Received: by 2002:a05:6a10:9848:0:0:0:0 with SMTP id x8csp1536857pxf;
        Fri, 9 Apr 2021 10:46:40 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJwCrCa8kNtWFXLO2Tzgn/gAKzj98eL+BpNhI9+NK/TCYoS6meD18fbvzXjCPTkCNRuaYCY4
X-Received: by 2002:a17:90a:116:: with SMTP id b22mr9085199pjb.128.1617990400184;
        Fri, 09 Apr 2021 10:46:40 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1617990400; cv=none;
        d=google.com; s=arc-20160816;
        b=ewoTMQ2jmbMyWjI3bqkAU0b51IAyy2wFOm8mg+FaFp6cMkQaAhBvGecQzdohcNdwZD
         mIG4ymUC58XzAwHJxPJWLuJoheZJiuepDRbMk+9ktwyPzX7SVIN0JI4aUhKMe7fFIcap
         AVsgHGjeneQUHeFKToCOt+JBASugdmwbbgExcdd/T1jnxMLEnnh1Y8dCoQnKXMF1pgAb
         J+bbmxhKxuI7iUeFlV9oPMFXVfY549j0S5Ft67vLSJUr3pwRGvlP6wDzxqAAeJuAjeXM
         36R5TchUg5VxtUezueX6+6xdOiYBKMI8Ba7i7ZA7tXP46iDlCkX9nPo0S3pU0kraxqal
         FkNA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:cc:to:subject:message-id:date:from:mime-version
         :dkim-signature;
        bh=nSjCyqrsCYIpjIq/WPQfh7f6ppE3qyWXTgcaAHBDVZg=;
        b=wvDFZxGl8i8IJpZ6bdrQ2OCmq0Qd64kpRtN8Js7chxEaoROXtBORicsvTXFUUzRR9X
         vnPPlrRmkYm5tjzCGHViravBZB65m7Rx8kHJNqgxPiHMv97yMDpDaGTl5qkn+GAKnt9A
         FddXZjx7ScqKUq5VcNH6nOxdbLJQJRMOMNmkNEXxvjDuZsOsXPNVRGVhrR89bOLfU6IY
         vIuykYt6NCtYc/08QjyQqDdR8dyKRaNzsB2I7LcTnOaLZWZuJBO5F3pbCXyr/PO1l6Wj
         2XlGm1fJs4P9XEH6tbwv5P2KETV5szXg59QIvQGnepnvBIo+v/CpjwcAJrG2rGA6yKMu
         Nwig==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@paul-moore-com.20150623.gappssmtp.com header.s=20150623 header.b=M67BIZxS;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id b14si3167736pgs.356.2021.04.09.10.46.27;
        Fri, 09 Apr 2021 10:46:40 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@paul-moore-com.20150623.gappssmtp.com header.s=20150623 header.b=M67BIZxS;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S234366AbhDIRpF (ORCPT <rfc822;linux.sihyeon@gmail.com>
        + 99 others); Fri, 9 Apr 2021 13:45:05 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:43184 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S234329AbhDIRpD (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Fri, 9 Apr 2021 13:45:03 -0400
Received: from mail-ed1-x533.google.com (mail-ed1-x533.google.com [IPv6:2a00:1450:4864:20::533])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 384FDC061763
        for <linux-kernel@vger.kernel.org>; Fri,  9 Apr 2021 10:44:50 -0700 (PDT)
Received: by mail-ed1-x533.google.com with SMTP id m3so7515614edv.5
        for <linux-kernel@vger.kernel.org>; Fri, 09 Apr 2021 10:44:50 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=paul-moore-com.20150623.gappssmtp.com; s=20150623;
        h=mime-version:from:date:message-id:subject:to:cc;
        bh=nSjCyqrsCYIpjIq/WPQfh7f6ppE3qyWXTgcaAHBDVZg=;
        b=M67BIZxSEjlJYNXW+eYXjjHCFHMsLzlnur4qfOKyVoYViCymy5iyguGUOgW0ofYGUz
         1syAlaZIMoPTBeQNvtQTBCv9kQL1GoeshqJreljATES3rFADT5/4Ir/jgyJu8c9Jd2Qn
         taWv0sH3mtSirfyXSQPpT3nhNSsHJpPgjLbimB+7n5E0IAj4xJXhNmrWTCD0LcP3jIeX
         uF1PWlZdtsYpvxW5cv7QDbEN8SDksByWD3T2zjXXgWNOdtWwQyh98O1pHHS59Qp7ZlHp
         4B8s57yeiXvcjmwQX85ASm0czIwVa1J51BMjfWHH4/tffHwxwUYQJyJa09+6sZBSzdFA
         bFGg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:mime-version:from:date:message-id:subject:to:cc;
        bh=nSjCyqrsCYIpjIq/WPQfh7f6ppE3qyWXTgcaAHBDVZg=;
        b=ctIk692CoYvFXU3XBTzVMGsyI8mQAoYMi1UTItdC5++slFY/uTOBgmFTn5iuB94ovS
         1z2xrDWnxgein8gDoDFHObeHxdPhU+43iLlwjTHkLeS4NT62dosk6QCN9nBiisJ1tyav
         zQXHMWK+VfHJpg5jEW2a9Di2FXDO9wn5eQBftRSC0Tii/QHwOFKSGY/m7Y4oLLNPEIXm
         j1FZZ28dVvFQPk4p2lHQAy/egADInlTHDoBs/9brdZiRkjo6NgQ/SYBHyo5RFTzQRgiR
         wKsxmKs2uVvxTBiofd/Yw9dwDh+bUMHJB9zs4EN9Njcrz/Xx10L211upaHinYscojGsY
         uGtw==
X-Gm-Message-State: AOAM5336dkecnnKJlWDmGNawFN926RgyfjpxtypuW/wdfCod8vFB/H1p
        Yx7O/0Smwlg2VkF8ws3D8BhlRZxY0afTcWZUoEtW
X-Received: by 2002:a05:6402:3c7:: with SMTP id t7mr18723463edw.196.1617990288812;
 Fri, 09 Apr 2021 10:44:48 -0700 (PDT)
MIME-Version: 1.0
From:   Paul Moore <paul@paul-moore.com>
Date:   Fri, 9 Apr 2021 13:44:38 -0400
Message-ID: <CAHC9VhS20dq3FNQjpYX+BkHw=PSc-CrzUaZj_Cg9RBcZ3Ck9xg@mail.gmail.com>
Subject: [GIT PULL] SELinux fixes for v5.12 (#2)
To:     Linus Torvalds <torvalds@linux-foundation.org>
Cc:     selinux@vger.kernel.org, linux-security-module@vger.kernel.org,
        linux-kernel@vger.kernel.org
Content-Type: text/plain; charset="UTF-8"
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

