Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1756794AbZLXHhF (ORCPT ); Thu, 24 Dec 2009 02:37:05 -0500 Received: (majordomo@vger.kernel.org) by vger.kernel.org id S1754336AbZLXHhA (ORCPT ); Thu, 24 Dec 2009 02:37:00 -0500 Received: from netgear.net.ru ([195.178.208.66]:57002 "EHLO tservice.net.ru" rhost-flags-OK-FAIL-OK-OK) by vger.kernel.org with ESMTP id S1754219AbZLXHg7 (ORCPT ); Thu, 24 Dec 2009 02:36:59 -0500 Date: Thu, 24 Dec 2009 10:36:54 +0300 From: Evgeniy Polyakov To: Michael Stone Cc: linux-kernel@vger.kernel.org, linux-security-module@vger.kernel.org, Andi Kleen , David Lang , Oliver Hartkopp , Alan Cox , Herbert Xu , Valdis Kletnieks , Bryan Donlan , "C. Scott Ananian" , James Morris , "Eric W. Biederman" , Bernie Innocenti , Mark Seaborn , Randy Dunlap , =?utf-8?Q?Am=C3=A9rico?= Wang Subject: Re: A basic question about the security_* hooks Message-ID: <20091224073654.GD16133@ioremap.net> References: <20091224022902.GA24234@heat> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20091224022902.GA24234@heat> User-Agent: Mutt/1.5.13 (2006-08-11) Sender: linux-kernel-owner@vger.kernel.org List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Content-Length: 888 Lines: 20 On Wed, Dec 23, 2009 at 09:29:02PM -0500, Michael Stone (michael@laptop.org) wrote: > There are a variety of places where I'd like to be able to get the kernel to > return EPERM more often [1]. Many of these places already have security > hooks. > > Unfortunately, I don't feel that I can make effective use of these hooks > because they seem to be "occupied" by the large mandatory access control > frameworks. I believe you should convice selinux and friends to add support for your extension, otherwise no distribution will be able to turn it on, since no two security frameworks can be registered simultaneously. -- Evgeniy Polyakov -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/