I know that the issue of early initialization of security modules came up at OLS (i.e. initializing right after the security scaffold has initialized, prior to any kernel objects being created other than the initial task), and I think that Chris has an experimental patch implementing support for early initialization. Such a patch would be useful to SELinux, as it would ensure that we can set up the security state for all kernel objects when they are created, as opposed to having to play catch up via precondition functions or trying to locate all such pre-existing objects during module initialization. What do others think? -- Stephen D. Smalley, NAI Labs ssmalleyat_private _______________________________________________ linux-security-module mailing list linux-security-moduleat_private http://mail.wirex.com/mailman/listinfo/linux-security-module
This archive was generated by hypermail 2b30 : Wed Sep 25 2002 - 08:49:43 PDT