Re: iotop policy development advice

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Thu, 2013-10-10 at 18:44 +1030, William Brown wrote:
> On Thu, 2013-10-10 at 09:59 +0200, Dominick Grift wrote:
> > On Thu, 2013-10-10 at 10:08 +1030, William Brown wrote:
> > > corecmd_exec_bin(iotop_t)
> > > 
> > > miscfiles_read_localization(iotop_t)
> > > 
> > > files_read_etc_files(iotop_t)
> > > 
> > > domain_getsched_all_domains(iotop_t)
> > > domain_read_all_domains_state(iotop_t)
> > > 
> > > kernel_read_system_state(iotop_t)
> > > kernel_rw_unix_dgram_sockets(iotop_t)
> > > 
> > > userdom_use_user_terminals(iotop_t)
> > 
> > Also a minor nitpick about ordering of interface calls.
> > 
> > generally its this order:
> > 
> > kernel layer interface calls in aplhanumerical order ( except with calls
> > to the kernel module on top of them)
> > 
> > system layer interface calls
> > 
> > constrib interface calls
> > 
> > see:
> > 
> > http://oss.tresys.com/projects/refpolicy/wiki/StyleGuide
> > 
> 
> I'll read all your points, and fix up what you have suggested. Once
> done, If you don't mind I'll send the policy again for your to review.
> 
> 

Thats fine



--
selinux mailing list
selinux@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/selinux





[Index of Archives]     [Fedora Users]     [Fedora Desktop]     [Big List of Linux Books]     [Yosemite News]     [Yosemite Campsites]     [KDE Users]     [Gnome Users]

  Powered by Linux