mirror of
https://github.com/Qortal/Brooklyn.git
synced 2025-02-12 02:05:54 +00:00
2a709f28fa
* 0day explit mitigation * Memory corruption prevention * Privilege escalation prevention * Buffer over flow prevention * File System corruption defense * Thread escape prevention This may very well be the most intensive inclusion to BrooklynR. This will not be part of an x86 suite nor it will be released as tool kit. The security core toolkit will remain part of kernel base.
20 lines
597 B
C
20 lines
597 B
C
#include <linux/fs.h>
|
|
|
|
#ifdef CONFIG_CGROUP_DEVICE
|
|
extern int __devcgroup_inode_permission(struct inode *inode, int mask);
|
|
extern int devcgroup_inode_mknod(int mode, dev_t dev);
|
|
static inline int devcgroup_inode_permission(struct inode *inode, int mask)
|
|
{
|
|
if (likely(!inode->i_rdev))
|
|
return 0;
|
|
if (!S_ISBLK(inode->i_mode) && !S_ISCHR(inode->i_mode))
|
|
return 0;
|
|
return __devcgroup_inode_permission(inode, mask);
|
|
}
|
|
#else
|
|
static inline int devcgroup_inode_permission(struct inode *inode, int mask)
|
|
{ return 0; }
|
|
static inline int devcgroup_inode_mknod(int mode, dev_t dev)
|
|
{ return 0; }
|
|
#endif
|