On Tue, Jan 16, 2001 at 10:48:34AM +0100, Ingo Molnar wrote: > this is a safe, very fast [ O(1) ] object-permission model. (it's a > variation of a former idea of yours.) A process can pass object > fingerprints and kernel pointers to other processes too - thus the other > process can access the object too. Threads will 'naturally' share objects, >... Just setuid etc. doesn't work with that because access cannot be easily revoked without disturbing other clients. To handle that you would probably need a "relookup if needed" mechanism similar to what NFSv4 has, so that you can force other users to relookup after you revoked a key. That complicates the use a lot though. Also the model depends on good secure random numbers, which is questionable in many environments (e.g. a diskless box where the random device effectively gets no new input) -Andi - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to [EMAIL PROTECTED] Please read the FAQ at http://www.tux.org/lkml/
- Re: Is sendfile all that sexy? Jonathan Thackray
- Re: Is sendfile all that sexy? Matti Aarnio
- Re: Is sendfile all that sexy? H. Peter Anvin
- Re: Is sendfile all that sexy? dean gaudet
- Re: Is sendfile all that sexy? Jonathan Thackray
- Re: Is sendfile all that sexy? Linus Torvalds
- [patch] sendpath() support, 2.4.0-test3... Ingo Molnar
- Re: [patch] sendpath() support, 2.... dean gaudet
- Re: [patch] sendpath() support, 2.... Linus Torvalds
- 'native files', 'object fingerprin... Ingo Molnar
- Re: 'native files', 'object finger... Andi Kleen
- Re: 'native files', 'object finger... Ingo Molnar
- Re: 'native files', 'object finger... Andi Kleen
- O_ANY [was: Re: 'native files', '... Ingo Molnar
- Re: O_ANY [was: Re: 'native files... Ingo Molnar
- Re: O_ANY [was: Re: 'native files... Peter Samuelson
- Re: O_ANY [was: Re: 'native files... Ingo Molnar
- Re: O_ANY [was: Re: 'native files... Felix von Leitner
- Re: O_ANY [was: Re: 'native files... Andi Kleen
- Re: O_ANY [was: Re: 'native files... Mitchell Blank Jr
- Re: 'native files', 'object finger... Jamie Lokier