Re: Linux Security *Module* Framework (Was: LSM conversion to static interface

Tetsuo Handa wrote:

quoted text

> I think there are two other problems regarding LSM. > > (1) There is only one "struct security_ops" structure in the system. > > (2) There is only one "void *security" field in "struct task_struct". > > > Years ago, there was only one MAC implementation (i.e. SELinux) > in the mainline kernel. > But now, there are many MAC (or access control/tracking) implementations > waiting for inclusion into the mainline kernel. > The competition for occupying "struct security_ops" has started. > > My idea is that, why not create chains of "struct security_ops" > (i.e. linked list of "struct security_ops") > and allow choosing which chain to use for per a "struct task_struct" basis > (i.e. add "struct security_ops" to "struct task_struct"). >

That idea was in the Stacker module, and it was tabled until there is more than one upstream LSM. In particular, it requires 2 or more LSMs that actually make sense to stack together. IMHO TOMOYO/AppArmor/SELinux are all exclusive of one another (in a running kernel) and real stacking is still pending useful component intrusion prevention modules. Such modules can be built, they just have not yet been built.

quoted text

> TOMOYO Linux is having difficulty that TOMOYO Linux unlikely be able to use > "struct security_ops" since SELinux is occupying it. >

Just disable SELinux and load TOMOYO. Oh, you can't because someone has made modules not be loadable :( Hmmm, perhaps someone could fix that by reverting the static interface patch ... :)

quoted text

> May be we should consider stackable LSM again? >

Exactly. Stacker was shelved, so to speak :) because of the lack of in-kernel modules. Soon it will be time to reconsider that. Crispin -- Crispin Cowan, Ph.D. http://crispincowan.com/~crispin CEO, Mercenary Linux http://mercenarylinux.com/ Itanium. Vista. GPLv3. Complexity at work -

unsubscribe notice

To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/


linux-kernel:
Linus Torvalds	Linux 2.6.27-rc8
Rafael J. Wysocki	2.6.27-rc4-git1: Reported regressions from 2.6.26
David Miller	[GIT]: Networking
Greg KH	[GIT PATCH] driver core patches against 2.6.24
git:
Miklos Vajna	[rfc] git submodules howto
Catalin Marinas	Re: [StGIT PATCH] Don't use patches/<branch>/current
Lars Hjemli	[ANNOUNCE] cgit 0.8
Junio C Hamano	Re: [RFC] introduce GIT_WORK_DIR environment variable
openbsd-misc:
rezidue	Speed Problems
Chris	Prolific USB-Serial Controller
Richard Daemon	Nfsen and php problems...?
Richard Stallman	Real men don't attack straw men
linux-netdev:
Jarek Poplawski	[PATCH take 2] pkt_sched: Protect gen estimators under est_lock.
Steve Glendinning	[PATCH] SMSC LAN911x and LAN921x vendor driver
Arjan van de Ven	Re: [GIT]: Networking
Denys	r8169 crash


the kernel how to power off the machine	7 hours ago	Linux kernel
struct gendisk via request_queue	9 hours ago	Linux kernel
usb mic not detected	12 hours ago	Applications and Utilities
page initialization during kernel initialization	1 day ago	Linux kernel
Read Transport Layer Data form network packets (tcp/ip)	2 days ago	Linux kernel
Getting blinking screen in Fedora 9	2 days ago	Linux general
Problem with kernel + libata	2 days ago	Linux kernel
How to detect usb device insertioin and removal event ?	3 days ago	Linux general
toshiba m30x-129 herbinaiton problem	3 days ago	Hardware
some questions regarding implement new congestion algorithm in kernel	3 days ago	Linux kernel

Re: Linux Security Module Framework (Was: LSM conversion to static interface

Online users