| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 5 Feb 2007 11:50:58 -0800 From: Chris Wright <chrisw@...s-sol.org> To: Casey Schaufler <casey@...aufler-ca.com> Cc: Tony Jones <tonyj@...e.de>, linux-kernel@...r.kernel.org, linux-fsdevel@...r.kernel.org, chrisw@...s-sol.org, linux-security-module@...r.kernel.org, agruen@...e.de Subject: Re: [RFC 0/28] Patches to pass vfsmount to LSM inode security hooks * Casey Schaufler (casey@...aufler-ca.com) wrote: > > They are being posted now as a request for comment. > > Presently the AppArmor > > code - being a user of the LSM interface - does not > > receive the vfsmount > > correspoding to an operation and has to employ > > convoluted and slow mechanisms > > in an attempt to determine the vfsmount which are > > error prone. > > Would it be possible for you to describe those > methods? Perhaps there is a better way to go > about getting the information you need without > introducing this level of change. It's not really worth describing, since it's not acceptable in upstream. But it basically cycles vfsmnts and looks for matches to guess which part of the tree the dentry is in. This kind of change (or perhaps straight to struct path) is definitely needed from AA. - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists