On Mon, 17 Dec 2007, Paul Moore wrote: > On Monday 17 December 2007 3:35:28 pm Stephen Smalley wrote: > > On Fri, 2007-12-14 at 16:50 -0500, Paul Moore wrote: > > > This patch adds a SELinux IP address/node SID caching mechanism similar > > > to the sel_netif_*() functions. The node SID queries in the SELinux > > > hooks files are also modified to take advantage of this new > > > functionality. In addition, remove the address length information from > > > the sk_buff parsing routines as it is redundant since we already have the > > > address family. > > > > This is very nice - we also need the same kind of cache for port SIDs. > > Thanks. Any problem if we wait until 2.6.26 for a port SID cache? Nope. -- James Morris <jmorris@xxxxxxxxx> -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with the words "unsubscribe selinux" without quotes as the message.
