[DGD] Kernel Lib Wiztool/Auto security
Gary Preston
gary at mups.co.uk
Fri Jul 19 00:53:26 CEST 2013
I've been reading through the kernel library source to get a better understanding of the security measures it takes and why (that and the various docs on the phantasmal site). Whilst doing so, I noticed that the kernel/lib/wiztool has numerous functions which appear to partially duplicate the auto object security checks.
For example, wiztool clone_object checks path for /kernel/ or read access before invoking the parent class clone_object function on the auto object which repeats those checks plus a number of additional checks.
Is there ever a case when the wiztool object would not inherit from the auto object? Or is there another reason behind the wiztool duplicating some of the security checks that the auto object will perform anyway?
Cheers,
Gary
More information about the DGD
mailing list