YAMAMOTO Takashi wrote:

> i have no good idea off hand.

:)

> VOP_ACCESS is the right way to check permissions,
> but it doesn't have "only root can.." functionality.
> we can change VOP, but it's almost impossible to implement
> for some filesystems.

right. however, let's separate the interface from the implementation.
the first we want to add. the second, though questionable, will cover
most environments -- we can always document caveats like we already
do for some subsystems.

later on, when we have better ways of implementing it, it will be
changed (like many other things); that's why the posted diff adds
static vars only...

-e.