From: Crispin Cowan <crispin@wirex.com>
To: "'Christoph Hellwig'" <hch@infradead.org>
Cc: magniett <Frederic.Magniette@lri.fr>,
torvalds@transmeta.com, "Stephen D. Smalley" <sds@epoch.ncsc.mil>,
greg@kroah.com, linux-security-module@wirex.com,
linux-kernel@vger.kernel.org,
"Makan Pourzandi (LMC)" <Makan.Pourzandi@ericsson.ca>
Subject: Re: [BK PATCH] LSM changes for 2.5.59
Date: Wed, 12 Feb 2003 14:22:34 -0800 [thread overview]
Message-ID: <3E4AC92A.4020705@wirex.com> (raw)
In-Reply-To: 20030212183812.A14810@infradead.org
[-- Attachment #1: Type: text/plain, Size: 2023 bytes --]
'Christoph Hellwig' wrote:
>[argg, any chance you two could get RFC-complaint mailers?]
>
>On Wed, Feb 12, 2003 at 07:11:09PM +0000, magniett wrote:
>
>
>>exist. For finishing : PLEASE, stop reducing LSM possibilities : it cost a lot to develop things for a hook and then
>>redevelopping it for a classical syscall interposition.
>>
>>
>There's no one taking away the LSM patches. Anyway life would be a lot
>simpler if you actually announced the stuff you do on lkml instead of hiding
>behind the moon. The only chance hook you need will stay is that you
>discuss them publically here.
>
For the second time in a week, I agree with HCH: If you are developing
an LSM module, then by all means please make it publicly known. Whether
we host your source or not, we want to at least link to your site from
http://lsm.immunix.org/lsm_modules.html
WRT "taking away LSM patches": HCH wants to remove hooks that "no one
uses" and also complains about LSM being a big ugly undesigned hack
lacking abstraction. LSM does have an abstract design: it mediates
access to major internal kernel objects (processes, inodes, etc.) by
user-space processes, throwing access requests out to the LSM module. If
you remove some of these hooks because they don't have a *present*
module using them, then you break the abstraction.
People tell me that preserving functionality for the sake of abstraction
is "not the Linux way". Ok, sure, but you degrade the quality of
abstraction if you aggressively prune the interface.
But it would be much better to short-circuit that debate, and have
extant modules that use the hooks than to try to defend them on the
basis of abstraction. So if your sekrit module uses a hook, post here,
or your hook may go away.
Crispin
--
Crispin Cowan, Ph.D.
Chief Scientist, WireX http://wirex.com/~crispin/
Security Hardened Linux Distribution: http://immunix.org
Available for purchase: http://wirex.com/Products/Immunix/purchase.html
Just say ".Nyet"
[-- Attachment #2: Type: application/pgp-signature, Size: 252 bytes --]
next prev parent reply other threads:[~2003-02-12 22:12 UTC|newest]
Thread overview: 61+ messages / expand[flat|nested] mbox.gz Atom feed top
2003-02-12 16:58 [BK PATCH] LSM changes for 2.5.59 Makan Pourzandi (LMC)
2003-02-12 18:45 ` 'Christoph Hellwig'
2003-02-12 19:11 ` magniett
2003-02-12 18:38 ` 'Christoph Hellwig'
2003-02-12 22:22 ` Crispin Cowan [this message]
2003-02-12 23:05 ` What went wrong with LSM, was: " 'Christoph Hellwig'
2003-02-12 23:24 ` Jesse Pollard
2003-02-13 1:02 ` James Morris
2003-02-13 4:19 ` Crispin Cowan
[not found] ` <mailman.1045110181.1643.linux-kernel2news@redhat.com>
2003-02-13 5:12 ` Pete Zaitcev
2003-02-13 6:52 ` Crispin Cowan
2003-02-13 1:56 ` Casey Schaufler
2003-02-13 4:37 ` Crispin Cowan
-- strict thread matches above, loose matches on Subject: below --
2003-02-13 4:08 Mika Kukkonen
2003-02-12 15:37 Pete Loscocco
[not found] <b28k4f$hp4$1@abraham.cs.berkeley.edu>
2003-02-12 8:27 ` LA Walsh
2003-02-10 19:57 Stephen D. Smalley
2003-02-10 22:38 ` LA Walsh
2003-02-10 16:55 Stephen D. Smalley
2003-02-11 8:05 ` Christoph Hellwig
2003-02-13 11:08 ` Chris Wright
2003-02-06 15:02 Stephen D. Smalley
2003-02-06 15:18 ` Christoph Hellwig
2003-02-06 17:16 ` David Wagner
2003-02-06 17:45 ` Christoph Hellwig
2003-02-06 17:51 ` Alan Cox
2003-02-08 2:20 ` jmjones
2003-02-08 4:13 ` Miles Bader
2003-02-09 20:06 ` Christoph Hellwig
2003-02-10 1:39 ` Crispin Cowan
2003-02-10 3:02 ` LA Walsh
2003-02-10 3:40 ` Crispin Cowan
2003-02-10 7:34 ` LA Walsh
2003-02-10 8:11 ` Chris Wright
2003-02-10 8:21 ` 'Christoph Hellwig'
2003-02-10 8:33 ` Crispin Cowan
2003-02-10 8:39 ` 'Christoph Hellwig'
2003-02-10 13:31 ` Alan Cox
2003-02-10 17:29 ` Casey Schaufler
2003-02-10 20:51 ` LA Walsh
2003-02-10 21:36 ` David Wagner
2003-02-10 22:14 ` Bill Davidsen
2003-02-11 1:35 ` Dave Jones
2003-02-11 19:44 ` Bill Davidsen
2003-02-10 4:06 ` J Sloan
2003-02-10 5:59 ` David Wagner
2003-02-10 7:31 ` Christoph Hellwig
2003-02-05 16:59 Stephen D. Smalley
2003-02-05 16:47 Stephen D. Smalley
2003-02-05 16:49 ` Christoph Hellwig
2003-02-05 22:07 ` Greg KH
2003-02-05 22:30 ` Christoph Hellwig
2003-02-05 22:39 ` Russell Coker
2003-02-05 22:41 ` Christoph Hellwig
2003-02-05 15:00 Stephen D. Smalley
2003-02-05 15:34 ` Christoph Hellwig
2003-02-05 16:26 ` Mark Hahn
2003-02-05 13:45 Stephen D. Smalley
2003-02-05 14:13 ` Christoph Hellwig
2003-02-05 4:15 Greg KH
2003-02-05 8:47 ` Christoph Hellwig
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=3E4AC92A.4020705@wirex.com \
--to=crispin@wirex.com \
--cc=Frederic.Magniette@lri.fr \
--cc=Makan.Pourzandi@ericsson.ca \
--cc=greg@kroah.com \
--cc=hch@infradead.org \
--cc=linux-kernel@vger.kernel.org \
--cc=linux-security-module@wirex.com \
--cc=sds@epoch.ncsc.mil \
--cc=torvalds@transmeta.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox