On Tue, Oct 12, 2021 at 1:57 PM Paul Moore <paul@xxxxxxxxxxxxxx> wrote: > On Tue, Oct 12, 2021 at 1:52 PM Stephen Smalley > <stephen.smalley.work@xxxxxxxxx> wrote: > > > > On Tue, Oct 12, 2021 at 11:02 AM Paul Moore <paul@xxxxxxxxxxxxxx> wrote: > > > > > > On Mon, Oct 11, 2021 at 7:06 PM Paul Moore <paul@xxxxxxxxxxxxxx> wrote: > > > > > > > > This patch builds on a previous SELinux/netfilter patch by Florian > > > > Westphal and makes better use of the nf_hook_state variable passed > > > > into the SELinux/netfilter hooks as well as a number of other small > > > > cleanups in the related code. > > > > > > > > Signed-off-by: Paul Moore <paul@xxxxxxxxxxxxxx> > > > > --- > > > > security/selinux/hooks.c | 53 +++++++++++++++++++++------------------------- > > > > 1 file changed, 24 insertions(+), 29 deletions(-) > > > > > > FYI, I just merged this into selinux/next. > > > > Don't know if it was this one or the previous one yet but > > selinux-testsuite locks up my box hard during selinux-testsuite on > > inet_socket test. > > Completely unresponsive, no output. > > That's fun. I could have sworn this ran through my automated test, > but let me double check ... Well that's embarrassing ... yes, something is wrong with this patch, I'll pop it off selinux/next now and repost when I've had a chance to revisit this. -- paul moore www.paul-moore.com
