Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S261625AbVBJUxa (ORCPT ); Thu, 10 Feb 2005 15:53:30 -0500 Received: (majordomo@vger.kernel.org) by vger.kernel.org id S261919AbVBJUxa (ORCPT ); Thu, 10 Feb 2005 15:53:30 -0500 Received: from rproxy.gmail.com ([64.233.170.199]:34228 "EHLO rproxy.gmail.com") by vger.kernel.org with ESMTP id S261625AbVBJUxZ (ORCPT ); Thu, 10 Feb 2005 15:53:25 -0500 DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:reply-to:to:subject:cc:mime-version:content-type:content-transfer-encoding; b=C/IZj7oCS9rCvjF3Ey56dUCS074+znAfGDhwZ+JlBpaJumBDG5LtY3wwhE4btLKgoIQc/F02m1FrvqM+Z+pDUsmTkhF3u3vEu4Pd2uoXDzFWxkpSkQ2y0Y7GWU5yNqcAu2U9RoSinT7Uwjb51RNAHTyDJFnNHVcXV6ZGDAQ3/vM= Message-ID: Date: Thu, 10 Feb 2005 14:51:44 -0600 From: "Jack O'Quin" Reply-To: "Jack O'Quin" To: Andrew Morton Subject: Re: 2.6.11-rc3-mm2 Cc: Christoph Hellwig , linux-kernel@vger.kernel.org, Paul Davis , Con Kolivas , rlrevell@joe-job.com, Chris Wright , Ingo Molnar Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: linux-kernel-owner@vger.kernel.org X-Mailing-List: linux-kernel@vger.kernel.org Content-Length: 1896 Lines: 45 [direct reply bounced, resending via gmail] Andrew Morton writes: > Christoph Hellwig wrote: > > > > On Thu, Feb 10, 2005 at 02:35:08AM -0800, Andrew Morton wrote: > > > > > > > > > ftp://ftp.kernel.org/pub/linux/kernel/people/akpm/patches/2.6/2.6.11-rc3/2.6.11-rc3-mm2/ > > > > > > > > > - Added the mlock and !SCHED_OTHER Linux Security Module for the audio guys. > > > It seems that nothing else is going to come along and this is completely > > > encapsulated. > > > > Even if we accept a module that grants capabilities to groups this > > isn't fine yet because it only supports two specific capabilities > > (and even those two in different ways!) instead of adding generic > > support to bind capabilities to groups. > > I'm sure that got discussed somewhere in the 1000 emails which flew past > last time. Jack? [adding cc: for the main discussion participants] Most people felt that a more general capabilities module would be nice to have. But, no one offered any code, or volunteered to work on it. I have no objection to that approach, but am not willing or able to do it myself. My opinion is that expanding the scope of the LSM would significantly increase its security risk. That job needs to be done very carefully, by someone with a deep understanding of the kernel's internal use of capabilities. Perhaps, Christoph's suggestion could become part of a more general module, which might replace the RT-LSM in the 2.8 timeframe. Our LSM is a modest solution aimed at solving the immediate needs of audio developers and users with minimal impact on kernel security or correctness. - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/