[GIT PULL] SELinux fixes for v5.12 (#1)
Paul Moore
paul at paul-moore.com
Mon Mar 22 16:51:58 UTC 2021
Hi Linus,
Three SELinux patches to address problems in v5.12, and earlier, kernels:
* Fix a problem where a local variable is used outside its associated
function. Thankfully this can only be triggered by reloading the
SELinux policy, which is a restricted operation for other obvious
reasons.
* Fix some incorrect, and inconsistent, audit and printk messages when
loading the SELinux policy.
All three patches are relatively minor and have been through our
testing with no failures, please merge them for the next v5.12-rcX
release.
Thanks.
--
The following changes since commit 365982aba1f264dba26f0908700d62bfa046918c:
fs: anon_inodes: rephrase to appropriate kernel-doc
(2021-01-15 12:17:25 -0500)
are available in the Git repository at:
https://git.kernel.org/pub/scm/linux/kernel/git/pcmoore/selinux.git
tags/selinux-pr-20210322
for you to fetch changes up to ee5de60a08b7d8d255722662da461ea159c15538:
selinuxfs: unify policy load error reporting (2021-03-18 23:26:59 -0400)
----------------------------------------------------------------
selinux/stable-5.12 PR 20210322
----------------------------------------------------------------
Ondrej Mosnacek (3):
selinux: don't log MAC_POLICY_LOAD record on failed policy load
selinux: fix variable scope issue in live sidtab conversion
selinuxfs: unify policy load error reporting
security/selinux/include/security.h | 15 ++++++---
security/selinux/selinuxfs.c | 22 ++++++-------
security/selinux/ss/services.c | 63 +++++++++++++++++++++------------
3 files changed, 59 insertions(+), 41 deletions(-)
--
paul moore
www.paul-moore.com
More information about the Linux-security-module-archive
mailing list