From: Paul Moore <paul@paul-moore.com>
To: Linus Torvalds <torvalds@linux-foundation.org>
Cc: selinux@vger.kernel.org, linux-security-module@vger.kernel.org,
linux-kernel@vger.kernel.org
Subject: [GIT PULL] SELinux fixes for v5.12 (#2)
Date: Fri, 9 Apr 2021 13:44:38 -0400 [thread overview]
Message-ID: <CAHC9VhS20dq3FNQjpYX+BkHw=PSc-CrzUaZj_Cg9RBcZ3Ck9xg@mail.gmail.com> (raw)
Hi Linus,
I realize we are getting late in the v5.12-rcX release cycle, but we
have three SELinux patches which I believe should be merged before the
proper v5.12 release. The patches fix known problems relating to
(re)loading SELinux policy or changing the policy booleans, and pass
our test suite without problem. As of a few minutes ago, the tag
below also merged cleanly into your tree.
Please pull for the next v5.12-rcX release, thanks.
-Paul
--
The following changes since commit ee5de60a08b7d8d255722662da461ea159c15538:
selinuxfs: unify policy load error reporting (2021-03-18 23:26:59 -0400)
are available in the Git repository at:
git://git.kernel.org/pub/scm/linux/kernel/git/pcmoore/selinux.git
tags/selinux-pr-20210409
for you to fetch changes up to 9ad6e9cb39c66366bf7b9aece114aca277981a1f:
selinux: fix race between old and new sidtab (2021-04-07 20:42:56 -0400)
----------------------------------------------------------------
selinux/stable-5.12 PR 20210409
----------------------------------------------------------------
Ondrej Mosnacek (3):
selinux: make nslot handling in avtab more robust
selinux: fix cond_list corruption when changing booleans
selinux: fix race between old and new sidtab
security/selinux/ss/avtab.c | 101 ++++++++----------------
security/selinux/ss/avtab.h | 2 +-
security/selinux/ss/conditional.c | 12 +--
security/selinux/ss/services.c | 157 +++++++++++++++++++++++++++-------
security/selinux/ss/sidtab.c | 21 +++++
security/selinux/ss/sidtab.h | 4 +
6 files changed, 185 insertions(+), 112 deletions(-)
--
paul moore
www.paul-moore.com
next reply other threads:[~2021-04-09 17:44 UTC|newest]
Thread overview: 2+ messages / expand[flat|nested] mbox.gz Atom feed top
2021-04-09 17:44 Paul Moore [this message]
2021-04-09 19:59 ` [GIT PULL] SELinux fixes for v5.12 (#2) pr-tracker-bot
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to='CAHC9VhS20dq3FNQjpYX+BkHw=PSc-CrzUaZj_Cg9RBcZ3Ck9xg@mail.gmail.com' \
--to=paul@paul-moore.com \
--cc=linux-kernel@vger.kernel.org \
--cc=linux-security-module@vger.kernel.org \
--cc=selinux@vger.kernel.org \
--cc=torvalds@linux-foundation.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).