Re: fanotify - overall design before I start sending patches

From: Eric Paris
Date: Wed Jul 29 2009 - 16:14:28 EST

Next message: Andrew Morton: "Re: [BUGFIX] set_mempolicy(MPOL_INTERLEAV) N_HIGH_MEMORY aware"
Previous message: Hank Janssen: "RE: [PATCH 4/4] Staging: hv: Fix warning by casting a (const void*) to (void *)"
In reply to: Eric Paris: "Re: fanotify - overall design before I start sending patches"
Next in thread: Eric Paris: "Re: fanotify - overall design before I start sending patches"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 2009-07-27 at 12:33 -0600, Andreas Dilger wrote:
> On Jul 25, 2009 01:29 +0100, Jamie Lokier wrote:

> It might also make sense to verify that the process doing the open has
> at least permission to open the file in question (i.e. root) so that
> some unauthorized process cannot just get file handles to arbitrary files.

All current permissions between the listener process and the object are
done. It's quite possible to get fanotify events where the fd = -EPERM.

-Eric

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Andrew Morton: "Re: [BUGFIX] set_mempolicy(MPOL_INTERLEAV) N_HIGH_MEMORY aware"
Previous message: Hank Janssen: "RE: [PATCH 4/4] Staging: hv: Fix warning by casting a (const void*) to (void *)"
In reply to: Eric Paris: "Re: fanotify - overall design before I start sending patches"
Next in thread: Eric Paris: "Re: fanotify - overall design before I start sending patches"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]