[Buildroot] [PATCH v2 0/4] Add file capability/xattr support

Thomas Petazzoni thomas.petazzoni at free-electrons.com
Thu Feb 25 21:34:34 UTC 2016


Gustavo,

On Thu, 25 Feb 2016 18:29:43 -0300, Gustavo Zacarias wrote:

> > Can we imagine an extension to the makedevs syntax where you could give
> > some additional properties for a given file, as following lines, e.g:
> >
> > /usr/bin/foo f 755 0 0 - - - - -
> > |XATTR blabla extended attribute
> > |XATTR blabla extended attribute
> > |ACL blabla ACL
> >
> > Or something like this?
> 
> My only concern with extending the format to multi lines is that the 
> data file will likely be incompatible with previous versions of makedevs.

Indeed. But is this really a concern? makedevs is built by Buildroot,
so we are sure which version is being used, right?

> > Yes, if we make it part of makedevs, then having an option would be a
> > bit weird, but still reasonable since this stuff is pretty advanced, so
> > people who need that quite certainly know what they are doing.
> 
> I'd go for homogeneous syntax in makedevs if that's the chosen way, just 
> make it skip those ops when it's not enabled.

OK.

> > Right. This is IMO a good reason to make this optional. makedevs could
> > have an option to accept (or not) the extended properties, and then if
> > we have not enabled xattr/capability in Buildroot, this option is not
> > passed, which guarantees that makedevs will bail out if an extended
> > property is used.
> 
> Might be worth CCing rockwellcollins guys that are working in selinux, 
> they're definitely interested in this since selinux loves xattrs.

Seems like a good idea. Can you do that when you post your next
patches? Or maybe you can send a short summary of an initial proposal,
and Cc them?

Thanks!

Thomas
-- 
Thomas Petazzoni, CTO, Free Electrons
Embedded Linux, Kernel and Android engineering
http://free-electrons.com



More information about the buildroot mailing list