From mboxrd@z Thu Jan  1 00:00:00 1970
From: Casey Schaufler <casey@schaufler-ca.com>
Subject: Re: [PATCH 09/16] CacheFiles: Permit a process's create SID to be overridden [try #3]
Date: Fri, 10 Aug 2007 09:52:02 -0700 (PDT)
Message-ID: <236828.6019.qm@web36609.mail.mud.yahoo.com>
References: <20070810160543.24698.80481.stgit@warthog.cambridge.redhat.com>
Reply-To: casey@schaufler-ca.com
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7BIT
Cc: linux-fsdevel@vger.kernel.org, linux-cachefs@redhat.com,
	nfsv4@linux-nfs.org, linux-kernel@vger.kernel.org,
	selinux@tycho.nsa.gov,
	LSM List <linux-security-module@vger.kernel.org>
To: David Howells <dhowells@redhat.com>, torvalds@osdl.org,
	akpm@osdl.org, steved@redhat.com, trond.myklebust@fys.uio.no
Return-path: <linux-security-module-owner@vger.kernel.org>
In-Reply-To: <20070810160543.24698.80481.stgit@warthog.cambridge.redhat.com>
Sender: linux-security-module-owner@vger.kernel.org
List-Id: linux-fsdevel.vger.kernel.org


--- David Howells <dhowells@redhat.com> wrote:

> Make it possible for a process's file creation SID to be temporarily
> overridden
> by CacheFiles so that files created in the cache have the right label
> attached.

I still object to the use of sids in LSM interfaces. I still owe you
a viable alternative.


Casey Schaufler
casey@schaufler-ca.com