[PATCH] selinux support on mkswap applet
KaiGai Kohei
kaigai at ak.jp.nec.com
Thu Oct 18 03:41:09 PDT 2007
Hi,
The attached patch enables to relabel the security context of
regular files to "swapfile_t", when mkswap attempt to initialize
a regular file as a swap.
The reason of this extension is that swapfile can store memory
regions of any processes, and there is a possibility to leak
unintentional infomation via swap using regular file.
Therefore, we have to relabel swapfile to separate any other
regular file.
Thanks,
P.S Don't forget my former patch for passwd/chpasswd applets. :-)
--
OSS Platform Development Division, NEC
KaiGai Kohei <kaigai at ak.jp.nec.com>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: sebusybox-mkswap.3.patch
Type: text/x-patch
Size: 1585 bytes
Desc: not available
Url : http://busybox.net/lists/busybox/attachments/20071018/710f37a8/attachment.bin
More information about the busybox
mailing list