[GIT PULL] SELinux fixes for v5.12 (#1)

From: Paul Moore
Date: Mon Mar 22 2021 - 12:53:12 EST

Hi Linus,

Three SELinux patches to address problems in v5.12, and earlier, kernels:

* Fix a problem where a local variable is used outside its associated
function. Thankfully this can only be triggered by reloading the
SELinux policy, which is a restricted operation for other obvious

* Fix some incorrect, and inconsistent, audit and printk messages when
loading the SELinux policy.

All three patches are relatively minor and have been through our
testing with no failures, please merge them for the next v5.12-rcX


The following changes since commit 365982aba1f264dba26f0908700d62bfa046918c:

fs: anon_inodes: rephrase to appropriate kernel-doc
(2021-01-15 12:17:25 -0500)

are available in the Git repository at:


for you to fetch changes up to ee5de60a08b7d8d255722662da461ea159c15538:

selinuxfs: unify policy load error reporting (2021-03-18 23:26:59 -0400)

selinux/stable-5.12 PR 20210322

Ondrej Mosnacek (3):
selinux: don't log MAC_POLICY_LOAD record on failed policy load
selinux: fix variable scope issue in live sidtab conversion
selinuxfs: unify policy load error reporting

security/selinux/include/security.h | 15 ++++++---
security/selinux/selinuxfs.c | 22 ++++++-------
security/selinux/ss/services.c | 63 +++++++++++++++++++++------------
3 files changed, 59 insertions(+), 41 deletions(-)

paul moore