> IMHO, the target would be the kernel since its what is being affected by a > module sourced from foo. This was my thought as well. What I like about Paul's idea is that it creates consistency between finit_module and init_module. In either case the target of the operation is the kernel, but we're using target context to refer to the origin of the module, not the target of the operation. For finit_module the origin is a file, for init_module the origin is a process. Patch v2 is up. _______________________________________________ Selinux mailing list Selinux@xxxxxxxxxxxxx To unsubscribe, send email to Selinux-leave@xxxxxxxxxxxxx. To get help, send an email containing "help" to Selinux-request@xxxxxxxxxxxxx.
