On Tuesday, July 15, 2014 10:38:19 PM Paul Moore wrote:
> Hi James,
>
> A single fix for the upcoming 3.16 release. This patch is worth pushing up
> for 3.16, despite the late stage of the release, because without this patch
> SELinux systems with the latest version of cryptsetup may not be able to
> access their encrypted volumes (more details in the patch description) which
> could prevent the system from booting properly, users accessing their home
> directories, etc.
>
> The patch is fairly minor and passes the SELinux testsuite.
Hello again,
Below is a revert for the patch above, while it fixed AF_ALG, it killed
Bluetooth so we need to revert it. I'll fix AF_ALG in a future patch.
---
The following changes since commit 4da6daf4d3df5a977e4623963f141a627fd2efce:
selinux: fix the default socket labeling in sock_graft() (2014-07-10
10:17:48 -0400)
are available in the git repository at:
git://git.infradead.org/users/pcmoore/selinux stable-3.16
for you to fetch changes up to 2873ead7e46694910ac49c3a8ee0f54956f96e0c:
Revert "selinux: fix the default socket labeling in sock_graft()"
(2014-07-28 10:46:07 -0400)
----------------------------------------------------------------
Paul Moore (1):
Revert "selinux: fix the default socket labeling in sock_graft()"
include/linux/security.h | 5 +----
security/selinux/hooks.c | 13 ++-----------
2 files changed, 3 insertions(+), 15 deletions(-)
--
paul moore
security and virtualization @ redhat
_______________________________________________
Selinux mailing list
Selinux@xxxxxxxxxxxxx
To unsubscribe, send email to Selinux-leave@xxxxxxxxxxxxx.
To get help, send an email containing "help" to Selinux-request@xxxxxxxxxxxxx.
