Kernel Space: Should Security Modules be Dynamically Loadable?

“The ever-contentious Linux Security Modules (LSM) API is being
debated once again on linux-kernel, not its removal, which Linus
Torvalds came down firmly against, but whether it should allow
security modules to be loaded dynamically. As part of 2.6.24,
Torvalds merged a patch to convert LSM into a static interface, but
has indicated a willingness to revert it. The key sticking point is
whether there are real security modules that require the ability to
be runtime-loaded.

“A complaint by Thomas Fricaccia about the change caused
Torvalds to put out a call for folks using module loading with
their LSM code…”