Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S263387AbTEIS1U (ORCPT ); Fri, 9 May 2003 14:27:20 -0400 Received: (majordomo@vger.kernel.org) by vger.kernel.org id S263389AbTEIS1U (ORCPT ); Fri, 9 May 2003 14:27:20 -0400 Received: from cerebus.wirex.com ([65.102.14.138]:50937 "EHLO figure1.int.wirex.com") by vger.kernel.org with ESMTP id S263387AbTEIS1Q (ORCPT ); Fri, 9 May 2003 14:27:16 -0400 Date: Fri, 9 May 2003 11:39:16 -0700 From: Chris Wright To: David Howells Cc: Christoph Hellwig , David Howells , Trond Myklebust , arjanv@redhat.com, viro@parcelfarce.linux.theplanet.co.uk, drepper@redhat.com, linux-kernel@vger.kernel.org, linux-fsdevel@vger.kernel.org Subject: Re: [RFC] New authentication management syscalls Message-ID: <20030509113916.A29208@figure1.int.wirex.com> Mail-Followup-To: David Howells , Christoph Hellwig , David Howells , Trond Myklebust , arjanv@redhat.com, viro@parcelfarce.linux.theplanet.co.uk, drepper@redhat.com, linux-kernel@vger.kernel.org, linux-fsdevel@vger.kernel.org References: <20030509143147.A23197@infradead.org> <552.1052502290@warthog.warthog> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <552.1052502290@warthog.warthog>; from dhowells@warthog.cambridge.redhat.com on Fri, May 09, 2003 at 06:44:50PM +0100 Sender: linux-kernel-owner@vger.kernel.org X-Mailing-List: linux-kernel@vger.kernel.org Content-Length: 1119 Lines: 30 * David Howells (dhowells@warthog.cambridge.redhat.com) wrote: > > I think this might be a better idea than the name of a mountpoint as it would > then be possible to set the tokens prior to mounting, maybe so that you _can_ > mount. > > I'm thinking a bit of samba here, where authentication information needs to be > passed upon mounting (workstation/domain, username, password). How does this map up with Viro's idea of a two stage mount. IIRC, it was someting akin to: fsfd = open(/dev/fs_type/ext2) write(fd, "device and options, potentially including auth..."); mntfd = open("mntpt"); newmount(fd, mntfd, MNT_ATTACH); or something like that. Wouldn't that give you a free form abiility to talk to the fs driver and authenticate as needed? Is this plan still alive? thanks, -chris -- Linux Security Modules http://lsm.immunix.org http://lsm.bkbits.net - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/