Re: [PATCH] change lspp inode auditing
Stephen Smalley wrote:
On Thu, 2006-03-30 at 08:57 -0500, Steve Grubb wrote:
>There is one last loose end to this patch. I am adding a function,
>selinux_ctxid_to_string. Is there an official SE Linux kernel API that
>provides this? I'll fix Tim's patch to use the same API.
Nothing official; James' experimental patches for the iptables
integration used:
int selinux_id_to_ctx(u32 ctxid, char **ctx, u32 *ctxlen);
But see comments below on your proposed interface.
Looks like I gave some bad advice here... I had suggested that the
function be renamed to used ctxid from instead of the one name
from Tim's patch because I remembered that I used ctxid because it
was in James' patch. I didn't realize that that func actually
cam from James' patch as well... I do think we should be consistent
with the naming for all of the exported selinux functions like
selinux_task_XXX
selinux_inode_XXX
selinux_ipc_XXX
selinux_XXX_to_string
I used ctxid in my patch, so I vote for that ;) Sorry bout the
misguided advice.
--
Darrel