Re: Early initialization of security modules

From: James Morris (jmorrisat_private)
Date: Wed Sep 25 2002 - 09:46:34 PDT

  • Next message: Stephen Smalley: "Re: Early initialization of security modules"

    On Wed, 25 Sep 2002, Stephen Smalley wrote:
    
    > initial task), and I think that Chris has an experimental patch
    > implementing support for early initialization.  Such a patch would be
    > useful to SELinux, as it would ensure that we can set up the security
    > state for all kernel objects when they are created, as opposed to having
    > to play catch up via precondition functions or trying to locate all such
    > pre-existing objects during module initialization.  What do others think?
    > 
    
    Would it be possible to see the patch?  I think there may be invasiveness
    issues with some objects (e.g. some network devices, which can be
    statically or dynamically initialized).
    
    
    - James
    -- 
    James Morris
    <jmorrisat_private>
    
    
    _______________________________________________
    linux-security-module mailing list
    linux-security-moduleat_private
    http://mail.wirex.com/mailman/listinfo/linux-security-module
    



    This archive was generated by hypermail 2b30 : Wed Sep 25 2002 - 09:47:41 PDT