Merge commit '5bc66170dc486556a1e36fd384463536573f4b82' into x86/urgent

From Borislav Petkov <bp@amd64.org>: Below is a RAS fix which reverts the addition of a sysfs attribute which we agreed is not needed, post-factum. And this should go in now because that sysfs attribute is going to end up in 3.7 otherwise and thus exposed to userspace; removing it then would be a lot harder. This is done as a merge rather than a simple patch/cherry-pick since the baseline for this patch was not in the previous x86/urgent. Signed-off-by: H. Peter Anvin <hpa@linux.intel.com>
author: H. Peter Anvin <hpa@linux.intel.com> 2012-10-19 07:54:24 -0700
committer: H. Peter Anvin <hpa@linux.intel.com> 2012-10-19 07:55:09 -0700
commit: 4533d86270d7986e00594495dde9a109d6be27ae (patch)
tree: c2473cac653f7b98e5bd5e6475e63734be4b7644 /security/selinux/netlink.c
parent: 21c5e50e15b1abd797e62f18fd7f90b9cc004cbd (diff)
parent: 5bc66170dc486556a1e36fd384463536573f4b82 (diff)
1 files changed, 2 insertions, 3 deletions
diff --git a/security/selinux/netlink.c b/security/selinux/netlink.c
index 8a77725423e..14d810ead42 100644
--- a/security/selinux/netlink.c
+++ b/security/selinux/netlink.c
@@ -113,13 +113,12 @@ static int __init selnl_init(void)
 {
 	struct netlink_kernel_cfg cfg = {
 		.groups	= SELNLGRP_MAX,
+		.flags	= NL_CFG_F_NONROOT_RECV,
 	};
 
-	selnl = netlink_kernel_create(&init_net, NETLINK_SELINUX,
-				      THIS_MODULE, &cfg);
+	selnl = netlink_kernel_create(&init_net, NETLINK_SELINUX, &cfg);
 	if (selnl == NULL)
 		panic("SELinux:  Cannot create netlink socket.");
-	netlink_set_nonroot(NETLINK_SELINUX, NL_NONROOT_RECV);
 	return 0;
 }
author	H. Peter Anvin <hpa@linux.intel.com>	2012-10-19 07:54:24 -0700
committer	H. Peter Anvin <hpa@linux.intel.com>	2012-10-19 07:55:09 -0700
commit	4533d86270d7986e00594495dde9a109d6be27ae (patch)
tree	c2473cac653f7b98e5bd5e6475e63734be4b7644 /security/selinux/netlink.c
parent	21c5e50e15b1abd797e62f18fd7f90b9cc004cbd (diff)
parent	5bc66170dc486556a1e36fd384463536573f4b82 (diff)