On Tue, Jun 23, 2009 at 4:27 PM, Paul Davis<paul@email-addr-hidden> wrote:
> here's my halfway (?) summary:
>
> "distros refuse to even provide a way to enable RLIMIT_RTPRIO because
> it enables regular users to lockup the machine.
>
> Up next: 8 other ways for regular users to easily lockup the machine ... "
>
I may be way off base here, but shouldn't SELinux or some sort of
mandatory access control be the mechanism for allowing a user to run a
process with RT scheduling? So the "system administrator" would set a
policy that said "user paul may run the binary /usr/bin/ardour with
SCHED_FIFO" etc.?
There appears to be a LSM hook for both setscheduler and setrlimit.
Why isn't this sufficient for Fedora? PAtch selinux-policy and be
done with it.
_______________________________________________
Linux-audio-dev mailing list
Linux-audio-dev@email-addr-hidden
http://lists.linuxaudio.org/mailman/listinfo/linux-audio-dev
Received on Wed Jun 24 20:15:01 2009
This archive was generated by hypermail 2.1.8 : Wed Jun 24 2009 - 20:15:02 EEST