Re: patch to add hook to sys_prctl

From: Stephen Smalley (sdsat_private)
Date: Fri Aug 31 2001 - 07:23:24 PDT

  • Next message: Stephen Smalley: "Re: Subtle changes to IPC alloc_security routines."

    On Fri, 31 Aug 2001, Lachlan McIlroy wrote:
    
    > Attached is a patch to add a hook into sys_prctl().  The
    > unsigned long args can be user pointers so we will need
    > to be careful when handling those.
    > 
    > Any comments/feedback...?
    
    As with fcntl and ioctl, we should probably have an explicit comment 
    in security.h warning that the arg parameters may be user space pointers
    and should not be used by the module in that case.
    
    It also seems that we should take advantage of this prctl hook
    to move the PR_GET_KEEPCAPS and PR_SET_KEEPCAPS code into the
    capabilities module, where it belongs.  What do others think?
    
    --
    Stephen D. Smalley, NAI Labs
    ssmalleyat_private
    
    
    
    
    
    _______________________________________________
    linux-security-module mailing list
    linux-security-moduleat_private
    http://mail.wirex.com/mailman/listinfo/linux-security-module
    



    This archive was generated by hypermail 2b30 : Fri Aug 31 2001 - 07:25:39 PDT