From mboxrd@z Thu Jan  1 00:00:00 1970
From: cpebenito@tresys.com (Christopher J. PeBenito)
Date: Wed, 5 Sep 2012 14:16:58 -0400
Subject: [refpolicy] [PATCH] Use ps_process_pattern() in
 domain_read_state interfaces. Seem though that not everyone read domain
 state needs to be able to get attributes of target process types.
In-Reply-To: <1346867125.15262.55.camel@d30.localdomain>
References: <1346263182-11122-1-git-send-email-dominick.grift@gmail.com>
	<50478B88.7060103@tresys.com>
	<1346867125.15262.55.camel@d30.localdomain>
Message-ID: <5047971A.1010203@tresys.com>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

On 09/05/12 13:45, Dominick Grift wrote:
> On Wed, 2012-09-05 at 13:27 -0400, Christopher J. PeBenito wrote:
>> I'd have to say no to this patch.  As you say, not all domains that read other domains' state needs to getattr the process.
> ok, but why is that problem big enough to not use the cleaner
> ps_process_pattern. and why does the ps_process_pattern include the
> getattr?

It originated to support ps, including ps -Z.

-- 
Chris PeBenito
Tresys Technology, LLC
www.tresys.com | oss.tresys.com