From: Paul Moore <paul@paul-moore.com>
To: Linus Torvalds <torvalds@linux-foundation.org>
Cc: selinux@vger.kernel.org, linux-security-module@vger.kernel.org,
linux-kernel@vger.kernel.org
Subject: [GIT PULL] SELinux patches for v5.9
Date: Mon, 3 Aug 2020 19:16:10 -0400 [thread overview]
Message-ID: <CAHC9VhTy5xcOqx2SRjsyC-H-xvj3vvbHDt7O-S7TLYhXjANZGw@mail.gmail.com> (raw)
Hi Linus,
Here is the SELinux pull request for the v5.9 release. All the
patches pass our test suite and earlier this evening they merged
cleanly with your tree.
Beyond the usual smattering of bug fixes, we've got three small
improvements worth highlighting:
- Improved SELinux policy symbol table performance due to a reworking
of the insert and search functions
- Allow reading of SELinux labels before the policy is loaded,
allowing for some more "exotic" initramfs approaches
- Improved checking an error reporting about process class/permissions
during SELinux policy load
Please merge these for v5.9. Thanks,
-Paul
--
The following changes since commit b3a9e3b9622ae10064826dccb4f7a52bd88c7407:
Linux 5.8-rc1 (2020-06-14 12:45:04 -0700)
are available in the Git repository at:
git://git.kernel.org/pub/scm/linux/kernel/git/pcmoore/selinux.git
tags/selinux-pr-20200803
for you to fetch changes up to 54b27f9287a7b3dfc85549f01fc9d292c92c68b9:
selinux: complete the inlining of hashtab functions
(2020-07-09 19:08:16 -0400)
----------------------------------------------------------------
selinux/stable-5.9 PR 20200803
----------------------------------------------------------------
Ethan Edwards (1):
selinux: fixed a checkpatch warning with the sizeof macro
Jonathan Lebon (1):
selinux: allow reading labels before policy is loaded
Ondrej Mosnacek (3):
selinux: specialize symtab insert and search functions
selinux: prepare for inlining of hashtab functions
selinux: complete the inlining of hashtab functions
Stephen Smalley (2):
scripts/selinux/mdp: fix initial SID handling
selinux: log error messages on required process class / permissions
lihao (1):
selinux: Fix spelling mistakes in the comments
scripts/selinux/mdp/mdp.c | 23 ++++--
security/selinux/hooks.c | 7 +-
security/selinux/netif.c | 2 +-
security/selinux/netnode.c | 2 +-
security/selinux/netport.c | 2 +-
security/selinux/ss/conditional.c | 8 +--
security/selinux/ss/conditional.h | 2 +-
security/selinux/ss/hashtab.c | 59 ++-------------
security/selinux/ss/hashtab.h | 77 ++++++++++++++++----
security/selinux/ss/mls.c | 23 +++---
security/selinux/ss/policydb.c | 148 ++++++++++++++++++++++------------
security/selinux/ss/policydb.h | 9 +++
security/selinux/ss/services.c | 38 +++++-----
security/selinux/ss/symtab.c | 21 ++++--
security/selinux/ss/symtab.h | 3 +
15 files changed, 258 insertions(+), 166 deletions(-)
--
paul moore
www.paul-moore.com
next reply other threads:[~2020-08-03 23:16 UTC|newest]
Thread overview: 2+ messages / expand[flat|nested] mbox.gz Atom feed top
2020-08-03 23:16 Paul Moore [this message]
2020-08-04 21:40 ` [GIT PULL] SELinux patches for v5.9 pr-tracker-bot
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=CAHC9VhTy5xcOqx2SRjsyC-H-xvj3vvbHDt7O-S7TLYhXjANZGw@mail.gmail.com \
--to=paul@paul-moore.com \
--cc=linux-kernel@vger.kernel.org \
--cc=linux-security-module@vger.kernel.org \
--cc=selinux@vger.kernel.org \
--cc=torvalds@linux-foundation.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).