[systemd-devel] Patch for Smack labelling support in udev
Reshetova, Elena
elena.reshetova at intel.com
Wed Jun 19 05:09:07 PDT 2013
On Tue, Jun 18, 2013 at 4:43 AM, Auke-jan H Kok < auke-jan.h.kok at intel.com >
wrote:
On Mon, Jun 17, 2013 at 9:37 PM, Kyungmin Park <kmpark at infradead.org> wrote:
>> Hi Elena,
>>
>> On Thu, Jun 6, 2013 at 7:10 PM, Lennart Poettering
>>> <lennart at poettering.net> wrote:
>>>> On Wed, 08.05.13 11:16, Reshetova, Elena (elena.reshetova at intel.com)
wrote:
>>>
>>>> Hi,
>>>>
>>>> This is the patch for review for enabling smack labelling for device
nodes.
>>>>
>>>> The functionality and reasoning is inside. I will be happy to answer
>>>> any questions.
>>>
>>> So, this needs some HAVE_SMACK ifdeffery at least.
>>>
>>> That said, I wonder if we should instead make this a generic
>>> XATTR{foobar}="waldo" thing. Kay?
>>>
>>
>> Any update for this? if we use SMACK for udev, it requires it.
>Lennart's suggestion seems more than reasonable - it would make it generic
enough to do:
> XATTR{security.SMACK64}="label"
>which I think is all we need here. Elena, do you need help respinning this?
Sorry for the silence, it seems like I totally missed these replies (got
buried in my mailbox)!
Sure, I can make a change, but I am not exactly sure what you mean by this:
" XATTR{security.SMACK64}="label"". Adding simple HAVE_SMACK ifdeffery is
easy, but the later part I didn't really understand.
If it is just longer to explain it to me, Auke, you can go ahead and make a
change and I will just learn from looking into it :) Unfortunately, I don't
know systemd code well enough.
Best Regards,
Elena.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 7220 bytes
Desc: not available
URL: <http://lists.freedesktop.org/archives/systemd-devel/attachments/20130619/c1a577e7/attachment.bin>
More information about the systemd-devel
mailing list