Re: Addition to kauth(9) framework

To: yamt%mwd.biglobe.ne.jp@localhost, christos%astron.com@localhost
Subject: Re: Addition to kauth(9) framework
From: "Aleksey Cheusov" <vle%gmx.net@localhost>
Date: Mon, 29 Aug 2011 11:13:56 +0200

> >>> - chroot(2)-ed process is given new kauth_cred_t with reference count
> >>>   equal to 1.
> >>
> >>can you find a way to avoid this?
> >>
> >>YAMAMOTO Takashi
> > 
> > He tried and I think that this is the minimal hook he needs.
> 
> do you mean that we need to unshare the credential unconditionally,
> regardless his module is used or not?  why?

Suppose we have two or more loaded modules listerning for KAUTH_CRED_CHROOT.
Which one should create new kauth_cred_t structure?
What is the criteria? If both, we have a problem.

-- 
NEU: FreePhone - 0ct/min Handyspartarif mit Geld-zurück-Garantie!               
Jetzt informieren: http://www.gmx.net/de/go/freephone

Follow-Ups:
- Re: Addition to kauth(9) framework
  - From: Martin Husemann

References:
- Re: Addition to kauth(9) framework
  - From: Christos Zoulas
- Re: Addition to kauth(9) framework
  - From: YAMAMOTO Takashi

Prev by Date: Re: Addition to kauth(9) framework
Next by Date: Re: Addition to kauth(9) framework
Previous by Thread: Re: Addition to kauth(9) framework
Next by Thread: Re: Addition to kauth(9) framework
Indexes:

Home | Main Index | Thread Index | Old Index