netdev
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: skb->security and friends

from [James Morris] [Permanent Link][Original]
To: Andi Kleen <ak@xxxxxxx>
Subject: Re: skb->security and friends
From: James Morris <jmorris@xxxxxxxxxxxxxxxx>
Date: Sat, 27 Oct 2001 15:58:22 +1000 (EST)
Cc: Michael Richardson <mcr@xxxxxxxxxxxxxxxxxxxxxx>, <design@xxxxxxxxxxxxxxxxxx>, <netdev@xxxxxxxxxxx>, <linux-security-module@xxxxxxxxx>
In-reply-to: <20011026214235.A5375@wotan.suse.de>
Sender: owner-netdev@xxxxxxxxxxx 
On Fri, 26 Oct 2001, Andi Kleen wrote:

> security is basically on its way out; it was for a never completely merged
> ipsec implementation from the fi/sinus firewalls guys and is largely bitrotted
> now (e.g. a lot of stack modules won't maintain it correctly anymore and
> probably never have)
> If you wanted to use it you would need to fix it first.

[note: lsm added to the cc list]

I was hoping that skb->security could be reassigned as a void pointer
for use by LSM in 2.5, if LSM is accepted into the kernel.

This would be used by LSM modules for maintaining security attributes
between layers.  Note that this may also be useful for Freeswan, as it
should be possible now to implement ipsec as an LSM module.

- James
-- 
James Morris
<jmorris@xxxxxxxxxxxxxxxx>
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: skb->security and friends, Michael Richardson
Next by Date:  Re: skb->security and friends, Andi Kleen
Previous by Thread:  Re: skb->security and friends, Andi Kleen
Next by Thread:  Re: skb->security and friends, Andi Kleen
Indexes:  [Date] [Thread] [Top] [All Lists]