Re: [PATCH] selinux: add support for RTM_NEWCHAIN, RTM_DELCHAIN, and RTM_GETCHAIN

From: Paul Moore Date: Wed, 28 Nov 2018 13:47:25 -0500 > On Wed, Nov 28, 2018 at 1:44 PM Paul Moore wrote: >> Commit 32a4f5ecd738 ("net: sched: introduce chain object to uapi") >> added new RTM_* definitions without properly updating SELinux, this >> patch adds the necessary SELinux support. >>

Re: [PATCH] selinux: add support for RTM_NEWCHAIN, RTM_DELCHAIN, and RTM_GETCHAIN

On Wed, Nov 28, 2018 at 1:44 PM Paul Moore wrote: > Commit 32a4f5ecd738 ("net: sched: introduce chain object to uapi") > added new RTM_* definitions without properly updating SELinux, this > patch adds the necessary SELinux support. > > While there was a BUILD_BUG_ON() in the SELinux code to

[PATCH] selinux: add support for RTM_NEWCHAIN, RTM_DELCHAIN, and RTM_GETCHAIN

Commit 32a4f5ecd738 ("net: sched: introduce chain object to uapi") added new RTM_* definitions without properly updating SELinux, this patch adds the necessary SELinux support. While there was a BUILD_BUG_ON() in the SELinux code to protect from exactly this case, it was bypassed in the broken