udev slowness and selinux

Stephen Smalley sds at tycho.nsa.gov
Fri Dec 2 19:38:25 UTC 2005


On Fri, 2005-12-02 at 20:20 +0100, Nicolas Mailhot wrote:
> Le vendredi 02 décembre 2005 à 14:17 -0500, Stephen Smalley a écrit :
> 
> > It isn't the number of nodes in /dev; it is the number of entries in
> > file_contexts.  And the slowdown should be improved/eliminated with
> > recent changes in libselinux (1.27.28); let us know if it isn't.  There
> > are two changes in libselinux, one of which will have immediate benefit
> > without requiring any changes to udev, and the other of which requires a
> > small change to udev to take advantage of.
> 
> BTW today's rawhide segfaults on boot if run in enforcing mode
> 
> checkpolicy-1.27.19-1
> selinux-policy-targeted-2.0.7-2
> audit-1.1.1-1
> audit-libs-1.1.1-1
> audit-libs-1.1.1-1
> libselinux-1.27.28-1
> libselinux-1.27.28-1
> libsepol-1.9.41-1
> libsepol-1.9.41-1
> libsemanage-1.3.61-1
> 
> Adding selinux=false to the boot arguments rescues the system

Hmmm...same versions of the above, don't see this behavior.  Details?

-- 
Stephen Smalley
National Security Agency




More information about the fedora-devel-list mailing list