首页 发现 帮助
注册 登录
phyus
/
linux-vybrid_public
8
0
派生 0
文件 工单管理 0 合并请求 0 Wiki
浏览代码

[PATCH] SELinux: add security_task_movememory calls to mm code

This patch inserts security_task_movememory hook calls into memory management
code to enable security modules to mediate this operation between tasks.

Since the last posting, the hook has been renamed following feedback from
Christoph Lameter.

Signed-off-by: David Quigley <dpquigl@tycho.nsa.gov>
Acked-by:  Stephen Smalley <sds@tycho.nsa.gov>
Signed-off-by: James Morris <jmorris@namei.org>
Cc: Andi Kleen <ak@muc.de>
Acked-by: Christoph Lameter <clameter@sgi.com>
Acked-by: Chris Wright <chrisw@sous-sol.org>
Signed-off-by: Andrew Morton <akpm@osdl.org>
Signed-off-by: Linus Torvalds <torvalds@osdl.org>
David Quigley 19 年之前
父节点
35601547ba
当前提交
86c3a7645c
共有 2 个文件被更改,包括 11 次插入0 次删除
分列视图 显示文件统计
  1. 5 0
      mm/mempolicy.c
  2. 6 0
      mm/migrate.c

+ 5 - 0
mm/mempolicy.c
查看文件 

@@ -88,6 +88,7 @@
 
 #include <linux/proc_fs.h>
 
 #include <linux/migrate.h>
 
 #include <linux/rmap.h>
 
+#include <linux/security.h>
 
 
 #include <asm/tlbflush.h>
 
 #include <asm/uaccess.h>
 
@@ -942,6 +943,10 @@ asmlinkage long sys_migrate_pages(pid_t pid, unsigned long maxnode,
 
 		goto out;
 
 	}
 
 
+	err = security_task_movememory(task);
 
+	if (err)
 
+		goto out;
 
+
 
 	err = do_migrate_pages(mm, &old, &new,
 
 		capable(CAP_SYS_NICE) ? MPOL_MF_MOVE_ALL : MPOL_MF_MOVE);
 
 out:

+ 6 - 0
mm/migrate.c
查看文件 

@@ -27,6 +27,7 @@
 
 #include <linux/writeback.h>
 
 #include <linux/mempolicy.h>
 
 #include <linux/vmalloc.h>
 
+#include <linux/security.h>
 
 
 #include "internal.h"
 
 
@@ -905,6 +906,11 @@ asmlinkage long sys_move_pages(pid_t pid, unsigned long nr_pages,
 
 		goto out2;
 
 	}
 
 
+ 	err = security_task_movememory(task);
 
+ 	if (err)
 
+ 		goto out2;
 
+
 
+
 
 	task_nodes = cpuset_mems_allowed(task);
 
 
 	/* Limit nr_pages so that the multiplication may not overflow */