Linux Security Modules General Security Support for the

LSMが提供するもの Opaque "security" Fields n Hooks n "security" System Call n kernel hook calls

"security" System Call long sys_security (unsigned int id, unsigned int call, unsigned long *args)

Slides: 11

Download presentation

Linux Security Modules: General Security Support for the Linux Kernel 米澤研究室　M 1　増山隆 tak@yl. is. s. u-tokyo. ac. jp

参考文献 Chris Wright et al. Linux Security Modules: General Security Support for the Linux Kernel n Linux Security ModuleのWeb Page http: //lsm. immunix. org/ n

LSMが提供するもの Opaque "security" Fields n Hooks n "security" System Call n kernel hook calls security fields security system call kernel patch = LSM security module hook functions

"security" System Call long sys_security (unsigned int id, unsigned int call, unsigned long *args) 単に security_ops->sys_securityを同じ引数で呼ぶ n 第一引数の値によって、動作、argsの解釈を決定するようにモジュールが設計できる。　c. f. ) socketcall system call n