+2007-11-09 Jim Meyering <meyering@redhat.com>
+
+ install+SELinux: reduce a 12x performance hit to ~1.5x
+ * src/install.c (setdefaultfilecon): Call matchpathcon_init_prefix,
+ to mitigate what would otherwise be a large performance hit due to
+ the use of matchpathcon.
+ Dan Walsh suggested the use of matchpathcon_init_prefix.
+ * gl/lib/se-selinux.in.h (matchpathcon_init_prefix): Define.
+
2007-11-08 Jim Meyering <meyering@redhat.com>
Adapt to gnulib's s/jm_/gl_/ cache variable renaming.
security_class_t tclass,
security_context_t *newcon)
{ errno = ENOTSUP; return -1; }
+static inline int matchpathcon_init_prefix (char const *path,
+ char const *prefix)
+ { errno = ENOTSUP; return -1; }
#endif
if (lstat (file, &st) != 0)
return;
+ if (IS_ABSOLUTE_FILE_NAME (file))
+ {
+ /* Calling matchpathcon_init_prefix (NULL, "/first_component/")
+ is an optimization to minimize the expense of the following
+ matchpathcon call. */
+ char const *p0;
+ char const *p = file + 1;
+ while (ISSLASH (*p))
+ ++p;
+
+ /* Record final leading slash, for when FILE starts with two or more. */
+ p0 = p - 1;
+
+ if (*p)
+ {
+ char *prefix;
+ do
+ {
+ ++p;
+ }
+ while (*p && !ISSLASH (*p));
+
+ prefix = malloc (p - p0 + 2);
+ if (prefix)
+ {
+ stpcpy (stpncpy (prefix, p0, p - p0), "/");
+ matchpathcon_init_prefix (NULL, prefix);
+ free (prefix);
+ }
+ }
+ }
+
/* If there's an error determining the context, or it has none,
return to allow default context */
if ((matchpathcon (file, st.st_mode, &scontext) != 0) ||