From mboxrd@z Thu Jan 1 00:00:00 1970 Message-ID: <46F00E55.9030100@manicmethod.com> Date: Tue, 18 Sep 2007 13:43:49 -0400 From: Joshua Brindle MIME-Version: 1.0 To: Stephen Smalley CC: Daniel J Walsh , SE Linux Subject: Re: Change default error handling in libselinux matchpathcon to use syslog instead of stderr. References: <46EFF028.4040500@redhat.com> <46F0065B.1060101@manicmethod.com> <1190136184.14037.54.camel@moss-spartans.epoch.ncsc.mil> In-Reply-To: <1190136184.14037.54.camel@moss-spartans.epoch.ncsc.mil> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Sender: owner-selinux@tycho.nsa.gov List-Id: selinux@tycho.nsa.gov Stephen Smalley wrote: > On Tue, 2007-09-18 at 13:09 -0400, Joshua Brindle wrote: > >> Daniel J Walsh wrote: >> >>> -----BEGIN PGP SIGNED MESSAGE----- >>> Hash: SHA1 >>> >>> Current behavior causes problems with network applications. >>> >>> https://bugzilla.redhat.com/show_bug.cgi?id=273081 >>> >>> >> Wait, what? >> >> I don't think it is an improvement to call the command line matchpathcon >> applications and have the logs go somewhere not visible by the user. IMO >> we should take the same approach libsemanage and libsepol did where the >> logging callbacks can be overridden by specific users of the library but >> for the command line applications the output still goes to stderr. >> > > You already can override the callback (set_matchpathcon_printf), but the > claim in the bug report is that isn't usable from a library function > that calls matchpathcon because it doesn't know whether it has already > been set by the application. > Hrm... so the alternative is to send it to syslog? I don't buy it. Can we just add an interface to see if the default callbacks have been overridden? -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message.