[PATCH] change lspp inode auditing
Darrel Goeddel
dgoeddel at trustedcs.com
Thu Mar 30 17:20:03 UTC 2006
Stephen Smalley wrote:
> On Thu, 2006-03-30 at 08:57 -0500, Steve Grubb wrote:
>
>>There is one last loose end to this patch. I am adding a function,
>>selinux_ctxid_to_string. Is there an official SE Linux kernel API that
>>provides this? I'll fix Tim's patch to use the same API.
>
>
> Nothing official; James' experimental patches for the iptables
> integration used:
> int selinux_id_to_ctx(u32 ctxid, char **ctx, u32 *ctxlen);
> But see comments below on your proposed interface.
Looks like I gave some bad advice here... I had suggested that the
function be renamed to used ctxid from instead of the one name
from Tim's patch because I remembered that I used ctxid because it
was in James' patch. I didn't realize that that func actually
cam from James' patch as well... I do think we should be consistent
with the naming for all of the exported selinux functions like
selinux_task_XXX
selinux_inode_XXX
selinux_ipc_XXX
selinux_XXX_to_string
I used ctxid in my patch, so I vote for that ;) Sorry bout the
misguided advice.
--
Darrel
More information about the Linux-audit
mailing list