diff options
author | Eric Paris <eparis@redhat.com> | 2010-11-29 15:47:09 -0500 |
---|---|---|
committer | Eric Paris <eparis@redhat.com> | 2010-11-30 17:28:57 -0500 |
commit | 23bdecb000c806cf4ec52764499a600f7200d7a9 (patch) | |
tree | f13a523f6bec22c5e7ec58ea02a4988aefe7c8ac /security/selinux/ss/policydb.h | |
parent | c41ab6a1b9028de33e74101cb0aae13098a56fdb (diff) |
selinux: convert type_val_to_struct to flex_array
In rawhide type_val_to_struct will allocate 26848 bytes, an order 3
allocations. While this hasn't been seen to fail it isn't outside the
realm of possibiliy on systems with severe memory fragmentation. Convert
to flex_array so no allocation will ever be bigger than PAGE_SIZE.
Signed-off-by: Eric Paris <eparis@redhat.com>
Diffstat (limited to 'security/selinux/ss/policydb.h')
-rw-r--r-- | security/selinux/ss/policydb.h | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/security/selinux/ss/policydb.h b/security/selinux/ss/policydb.h index 95d3d7de361e..9826a92a6b0c 100644 --- a/security/selinux/ss/policydb.h +++ b/security/selinux/ss/policydb.h | |||
@@ -217,7 +217,7 @@ struct policydb { | |||
217 | struct class_datum **class_val_to_struct; | 217 | struct class_datum **class_val_to_struct; |
218 | struct role_datum **role_val_to_struct; | 218 | struct role_datum **role_val_to_struct; |
219 | struct user_datum **user_val_to_struct; | 219 | struct user_datum **user_val_to_struct; |
220 | struct type_datum **type_val_to_struct; | 220 | struct flex_array *type_val_to_struct_array; |
221 | 221 | ||
222 | /* type enforcement access vectors and transitions */ | 222 | /* type enforcement access vectors and transitions */ |
223 | struct avtab te_avtab; | 223 | struct avtab te_avtab; |