Since the security checks are applied on each read and write of a
sysctl file, just like they are applied when calling sys_sysctl, they
are redundant on the standard VFS constructs. Since it is difficult
to compute the security labels on the standard VFS constructs we just
mark the sysctl inodes
Since the security checks are applied on each read and write of a
sysctl file, just like they are applied when calling sys_sysctl, they
are redundant on the standard VFS constructs. Since it is difficult
to compute the security labels on the standard VFS constructs we just
mark the sysctl inodes
2 matches
Mail list logo
