on
 help / color / Atom feed
* [GIT PULL] SELinux fixes for v5.12 (#2)
@ 2021-04-09 17:44 Paul Moore
  2021-04-09 19:59 ` pr-tracker-bot
  0 siblings, 1 reply; 2+ messages in thread
From: Paul Moore @ 2021-04-09 17:44 UTC (permalink / raw)
  To: Linus Torvalds; +Cc: selinux, linux-security-module, linux-kernel

Hi Linus,

I realize we are getting late in the v5.12-rcX release cycle, but we
have three SELinux patches which I believe should be merged before the
proper v5.12 release.  The patches fix known problems relating to
(re)loading SELinux policy or changing the policy booleans, and pass
our test suite without problem.  As of a few minutes ago, the tag
below also merged cleanly into your tree.

Please pull for the next v5.12-rcX release, thanks.

The following changes since commit ee5de60a08b7d8d255722662da461ea159c15538:

 selinuxfs: unify policy load error reporting (2021-03-18 23:26:59 -0400)

are available in the Git repository at:


for you to fetch changes up to 9ad6e9cb39c66366bf7b9aece114aca277981a1f:

 selinux: fix race between old and new sidtab (2021-04-07 20:42:56 -0400)

selinux/stable-5.12 PR 20210409

Ondrej Mosnacek (3):
     selinux: make nslot handling in avtab more robust
     selinux: fix cond_list corruption when changing booleans
     selinux: fix race between old and new sidtab

security/selinux/ss/avtab.c       | 101 ++++++++----------------
security/selinux/ss/avtab.h       |   2 +-
security/selinux/ss/conditional.c |  12 +--
security/selinux/ss/services.c    | 157 +++++++++++++++++++++++++++-------
security/selinux/ss/sidtab.c      |  21 +++++
security/selinux/ss/sidtab.h      |   4 +
6 files changed, 185 insertions(+), 112 deletions(-)

paul moore

^ permalink raw reply	[flat|nested] 2+ messages in thread

end of thread, back to index

Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2021-04-09 17:44 [GIT PULL] SELinux fixes for v5.12 (#2) Paul Moore
2021-04-09 19:59 ` pr-tracker-bot

Linux-Security-Module Archive on

Archives are clonable:
	git clone --mirror linux-security-module/git/0.git

	# If you have public-inbox 1.1+ installed, you may
	# initialize and index your mirror using the following commands:
	public-inbox-init -V2 linux-security-module linux-security-module/ \
	public-inbox-index linux-security-module

Example config snippet for mirrors

Newsgroup available over NNTP:

AGPL code for this site: git clone