Home » Mailing list archives » linux-kernel » 2007 » September » 24

Re: [PATCH 2/3] CRED: Split the task security data and move part of it into struct cred

!MAILaRCHIVE_VOTE_RePLACE
Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]
[view in full thread]
From: David Howells <dhowells@...>
To: Serge E. Hallyn <serge@...>
Cc: <dhowells@...>, Stephen Smalley <sds@...>, <viro@...>, <hch@...>, <Trond.Myklebust@...>, <casey@...>, <linux-kernel@...>, <selinux@...>, <linux-security-module@...>
Subject: Re: [PATCH 2/3] CRED: Split the task security data and move part of it into struct cred
Date: Monday, September 24, 2007 - 11:52 am

Serge E. Hallyn <serge@hallyn.com> wrote:


Think kernel service rather than daemon.  NFSd provides its own daemons to
override the security of, whereas cachefiles runs in the process context of
whoever called NFS.


That's more or less correct.  You have to add the pagefault handler to that
list.


Look in:

[PATCH 04/22] CRED: Request a credential record for a kernel service

Which was part of a patchset I sent on the 21st Sept.  get_kernel_cred() is in
turn used by:

[PATCH 13/22] CacheFiles: A cache that backs onto a mounted filesystem

David
-
Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]
Messages in current thread:
[PATCH 0/3] Introduce credential record, David Howells, (Wed Sep 19, 12:17 pm)
[PATCH 1/3] CRED: Introduce a COW credentials record, David Howells, (Wed Sep 19, 12:17 pm)
[PATCH 2/3] CRED: Split the task security data and move part..., David Howells, (Wed Sep 19, 12:18 pm)
Re: [PATCH 2/3] CRED: Split the task security data and move ..., Serge E. Hallyn, (Mon Sep 24, 10:00 am)
Re: [PATCH 2/3] CRED: Split the task security data and move ..., Stephen Smalley, (Mon Sep 24, 10:21 am)
Re: [PATCH 2/3] CRED: Split the task security data and move ..., David Howells, (Wed Sep 26, 9:30 am)
Re: [PATCH 2/3] CRED: Split the task security data and move ..., Casey Schaufler, (Wed Sep 26, 10:58 am)
Re: [PATCH 2/3] CRED: Split the task security data and move ..., Stephen Smalley, (Wed Sep 26, 10:14 am)
Re: [PATCH 2/3] CRED: Split the task security data and move ..., Serge E. Hallyn, (Mon Sep 24, 11:35 am)
Re: [PATCH 2/3] CRED: Split the task security data and move ..., David Howells, (Mon Sep 24, 11:52 am)
Re: [PATCH 2/3] CRED: Split the task security data and move ..., Casey Schaufler, (Wed Sep 19, 1:28 pm)
Re: [PATCH 2/3] CRED: Split the task security data and move ..., David Howells, (Wed Sep 19, 6:57 pm)
Re: [PATCH 2/3] CRED: Split the task security data and move ..., Casey Schaufler, (Thu Sep 20, 12:31 pm)
Re: [PATCH 2/3] CRED: Split the task security data and move ..., David Howells, (Thu Sep 20, 1:17 pm)
Re: [PATCH 2/3] CRED: Split the task security data and move ..., David Howells, (Thu Sep 20, 1:33 pm)
[PATCH 3/3] CRED: Move the effective capabilities into the c..., David Howells, (Wed Sep 19, 12:18 pm)
Re: [PATCH 3/3] CRED: Move the effective capabilities into t..., Andrew Morgan, (Thu Sep 20, 12:11 am)
Re: [PATCH 3/3] CRED: Move the effective capabilities into t..., Al Viro, (Wed Sep 26, 2:23 pm)
Re: [PATCH 3/3] CRED: Move the effective capabilities into t..., Trond Myklebust, (Thu Sep 20, 9:38 am)
Re: [PATCH 3/3] CRED: Move the effective capabilities into t..., Casey Schaufler, (Thu Sep 20, 11:36 am)
Re: [PATCH 3/3] CRED: Move the effective capabilities into t..., Trond Myklebust, (Thu Sep 20, 12:09 pm)
Re: [PATCH 3/3] CRED: Move the effective capabilities into t..., David Howells, (Thu Sep 20, 4:15 am)