On Sat, Apr 14, 2001 at 05:53:31PM -0700, Crispin Cowan wrote: > > Is there any additional help we can give modules to load config files? Or is it pretty > much all there with ioctls? We don't have to add anything to the kernel to allow this to happen, you can use any of the following interfaces to get data into your kernel module today: - ioctls on a /dev node or a custom filesystem node - sysctls - /proc/ read or write - kernel can do the read (not recommended!) - read and write of a custom filesystem (2.4.x makes creating your own file system _very_ easy, and this is the recommended way.) > I'm not sure about "handles in a different way", but a quick search > http://www.google.com/search?q=linux+acl produced a lot of diverse hits. There appear > to be several different projects out there intent on adding ACLs to linux, some as much > as four years old http://www.uwsg.indiana.edu/hypermail/linux/kernel/9705.0/0035.html Are any of those people involved in this discussion? If not... :) > Exactly: I want to avoid messing with it, but enabel LSMs to mess with them. If we > can get away with it, just standing aside and letting the LSMs talk directly to the > file system would be ideal. And bypass the current VFS? I'm confused about what you want to achieve here. Do you want to have a module that hooks through this LSM interface be able to control access to only a specific filesystem? Or read it's ACLs from a specific filesystem? greg k-h -- greg@(kroah|wirex).com http://immunix.org/~greg _______________________________________________ linux-security-module mailing list linux-security-moduleat_private http://mail.wirex.com/mailman/listinfo/linux-security-module
This archive was generated by hypermail 2b30 : Sat Apr 14 2001 - 18:42:52 PDT