Re: [LAD] [ANNOUNCE] Safe real-time on the desktop by default; Desktop/audio RT developers, read this!

24 Jun 2009

On Tue, Jun 23, 2009 at 4:27 PM, Paul Davis&lt;paul(a)linuxaudiosystems.com&gt; wrote:
...
  here's my halfway (?) summary:

   "distros refuse to even provide a way to enable RLIMIT_RTPRIO because
     it enables regular users to lockup the machine.

    Up next: 8 other ways for regular users to easily lockup the machine ... "

I may be way off base here, but shouldn't SELinux or some sort of
mandatory access control be the mechanism for allowing a user to run a
process with RT scheduling?  So the "system administrator" would set a
policy that said "user paul may run the binary /usr/bin/ardour with
SCHED_FIFO" etc.?

There appears to be a LSM hook for both setscheduler and setrlimit.
Why isn't this sufficient for Fedora?  PAtch selinux-policy and be
done with it.

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

Re: [LAD] [ANNOUNCE] Safe real-time on the desktop by default; Desktop/audio RT developers, read this!