Re: [RFC][PATCH] Security hook for vm_enough_memory

From: Stephen Smalley (sds@epoch.ncsc.mil)
Date: Mon Jun 23 2003 - 14:04:55 EST

Next message: Jonathan Corbet: "Re: [PATCH 3/3] Allow arbitrary number of init funcs in modules"
Previous message: Peter Osterlund: "Re: [PATCH] Synaptics TouchPad driver for 2.5.70"
In reply to: Alan Cox: "Re: [RFC][PATCH] Security hook for vm_enough_memory"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 2003-06-23 at 12:40, Alan Cox wrote:
> Is there any reason for not wrapping the entire vm_enough_memory() function
> and using the current one as default. In some environments being able to make
> total commit constraints based on roles may actually be useful.
>
> (Think "sum of students memory < 40% of system" 8))
>
> vm_enough_memory has to be kernel side but its basically policy so pluggable
> IMHO is good.

This sounds useful; I'll rework the patch accordingly and resubmit.

-- Stephen Smalley <sds@epoch.ncsc.mil> National Security Agency

- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/

Next message: Jonathan Corbet: "Re: [PATCH 3/3] Allow arbitrary number of init funcs in modules"
Previous message: Peter Osterlund: "Re: [PATCH] Synaptics TouchPad driver for 2.5.70"
In reply to: Alan Cox: "Re: [RFC][PATCH] Security hook for vm_enough_memory"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Mon Jun 23 2003 - 22:00:41 EST