Re: SElinux integration

From: Ivan Gyurdiev <ivg2 cornell edu>
To: Alexander Larsson <alexl redhat com>
Cc: gnome-vfs-list gnome org
Subject: Re: SElinux integration
Date: Mon, 27 Feb 2006 06:15:28 -0500

How do you actually get the context? Does it need more syscalls than the
stat that we do by default

Yes, the context is an extended attribute, we get (or set) it through acall to libselinux, which knows how to exact it.


      #include <selinux/selinux.h>

      int getfilecon(const char *path, security_context_t *con);
      int lgetfilecon(const char *path, security_context_t *con);
      int fgetfilecon(int fd, security_context_t *con);

? If so, it needs to be its own flag (for
performance reasons).

Okay, will add a flag.

Follow-Ups:
- Re: SElinux integration
  - From: Ivan Gyurdiev

References:
- SElinux integration
  - From: Ivan Gyurdiev
- Re: SElinux integration
  - From: Alexander Larsson
- Re: SElinux integration
  - From: Ivan Gyurdiev
- Re: SElinux integration
  - From: Alexander Larsson

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]