Red Hat Knowledgebase

When the system is booting up, the kernel may report the following error after SELinux Initializing.

SELinux: Initializing.
SELinux: Starting in permissive mode
There is already a security framework initialized, register_security failed.
selinux_register_security: Registering secondary module capability
Capability LSM initialized as secondary

SELinux registered itself during the boot time, hence the service initializing and starting successfully. After this, the LSM module tries to hook-in. LSM is a framework to allow the Linux kernel to support a variety of computer security models while avoiding favoritism toward any single security implementation. LSM was designed to provide everything needed to successfully implement a mandatory access control module, while imposing the least possible changes on the Linux kernel.

However, SELinux has already taken the primary place and when LSM tries to issue register_security(), it cannot do this and thus returns EINVAL:

There is already a security framework initialized,
register_security failed.

What happens next is that SELinux registers the LSM as its secondary module:

selinux_register_security: Registering secondary module
capability Capability LSM initialized as secondary

It is only a warning message and should not be of concern.