Got it. Ya, a tmpfs would work for this purpose, or reusing /dev (which is also a tmpfs).
I'll pass the idea along. Thanks! -- Nick On Tue, Nov 4, 2014 at 5:46 AM, Stephen Smalley <[email protected]> wrote: > Can you mount a separate tmpfs on /cores instead? Then the usual label > inheritance will just work. rootfs is labeled via genfscon, and while > we did change the kernel to support changing labels on rootfs inodes via > setxattr(2) so that we can set specific labels on existing files, we did > not do anything to support label inheritance from parent directory on > new inode creation for rootfs. Not sure you truly want to allow core > dumping into the rootfs anyway; you might want to cap the size of the > memory used for the core dumps separately. > -- Nick Kralevich | Android Security | [email protected] | 650.214.4037 _______________________________________________ Seandroid-list mailing list [email protected] To unsubscribe, send email to [email protected]. To get help, send an email containing "help" to [email protected].
