[PATCH] selinux: remove the runtime disable functionality
Daniel Burgener
dburgener at linux.microsoft.com
Fri Mar 17 20:25:18 UTC 2023
On 3/17/2023 3:56 PM, Paul Moore wrote:
> --- a/Documentation/ABI/obsolete/sysfs-selinux-disable
> +++ b/Documentation/ABI/removed/sysfs-selinux-disable
> @@ -4,6 +4,9 @@ KernelVersion: 2.6.12-rc2 (predates git)
> Contact: selinux at vger.kernel.org
> Description:
>
> + REMOVAL UPDATE: The SELinux checkreqprot functionality was removed in
> + March 2023, the original deprecation notice is shown below.
> +
> The selinuxfs "disable" node allows SELinux to be disabled at runtime
> prior to a policy being loaded into the kernel. If disabled via this
> mechanism, SELinux will remain disabled until the system is rebooted.
Looks like a copy/paste typo from the other deprecation removal. I
assume this should mention runtime disable, rather than checkreqprot.
-Daniel
More information about the Linux-security-module-archive
mailing list