Description of problem: The NetLabel subsystem has a problem with the CIPSOv4 passthrough mapping does not work correctly, in some cases kernel oopses are possibile. There have been patches posted to the SELinux and netdev mailing lists which fix these problems. * http://marc.theaimsgroup.com/?l=linux-netdev&m=116060895810450&w=2 * http://marc.theaimsgroup.com/?l=linux-netdev&m=116060895712178&w=2 * http://marc.theaimsgroup.com/?l=linux-netdev&m=116060895710963&w=2 Version-Release number of selected component (if applicable): kernel-2.6.18-1.2725.el5 How reproducible: Everytime Steps to Reproduce: 1. netlabelctl cipsov4 add pass doi:1 tags:1 2. netlabelctl map del default 3. netlabelctl map add default protocol:cipsov4,1 4. runcon -l s0:c1 telnetl localhost Actual results: The kernel will oops. Expected results: The kernel will not oops. Additional info: This directly effects the LSPP efforts of RH, HP, and IBM.
this defect should be resolved before rc1
Test kernel including fixes for this problem can be found at people.redhat.com/sgrubb/ inside the lspp repo. Look for lspp.52 or later.
posted for internel inclusion in RHEL5 on Oct 26
QE ack for RHEL5.
in 2.6.18-1.2767.el5
A package has been built which should help the problem described in this bug report. This report is therefore being closed with a resolution of CURRENTRELEASE. You may reopen this bug report if the solution does not work for you.