Re: KAUTH_GENERIC_CANSEE

To: tech-kern%netbsd.org@localhost
Subject: Re: KAUTH_GENERIC_CANSEE
From: Elad Efrat <elad%NetBSD.org@localhost>
Date: Tue, 22 Dec 2009 21:13:50 -0500

Hi,

Sorry for the delay...

Attached is a patch that does what was previously proposed, with the
following changes:

  - The 'seq' number is initialized to 1 instead of 0,
  - Before entering the copying procedure we're locking a
    "sysctl_file_marker" lock to make sure there's only one user of the
    code,
  - Once done, if after bumping 'seq' it wraps (i.e. goes back to 0),
    run through all processes and files (the aforementioned lock, as
    well as proc_lock, are locked) and reset their marker to 0. Then,
    bump 'seq' again to 1.

This has been tested locally, and a kernel module is available if anyone
is interested in further testing it on their own.

Please take a moment to review.

Thanks,

-e.

References:
- KAUTH_GENERIC_CANSEE
  - From: Elad Efrat
- Re: KAUTH_GENERIC_CANSEE
  - From: David Laight
- Re: KAUTH_GENERIC_CANSEE
  - From: Elad Efrat
- Re: KAUTH_GENERIC_CANSEE
  - From: Elad Efrat
- Re: KAUTH_GENERIC_CANSEE
  - From: David Laight
- Re: KAUTH_GENERIC_CANSEE
  - From: Elad Efrat
- Re: KAUTH_GENERIC_CANSEE
  - From: David Laight
- Re: KAUTH_GENERIC_CANSEE
  - From: Elad Efrat

Prev by Date: make module loading by boot installboot patchable?
Next by Date: Re: KAUTH_GENERIC_CANSEE
Previous by Thread: Re: KAUTH_GENERIC_CANSEE
Next by Thread: Re: KAUTH_GENERIC_CANSEE
Indexes:

Home | Main Index | Thread Index | Old Index