Quoting Andrew Morgan ([EMAIL PROTECTED]): > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Hi, > > Attached is a quick RFC patch for modifying the way the LSM's handle > prctl() checks. Currently, the only thing LSMs can do with prctl() calls > is add more restrictions to their use than the default kernel. > > What this patch does is make it possible for an LSM to fake a successful > prctl() call, and also support LSM-specific prctl()s; ones that are only > supported when the particular LSM is loaded. > > Please comment
Like Casey, I'm wondering what you need this for? Is this to make the per-process securebits patch cleaner? thanks, -serge - To unsubscribe from this list: send the line "unsubscribe linux-security-module" in the body of a message to [EMAIL PROTECTED] More majordomo info at http://vger.kernel.org/majordomo-info.html
