Re: [RFC] SO_PEERSEC - security credentials for Unix stream sockets

From: Chris Wright (chrisw@private)
Date: Mon Dec 15 2003 - 17:32:41 PST

Next message: James Morris: "Re: [RFC] SO_PEERSEC - security credentials for Unix stream sockets"

Previous message: James Morris: "Re: [RFC] SO_PEERSEC - security credentials for Unix stream sockets"
In reply to: James Morris: "Re: [RFC] SO_PEERSEC - security credentials for Unix stream sockets"
Next in thread: James Morris: "Re: [RFC] SO_PEERSEC - security credentials for Unix stream sockets"
Reply: James Morris: "Re: [RFC] SO_PEERSEC - security credentials for Unix stream sockets"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

* James Morris (jmorris@private) wrote:
> I'm not sure how this would be a namespace issue -- do you mean a data 
> format issue?

I just mean, applications are coded for specific security module.

> Yep, allowing the security module to update the returned length is now
> implemented.
> 
> > Perhaps buffer is too small, can len be vector for that info?
> 
> I would not advise updating len on error -- it's a bad idea in general to
> interpret any returned data from failed syscalls except the error number.

Right, in some cases a NULL buffer or 0 buflen is a probe for size.

thanks,
-chris
-- 
Linux Security Modules     http://lsm.immunix.org     http://lsm.bkbits.net

Next message: James Morris: "Re: [RFC] SO_PEERSEC - security credentials for Unix stream sockets"
Previous message: James Morris: "Re: [RFC] SO_PEERSEC - security credentials for Unix stream sockets"
In reply to: James Morris: "Re: [RFC] SO_PEERSEC - security credentials for Unix stream sockets"
Next in thread: James Morris: "Re: [RFC] SO_PEERSEC - security credentials for Unix stream sockets"
Reply: James Morris: "Re: [RFC] SO_PEERSEC - security credentials for Unix stream sockets"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Mon Dec 15 2003 - 17:33:52 PST