Re: speeding up nodups_specs, need large fc file.
On 10/13/2016 03:28 PM, Roberts, William C wrote: > I was looking back at my speedup patch for nodups specs… > > http://marc.info/?l=selinux=147249024230263=2 > > > > I was testing before with a large, generated file_context file. I was > wondering what would be a good source for > > A desktop version of a file_contexts (textual preference as I can run > sefcontext_compile on it) file as well as a binary > > policy file…. > > > > Should I just use refpolicy? That's probably fine, unless you happen to have Fedora installed and can just use its file_contexts file. $ cd refpolicy $ make MONOLITHIC=y conf $ make MONOLITHIC=y file_contexts $ wc -l file_contexts 4908 file_contexts $ wc -l /etc/selinux/targeted/contexts/files/file_contexts 6075 /etc/selinux/targeted/contexts/files/file_contexts ___ Selinux mailing list Selinux@tycho.nsa.gov To unsubscribe, send email to selinux-le...@tycho.nsa.gov. To get help, send an email containing "help" to selinux-requ...@tycho.nsa.gov.
speeding up nodups_specs, need large fc file.
I was looking back at my speedup patch for nodups specs... http://marc.info/?l=selinux=147249024230263=2 I was testing before with a large, generated file_context file. I was wondering what would be a good source for A desktop version of a file_contexts (textual preference as I can run sefcontext_compile on it) file as well as a binary policy file Should I just use refpolicy? Bill ___ Selinux mailing list Selinux@tycho.nsa.gov To unsubscribe, send email to selinux-le...@tycho.nsa.gov. To get help, send an email containing "help" to selinux-requ...@tycho.nsa.gov.
read_spec_entry question
Should read_spec_entry every return 0 and not have found in entry? It currently only allocates the entry argument if processing the line occurred in A way where it found a valid string. It states that on success, it returns 0 and *entry Is allocated, but it seems that its possible that len is 0 and *entry is never allocated But it still returns 0. What should the behavior be? /* * Read an entry from a spec file (e.g. file_contexts) * entry - Buffer to allocate for the entry. * ptr - current location of the line to be processed. * returns - 0 on success and *entry is set to be a null *terminated value. On Error it returns -1 and *errno will be set. * */ static inline int read_spec_entry(qstr **entry, char **ptr, const char **errbuf) ___ Selinux mailing list Selinux@tycho.nsa.gov To unsubscribe, send email to selinux-le...@tycho.nsa.gov. To get help, send an email containing "help" to selinux-requ...@tycho.nsa.gov.
