On Mon, 10 Sep 2018, Schaufler, Casey wrote: > Yes, It would require that this patch be tested against all the existing > security modules that provide a ptrace_access_check hook. It's not like > the security module writers don't have a bunch of locking issues to deal > with.
Yeah, that was indeed my concern. So can we agree on doing this in the 2nd envisioned step, when this is going to be replaced by LSM as discussed [1] previously? [1] http://lkml.kernel.org/r/99fc4b6efcefd44486c35f4c281dc67321447...@orsmsx107.amr.corp.intel.com Thanks, -- Jiri Kosina SUSE Labs