[PATCH] --secontext: Implement displaying of expected context upon mismatch
Renaud Métrich
rmetrich at redhat.com
Mon Dec 6 19:46:09 UTC 2021
On 12/6/21 15:44, Dmitry V. Levin wrote:
> Let's say that --secontext means --secontext=type, "full" includes "type"
> so that --secontext=full engulfs --secontext=type, "mismatch" is not
> included into "full" so one would have to use --secontext=full,mismatch.
That's already the case, full == the full context, but no mismatch check.
> As a side effect of using qualify_tokens(), there would be
> --secontext=none disabling the whole thing, and --secontext=all enabling
> all bits including all future bits.
>
> Does this make sense?
>
OK I get it.
What about having the mismatched context be printed after a double
exclamation mark "!!".
Are you ok with this?
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature
Type: application/pgp-signature
Size: 840 bytes
Desc: OpenPGP digital signature
URL: <http://lists.strace.io/pipermail/strace-devel/attachments/20211206/9f1f218a/attachment.bin>
More information about the Strace-devel
mailing list