From mboxrd@z Thu Jan 1 00:00:00 1970 From: Al Viro Subject: Re: BUG at security/selinux/avc.c:883 (was: Re: linux-next: Tree for July 17: early crash on x86-64) Date: Tue, 29 Jul 2008 01:33:18 +0100 Message-ID: <20080729003318.GE28946@ZenIV.linux.org.uk> References: <20080718012842.690b8346.sfr@canb.auug.org.au> <20080719035231.GU28946@ZenIV.linux.org.uk> <200807192042.06988.rjw@sisk.pl> <1216546973.3217.6.camel@dhcppc2> <20080720121559.GV28946@ZenIV.linux.org.uk> <1217266358.20373.54.camel@moss-spartans.epoch.ncsc.mil> Mime-Version: 1.0 Return-path: Content-Disposition: inline In-Reply-To: Sender: kernel-testers-owner-u79uwXL29TY76Z2rM5mHXA@public.gmane.org List-ID: Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit To: James Morris Cc: Stephen Smalley , Thomas Meyer , "Rafael J. Wysocki" , Alexander Beregalov , Stephen Rothwell , linux-next-u79uwXL29TY76Z2rM5mHXA@public.gmane.org, LKML , Ingo Molnar , Kernel Testers List , Eric Paris , linux-security-module-u79uwXL29TY76Z2rM5mHXA@public.gmane.org On Tue, Jul 29, 2008 at 07:38:17AM +1000, James Morris wrote: > On Mon, 28 Jul 2008, Stephen Smalley wrote: > > > SELinux needs MAY_APPEND to be passed down to the security hook. > > Otherwise, we get permission denials when only append permission is > > granted by policy even if the opening process specified O_APPEND. > > Shows up as a regression in the ltp selinux testsuite, fixed by > > this patch. > > > > Signed-off-by: Stephen Smalley > > Applied to > git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/security-testing-2.6#hotfixes > > > Al, holler if you want to push this through your tree. Applied, will push along with other patches tonight...