Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S942923AbcJ0Wcq (ORCPT ); Thu, 27 Oct 2016 18:32:46 -0400 Received: from [65.99.196.166] ([65.99.196.166]:58412 "EHLO namei.org" rhost-flags-FAIL-FAIL-OK-OK) by vger.kernel.org with ESMTP id S933403AbcJ0Wco (ORCPT ); Thu, 27 Oct 2016 18:32:44 -0400 Date: Fri, 28 Oct 2016 09:32:29 +1100 (AEDT) From: James Morris To: Casey Schaufler cc: LSM , John Johansen , Paul Moore , Kees Cook , Stephen Smalley , Tetsuo Handa , LKLM Subject: Re: [PATCH v6 0/3] LSM: security module information improvements In-Reply-To: <00f80c77-9623-7e9e-8980-63b362a4f16c@schaufler-ca.com> Message-ID: References: <00f80c77-9623-7e9e-8980-63b362a4f16c@schaufler-ca.com> User-Agent: Alpine 2.20 (LRH 67 2015-01-07) MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Sender: linux-kernel-owner@vger.kernel.org List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Content-Length: 641 Lines: 22 On Wed, 26 Oct 2016, Casey Schaufler wrote: > Create interfaces that make it possible to deal with process > attributes in the face of multiple "major" security modules. We don't have support for multiple major modules currently (perhaps ever), so I'm not merging infrastructure which is only useful for them. > > Patch 1/3 adds /sys/kernel/security/lsm, which provides > a list of the active security modules on the system. > > $ cat /sys/kernel/security/lsm > capability,yama,loadpin,smack This may make sense on its own. Has anyone requested this, or is likely to adopt it into a distro? -- James Morris