[systemd-devel] [PATCH] SELINUX: add /sys/fs/selinux mount point to put selinuxfs
Greg KH
greg at kroah.com
Wed May 11 06:53:47 PDT 2011
On Tue, May 10, 2011 at 10:28:36PM -0400, Mimi Zohar wrote:
> On Tue, 2011-05-10 at 18:59 -0700, Greg KH wrote:
> > On Tue, May 10, 2011 at 03:55:24PM -0700, Casey Schaufler wrote:
> > > On 5/10/2011 3:34 PM, Greg KH wrote:
> > > > From: Greg Kroah-Hartman <gregkh at suse.de>
> > > >
> > > > In the interest of keeping userspace from having to create new root
> > > > filesystems all the time, let's follow the lead of the other in-kernel
> > > > filesystems and provide a proper mount point for it in sysfs.
> > > >
> > > > For selinuxfs, this mount point should be in /sys/fs/selinux/
> > >
> > > It seems that we might want this to be an LSM interface standard.
> > > Is the call to kobject_create_and_add and associated cleanup all
> > > that's required? I would want Smack to follow the convention as
> > > well.
> >
> > You could always just create a subdir under /sys/security/ if you have
> > your own filesystem, but I don't think that Smack has one, right?
> >
> > Is it going to get one? If so, we might want to revisit the idea of
> > securityfs if no one is actually using it...
> >
> > thanks,
> >
> > greg k-h
>
> IMA uses securityfs. The suggested securityfs mount point has
> been /sys/kernel/security.
Yes, that is correct, and isn't changing. This patch is only for
selinux to move their mount point, nothing else.
thanks,
greg k-h
More information about the systemd-devel
mailing list