On Tue, 2009-06-09 at 20:47 -0500, Serge E. Hallyn wrote: > file->f_cred is the cred of the task which opened it. file->f_security > can be separately set by the LSM. Checkpoint the file->f_security, > and at restart ask the LSM, using security_file_restore, based on the current > task's context and the checkpointed f_security, which f_security to apply (or > whether to refuse the restart altogether). > > For Smack, accept the checkpointed label if the restarting task has > CAP_MAC_ADMIN. > > For SELinux, I currently ignore the checkpointed label and call > file_alloc_security(). Do we want to have 'restore' permission for > class file? Yes - otherwise we'll end up with a restarted process that may not be able to access its open files. -- Stephen Smalley National Security Agency -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with the words "unsubscribe selinux" without quotes as the message.