Hi Linus,

I realize we are getting late in the v5.12-rcX release cycle, but we
have three SELinux patches which I believe should be merged before the
proper v5.12 release.  The patches fix known problems relating to
(re)loading SELinux policy or changing the policy booleans, and pass
our test suite without problem.  As of a few minutes ago, the tag
below also merged cleanly into your tree.

Please pull for the next v5.12-rcX release, thanks.
-Paul

--
The following changes since commit ee5de60a08b7d8d255722662da461ea159c15538:

 selinuxfs: unify policy load error reporting (2021-03-18 23:26:59 -0400)

are available in the Git repository at:

 git://git.kernel.org/pub/scm/linux/kernel/git/pcmoore/selinux.git
   tags/selinux-pr-20210409

for you to fetch changes up to 9ad6e9cb39c66366bf7b9aece114aca277981a1f:

 selinux: fix race between old and new sidtab (2021-04-07 20:42:56 -0400)

----------------------------------------------------------------
selinux/stable-5.12 PR 20210409

----------------------------------------------------------------
Ondrej Mosnacek (3):
     selinux: make nslot handling in avtab more robust
     selinux: fix cond_list corruption when changing booleans
     selinux: fix race between old and new sidtab

security/selinux/ss/avtab.c       | 101 ++++++++----------------
security/selinux/ss/avtab.h       |   2 +-
security/selinux/ss/conditional.c |  12 +--
security/selinux/ss/services.c    | 157 +++++++++++++++++++++++++++-------
security/selinux/ss/sidtab.c      |  21 +++++
security/selinux/ss/sidtab.h      |   4 +
6 files changed, 185 insertions(+), 112 deletions(-)

-- 
paul moore
www.paul-moore.com