New in-kernel privilege API: priv(9)
Ceri Davies
ceri at submonkey.net
Wed Sep 13 11:41:19 PDT 2006
On Wed, Sep 13, 2006 at 03:29:14PM +0100, Robert Watson wrote:
> What does this all mean in practice? It means replacing suser(9) and
> suser_cred(9) with calls that express the specific privilege being checked
> for. I took the most straight forward possible implementation: I reviewed
> all privilege checks in the kernel, identified all identical privileges and
> categorized all privileges by subsystem. I then assigned unique numeric
> constants to each unique privilege, and added a privilege identifier
> argument to the two new functions, priv_check(9) and priv_check_cred(9).
Is this wilfully different from the privileges(5) model in Solaris 10
(http://docs.sun.com/app/docs/doc/816-5175/6mbba7f3b?a=view) ?
It seems that there would be some benefit in having at least a minimal
common API and set of privilege names, not least to help with issues such
as that raised in http://issues.apache.org/bugzilla/show_bug.cgi?id=34671.
Having only just started to look over your work, I'll be happy to be
put straight if we're talking about completely different things, but on
the surface they're looking very similar.
Ceri
--
That must be wonderful! I don't understand it at all.
-- Moliere
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-arch/attachments/20060913/77366a66/attachment.pgp
More information about the freebsd-arch
mailing list