On Tue, 2005-10-25 at 11:50 +0100, Neal H. Walfield wrote: > > > Yes. One of our aimes is to build a unix replacing OS. > > I tried to point to this compatibility layer. Of course we use > > capabilities in the core, but the POSIX layer has to support acl based > > access control. > > I'm not convinced that we have to support ACLs. I think the question > needs to be asked: how many applications rely of ACLs?
The answer, in practice, is "zero", because the majority of UNIX systems do not implement ACLs. A very small number of applications rely on the access(2) system call. All of these are wrong, because the answers provided by access(2) do not match the behavior of open(2) in many versions of UNIX. The real question is: what support do we need for UIDs? I suggest that the answer may well be "none". The only programs that use UIDs actively are the ones that call setuid, and these are exactly the sort of privileged apps we need to rebuild. > Many > applications just open files and read and write some bytes. For these > applications, the fact that access is granted based on an ACL, a > capability or something else is immaterial: if open succeeds and > returns a file descriptor to the named file then all is well. Yes. This statement is reinforced by many posix-ish "glue" libraries that have been used to bring up UNIX applications (including, by the way, emacs) on non-UNIX systems. shap _______________________________________________ L4-hurd mailing list [email protected] http://lists.gnu.org/mailman/listinfo/l4-hurd
