David Howells <dhowells@xxxxxxxxxx> wrote: > J. Bruce Fields <bfields@xxxxxxxxxxxx> wrote: > > > Just curious--why? Are get_kernel_security(), etc., particularly > > expensive? > > It involves a kmalloc(). That means an extra possibility for an error. Plus > it may allow you to cache the result of checking whether, say, SELinux > security labels are allowed to be set when passed over NFS (if such is > possible). Apart from that, though, no, it's not particularly expensive. David -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with the words "unsubscribe selinux" without quotes as the message.
