On Sun, 2011-01-16 at 04:29 +0100, intrigeri wrote: > Hi, > > ( > For the record, more discussion followed on the debian-kernel list. > Ben Hutchings made[0] the "discardable" part explicit there: > > By 'discardable' I mean that it would be possible to free the > memory used for its code and static data if it was not used > (similar to the way init code is discarded after boot). > > [0] http://lists.debian.org/debian-kernel/2010/11/msg00162.html > ) > > Ben Hutchings wrote (06 Nov 2010 22:23:07 GMT) : > > Only if we can find a way to make it modular or discardable. > > I am sure this decision is backed by some kind of rationale but I > failed to find it anywhere; could it be expressed here please? > > It seems to me another LSM (Tomoyo) has been included since 2.6.32-13 > without satisfying these conditions, hence my wondering.
Tomoyo was included in mainline, then enabled in Debian, before AppArmor was included in mainline. Ben. -- Ben Hutchings Once a job is fouled up, anything done to improve it makes it worse.
signature.asc
Description: This is a digitally signed message part
