[PATCH] network device statistic hooks

From: Serge Hallyn (serue@private)
Date: Mon Aug 16 2004 - 11:51:32 PDT

Previous message: Serge Hallyn: "[PATCH] security_task_lookup hook"
Next in thread: James Morris: "Re: [PATCH] network device statistic hooks"
Reply: James Morris: "Re: [PATCH] network device statistic hooks"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Attached is a proposed patch to allow LSM's to hide the existance of
network interfaces.  This appears to require more than one pair of
hooks.  The netdev_* hooks are generic network device hooks.  The inet_*
hooks are for internet devices.  The latter know about device aliases,
such as eth0:0.

netdev_ioctl is called when most ioctl's are called on a network device.
netdev_viewdev is called when a network device is to be listed either
under /proc/net/dev, or through a SIOCGIFCONF (ifconfig -a).
inet_ioctl and inet_dumpaddr are the internet interface equivalents.

The included version of bsdjail.c is a sample user.

Please review and discuss.

thanks,
-serge
-- 
=======================================================
Serge Hallyn
Security Software Engineer, IBM Linux Technology Center
serue@private

text/x-patch attachment: netdev.diff__charset_UTF-8

Previous message: Serge Hallyn: "[PATCH] security_task_lookup hook"
Next in thread: James Morris: "Re: [PATCH] network device statistic hooks"
Reply: James Morris: "Re: [PATCH] network device statistic hooks"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.3 : Mon Aug 16 2004 - 10:48:36 PDT