On Mon, Nov 08, 2010 at 10:13:02PM +0000, Ben Hutchings wrote: > By 'discardable' I mean that it would be possible to free the memory used > for its code and static data if it was not used (similar to the way init > code is discarded after boot).
Right, this is an upstream limitation of the LSM when they made it non-modular, unfortunately. :( If a distro wants to make multiple LSMs available to their users, they have to compile them all in. Which is rather annoying. -Kees -- Kees Cook @debian.org -- To UNSUBSCRIBE, email to debian-kernel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20101108224321.gt5...@outflux.net
