For such ports would we need to have security system calls operating in both
64bit and 32bit versions? For SE Linux half the programs that use the SE
system calls are specific to SE Linux (loading policy, showing or toggling
"enforcing mode", etc), the other half are modified versions of ls, ps, cron,
login, and a few other important system programs.
I can't imagine why you would want to use a 32bit policy loading program on a
64bit SE kernel.
As for cron etc, is it going to be difficult to get those programs compiled
for 64bit operation?
> Some ports even only have 32bit userland but 64bit kernel (like sparc64 or
> mips64)
So for those ports we could have a straight 32bit interface and again have no
problems.
> The 32bit and the 64bit worlds have different data types. Structure
> layout are different. To handle this the kernel has an emulation
> layer that converts the arguments of ioctls and system calls between
> 32bit and 64bit.
Which is terribly ugly.
I agree with the point about not wanting to be converting between 32bit and
64bit for the LSM calls. However I am not certain that we need to support
both 32bit and 64bit interfaces to LSM on the same platform.
-- http://www.coker.com.au/selinux/ My NSA Security Enhanced Linux packages http://www.coker.com.au/bonnie++/ Bonnie++ hard drive benchmark http://www.coker.com.au/postal/ Postal SMTP/POP benchmark http://www.coker.com.au/~russell/ My home page- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/