788e7dd4c22e6f41b3a118fd8c291f831f6fddbb - kernel/msm-4.9

commit	788e7dd4c22e6f41b3a118fd8c291f831f6fddbb	[log] [tgz]
author	Yuichi Nakamura <ynakam@hitachisoft.jp>	Fri Sep 14 09:27:07 2007 +0900
committer	James Morris <jmorris@namei.org>	Wed Oct 17 08:59:31 2007 +1000
tree	cbe2d2a360aaf7dc243bef432e1c50507ae6db7b
parent	3232c110b56bd01c5f0fdfd16b4d695f2e05b0a9 [diff]

SELinux: Improve read/write performance

It reduces the selinux overhead on read/write by only revalidating
permissions in selinux_file_permission if the task or inode labels have
changed or the policy has changed since the open-time check.  A new LSM
hook, security_dentry_open, is added to capture the necessary state at open
time to allow this optimization.

(see http://marc.info/?l=selinux&m=118972995207740&w=2)

Signed-off-by: Yuichi Nakamura<ynakam@hitachisoft.jp>
Acked-by: Stephen Smalley <sds@tycho.nsa.gov>
Signed-off-by: James Morris <jmorris@namei.org>

fs/open.c[diff]
include/linux/security.h[diff]
security/dummy.c[diff]
security/selinux/avc.c[diff]
security/selinux/hooks.c[diff]
security/selinux/include/avc.h[diff]
security/selinux/include/objsec.h[diff]

7 files changed

tree: cbe2d2a360aaf7dc243bef432e1c50507ae6db7b

arch/
block/
crypto/
Documentation/
drivers/
fs/
include/
init/
ipc/
kernel/
lib/
mm/
net/
scripts/
security/
sound/
usr/
.gitignore
.mailmap
COPYING
CREDITS
Kbuild
MAINTAINERS
Makefile
README
REPORTING-BUGS