Re: patch to add hook to sys_prctl

• Previous message: Stephen Smalley: "Re: New patch for bdflush and syslog"
• In reply to: Lachlan McIlroy: "patch to add hook to sys_prctl"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, 31 Aug 2001, Lachlan McIlroy wrote:

> Attached is a patch to add a hook into sys_prctl().  The
> unsigned long args can be user pointers so we will need
> to be careful when handling those.
> 
> Any comments/feedback...?

As with fcntl and ioctl, we should probably have an explicit comment 
in security.h warning that the arg parameters may be user space pointers
and should not be used by the module in that case.

It also seems that we should take advantage of this prctl hook
to move the PR_GET_KEEPCAPS and PR_SET_KEEPCAPS code into the
capabilities module, where it belongs.  What do others think?

--
Stephen D. Smalley, NAI Labs
ssmalleyat_private





_______________________________________________
linux-security-module mailing list
linux-security-moduleat_private
http://mail.wirex.com/mailman/listinfo/linux-security-module

• Next message: Stephen Smalley: "Re: Subtle changes to IPC alloc_security routines."
• Previous message: Stephen Smalley: "Re: New patch for bdflush and syslog"
• In reply to: Lachlan McIlroy: "patch to add hook to sys_prctl"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Aug 31 2001 - 07:25:39 PDT