Re: Addition to kauth(9) framework

To: Aleksey Cheusov <vle%gmx.net@localhost>
Subject: Re: Addition to kauth(9) framework
From: Martin Husemann <martin%duskware.de@localhost>
Date: Mon, 29 Aug 2011 17:45:15 +0200

On Mon, Aug 29, 2011 at 02:36:04PM +0200, Aleksey Cheusov wrote:
> If sender (chroot(2)) cares about unsharing kauth_cred_t
> structure, all listeners will set their data without any problem provided 
> that kauth_key_t keys they use
> are different. Key uniqueness is garanteed by
> kauth_register_key.

I'm sorry, I'm very likely still missing some important detail:

this sounds to me as if we have to choose here between the sender
distributing individual unshared credentials to every receiver (I
thought kauth would handle the messaging?), which means every receiver
gets its own copy, but those lack modifications done by previous
receivers - or if the receiver does the unsharing, its modifications
will get lost if we have multiple receivers.

Both options sound wrong to me, what did I misunderstand?

Thanks,

Martin

Follow-Ups:
- Re: Addition to kauth(9) framework
  - From: Aleksey Cheusov

References:
- Re: Addition to kauth(9) framework
  - From: Christos Zoulas
- Re: Addition to kauth(9) framework
  - From: YAMAMOTO Takashi
- Re: Addition to kauth(9) framework
  - From: Aleksey Cheusov
- Re: Addition to kauth(9) framework
  - From: Martin Husemann
- Re: Addition to kauth(9) framework
  - From: Aleksey Cheusov
- Re: Addition to kauth(9) framework
  - From: Martin Husemann
- Re: Addition to kauth(9) framework
  - From: Aleksey Cheusov

Prev by Date: Re: netbsd32 emulation in driver open() or read()
Next by Date: Re: netbsd32 emulation in driver open() or read()
Previous by Thread: Re: Addition to kauth(9) framework
Next by Thread: Re: Addition to kauth(9) framework
Indexes:

Home | Main Index | Thread Index | Old Index