On Tue, Oct 12, 2021 at 1:52 PM Stephen Smalley <stephen.smalley.work@xxxxxxxxx> wrote: > > On Tue, Oct 12, 2021 at 11:02 AM Paul Moore <paul@xxxxxxxxxxxxxx> wrote: > > > > On Mon, Oct 11, 2021 at 7:06 PM Paul Moore <paul@xxxxxxxxxxxxxx> wrote: > > > > > > This patch builds on a previous SELinux/netfilter patch by Florian > > > Westphal and makes better use of the nf_hook_state variable passed > > > into the SELinux/netfilter hooks as well as a number of other small > > > cleanups in the related code. > > > > > > Signed-off-by: Paul Moore <paul@xxxxxxxxxxxxxx> > > > --- > > > security/selinux/hooks.c | 53 +++++++++++++++++++++------------------------- > > > 1 file changed, 24 insertions(+), 29 deletions(-) > > > > FYI, I just merged this into selinux/next. > > Don't know if it was this one or the previous one yet but > selinux-testsuite locks up my box hard during selinux-testsuite on > inet_socket test. > Completely unresponsive, no output. That's fun. I could have sworn this ran through my automated test, but let me double check ... -- paul moore www.paul-moore.com
