[RFC PATCH v2] selinux: security: Move selinux_state to a separate page
David Howells
dhowells at redhat.com
Wed Jan 13 10:56:44 UTC 2021
Casey Schaufler <casey at schaufler-ca.com> wrote:
> >> How would this interact with or complement __read_mostly?
> >>
> > Currently, the mechanism we are working on developing is
> > independent of __read_mostly. This is something we can look more into
> > while working further on the mechanism.
>
> Please either integrate the two or explain how they differ.
> It appears that you haven't considered how you might exploit
> or expand the existing mechanism.
I think __read_mostly is about grouping stuff together that's rarely going to
be read to make the CPU's data cache more efficient. It doesn't stop people
writing to such a variable.
David
More information about the Linux-security-module-archive
mailing list