Rogier Wolff writes:
>On Sat, Jul 29, 2006 at 01:22:05PM -0400, Dave Jones wrote:
>> I had visions of extending verify_command() to be of the form..
>>
>> if (devicevendor==PLEXTOR) {
>> safe_for_write(ENABLE_BURN_PROOF);
>> safe_for_write(ENABLE_FROBNICATOR);
>> }
>> etc..
>
>Almost there....
>
>Instead it should walk a (device-specific (*)) table, that specifies
>what is "safe". The table has masks to specify which bits are
>important and what values are expected and allowed etc etc.
>
>This table could be initialized "empty".
>
>Next a simple interface should allow root to modify the table.
Yup. I proposed a proof-of-concept patch to allow this a while back -
let root define policy per-device:
http://marc.theaimsgroup.com/?l=linux-scsi&m=113214433405637&w=2
--
Steve McIntyre, Cambridge, UK. steve@xxxxxxxxxx
Into the distance, a ribbon of black
Stretched to the point of no turning back
-
: send the line "unsubscribe linux-scsi" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
