From mboxrd@z Thu Jan  1 00:00:00 1970
From: Stephen Smalley <sds@tycho.nsa.gov>
Subject: Re: [PATCH 1/2] selinux: log errors when loading new policy
Date: Mon, 19 Dec 2016 10:32:09 -0500
Message-ID: <1482161529.28570.25.camel@tycho.nsa.gov>
References: <1482007719-14313-1-git-send-email-gary.tierney@gmx.com>
	<1482007719-14313-2-git-send-email-gary.tierney@gmx.com>
	<1482158586.28570.17.camel@tycho.nsa.gov>
	<20161219151946.GA5359@workstation>
Mime-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
Return-path: <linux-audit-bounces@redhat.com>
In-Reply-To: <20161219151946.GA5359@workstation>
List-Unsubscribe: <https://www.redhat.com/mailman/options/linux-audit>,
	<mailto:linux-audit-request@redhat.com?subject=unsubscribe>
List-Archive: <https://www.redhat.com/archives/linux-audit>
List-Post: <mailto:linux-audit@redhat.com>
List-Help: <mailto:linux-audit-request@redhat.com?subject=help>
List-Subscribe: <https://www.redhat.com/mailman/listinfo/linux-audit>,
	<mailto:linux-audit-request@redhat.com?subject=subscribe>
Sender: linux-audit-bounces@redhat.com
Errors-To: linux-audit-bounces@redhat.com
To: Gary Tierney <gary.tierney@gmx.com>
Cc: selinux@tycho.nsa.gov, linux-audit@redhat.com
List-Id: linux-audit@redhat.com
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