On Thu, Jan 16, 2020 at 11:18 AM Ondrej Mosnacek <omosnace@xxxxxxxxxx> wrote: > On Thu, Jan 16, 2020 at 5:02 PM Stephen Smalley <sds@xxxxxxxxxxxxx> wrote: > > On 1/16/20 7:04 AM, Ondrej Mosnacek wrote: > > > In security_load_policy(), we can defer allocating the newpolicydb > > > ancillary array to after checking state->initialized, thereby avoiding > > > the pointless allocation when loading policy the first time. > > > > > > Signed-off-by: Ondrej Mosnacek <omosnace@xxxxxxxxxx> > > > > What are these relative to, because they don't apply for me on > > selinux/next? In particular they conflict with your 'treat atomic flags > > more carefully' patch. > > Ah, I forgot to pull latest selinux/next before posting... They should > apply cleanly on top of d41415eb5eda ("Documentation,selinux: fix > references to old selinuxfs mount point"), but they auto-merged > cleanly when git-rebased on top of current selinux/next. > > Paul, should I repost the patches or is it OK for you to apply on top > of d41415eb5eda and rebase? I went ahead and applied 1/6 into selinux/next, but I want to look at patch 2/6 a bit closer before applying. -- paul moore www.paul-moore.com