RE: [PATCH 2/3] driver: core: add security labels to devtmpfs

From: Namjae Jeon
Date: Fri Jun 05 2015 - 07:16:02 EST

Next message: Namjae Jeon: "RE: [PATCH 3/3] driver: core: add security labels to misc class devnode"
Previous message: Namjae Jeon: "RE: [PATCH 1/3] driver: core: add uid gid to class devnode"
In reply to: 'Greg Kroah-Hartman': "Re: [PATCH 2/3] driver: core: add security labels to devtmpfs"
Next in thread: 'Greg Kroah-Hartman': "Re: [PATCH 2/3] driver: core: add security labels to devtmpfs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> On Fri, Jun 05, 2015 at 07:10:23PM +0900, Namjae Jeon wrote:
> > Add support for setting security labels(e.g. smack or selinux labels) to
> > devtmpfs device nodes. In this manner, drivers can specify desired security
> > label in their device_type->devnode or class->devnode method.
>
> What driver wants to do this? And how does it determine the proper
> security label from within the kernel? Isn't that something that only
> userspace can know/set properly?
Yes, It is possible by userspace, But This api change will help to set uid/gid
and xattr values easily without need of complex userspace scripts in absence of
udev like helper.
And security label that decided as per each embedded system will be set by
this api in driver.

>
> thanks,
>
> greg k-h

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Namjae Jeon: "RE: [PATCH 3/3] driver: core: add security labels to misc class devnode"
Previous message: Namjae Jeon: "RE: [PATCH 1/3] driver: core: add uid gid to class devnode"
In reply to: 'Greg Kroah-Hartman': "Re: [PATCH 2/3] driver: core: add security labels to devtmpfs"
Next in thread: 'Greg Kroah-Hartman': "Re: [PATCH 2/3] driver: core: add security labels to devtmpfs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]