On Fri, 2012-09-14 at 11:24 -0700, William Roberts wrote: > Based on this article and "sharing > buffers", http://lwn.net/Articles/480055/ > > > We may need to instrument LSM hooks for ION. > > > Thoughts? Possibly, but I don't see any DAC checks or capable calls in the current ion driver code. If the only way to share is by passing open fds, then we already control that via the existing SELinux hooks. -- Stephen Smalley National Security Agency -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with the words "unsubscribe selinux" without quotes as the message.
