From bf977ae5a02765f86b1920ae207cc1fe328011cb Mon Sep 17 00:00:00 2001
From: Aurelien Degremont <aurelien.degremont@cea.fr>
Date: Mon, 14 Nov 2011 16:25:57 +0100
Subject: [PATCH 1/1] LU-857 security: Lustre client tolerates enforced
 SELinux.

Fix a bug which prevents Lustre clients to access directoriess when
SELinux is enforced, on RHEL 6.
This patch does not add a real SELinux support for Lustre but ables
to activate it for all other local filesystems, without Lustre
misbehaving.

Signed-off-by: Aurelien Degremont <aurelien.degremont@cea.fr>
Change-Id: Ia6692c96a8439eb9239cb55ce32a1c54958241d1
Reviewed-on: http://review.whamcloud.com/1703
Tested-by: Hudson
Tested-by: Maloo <whamcloud.maloo@gmail.com>
Reviewed-by: Niu Yawei <niu@whamcloud.com>
Reviewed-by: Fan Yong <yong.fan@whamcloud.com>
Reviewed-by: Andreas Dilger <adilger@whamcloud.com>
Reviewed-by: Oleg Drokin <green@whamcloud.com>
---
 lustre/llite/namei.c | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/lustre/llite/namei.c b/lustre/llite/namei.c
index dbf6ee0..e5393a1 100644
--- a/lustre/llite/namei.c
+++ b/lustre/llite/namei.c
@@ -44,6 +44,7 @@
 #include <linux/quotaops.h>
 #include <linux/highmem.h>
 #include <linux/pagemap.h>
+#include <linux/security.h>
 
 #define DEBUG_SUBSYSTEM S_LLITE
 
@@ -331,6 +332,9 @@ static void ll_d_add(struct dentry *de, struct inode *inode)
         if (inode)
                 list_add(&de->d_alias, &inode->i_dentry);
         de->d_inode = inode;
+        /* d_instantiate() replacement code should initialize security
+         * context. */
+        security_d_instantiate(de, inode);
 
         /* d_rehash */
         if (!d_unhashed(de)) {
-- 
1.8.3.1