switch flush_unauthorized_files() to replace_fd()

Signed-off-by: N Al Viro <viro@zeniv.linux.org.uk>

switch flush_unauthorized_files() to replace_fd()
Signed-off-by: N Al Viro <viro@zeniv.linux.org.uk>
ee97cd87 · Al Viro · 8280d161 · ee97cd87
隐藏空白更改
内联并排

Showing with 15 addition and 32 deletion

security/selinux/hooks.c security/selinux/hooks.c +15 -32

未找到文件。
--- a/security/selinux/hooks.c
+++ b/security/selinux/hooks.c
@@ -2126,8 +2126,6 @@ static inline void flush_unauthorized_files(const struct cred *cred,
 	spin_lock(&files->file_lock);
 	for (;;) {
 		unsigned long set, i;
-		int fd;
 		j++;
 		i = j * BITS_PER_LONG;
 		fdt = files_fdtable(files);
@@ -2138,38 +2136,23 @@ static inline void flush_unauthorized_files(const struct cred *cred,
 			continue;
 		spin_unlock(&files->file_lock);
 		for ( ; set ; i++, set >>= 1) {
-			if (set & 1) {
+			if (!(set & 1))
-				file = fget(i);
+				continue;
-				if (!file)
+			file = fget(i);
-					continue;
+			if (!file)
-				if (file_has_perm(cred,
+				continue;
-						  file,
+			if (file_has_perm(cred, file, file_to_av(file))) {
-						  file_to_av(file))) {
+				if (devnull) {
-					sys_close(i);
+					get_file(devnull);
-					fd = get_unused_fd();
+				} else {
-					if (fd != i) {
+					devnull = dentry_open(&selinux_null,
-						if (fd >= 0)
+								O_RDWR, cred);
-							put_unused_fd(fd);
+					if (IS_ERR(devnull))
-						fput(file);
+						devnull = NULL;
-						continue;
-					}
-					if (devnull) {
-						get_file(devnull);
-					} else {
-						devnull = dentry_open(
-							&selinux_null,
-							O_RDWR, cred);
-						if (IS_ERR(devnull)) {
-							devnull = NULL;
-							put_unused_fd(fd);
-							fput(file);
-							continue;
-						}
-					}
-					fd_install(fd, devnull);
 				}
-				fput(file);
+				replace_fd(i, devnull, 0);
 			}
+			fput(file);
 		}
 		spin_lock(&files->file_lock);