Received: by 2002:a05:6a10:6744:0:0:0:0 with SMTP id w4csp3123143pxu; Mon, 19 Oct 2020 04:43:51 -0700 (PDT) X-Google-Smtp-Source: ABdhPJzsucUh62uEkUbEzjE+VKo275XDyAtQnFRfGHhF3/QU09EqwIHy4io/fTo4mJtI2dmJicCf X-Received: by 2002:a05:6402:943:: with SMTP id h3mr17549225edz.88.1603107831035; Mon, 19 Oct 2020 04:43:51 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1603107831; cv=none; d=google.com; s=arc-20160816; b=JquLP19uOYLX5KwLDb5Jh3lfIwABU7uI/O17oBGY8Puuh3b/IfPSJoYn4ntUPWIMgL UgNMvaMWkRkxJez4legQU+1jisg668jHHBKkGfFypo6XyfwLYtZ6/T77P2NzzDPHkUwI NCkCf7pXTSu5JgZkZMN7uuwDce1gszMeCqPhdwTCk8t/Khn1hkVR6zqDUMFbQYKSRJEp I+6ImevhM0jYOd8aByRWRZTfSpbvXLAmZi7NYpufpDJQqfm/9+NovrJgD9go3YPTiIFe pBmI983UvWFn+lYt7YMzCX4kWDB40xW28R7RAyHQhVDnYo4gjOyKMbi2jyBSmhO3Sw3o hnDQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:mime-version :message-id:date:subject:cc:to:from:dkim-signature; bh=jFk5VbhicfU6IQL8Kp5azjg7j7zrM24dueZ68njQ5EQ=; b=BHtEdHMZ+Q3q00h/N6U8Tc44M8hIE9iD/CZPV31lHToZYYcgepJgVr+EJIFVSY5fpe kZjoLjgWihG08G/CG8ob8uWi2VnMpjvrmLNAIipKzXzOqtdDM0SncZVPPkVYRLTB7KgV dZRaohr1W2QNNt5J5Le2BFltF4Hz9+h8xFPp82MrfKH35ad1UMgUysptbZ18DcN1khg8 eILMBCr+HtoY2oZEOOP8ViV5NptrpIFnqLSpECPEEE+NpCxxwAeG50NnWamEsi0yKkY3 kGjZOD+M4pnQhLVdXvLry1OpNOpksaGw69GEYgqSxLQGCmczkiJOHND+FrsnzfK/TVKP DGeA== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@redhat.com header.s=mimecast20190719 header.b="Q0J/aEE8"; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=redhat.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id u1si7859639edy.369.2020.10.19.04.43.28; Mon, 19 Oct 2020 04:43:51 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@redhat.com header.s=mimecast20190719 header.b="Q0J/aEE8"; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=redhat.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1726599AbgJSK1L (ORCPT + 99 others); Mon, 19 Oct 2020 06:27:11 -0400 Received: from us-smtp-delivery-124.mimecast.com ([63.128.21.124]:27026 "EHLO us-smtp-delivery-124.mimecast.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1726672AbgJSK1L (ORCPT ); Mon, 19 Oct 2020 06:27:11 -0400 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com; s=mimecast20190719; t=1603103230; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version: content-transfer-encoding:content-transfer-encoding; bh=jFk5VbhicfU6IQL8Kp5azjg7j7zrM24dueZ68njQ5EQ=; b=Q0J/aEE89nsCSaAEvxNLfTCpsV03+mzROsbwCbfs6kLxq5OPWYBqFg3BP6LpYFJgPE0k1V CFIoWI+F4AL3+hJOtF75DPY+CGZk/sluDfKgGjy+lyP19hMqGDaniQkepL2keLxzEgkDWm yPZj52NFCwWTo0fQYp4gOamzyVLNNB8= Received: from mimecast-mx01.redhat.com (mimecast-mx01.redhat.com [209.132.183.4]) (Using TLS) by relay.mimecast.com with ESMTP id us-mta-456-yRWT7b4OMF2ehwEatrA4Gw-1; Mon, 19 Oct 2020 06:27:08 -0400 X-MC-Unique: yRWT7b4OMF2ehwEatrA4Gw-1 Received: from smtp.corp.redhat.com (int-mx01.intmail.prod.int.phx2.redhat.com [10.5.11.11]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by mimecast-mx01.redhat.com (Postfix) with ESMTPS id 5614F1006704; Mon, 19 Oct 2020 10:27:07 +0000 (UTC) Received: from lithium.redhat.com (ovpn-115-42.ams2.redhat.com [10.36.115.42]) by smtp.corp.redhat.com (Postfix) with ESMTP id 1910350B44; Mon, 19 Oct 2020 10:27:04 +0000 (UTC) From: Giuseppe Scrivano To: linux-kernel@vger.kernel.org Cc: linux@rasmusvillemoes.dk, viro@zeniv.linux.org.uk, linux-fsdevel@vger.kernel.org, christian.brauner@ubuntu.com, containers@lists.linux-foundation.org Subject: [PATCH v2 0/2] fs, close_range: add flag CLOSE_RANGE_CLOEXEC Date: Mon, 19 Oct 2020 12:26:52 +0200 Message-Id: <20201019102654.16642-1-gscrivan@redhat.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-Scanned-By: MIMEDefang 2.79 on 10.5.11.11 Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org When the new flag is used, close_range will set the close-on-exec bit for the file descriptors instead of close()-ing them. It is useful for e.g. container runtimes that want to minimize the number of syscalls used after a seccomp profile is installed but want to keep some fds open until the container process is executed. v1->v2: * move close_range(..., CLOSE_RANGE_CLOEXEC) implementation to a separate function. * use bitmap_set() to set the close-on-exec bits in the bitmap. * add test with rlimit(RLIMIT_NOFILE) in place. * use "cur_max" that is already used by close_range(..., 0). Giuseppe Scrivano (2): fs, close_range: add flag CLOSE_RANGE_CLOEXEC selftests: add tests for CLOSE_RANGE_CLOEXEC fs/file.c | 44 ++++++++--- include/uapi/linux/close_range.h | 3 + .../testing/selftests/core/close_range_test.c | 74 +++++++++++++++++++ 3 files changed, 111 insertions(+), 10 deletions(-) -- 2.26.2