Re: [PATCH] Realtime LSM

From: Jack O'Quin
Date: Thu Sep 30 2004 - 19:38:03 EST

Next message: Andre Eisenbach: "[PATCH] ohci_hcd: ALi USB M5237 host controller init quirk"
Previous message: Randy.Dunlap: "Re: 2.6.9-rc2-mm4"
In reply to: Lee Revell: "Re: [PATCH] Realtime LSM"
Next in thread: Chris Wright: "Re: [PATCH] Realtime LSM"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Lee Revell <rlrevell@xxxxxxxxxxx> writes:

> Another issue that was raised was that the mlock stuff is also
> unnecessary, because rlimits can do this now. Is this the case?

I don't know. The idea was not explained in enough detail for me to
understand if it would be simple enough to administer. Where can I
find out more?

Does this somehow explain the need for CAP_SYS_RESOURCE when calling
mlockall()? Comments in capability.h seem to imply that only
CAP_IPC_LOCK is required, which is not true. I never found any
explicit CAP_SYS_RESOURCE test in mm/mlock.c, though it does check
`rlim[RLIMIT_MEMLOCK].rlim_cur'.
--
joq
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Andre Eisenbach: "[PATCH] ohci_hcd: ALi USB M5237 host controller init quirk"
Previous message: Randy.Dunlap: "Re: 2.6.9-rc2-mm4"
In reply to: Lee Revell: "Re: [PATCH] Realtime LSM"
Next in thread: Chris Wright: "Re: [PATCH] Realtime LSM"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]