RE: [PATCH 2/3] driver: core: add security labels to devtmpfs
From: Namjae Jeon
Date: Fri Jun 05 2015 - 07:16:02 EST
> On Fri, Jun 05, 2015 at 07:10:23PM +0900, Namjae Jeon wrote:
> > Add support for setting security labels(e.g. smack or selinux labels) to
> > devtmpfs device nodes. In this manner, drivers can specify desired security
> > label in their device_type->devnode or class->devnode method.
>
> What driver wants to do this? And how does it determine the proper
> security label from within the kernel? Isn't that something that only
> userspace can know/set properly?
Yes, It is possible by userspace, But This api change will help to set uid/gid
and xattr values easily without need of complex userspace scripts in absence of
udev like helper.
And security label that decided as per each embedded system will be set by
this api in driver.
>
> thanks,
>
> greg k-h
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/