[systemd-devel] Patch for Smack labelling support in udev
Kok, Auke-jan H
auke-jan.h.kok at intel.com
Mon Jun 17 21:42:44 PDT 2013
On Mon, Jun 17, 2013 at 9:37 PM, Kyungmin Park <kmpark at infradead.org> wrote:
> Hi Elena,
>
> On Thu, Jun 6, 2013 at 7:10 PM, Lennart Poettering
> <lennart at poettering.net> wrote:
>> On Wed, 08.05.13 11:16, Reshetova, Elena (elena.reshetova at intel.com) wrote:
>>
>>> Hi,
>>>
>>> This is the patch for review for enabling smack labelling for device nodes.
>>>
>>> The functionality and reasoning is inside. I will be happy to answer any
>>> questions.
>>
>> So, this needs some HAVE_SMACK ifdeffery at least.
>>
>> That said, I wonder if we should instead make this a generic
>> XATTR{foobar}="waldo" thing. Kay?
>>
>
> Any update for this? if we use SMACK for udev, it requires it.
Lennart's suggestion seems more than reasonable - it would make it
generic enough to do:
XATTR{security.SMACK64}="label"
which I think is all we need here. Elena, do you need help respinning this?
Auke
More information about the systemd-devel
mailing list