If use proc, how to ensure that only privilege user (i.e. root or net_admin) could communicate with kernel. As I know, any user app could read/write via proc.
Thanks Fan On Fri, Jun 17, 2011 at 7:51 PM, Peter Teoh <htmldevelo...@gmail.com> wrote: > checkout sysctl: > > http://www.google.com/search?q=sysctl+android<http://www.google.com/search?q=sysctl+android&num=100> > > For example, inside /etc/sysctl.conf, enter arp_filter entry: > > net.ipv4.conf.all.arp_filter=1 > > Or you can configure it via command line with: > > echo 1 > /proc/sys/net/ipv4/conf/all/arp_filter > > And inside the kernel source code: > > net/ipv4/devinet.c: > DEVINET_SYSCTL_RW_ENTRY(ARPFILTER, "arp_filter"), > > And the implementation function: > > ./ipv4/arp.c: > static int arp_filter(__be32 sip, __be32 tip, struct net_device *dev) > dont_send = arp_filter(sip, tip, dev); > > (with adaptation from: > > http://linux-ip.net/html/ether-arp.html > > <http://linux-ip.net/html/ether-arp.html> > http://lwn.net/Articles/45386/#arp_filter) > > On Sat, Jun 18, 2011 at 4:51 AM, fan zhang <fzhang...@gmail.com> wrote: > >> Is it possible to use proc that not requires user app having root/net >> admin. >> >> Could you compare proc, netlink and new virtual fs? >> >> >> Thanks >> >> Fan >> >> >> >> >> On Fri, Jun 17, 2011 at 12:27 PM, Pavan Savoy <pavan.sa...@gmail.com>wrote: >> >>> On Fri, Jun 17, 2011 at 9:13 AM, fan zhang <fzhang...@gmail.com> wrote: >>> > We developed an Android service and a kernel module. Android service >>> > and the Kernel module need to exchange data with each other. >>> > >>> > >>> > Following are the requirements for the IPC between user space and >>> > Kernel. >>> > >>> > 1. The communication should be secure. No authorized apps could not >>> > talk to that Kernel module. >>> > >>> > 2. IPC should have minimal impact to the Kernel operation (scheduling >>> > etc) >>> > >>> > 3. The communication should be duplex. >>> > >>> > Please give me some suggestions to setup that IPC. >>> >>> I've always liked netlink, However the genetlink library is kind of >>> missing from Android. >>> But it does suffice to all your requirements. >>> >>> >>> > Thanks >>> > >>> > Fan >>> > >>> > -- >>> > unsubscribe: android-kernel+unsubscr...@googlegroups.com >>> > website: http://groups.google.com/group/android-kernel >>> >>> >>> >>> -- >>> --Pavan Savoy >>> >>> -- >>> unsubscribe: android-kernel+unsubscr...@googlegroups.com >>> website: http://groups.google.com/group/android-kernel >> >> >> -- >> unsubscribe: android-kernel+unsubscr...@googlegroups.com >> website: http://groups.google.com/group/android-kernel >> > > > > -- > Regards, > Peter Teoh > > -- > unsubscribe: android-kernel+unsubscr...@googlegroups.com > website: http://groups.google.com/group/android-kernel > -- unsubscribe: android-kernel+unsubscr...@googlegroups.com website: http://groups.google.com/group/android-kernel
