One of the things that was bugging me was that after having booted 2.6.29-rc1,
rebooting to 2.6.28 final always caused an automatic relabel, which on this
box with a bit over a terrabyte in drives, takes an extra 20 minutes to do.
So I grepped the .config's and there is no mention of SELINUX in the output of
a make oldconfig for 2.6.29-rc1, based on a 2.6.28 .config input.
I see the security/selinux directory still exists in the src tree. Is this a
kconfig bug, or is selinux outta here?
Thanks.
--
Cheers, Gene
"There are four boxes to be used in defense of liberty:
soap, ballot, jury, and ammo. Please use in that order."
-Ed Howdershelt (Author)
Bushydo -- the way of the shrub. Bonsai!
On Fri, 2009-01-16 at 03:21 -0500, Gene Heskett wrote:
> One of the things that was bugging me was that after having booted 2.6.29-rc1,
> rebooting to 2.6.28 final always caused an automatic relabel, which on this
> box with a bit over a terrabyte in drives, takes an extra 20 minutes to do.
>
> So I grepped the .config's and there is no mention of SELINUX in the output of
> a make oldconfig for 2.6.29-rc1, based on a 2.6.28 .config input.
>
> I see the security/selinux directory still exists in the src tree. Is this a
> kconfig bug, or is selinux outta here?
Can you post your .config file?
selinux depends on SECURITY_NETWORK && AUDIT && NET && INET
(possibly it should be using select instead of depends?)
--
Stephen Smalley
National Security Agency
On Fri, 2009-01-16 at 08:51 -0500, Stephen Smalley wrote:
> On Fri, 2009-01-16 at 03:21 -0500, Gene Heskett wrote:
> > One of the things that was bugging me was that after having booted 2.6.29-rc1,
> > rebooting to 2.6.28 final always caused an automatic relabel, which on this
> > box with a bit over a terrabyte in drives, takes an extra 20 minutes to do.
> >
> > So I grepped the .config's and there is no mention of SELINUX in the output of
> > a make oldconfig for 2.6.29-rc1, based on a 2.6.28 .config input.
> >
> > I see the security/selinux directory still exists in the src tree. Is this a
> > kconfig bug, or is selinux outta here?
>
> Can you post your .config file?
> selinux depends on SECURITY_NETWORK && AUDIT && NET && INET
>
> (possibly it should be using select instead of depends?)
Never mind the last part, already tried and rejected:
http://lkml.indiana.edu/hypermail/linux/kernel/0710.1/0530.html
--
Stephen Smalley
National Security Agency