Re: [RFC] New authentication management syscalls

Chris Wright (chris@wirex.com)
Fri, 9 May 2003 11:39:16 -0700

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Richard B. Johnson: "Re: The disappearing sys_call_table export."
Previous message: William Lee Irwin III: "Re: [PATCH] i386 uaccess to fixmap pages"

* David Howells (dhowells@warthog.cambridge.redhat.com) wrote:
>
> I think this might be a better idea than the name of a mountpoint as it would
> then be possible to set the tokens prior to mounting, maybe so that you _can_
> mount.
>
> I'm thinking a bit of samba here, where authentication information needs to be
> passed upon mounting (workstation/domain, username, password).

How does this map up with Viro's idea of a two stage mount. IIRC, it
was someting akin to:

fsfd = open(/dev/fs_type/ext2)
write(fd, "device and options, potentially including auth...");
mntfd = open("mntpt");
newmount(fd, mntfd, MNT_ATTACH);

or something like that. Wouldn't that give you a free form abiility to
talk to the fs driver and authenticate as needed? Is this plan still
alive?

thanks,
-chris

-- 
Linux Security Modules     http://lsm.immunix.org     http://lsm.bkbits.net
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Next message: Richard B. Johnson: "Re: The disappearing sys_call_table export."
Previous message: William Lee Irwin III: "Re: [PATCH] i386 uaccess to fixmap pages"