Re: [2.6 patch] selinux: possible cleanups

From: Stephen Smalley
Date: Wed Dec 08 2004 - 14:09:58 EST

Next message: Martin J. Bligh: "Re: Anticipatory prefaulting in the page fault handler V1"
Previous message: Bill Davidsen: "Limiting program swap"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, 2004-12-03 at 10:54, Stephen Smalley wrote:
> - Shouldn't the AVC_CALLBACK_* definitions other than RESET be removed
> since you are removing the other avc_ss interfaces?

Actually, we'd have to keep at least the GRANT definition as well, since
that is used from avc_has_perm_noaudit() for the permissive mode case,
and I suppose we might as well leave the others alone and not disturb
the avc_update_node() code. So the only changes I'd suggest are
removing the security_member_sid diffs (as it is now used) and including
your follow-up diff for making avtab_insert static.

--
Stephen Smalley <sds@xxxxxxxxxxxxxx>
National Security Agency

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Martin J. Bligh: "Re: Anticipatory prefaulting in the page fault handler V1"
Previous message: Bill Davidsen: "Limiting program swap"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]