Tetsuo Handa <penguin-kernel@xxxxxxxxxxxxxxxxxxx> writes: > Paul Moore wrote: >> On Tuesday, May 03, 2011 10:24:15 AM Samir Bellabes wrote: >> > snet needs to reintroduce this hook, as it was designed to be: a hook for >> > updating security informations on objects. >> >> Looking at this and 5/10 again, it seems that you should be able to do what >> you need with the sock_graft() hook. Am I missing something? >> >> My apologies if we've already discussed this approach previously ... > > Third problem (though independent with security_sock_graft()) is that > snet_do_send_event() ignores snet_nl_send_event() failure. using snet_do_send_event() means that system is sending data to userspace. the system is not waiting for a verdict from userspace. If error occurs, we actually loose the information data. I may be able to write a solution which try to send the data again, but we need a exit solution for this loop (a number of try ?). -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
