[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: [PATCH] change lspp inode auditing



Stephen Smalley wrote:
On Thu, 2006-03-30 at 08:57 -0500, Steve Grubb wrote:

There is one last loose end to this patch. I am adding a function,
selinux_ctxid_to_string. Is there an official SE Linux kernel API that
provides this? I'll fix Tim's patch to use the same API.


Nothing official; James' experimental patches for the iptables
integration used:
int selinux_id_to_ctx(u32 ctxid, char **ctx, u32 *ctxlen);
But see comments below on your proposed interface.

Looks like I gave some bad advice here...  I had suggested that the
function be renamed to used ctxid from instead of the one name
from Tim's patch because I remembered that I used ctxid because it
was in James' patch.  I didn't realize that that func actually
cam from James' patch as well...  I do think we should be consistent
with the naming for all of the exported selinux functions like

selinux_task_XXX
selinux_inode_XXX
selinux_ipc_XXX
selinux_XXX_to_string

I used ctxid in my patch, so I vote for that ;)  Sorry bout the
misguided advice.

--

Darrel


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]