Skip to content
michal-vrabec edited this page May 24, 2020 · 1 revision

Medusafs documentation

The root of medusafs filesystem is located at /sys/kernel/security/medusafs

Implementing new files

To implement new files to medusafs, use the securityfs_create_file function from <security.h>. As the 3rd argument, use either medusafs_root_dir global variable or create your own directory with securityfs_create_dir. If you decide to use securityfs_create_dir, use medusafs_root_dir as the 2nd argument for the first created directory and the return value of securityfs_create_dir for each subsequent directory you create.

Currently implemented files

version - read-only

read - upon being read, file displays the current version of medusa as defined by MEDUSA_VERSION_NUMBER macro defined in medusafs.h header file.

get_vs - read/write

read - upon being read, file displays which virtual spaces the file with the path currently written in by write operation is in. If no file is written in or the information about virtual spaces can't be obtained, it displays a message explaing the issue.

write - tries to find a file based on the path written in by user. On success, dentry of the found file is saved and ready to be used by the read operation to display which virtual spaces the file is in.

acctypes

this directory contains directories for every access type currently registered by medusa with each one containing allowed, denied and audit file.

allowed - read-only

read - upon being read, file displays how many times this access type was allowed by medusa. denied - read-only

denied - read-only

read - upon being read, file displays how many times this access type was denied by medusa.

audit - read/write

read - upon being read, file displays if this access type is currently being audited. 1 means it is and 0 means it isn't.

write - this operation sets if this access type is to be audited based on the value written in. Any value determined by simple_strtol as true turns the auditing on and value determined as false turns the auditing off.