Re: [COREUTILS PATCH] selinux: avoid unnecessary security context transl

coreutils

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [COREUTILS PATCH] selinux: avoid unnecessary security context transl

From:	Pádraig Brady
Subject:	Re: [COREUTILS PATCH] selinux: avoid unnecessary security context translations
Date:	Tue, 19 Dec 2023 15:53:39 +0000
User-agent:	Mozilla Thunderbird

On 19/12/2023 14:55, Christian Göttsche wrote:

Do not perform SELinux context translation for operations not involving
user input or output.  Context translation converts MCS/MLS labels into
human readable form, which is useful for user facing applications like
ls(1) or the --context=CTX argument of cp(1).


That seems useful.
On first glance it seems like this will bypass our getfilecon() wrappers in 
gnulib.
It seems like we should provide raw variants of those wrappers for consistency?

thanks,
Pádraig

[Prev in Thread]

Current Thread

[Next in Thread]

[COREUTILS PATCH] selinux: avoid unnecessary security context translations, Christian Göttsche, 2023/12/19
- Re: [COREUTILS PATCH] selinux: avoid unnecessary security context translations, Pádraig Brady <=
  - Re: [COREUTILS PATCH] selinux: avoid unnecessary security context translations, Pádraig Brady, 2023/12/19

Prev by Date: [COREUTILS PATCH] selinux: avoid unnecessary security context translations
Next by Date: Re: [COREUTILS PATCH] selinux: avoid unnecessary security context translations
Previous by thread: [COREUTILS PATCH] selinux: avoid unnecessary security context translations
Next by thread: Re: [COREUTILS PATCH] selinux: avoid unnecessary security context translations
Index(es):
- Date
- Thread