On Tuesday, February 23, 2016 10:39:26 PM James Morris wrote: > On Mon, 22 Feb 2016, Paul Moore wrote: > > Hi James, > > > > One more straightforward patch to fix a problem with the inode > > invalidation changes. The fix passes the selinux-testsuite and applies > > cleanly on top of your current linux-security#next branch; please apply. > > Where is patch '#1' ? Where is said it was in the pull request ... ? It is in the usual SELinux kernel repo, in the stable-4.5 branch. It looks okay on my end, are you having problems fetching the branch/commit? git://git.infradead.org/users/pcmoore/selinux stable-4.5 http://git.infradead.org/users/pcmoore/selinux/shortlog/refs/heads/stable-4.5 commit e817c2f33efb4aa7f02c98dfab9a5f8ff383ea7e Author: Andreas Gruenbacher <agruenba@xxxxxxxxxx> Date: Thu Feb 18 12:04:08 2016 +0100 selinux: Don't sleep inside inode_getsecid hook The inode_getsecid hook is called from contexts in which sleeping is not allowed, so we cannot revalidate inode security labels from there. Use the non-validating version of inode_security() instead. Reported-by: Benjamin Coddington <bcodding@xxxxxxxxxx> Signed-off-by: Andreas Gruenbacher <agruenba@xxxxxxxxxx> Acked-by: Stephen Smalley <sds@xxxxxxxxxxxxx> Signed-off-by: Paul Moore <paul@xxxxxxxxxxxxxx> -- paul moore security @ redhat _______________________________________________ Selinux mailing list Selinux@xxxxxxxxxxxxx To unsubscribe, send email to Selinux-leave@xxxxxxxxxxxxx. To get help, send an email containing "help" to Selinux-request@xxxxxxxxxxxxx.
