On Tue, 26 Apr 2011, Eric Paris wrote: > Right now we walk to filename trans rule list for every inode that is > created. First passes at policy using this facility creates around 5000 > filename trans rules. Running a list of 5000 entries every time is a bad > idea. This patch adds a new ebitmap to policy which has a bit set for each > ttype that has at least 1 filename trans rule. Thus when an inode is > created we can quickly determine if any rules exist for this parent > directory type and can skip the list if we know there is definitely no > relevant entry. > > Signed-off-by: Eric Paris <eparis@xxxxxxxxxx> Reviewed-by: James Morris <jmorris@xxxxxxxxx> -- James Morris <jmorris@xxxxxxxxx> -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with the words "unsubscribe selinux" without quotes as the message.
