Re: unresolved symbol sys_newstat

From: Chris Wright (chrisat_private)
Date: Wed Jun 05 2002 - 15:10:47 PDT

  • Next message: Niki Rahimi: "Re: unresolved symbol sys_newstat"

    * Niki Rahimi (narahimiat_private) wrote:
    > 
    > I see. I am working on getting an LSM version of the Stephanie TPE(Trusted
    > Path Execution) project. See
    > http://www.packetfactory.net/projects/stephanie/ for more info. It was
    > originally written as a kernel patch for OpenBSD 2.4. I was trying to use
    > the stat functionality to get the attributes of a file's parent directory
    > before any execution call is allowed to proceed. I'll use this information
    > in a TPE function that will determine whether the directory is root owned
    > and/or group or world writeable and return a denial/access value to be
    > evaluated within the LSM framework. The stat functions make this a pretty
    > trivial task. I'm open to any suggestions you all might have on this one.
    
    Are you using the bprm security checks?  You should be able to get the
    parent inode info from:
    
    	bprm->file->f_dentry->d_parent->d_inode
    
    The inode has i_mode, i_uid, i_gid fields which sounds like all you
    need.
    
    Hope that helps,
    -chris
    
    --
    Linux Security Modules     http://lsm.immunix.org     http://lsm.bkbits.net
    _______________________________________________
    linux-security-module mailing list
    linux-security-moduleat_private
    http://mail.wirex.com/mailman/listinfo/linux-security-module
    



    This archive was generated by hypermail 2b30 : Wed Jun 05 2002 - 15:12:31 PDT