提交 91a9ab7c 编写于 作者: P Paul Moore

io_uring: convert io_uring to the secure anon inode interface

Converting io_uring's anonymous inode to the secure anon inode API
enables LSMs to enforce policy on the io_uring anonymous inodes if
they chose to do so.  This is an important first step towards
providing the necessary mechanisms so that LSMs can apply security
policy to io_uring operations.
Signed-off-by: NPaul Moore <paul@paul-moore.com>
上级 3a862cac
...@@ -10155,8 +10155,8 @@ static struct file *io_uring_get_file(struct io_ring_ctx *ctx) ...@@ -10155,8 +10155,8 @@ static struct file *io_uring_get_file(struct io_ring_ctx *ctx)
return ERR_PTR(ret); return ERR_PTR(ret);
#endif #endif
file = anon_inode_getfile("[io_uring]", &io_uring_fops, ctx, file = anon_inode_getfile_secure("[io_uring]", &io_uring_fops, ctx,
O_RDWR | O_CLOEXEC); O_RDWR | O_CLOEXEC, NULL);
#if defined(CONFIG_UNIX) #if defined(CONFIG_UNIX)
if (IS_ERR(file)) { if (IS_ERR(file)) {
sock_release(ctx->ring_sock); sock_release(ctx->ring_sock);
......
Markdown is supported
0% .
You are about to add 0 people to the discussion. Proceed with caution.
先完成此消息的编辑!
想要评论请 注册