On Thu, 2007-11-15 at 14:41 +0000, David Howells wrote: > Stephen Smalley <sds@xxxxxxxxxxxxx> wrote: > > > It's a string. As an example, see the security_inode_getsecurity() LSM > > hook and selinux_inode_getsecurity() implementation of it. > > Yeah... That's along the lines of what I was thinking of. > > > But note that the interface has changed in -mm to avoid the need to pass in > > an already appropriately sized buffer. > > I'm not sure what you mean by that. Do you mean the buffer has to be exactly > the right size? Previously, the caller had to supply a buffer large enough for the context string, and the hook copied into that buffer. In -mm, the hook allocates an appropriately sized buffer and returns the pointer to it to the caller. http://marc.info/?l=linux-fsdevel&m=119392810506870&w=2 -- Stephen Smalley National Security Agency -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with the words "unsubscribe selinux" without quotes as the message.
