projects / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 7969ba5) | patch
selinux: improve role transition hashing
authorChristian Göttsche <cgzones@googlemail.com>
Fri, 18 Aug 2023 15:12:16 +0000 (17:12 +0200)
committerPaul Moore <paul@paul-moore.com>
Wed, 13 Sep 2023 17:46:58 +0000 (13:46 -0400)
commit37b7ea3ca3062f5b7f02c2b335f203e4d411793d
treecb6340ab5b74882ef8c793c43f315bcef2594fa6tree | snapshot
parent7969ba577636a83553baf95882eb310b39e1c742commit | diff
selinux: improve role transition hashing

The number of buckets is calculated by performing a binary AND against
the mask of the hash table, which is one less than its size (which is a
power of two).  This leads to all top bits being discarded, e.g. with
the Reference Policy on Debian there exists 376 entries, leading to a
size of 512, discarding the top 23 bits.

Use jhash to improve the hash table utilization:

    # current
    roletr:  376 entries and 124/512 buckets used,
             longest chain length 8, sum of chain length^2 1496

    # patch
    roletr:  376 entries and 266/512 buckets used,
             longest chain length 4, sum of chain length^2 646

Signed-off-by: Christian Göttsche <cgzones@googlemail.com>
Reviewed-by: Stephen Smalley <stephen.smalley.work@gmail.com>
[PM: line wrap in the commit description]
Signed-off-by: Paul Moore <paul@paul-moore.com>
security/selinux/ss/policydb.c diff | blob | history
ep93xx device tree rework repo: git://git.maquefel.me/linux.git