Function report

Linux Kernel

v5.5.9

Brick Technologies Co., Ltd

Source Code:security\selinux\hooks.c Create Date:2022-07-28 18:56:22
Last Modify:2020-03-12 14:18:49 Copyright©Brick
home page Tree
Annotation kernel can get tool activityDownload SCCTChinese

Name:Prepare a process for imminent new credential changes due to exec

Proto:static void selinux_bprm_committing_creds(struct linux_binprm *bprm)

Type:void

Parameter:

TypeParameterName
struct linux_binprm *bprm
2508  new_tsec = selinux_cred(w credentials )
2509  If current SID == SID prior to last execve Then Return
2513  Derived from fs/exec.c:flush_old_files.
2516  pdeath_signal = 0
2528  rc = avc_has_perm - Check permissions and perform any appropriate auditing
2531  If rc Then
2533  Protects ->fs, ->files, ->mm, ->group_info, ->comm, keyring* subscriptions and synchronises with wait4(). Also used in procfs. Also* pins the final release of task.io_context. Also protects ->cpuset and* ->cgroup.subsys[]. And ->vfork_done.
2534  When i < RLIM_NLIMITS cycle
2535  rlim = rlim + i
2536  initrlim = rlim + i
2537  rlim_cur = min - return minimum of two values of the same or compatible types*@x: first value*@y: second value(rlim_max, rlim_cur)
2539  task_unlock(current process)
2540  If IS_ENABLED(CONFIG_FOO) evaluates to 1 if CONFIG_FOO is set to 'y' or 'm',* 0 otherwise.(CONFIG_POSIX_TIMERS) Then Called after updating RLIMIT_CPU to run cpu timer and update* tsk->signal->posix_cputimers.bases[clock].nextevt expiration cache if* necessary. Needs siglock protection since other code may update the* expiration cache as well.