Re: [PATCH] selinux: add selinux_is_enforced() function
From: Sebastien Buisson
Date: Wed Apr 12 2017 - 09:31:50 EST
2017-04-12 13:55 GMT+02:00 Paul Moore <pmoore@xxxxxxxxxx>:
> As currently written this code isn't something we would want to merge
> upstream for two important reasons:
>
> * No clear user of this functionality. There needs to be a well
> defined user of this functionality in the kernel.
The use case for this new functionality (and the other one) is getting
SELinux information from the Lustre client code in kernel space.
Latest patch can be accessed at:
https://review.whamcloud.com/24421
Actual user is sptlrpc_get_sepol() function in lustre/lustre/ptlrpc/sec.c file.
This code will be pushed to the upstream kernel as soon as it is
landed into Lustre master branch.