Subject: Re: How kauth can make meaningful decisions about passthru ioctls
To: None <tls@rek.tjls.com>
From: Elad Efrat <elad@NetBSD.org>
List: tech-security
Date: 11/30/2006 13:36:58
Thor Lancelot Simon wrote:

> I think bits in a word (READ, WRITE, READCONF, WRITECONF) is the right
> way (and it lets us add more bits later as we discover they're
> necessary); what we are trying to model, after all, is device capabilities.
> 
> I am not sure I have the right set of capabilities outlined above but it
> seems like a good start.

does it make sense to pass all of the above together in a single
request? I would like to avoid bit-fields in kauth(9).

-e.

-- 
Elad Efrat