Re: [PATCH] [request for inclusion] Realtime LSM

From: Jack O'Quin
Date: Tue Mar 08 2005 - 00:20:19 EST

Next message: Matt Mackall: "[PATCH] unified device list allocator"
Previous message: Kyle Moffett: "Re: [0/many] Acrypto - asynchronous crypto layer for linux kernel 2.6"
In reply to: Chris Wright: "Re: [PATCH] [request for inclusion] Realtime LSM"
Next in thread: Jack O'Quin: "Re: [PATCH] [request for inclusion] Realtime LSM"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> * Andrew Morton <akpm@xxxxxxxx> wrote:
>
>> Still. It seems to be what we deserve if all that fancy stuff we have
>> cannot address this very simple and very real-world problem.

Ingo Molnar <mingo@xxxxxxx> writes:
> please describe this "very simple and very real-world problem" in simple
> terms. Lets make sure "problem" and "solution" didnt become detached.

Linux audio users need to run large, complex low-latency desktop audio
applications without granting them full root privileges. These
applications require reliable SCHED_FIFO (or equivalent) scheduling,
and the ability to lock process images into memory. We need to be
able to drop and reacquire these privileges from time to time. We
strongly prefer using the POSIX realtime interfaces.

For desktop musicians this needs to be simple to administer, yet still
reasonably secure. Denial of service attacks are not a serious threat
in our environment, but we really don't want people turning our
systems into open spam relays or creating hidden setuid root shells.

Ours is *not* a timesharing multiuser environment. Multiple users may
access these systems, but only one at a time. Many musicians have a
Mac or Windows background, systems which grant realtime privileges to
all tasks indiscriminantly. The realtime LSM allows us to grant
similar privileges while maintaining better control over who gets
them, a significant improvement over our competition.

AFAICT, video and probably some other desktop multimedia applications
have similar needs, but others should speak for them. I do know that
audio is highly sensitive to realtime performance glitches.

We believe that this LSM meets our needs, because hundreds of us have
used it successfully for over a year. This is the last missing piece
that allows us to reap the benefits of the excellent kernel latency
improvements Ingo, Andrew and others have made over the last several
years.
--
joq
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Matt Mackall: "[PATCH] unified device list allocator"
Previous message: Kyle Moffett: "Re: [0/many] Acrypto - asynchronous crypto layer for linux kernel 2.6"
In reply to: Chris Wright: "Re: [PATCH] [request for inclusion] Realtime LSM"
Next in thread: Jack O'Quin: "Re: [PATCH] [request for inclusion] Realtime LSM"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]