Re: quotactl permissions

To: David Holland <dholland-tech%netbsd.org@localhost>
Subject: Re: quotactl permissions
From: Eric Haszlakiewicz <erh%nimenees.com@localhost>
Date: Wed, 5 Sep 2012 12:14:11 -0500

On Wed, Sep 05, 2012 at 05:10:33PM +0000, David Holland wrote:
> On Wed, Sep 05, 2012 at 12:00:47PM -0500, Eric Haszlakiewicz wrote:
>  > > > > Changing it to effective uid seems like a good plan.
>  > > > 
>  > > > The change below fixes the test case. Is it safe to commit?
>  > > 
>  > > It fixes the test case, but it is still wrong.  This UID check
>  > > needs to be implemented in the kauth listener (adding a specific
>  > > case for this action if there's not one) not open-coded in the UFS code.
>  > 
>  > Here's a (completely untested) patch that should do that.
> 
> ...I don't think the check belongs in secmodel_suser.c, does it?
> 
> Or is that the general dumping ground for standard Unix security semantics?

I don't know.  I just used the only place where the KAUTH_SYSTEM_FS_QUOTA
request was implemented.

eric

Follow-Ups:
- Re: quotactl permissions
  - From: David Holland

References:
- Re: quotactl permissions
  - From: Eric Haszlakiewicz
- Re: quotactl permissions
  - From: Emmanuel Dreyfus
- Re: quotactl permissions
  - From: David Holland
- Re: quotactl permissions
  - From: Emmanuel Dreyfus
- Re: quotactl permissions
  - From: Thor Lancelot Simon
- Re: quotactl permissions
  - From: Eric Haszlakiewicz
- Re: quotactl permissions
  - From: David Holland

Prev by Date: Re: quotactl permissions
Next by Date: Re: quotactl permissions
Previous by Thread: Re: quotactl permissions
Next by Thread: Re: quotactl permissions
Indexes:

Home | Main Index | Thread Index | Old Index