git.ipfire.org Git - thirdparty/kernel/stable.git/commit

author	Kees Cook <keescook@chromium.org>
	Wed, 21 May 2014 22:23:46 +0000 (15:23 -0700)
committer	Ben Hutchings <ben@decadent.org.uk>
	Thu, 12 Oct 2017 14:28:22 +0000 (15:28 +0100)
commit	5f3333219189a3fe4bbbd2d67e636ed1bb74d243
tree	e4078c65d51b66763aaaee24b3b9b14cb80771ca	tree \| snapshot
parent	9e839401a65a30d15cbe9a1255640cd5ce2b548d	commit \| diff

sched: move no_new_privs into new atomic flags

commit 1d4457f99928a968767f6405b4a1f50845aa15fd upstream.

Since seccomp transitions between threads requires updates to the
no_new_privs flag to be atomic, the flag must be part of an atomic flag
set. This moves the nnp flag into a separate task field, and introduces
accessors.

Signed-off-by: Kees Cook <keescook@chromium.org>
Reviewed-by: Oleg Nesterov <oleg@redhat.com>
Reviewed-by: Andy Lutomirski <luto@amacapital.net>
[bwh: Backported to 3.16: adjust context]
Signed-off-by: Ben Hutchings <ben@decadent.org.uk>

fs/exec.c		diff \| blob \| blame \| history
include/linux/sched.h		diff \| blob \| blame \| history
kernel/seccomp.c		diff \| blob \| blame \| history
kernel/sys.c		diff \| blob \| blame \| history
security/apparmor/domain.c		diff \| blob \| blame \| history