[RFC PATCH v2] selinux: security: Move selinux_state to a separate page

David Howells dhowells at redhat.com
Wed Jan 13 10:56:44 UTC 2021

Casey Schaufler <casey at schaufler-ca.com> wrote:

> >> How would this interact with or complement __read_mostly?
> >>
> > Currently, the mechanism we are working on developing is
> > independent of __read_mostly. This is something we can look more into
> > while working further on the mechanism.
> Please either integrate the two or explain how they differ.
> It appears that you haven't considered how you might exploit
> or expand the existing mechanism.

I think __read_mostly is about grouping stuff together that's rarely going to
be read to make the CPU's data cache more efficient.  It doesn't stop people
writing to such a variable.


More information about the Linux-security-module-archive mailing list