[Dazuko-devel] system call hooking for Linux 2.6?

dazuko-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Dazuko-devel] system call hooking for Linux 2.6?

From:	John Ogness
Subject:	[Dazuko-devel] system call hooking for Linux 2.6?
Date:	Tue, 30 Aug 2005 10:40:28 +0200
User-agent:	Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.8) Gecko/20050718 Debian/1.7.8-1sarge1

Hi,

The number of complaints about using Dazuko with LSM for Linux 2.6 are
continually increasing. This is mainly a problem because many Linux
distributions compile Capabilities into the kernel (and Capabilities does
not support stacking).

Technically there is not a problem with hooking the system call table under
Linux 2.6. But this is frowned upon by the Linux kernel community, which is
why Dazuko uses LSM for Linux 2.6 instead.

The best solution would be to use DazukoFS, but this will not be available
for another year. So here are a set of questions that I would like some
feedback on:

Should Dazuko switch back to hooking the system call table for Linux 2.6
until DazukoFS is ready?

Should it be an option which method of hooking is used?

Should LSM be a fallback in case system call hooking doesn't work (or vice
versa)?

Our final decision will not have any affect on the 2.1.0 release. I am not
willing to delay the 2.1.0 release in order to add system call hooking.

John Ogness

-- 
Dazuko Maintainer

[Prev in Thread]

Current Thread

[Next in Thread]

[Dazuko-devel] system call hooking for Linux 2.6?, John Ogness <=
- RE: [Dazuko-devel] system call hooking for Linux 2.6?, Tikka, Sami, 2005/08/30

Prev by Date: Re: [Dazuko-devel] meaning of set in struct dazuko_access
Next by Date: RE: [Dazuko-devel] system call hooking for Linux 2.6?
Previous by thread: [Dazuko-devel] OpenBSD port?
Next by thread: RE: [Dazuko-devel] system call hooking for Linux 2.6?
Index(es):
- Date
- Thread