Quoting Serge E. Hallyn ([email protected]):
> > Make it an arbitrary length bitfield with a defined byte order (little
> > endian, probably). Bits at offsets greater than the length of the
> > bitfield are defined to be zero. If the kernel encounters a set bit that
> > it doesn't recognizes, fail with EPERM. If userspace attempts to set a
> > bit that the kernel doesn't recognize, fail with EINVAL.
> >
> > It's extensible (as new capability bits are added, the length of the
> > bitfield grows), backward compatible (as long as there are no unknown
> > bits set, it'll still work) and secure (if an unknown bit is set, the
> > kernel fails immediately, so there's no chance of a "secure" app running
> > with less privileges than it expects and opening up a security hole).
>
> Sounds good.
>
> The version number will imply the bitfield length, or do we feel warm
> fuzzies if the length is redundantly encoded in the structure?
nm, 'encoded in the structure' clearly is silly.
-serge
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [email protected]
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
[Index of Archives]
[Kernel Newbies]
[Netfilter]
[Bugtraq]
[Photo]
[Stuff]
[Gimp]
[Yosemite News]
[MIPS Linux]
[ARM Linux]
[Linux Security]
[Linux RAID]
[Video 4 Linux]
[Linux for the blind]
[Linux Resources]
