forked from Qortal/Brooklyn
2a709f28fa
* 0day explit mitigation * Memory corruption prevention * Privilege escalation prevention * Buffer over flow prevention * File System corruption defense * Thread escape prevention This may very well be the most intensive inclusion to BrooklynR. This will not be part of an x86 suite nor it will be released as tool kit. The security core toolkit will remain part of kernel base.
61 lines
1.2 KiB
C
61 lines
1.2 KiB
C
/*
|
|
* netprio_cgroup.h Control Group Priority set
|
|
*
|
|
*
|
|
* Authors: Neil Horman <nhorman@tuxdriver.com>
|
|
*
|
|
* This program is free software; you can redistribute it and/or modify it
|
|
* under the terms of the GNU General Public License as published by the Free
|
|
* Software Foundation; either version 2 of the License, or (at your option)
|
|
* any later version.
|
|
*
|
|
*/
|
|
|
|
#ifndef _NETPRIO_CGROUP_H
|
|
#define _NETPRIO_CGROUP_H
|
|
|
|
#include <linux/cgroup.h>
|
|
#include <linux/hardirq.h>
|
|
#include <linux/rcupdate.h>
|
|
|
|
#if IS_ENABLED(CONFIG_CGROUP_NET_PRIO)
|
|
struct netprio_map {
|
|
struct rcu_head rcu;
|
|
u32 priomap_len;
|
|
u32 priomap[];
|
|
};
|
|
|
|
static inline u32 task_netprioidx(struct task_struct *p)
|
|
{
|
|
struct cgroup_subsys_state *css;
|
|
u32 idx;
|
|
|
|
rcu_read_lock();
|
|
css = task_css(p, net_prio_cgrp_id);
|
|
idx = css->cgroup->id;
|
|
rcu_read_unlock();
|
|
return idx;
|
|
}
|
|
|
|
static inline void sock_update_netprioidx(struct sock_cgroup_data *skcd)
|
|
{
|
|
if (in_interrupt())
|
|
return;
|
|
|
|
sock_cgroup_set_prioidx(skcd, task_netprioidx(current));
|
|
}
|
|
|
|
#else /* !CONFIG_CGROUP_NET_PRIO */
|
|
|
|
static inline u32 task_netprioidx(struct task_struct *p)
|
|
{
|
|
return 0;
|
|
}
|
|
|
|
static inline void sock_update_netprioidx(struct sock_cgroup_data *skcd)
|
|
{
|
|
}
|
|
|
|
#endif /* CONFIG_CGROUP_NET_PRIO */
|
|
#endif /* _NET_CLS_CGROUP_H */
|