New skb extension for use by LSMs (skb "security blob")?

David Miller davem at davemloft.net
Thu Aug 22 22:28:57 UTC 2019

Previous message: New skb extension for use by LSMs (skb "security blob")?
Next message: New skb extension for use by LSMs (skb "security blob")?
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Casey Schaufler <casey at schaufler-ca.com>
Date: Thu, 22 Aug 2019 14:59:37 -0700

> Sure, you *can* do that, but it would be insane to do so.

We look up the neighbour table entries on every single packet we
transmit from the kernel in the same exact way.

And it was exactly to get rid of a pointer in a data structure.

Previous message: New skb extension for use by LSMs (skb "security blob")?
Next message: New skb extension for use by LSMs (skb "security blob")?
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Linux-security-module-archive mailing list