Ratnadeep Joshi wrote:
> LSM has hooks for almost every system call.
> In file read and write calls, the hooks are for permission checking.
> The actual data that is read/written is not passed to these hooks. Is
> there any specific reason for this?
Likely a combination of "it would degrade performance" and "no one
needed it".
> Passing actual data to these file operations related hooks will be
> useful e.g. for data filtering/scanning (say for an organizational
> policy).
So if you want this change, you would have to:
* do the work to create a Linux kernel patch that does what you want
* demonstrate with experiments that performance overhead is low
* persuade people here that the change is warranted by what you want
to do with it
* persuade the LKML maintainer that they should accept your patch
based on all of the above
Which is basically what the whole LSM project had to do in the first
place to get accepted, and it was done piecewise, i.e. some parts of LSM
were never accepted by the LKML maintainers.
Crispin
--
Crispin Cowan, Ph.D. http://crispincowan.com/~crispin/
Director of Software Engineering, Novell http://novell.com
This archive was generated by hypermail 2.1.3 : Thu Oct 20 2005 - 18:24:26 PDT