Bug 10193 - rlocate has been locked out
rlocate has been locked out
Product: Other
Classification: Unclassified
Component: Loadable Security Modules (LSM)
All Linux
: P1 normal
Assigned To: Other/LSM
Depends on:
  Show dependency treegraph
Reported: 2008-03-07 03:00 UTC by Rudi Lippert
Modified: 2008-03-09 14:46 UTC (History)
2 users (show)

See Also:
Kernel Version: 2.6.24
Tree: Mainline
Regression: ---


Description Rudi Lippert 2008-03-07 03:00:04 UTC
Latest working kernel version: 2.6.23
Earliest failing kernel version: 2.6.24
Distribution: Gentoo / any
Hardware Environment: any
Software Environment: any
Problem Description: rlocate relies on the functions mod_reg_security, register_security, which are no longer available to out-of-tree modules.

(rlocate uses a kernel module to track changes to the file system. The gathered data is indexed in real time and can be searched using the well-known locate command.)

From http://bugs.gentoo.org/show_bug.cgi?id=207421
It appears that there's no way to do this apart from changing the kernel itself
- a patch to do this adding a new kernel configuration option
"SECURITY_MODULAR" was offered in 

but does not seem to have made it to the kernel tree, so it may be unsafe to
With a kernel compiled with that option rlocate should work unpatched.
End Quote

Steps to reproduce:
- Download rlocate-0.5.6 from http://rlocate.sf.net
- Build on a system with >=2.6.24
Comment 1 Adrian Bunk 2008-03-07 10:37:06 UTC
It is not the purpose of the Linux kernel to provide an API for external modules.

If functionality is missing in the kernel for implementing rlocate in userspace without an own module patches doing this should be submitted.

Note You need to log in before you can comment on or make changes to this bug.