Uploaded image for project: 'Lustre'
  1. Lustre
  2. LU-13742

Provide an selinux_is_enabled for newer kernels

Details

    • Bug
    • Resolution: Fixed
    • Major
    • Lustre 2.14.0, Lustre 2.12.6
    • Lustre 2.14.0, Lustre 2.12.5
    • None
    • RHEL/CentOS 8, Linux 5.1
    • 3
    • 9223372036854775807

    Description

      Some special handling for selinux xattrs was broken when selinux_is_enabled was removed and CONFIG_SECURITY_SELINUX is enabled.

      Provide a replacement for selinux_is_enabled.

      Attachments

        Issue Links

          is related to

          Bug - A problem which impairs or prevents the functions of the product. LU-6784 Defects in SELinux support

          • Blocker - Blocks development and/or testing work, production could not run.
          • Resolved

          Activity

            [LU-13742] Provide an selinux_is_enabled for newer kernels
            gerrit Gerrit Updater added a comment -

            Oleg Drokin (green@whamcloud.com) merged in patch https://review.whamcloud.com/39671/
            Subject: LU-13742 llite: do not bypass selinux xattr handling
            Project: fs/lustre-release
            Branch: b2_12
            Current Patch Set:
            Commit: d657c96e35e8b05df111745d6e540aaf16a0c1c9

            gerrit Gerrit Updater added a comment - Oleg Drokin (green@whamcloud.com) merged in patch https://review.whamcloud.com/39671/ Subject: LU-13742 llite: do not bypass selinux xattr handling Project: fs/lustre-release Branch: b2_12 Current Patch Set: Commit: d657c96e35e8b05df111745d6e540aaf16a0c1c9
            gerrit Gerrit Updater added a comment -

            Minh Diep (mdiep@whamcloud.com) uploaded a new patch: https://review.whamcloud.com/39671
            Subject: LU-13742 llite: do not bypass selinux xattr handling
            Project: fs/lustre-release
            Branch: b2_12
            Current Patch Set: 1
            Commit: d67984456024cb83022244236518366a251d2d37

            gerrit Gerrit Updater added a comment - Minh Diep (mdiep@whamcloud.com) uploaded a new patch: https://review.whamcloud.com/39671 Subject: LU-13742 llite: do not bypass selinux xattr handling Project: fs/lustre-release Branch: b2_12 Current Patch Set: 1 Commit: d67984456024cb83022244236518366a251d2d37
            pjones Peter Jones added a comment -

            Landed for 2.14

            pjones Peter Jones added a comment - Landed for 2.14
            gerrit Gerrit Updater added a comment -

            Oleg Drokin (green@whamcloud.com) merged in patch https://review.whamcloud.com/39569/
            Subject: LU-13742 llite: do not bypass selinux xattr handling
            Project: fs/lustre-release
            Branch: master
            Current Patch Set:
            Commit: 994287bd47819ebd8badb716da4232cdff97d324

            gerrit Gerrit Updater added a comment - Oleg Drokin (green@whamcloud.com) merged in patch https://review.whamcloud.com/39569/ Subject: LU-13742 llite: do not bypass selinux xattr handling Project: fs/lustre-release Branch: master Current Patch Set: Commit: 994287bd47819ebd8badb716da4232cdff97d324
            gerrit Gerrit Updater added a comment -

            Shaun Tancheff (shaun.tancheff@hpe.com) uploaded a new patch: https://review.whamcloud.com/39569
            Subject: LU-13742 llite: conditionally ignore selinux negative caching
            Project: fs/lustre-release
            Branch: master
            Current Patch Set: 1
            Commit: 718e501e83539376f57283af220c7344f65b7710

            gerrit Gerrit Updater added a comment - Shaun Tancheff (shaun.tancheff@hpe.com) uploaded a new patch: https://review.whamcloud.com/39569 Subject: LU-13742 llite: conditionally ignore selinux negative caching Project: fs/lustre-release Branch: master Current Patch Set: 1 Commit: 718e501e83539376f57283af220c7344f65b7710
            sebastien Sebastien Buisson added a comment -

            Raising priority as this impacts CentOS/RHEL 8.

            sebastien Sebastien Buisson added a comment - Raising priority as this impacts CentOS/RHEL 8.
            gerrit Gerrit Updater added a comment -

            Shaun Tancheff (shaun.tancheff@hpe.com) uploaded a new patch: https://review.whamcloud.com/39244
            Subject: LU-13742 llite: provide an selinux_is_enabled replacement
            Project: fs/lustre-release
            Branch: master
            Current Patch Set: 1
            Commit: 630cfd4f335b5aefef6e710ef3e8b56480d0c9d7

            gerrit Gerrit Updater added a comment - Shaun Tancheff (shaun.tancheff@hpe.com) uploaded a new patch: https://review.whamcloud.com/39244 Subject: LU-13742 llite: provide an selinux_is_enabled replacement Project: fs/lustre-release Branch: master Current Patch Set: 1 Commit: 630cfd4f335b5aefef6e710ef3e8b56480d0c9d7

            People

              stancheff Shaun Tancheff
              stancheff Shaun Tancheff
              Votes:
              0 Vote for this issue
              Watchers:
              8 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: