Re: [RFC][PATCH] Security hook for vm_enough_memory

Stephen Smalley (sds@epoch.ncsc.mil)
23 Jun 2003 15:04:55 -0400

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Jonathan Corbet: "Re: [PATCH 3/3] Allow arbitrary number of init funcs in modules"
Previous message: Peter Osterlund: "Re: [PATCH] Synaptics TouchPad driver for 2.5.70"
In reply to: Alan Cox: "Re: [RFC][PATCH] Security hook for vm_enough_memory"
Next in thread: Stephen Smalley: "Re: [RFC][PATCH] Security hook for vm_enough_memory"

On Mon, 2003-06-23 at 12:40, Alan Cox wrote:
> Is there any reason for not wrapping the entire vm_enough_memory() function
> and using the current one as default. In some environments being able to make
> total commit constraints based on roles may actually be useful.
>
> (Think "sum of students memory < 40% of system" 8))
>
> vm_enough_memory has to be kernel side but its basically policy so pluggable
> IMHO is good.

This sounds useful; I'll rework the patch accordingly and resubmit.

-- Stephen Smalley <sds@epoch.ncsc.mil> National Security Agency

- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/

Next message: Jonathan Corbet: "Re: [PATCH 3/3] Allow arbitrary number of init funcs in modules"
Previous message: Peter Osterlund: "Re: [PATCH] Synaptics TouchPad driver for 2.5.70"
In reply to: Alan Cox: "Re: [RFC][PATCH] Security hook for vm_enough_memory"
Next in thread: Stephen Smalley: "Re: [RFC][PATCH] Security hook for vm_enough_memory"