leandrof/linux
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

apparmor: make it so work buffers can be allocated from atomic context

Browse Source 
In some situations AppArmor needs to be able to use its work buffers
from atomic context. Add the ability to specify when in atomic context
and hold a set of work buffers in reserve for atomic context to
reduce the chance that a large work buffer allocation will need to
be done.

Fixes: df323337e5 ("apparmor: Use a memory pool instead per-CPU caches")
Signed-off-by: John Johansen <john.johansen@canonical.com>
This commit is contained in:
John Johansen
2019-09-14 03:34:06 -07:00
parent bce4e7e9c4
commit 341c1fda5e
6 changed files with 62 additions and 38 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
security/apparmor/include/file.h
View File

@@ -201,7 +201,7 @@ int aa_path_link(struct aa_label *label, struct dentry *old_dentry,
const struct path *new_dir, struct dentry *new_dentry);
int aa_file_perm(const char *op, struct aa_label *label, struct file *file,
u32 request);
u32 request, bool in_atomic);
void aa_inherit_files(const struct cred *cred, struct files_struct *files);