[d-kernel] [PATCH] [6.12] config: add selinux to CONFIG_LSM

Пт Май 15 10:24:05 MSK 2026

Ivan,

On Thu, May 14, 2026 at 06:09:14PM +0400, Ivan A. Melnikov wrote:
> On Thu, May 14, 2026 at 05:30:14AM +0300, Vitaly Chikunov wrote:
> > Anton,
> > 
> > On Wed, May 13, 2026 at 03:19:15PM +0300, Anton Midyukov wrote:
> > > 21.03.2026 16:46, Vitaly Chikunov пишет:
> > > > On Tue, Mar 03, 2026 at 05:39:05PM +0300, Anton Midyukov wrote:
> > > >> This is necessary to use Selinux.
> > > >> Alternatively, can enable it in the kernel cmdline:
> > > >>   lsm=selinux,lockdown,capability,landlock,yama,safesetid,bpf,kiosk,ima,evm
> > > >> But this clutters the kernel cmdline.
> > > >> Signed-off-by: Anton Midyukov <antohami at altlinux.org>
> > > > 
> > > > Applied, thanks.
> > > > 
> > > > Только передвинул selinux после integrity.
> > > > 
> > > 
> > > Прошу включить и в 6.18.
> > 
> > Picked, thanks
> > 
> >   aefaa98ad5f1 N net/netlabel: Add mark s0 flag for NetLabel subsystem (6.12)
> 
> Кажется, что-то пошло не так.
> 
> net/netlabel/netlabel_mgmt.c: In function 'netlbl_mgmt_genl_init':
> net/netlabel/netlabel_mgmt.c:963:9: error: implicit declaration of function 'security_current_getsecid_subj'; did you mean 'security_current_getlsmprop_subj'? [-Wimplicit-function-declaration]
>   963 |         security_current_getsecid_subj(&audit_info.secid);
>       |         security_current_getlsmprop_subj
> net/netlabel/netlabel_mgmt.c:963:51: error: 'struct netlbl_audit' has no member named 'secid'
>   963 |         security_current_getsecid_subj(&audit_info.secid);
> 
> 
> Функция security_current_getsecid_subj вроде как была переименована в 6.13.

Fixed, thanks

> 
> -- 
>   wbr,
>     iv m.