Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S932647AbVJGOFr (ORCPT ); Fri, 7 Oct 2005 10:05:47 -0400 Received: (majordomo@vger.kernel.org) by vger.kernel.org id S932639AbVJGOFr (ORCPT ); Fri, 7 Oct 2005 10:05:47 -0400 Received: from mail23.sea5.speakeasy.net ([69.17.117.25]:44259 "EHLO mail23.sea5.speakeasy.net") by vger.kernel.org with ESMTP id S932647AbVJGOFq (ORCPT ); Fri, 7 Oct 2005 10:05:46 -0400 Date: Fri, 7 Oct 2005 10:05:43 -0400 (EDT) From: James Morris X-X-Sender: jmorris@excalibur.intercode To: David Howells cc: Linus Torvalds , Andrew Morton , keyrings@linux-nfs.org, linux-kernel@vger.kernel.org, Stephen Smalley Subject: Re: [Keyrings] [PATCH] Keys: Add LSM hooks for key management In-Reply-To: <21699.1128675816@warthog.cambridge.redhat.com> Message-ID: References: <29942.1128529714@warthog.cambridge.redhat.com> <23641.1128596760@warthog.cambridge.redhat.com> <30054.1128611494@warthog.cambridge.redhat.com> <21699.1128675816@warthog.cambridge.redhat.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: linux-kernel-owner@vger.kernel.org X-Mailing-List: linux-kernel@vger.kernel.org Content-Length: 776 Lines: 28 On Fri, 7 Oct 2005, David Howells wrote: > James Morris wrote: > > > > > > Should I expand the permissions mask to include a setattr? > > > > > > > > Possibly for setperm and chown. > > > > > > For setperm? > > > > It changes an attribute of a key, for which you have DAC checks, therefore > > you could assume that we'd also want MAC checks. > > Does it matter that you can take away your own permission to change the > permissions? Not that I'm aware of. - James -- James Morris - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/