| From: |
| Giuseppe Scrivano <gscrivan-AT-redhat.com> |
| To: |
| linux-kernel-AT-vger.kernel.org |
| Subject: |
| [PATCH 0/2] fs, close_range: add flag CLOSE_RANGE_CLOEXEC |
| Date: |
| Tue, 13 Oct 2020 16:06:07 +0200 |
| Message-ID: |
| <20201013140609.2269319-1-gscrivan@redhat.com> |
| Cc: |
| viro-AT-zeniv.linux.org.uk, linux-fsdevel-AT-vger.kernel.org, christian.brauner-AT-ubuntu.com, containers-AT-lists.linux-foundation.org |
| Archive-link: |
| Article |
When the new flag is used, close_range will set the close-on-exec bit
for the file descriptors instead of close()-ing them.
It is useful for e.g. container runtimes that want to minimize the
number of syscalls used after a seccomp profile is installed but want
to keep some fds open until the container process is executed.
Giuseppe Scrivano (2):
fs, close_range: add flag CLOSE_RANGE_CLOEXEC
selftests: add tests for CLOSE_RANGE_CLOEXEC
fs/file.c | 56 +++++++++++++------
include/uapi/linux/close_range.h | 3 +
.../testing/selftests/core/close_range_test.c | 44 +++++++++++++++
3 files changed, 86 insertions(+), 17 deletions(-)
--
2.26.2
