Re: [PATCH 2/3] security: Expand task_setscheduler LSM hook to include CPU affinity mask

Next message: Stepan Ionichev: "Re: [PATCH 3/3] iio: chemical: scd30: make command lookup table const"
Previous message: Danilo Krummrich: "Re: [PATCH v2] software node: provide wrappers around kobject_get/put()"
In reply to: Aaron Tomlin: "[PATCH 2/3] security: Expand task_setscheduler LSM hook to include CPU affinity mask"
Next in thread: Aaron Tomlin: "[PATCH 1/3] cgroup/cpuset: Fix deadline bandwidth leak in cpuset_can_attach()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Aaron Tomlin

Date: Sat May 09 2026 - 14:29:48 EST

On Sat, May 09, 2026 at 12:48:46PM -0400, Aaron Tomlin wrote:
> @@ -3592,7 +3592,7 @@ static int cpuset_can_fork(struct task_struct *task, struct css_set *cset)
> if (ret)
> goto out_unlock;
>
> - ret = security_task_setscheduler(task);
> + ret = security_task_setscheduler(task, NULL);
> if (ret)
> goto out_unlock;
>

Apologies, we want the CPU affinity mask here too. The NULL should be
replaced with cs->effective_cpus. This will be addressed in the next
iteration.

--
Aaron Tomlin

Attachment: signature.asc
Description: PGP signature