* John Richard Moser ([EMAIL PROTECTED]) wrote:
> Can someone point me to documentation or give me a small patch to add an
> LSM hook to kernel 2.6.10 in fs/namei.c at line 1986:
>
> new_dentry = lookup_create(&nd, 0);
> error = PTR_ERR(new_dentry);
> if (!IS_ERR(new_dentry)) {
> error = security_inode_make_hardlink(old_nd); // ADD
> error = vfs_link(old_nd.dentry, nd.dentry->d_inode,
> new_dentry);
It's already there. Look at the code in vfs_link. The security_inode_link
hook is documented in include/linux/security.h. And the restrictive policy
you're referring to is already codified in the owlsm module. See the
do_owlsm_link() function here (code's a bit old, but basic idea is still
relevant):
http://lsm.bkbits.net:8080/lsm-2.6/anno/security/[EMAIL
PROTECTED]|src/|src/security
thanks,
-chris
--
Linux Security Modules http://lsm.immunix.org http://lsm.bkbits.net
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [EMAIL PROTECTED]
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
