* James Morris (jmorris@private) wrote: > On Fri, 30 Jan 2004, Chris Wright wrote: > > > > Any feedback on this will be most appreciated. > > > > Hrm, I'm not really fond of the extra page, and extra hook. > > Unfortunately, it doesn't seem like doing something generic in > > lib/parser.c is feasible since not each fs uses it, and touching each > > fs to find this is even uglier. > > The extra page isn't really an issue as mounting a fileystem is not > performance critical. Agreed. > > Would it be possible to handle it all > > in the module with something like: > > > > mount -tselinux -oreal_type=$fstype,context=foo,the_fs_opts dev mntpnt > > I'm not sure how this could be done cleanly without further reaching into > the vfs (e.g. to hijack the real filesystem ops etc.). Perhaps better > when we have a proper filesystem stacking mechanism available. Ah yes, perennially on the todo list... thanks, -chris -- Linux Security Modules http://lsm.immunix.org http://lsm.bkbits.net
This archive was generated by hypermail 2b30 : Fri Jan 30 2004 - 10:17:32 PST