Frank Batschulat (Home) wrote:
Johannes, I do have a question about these new access checks:
Do they interfer in any way with the current behavior of granted or denied
access as defined by SUS v3 aka. POSIX/IEEE Std 1003.1, 2004 Edition for
the
various system calls involved ? i.e. does the new interface would cause
a system call like mkdir(2) or open(2) to fail now wereas it is allowed
and expected to succeed as far as the standard is concerned ?
As soon as you start manipulating your privilege set with any of the
already existing file_* privileges you in a mode of operation outside of
that SUS or POSIX defines. For example neither POSIX or SUS say
anything about file_dac_read (not surprisingly).
This proposal does impact system calls covered by POSIX/SUS BUT not for
strictly conforming applications. An OpenSolaris application that as
called setppriv(2) and changed its file_* privilege sis not a conforming
application since it is calling Solaris specific APIs.
So basically it doesn't matter.
--
Darren J Moffat
_______________________________________________
ufs-discuss mailing list
[email protected]
