Re: [PATCH 0/8] CaitSith LSM module

From: John Johansen
Date: Wed Nov 23 2016 - 13:51:53 EST

Next message: kbuild test robot: "Re: [PATCH] ALSA SoC MAX98927 driver - Initial release"
Previous message: Andrew Morton: "Re: [PATCH] kasan: turn off -fsanitize-address-use-after-scope for now"
In reply to: Tetsuo Handa: "Re: [PATCH 0/8] CaitSith LSM module"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 11/22/2016 10:31 PM, Tetsuo Handa wrote:
> Tetsuo Handa wrote:
>> John Johansen wrote:
>>>> In order to minimize the burden of reviewing, this patchset implements
>>>> only functionality of checking program execution requests (i.e. execve()
>>>> system call) using pathnames. I'm planning to add other functionalities
>>>> after this version got included into mainline. You can find how future
>>>> versions of CaitSith will look like at http://caitsith.osdn.jp/ .
>>>>
>>> Thanks I've started working my way through this, but it is going to take
>>> me a while.
>>>
>>
>> Thank you for your time.
>
> May I hear the status? Is there something I can do other than waiting?
>
progressing very slowly, I have some time over the next few days as its a
long weekend here in the US some hopefully I can finish this up

> I wrote a full manual for this patchset as http://caitsith.osdn.jp/index2.html .
thanks

> Does anybody have fundamental objection against CaitSith?
>
I don't have any objections to CaitSith, but I do worry about the
maintenance of Tomoyo. It feels like there should be a better migration
path for Tomoyo users to CaitSith so that you only have to maintain one
of them.

Next message: kbuild test robot: "Re: [PATCH] ALSA SoC MAX98927 driver - Initial release"
Previous message: Andrew Morton: "Re: [PATCH] kasan: turn off -fsanitize-address-use-after-scope for now"
In reply to: Tetsuo Handa: "Re: [PATCH 0/8] CaitSith LSM module"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]