next up previous
Next: Object Specific IPC Hooks Up: IPC Hooks Previous: IPC Hooks

Common IPC Hooks

The kernel's IPC object data structures share a common credential structure, kern_ipc_perm. This structure is used by the kernel's ipcperms() function when checking IPC permissions. LSM adds a security field to this structure and an ipc_security_ops hook, permission(), to ipcperms() to give the security module access to these existing mediation points. LSM also defines an ipc_security_ops hook, getinfo(), to mediate info requests for any of the IPC objects.

James Morris