Re: [RFC 0/28] Patches to pass vfsmount to LSM inode security hooks

From: Casey Schaufler
Date: Mon Feb 05 2007 - 15:23:46 EST

Next message: Sam Creasey: "Re: [PATCH] SUN3/3X Lance trivial fix"
Previous message: Zach Brown: "Re: [PATCH 2 of 4] Introduce i386 fibril scheduling"
In reply to: Chris Wright: "Re: [RFC 0/28] Patches to pass vfsmount to LSM inode security hooks"
Next in thread: Andreas Gruenbacher: "Re: [RFC 0/28] Patches to pass vfsmount to LSM inode security hooks"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

--- Chris Wright <chrisw@xxxxxxxxxxxx> wrote:

> It's not really worth describing, since it's not
> acceptable in upstream.
> But it basically cycles vfsmnts and looks for
> matches to guess which
> part of the tree the dentry is in.

Yick. Indeed, that would be bad.

> This kind of change (or perhaps
> straight to struct path) is definitely
> needed from AA.

It is certainly tempting to suggest that the
path struct scheme would be better. The only
argument against it that I see is the kind
of changes you'd have to make to existing code.
It's not even a matter of having to make
changes, just which changes you make.

Casey Schaufler
casey@xxxxxxxxxxxxxxxx
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Sam Creasey: "Re: [PATCH] SUN3/3X Lance trivial fix"
Previous message: Zach Brown: "Re: [PATCH 2 of 4] Introduce i386 fibril scheduling"
In reply to: Chris Wright: "Re: [RFC 0/28] Patches to pass vfsmount to LSM inode security hooks"
Next in thread: Andreas Gruenbacher: "Re: [RFC 0/28] Patches to pass vfsmount to LSM inode security hooks"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]