On Thu, 2007-11-15 at 12:17 +0000, David Howells wrote: > Daniel J Walsh <dwalsh@xxxxxxxxxx> wrote: > > > David, we need a method of querying the keyring to see what the selinux > > context that is associated with it. For debugging purposes. Currently > > we can not tell whether the policy is correct or not, since we have no > > way to ask the keyring for its label. > > That's probably easy enough. What form does a context take? It's a string. As an example, see the security_inode_getsecurity() LSM hook and selinux_inode_getsecurity() implementation of it. But note that the interface has changed in -mm to avoid the need to pass in an already appropriately sized buffer. -- Stephen Smalley National Security Agency -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with the words "unsubscribe selinux" without quotes as the message.
