From: James Morris <jmorris@namei.org>
To: "Ahmed S. Darwish" <darwish.07@gmail.com>
Cc: Chris Wright <chrisw@sous-sol.org>,
Stephen Smalley <sds@tycho.nsa.gov>,
Eric Paris <eparis@parisplace.org>,
Casey Schaufler <casey@schaufler-ca.com>,
Paul Moore <paul.moore@hp.com>, Alexey Dobriyan <adobriyan@sw.ru>,
Andrew Morton <akpm@linux-foundation.org>,
Linus <torvalds@linux-foundation.org>,
LKML <linux-kernel@vger.kernel.org>,
LSM-ML <linux-security-module@vger.kernel.org>
Subject: Re: [PATCH -v8b -rc3] Security: Introduce security= boot parameter
Date: Fri, 7 Mar 2008 12:42:03 +1100 (EST) [thread overview]
Message-ID: <Xine.LNX.4.64.0803071218400.25703@us.intercode.com.au> (raw)
In-Reply-To: <20080306160910.GA10319@ubuntu>
On Thu, 6 Mar 2008, Ahmed S. Darwish wrote:
> + * Each LSM must pass this method before registering its own operations
> + * to avoid security registration races. This method may also be used
> + * to check if your LSM is currently loaded.
The 2nd sentence is no longer correct in general, as the function can only
be called during init. See a fixup patch below.
Otherwise, looks good!
Acked-by: James Morris <jmorris@namei.org>
I've applied the patch and a comment fixup to
git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/security-testing-2.6.git#next
commit d6bb3bacedb68aa41ea7598e0cf1bef33cebbcc9
Author: James Morris <jmorris@namei.org>
Date: Fri Mar 7 12:23:49 2008 +1100
security: fix up documentation for security_module_enable
security_module_enable() can only be called during kernel init.
Signed-off-by: James Morris <jmorris@namei.org>
diff --git a/security/security.c b/security/security.c
index 4377b00..8aa2f54 100644
--- a/security/security.c
+++ b/security/security.c
@@ -83,7 +83,7 @@ __setup("security=", choose_lsm);
*
* Each LSM must pass this method before registering its own operations
* to avoid security registration races. This method may also be used
- * to check if your LSM is currently loaded.
+ * to check if your LSM is currently loaded during kernel initialization.
*
* Return true if:
* -The passed LSM is the one chosen by user at boot time,
--
James Morris
<jmorris@namei.org>
prev parent reply other threads:[~2008-03-07 1:43 UTC|newest]
Thread overview: 6+ messages / expand[flat|nested] mbox.gz Atom feed top
2008-03-06 12:19 [PATCH -v8 -rc3] Security: Introduce security= boot parameter Ahmed S. Darwish
2008-03-06 13:31 ` James Morris
2008-03-06 14:32 ` Ahmed S. Darwish
2008-03-06 15:03 ` James Morris
2008-03-06 16:09 ` [PATCH -v8b " Ahmed S. Darwish
2008-03-07 1:42 ` James Morris [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=Xine.LNX.4.64.0803071218400.25703@us.intercode.com.au \
--to=jmorris@namei.org \
--cc=adobriyan@sw.ru \
--cc=akpm@linux-foundation.org \
--cc=casey@schaufler-ca.com \
--cc=chrisw@sous-sol.org \
--cc=darwish.07@gmail.com \
--cc=eparis@parisplace.org \
--cc=linux-kernel@vger.kernel.org \
--cc=linux-security-module@vger.kernel.org \
--cc=paul.moore@hp.com \
--cc=sds@tycho.nsa.gov \
--cc=torvalds@linux-foundation.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.