Re: [PATCH RFC 7/20] selinux: services: update type for umber of class permissions

From: Gong Ruiqi
Date: Tue Jul 18 2023 - 21:45:24 EST

Next message: Jason-ch Chen (陳建豪): "Re: [PATCH v4 3/4] dt-bindings: soc: mediatek: pwrap: Modify compatible for MT8188"
Previous message: Dave Chinner: "Re: [PATCH v5 6/8] xfs: switch to multigrain timestamps"
In reply to: Paul Moore: "Re: [PATCH RFC 7/20] selinux: services: update type for umber of class permissions"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 2023/07/19 6:01, Paul Moore wrote:
> On Jul 6, 2023 Gong Ruiqi <gongruiqi1@xxxxxxxxxx> wrote:
>>
>> Security classes have only up to 32 permissions, hence using an u16 is
>> sufficient (while improving padding).
>
> Can you explain the improved padding comment?

I think what Christian means is that struct selinux_mapping will occupy
less memory since num_perms is changed from uint (32 bits) to u16, which
saves 16 bits of space due to padding.

> [...]
>
>> diff --git a/security/selinux/ss/services.h b/security/selinux/ss/services.h
>> index 8a9b85f44b66..b6f99353301e 100644
>> --- a/security/selinux/ss/services.h
>> +++ b/security/selinux/ss/services.h
>> @@ -12,7 +12,7 @@
>> /* Mapping for a single class */
>> struct selinux_mapping {
>> u16 value; /* policy value for class */
>> - unsigned int num_perms; /* number of permissions in class */
>> + u16 num_perms; /* number of permissions in class */
>> u32 perms[sizeof(u32) * 8]; /* policy values for permissions */
>> };

Check here.

>>
>> --
>> 2.40.1
>
> --
> paul-moore.com

Next message: Jason-ch Chen (陳建豪): "Re: [PATCH v4 3/4] dt-bindings: soc: mediatek: pwrap: Modify compatible for MT8188"
Previous message: Dave Chinner: "Re: [PATCH v5 6/8] xfs: switch to multigrain timestamps"
In reply to: Paul Moore: "Re: [PATCH RFC 7/20] selinux: services: update type for umber of class permissions"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]