[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <alpine.LFD.0.999.0710241636010.30120@woody.linux-foundation.org>
Date: Wed, 24 Oct 2007 16:42:50 -0700 (PDT)
From: Linus Torvalds <torvalds@...ux-foundation.org>
To: Adrian Bunk <bunk@...nel.org>
cc: Casey Schaufler <casey@...aufler-ca.com>,
Simon Arlott <simon@...e.lp0.eu>,
Chris Wright <chrisw@...s-sol.org>,
linux-kernel@...r.kernel.org,
linux-security-module@...r.kernel.org,
Jan Engelhardt <jengelh@...putergmbh.de>,
Andreas Gruenbacher <agruen@...e.de>,
Thomas Fricaccia <thomas_fricacci@...oo.com>,
Jeremy Fitzhardinge <jeremy@...p.org>,
James Morris <jmorris@...ei.org>,
Crispin Cowan <crispin@...spincowan.com>,
Giacomo Catenazzi <cate@...ian.org>,
Alan Cox <alan@...rguk.ukuu.org.uk>
Subject: Re: Linux Security *Module* Framework (Was: LSM conversion to static
interface)
On Thu, 25 Oct 2007, Adrian Bunk wrote:
>
> What I'm giving you is "Linus has decreed there can be LSMs other than
> SELinux."
>
> Getting LSMs included should no longer be harder than for other
> parts of the kernel.
Well, despite my heart-felt feelings that we should support different
people in trying out different things, one of the issues is also that I'm
obviously not myself a security person. I can "decree" all I want, but in
the end, I really want the people *involved* to merge security stuff.
Right now Chris Wrigt is the documented maintainer for LSM, and quite
frankly, I do not want to take it over. I really really really hope that
people that are interested in security can work this thing out, and my
only requirement is that it doesn't end up being any kind of force-feeding
of opinions and ideas, since clearly there is tons of room for
disagreement in the area..
Do other people want to stand up and be "LSM maintainers" in the sense
that they also end up being informed members who can also stand up for new
modules and help merge them, rather than just push the existing one(s)?
Chris? Casey? Crispin?
[ Ie there's the "core LSM hooks" on one side, but there's also the "what
modules make any sense at all to merge?" on the other, and I really
don't have the expertise to make any sensible judgements except for the
pure "process" judgement that we should not hardcode things to just one
module! ]
Linus
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists