diff options
| author | Paul Moore <paul.moore@hp.com> | 2008-01-29 08:38:10 -0500 |
|---|---|---|
| committer | James Morris <jmorris@namei.org> | 2008-01-29 16:17:22 -0500 |
| commit | da5645a28a15aed2e541a814ecf9f7ffcd4c4673 (patch) | |
| tree | 8cedccebd0e12308de30573ad593d703943e3cbb /security/selinux/include | |
| parent | e8bfdb9d0dfc1231a6a71e849dfbd4447acdfff6 (diff) | |
SELinux: Only store the network interface's ifindex
Instead of storing the packet's network interface name store the ifindex. This
allows us to defer the need to lookup the net_device structure until the audit
record is generated meaning that in the majority of cases we never need to
bother with this at all.
Signed-off-by: Paul Moore <paul.moore@hp.com>
Signed-off-by: James Morris <jmorris@namei.org>
Diffstat (limited to 'security/selinux/include')
| -rw-r--r-- | security/selinux/include/avc.h | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/security/selinux/include/avc.h b/security/selinux/include/avc.h index 553607a19e92..80c28fa6621c 100644 --- a/security/selinux/include/avc.h +++ b/security/selinux/include/avc.h | |||
| @@ -51,7 +51,7 @@ struct avc_audit_data { | |||
| 51 | struct inode *inode; | 51 | struct inode *inode; |
| 52 | } fs; | 52 | } fs; |
| 53 | struct { | 53 | struct { |
| 54 | char *netif; | 54 | int netif; |
| 55 | struct sock *sk; | 55 | struct sock *sk; |
| 56 | u16 family; | 56 | u16 family; |
| 57 | __be16 dport; | 57 | __be16 dport; |