ANDROID: memcg: add permission check
Use the 'allow_attach' handler for the 'mem' cgroup to allow
non-root processes to add arbitrary processes to a 'mem' cgroup
if it has the CAP_SYS_NICE capability set.
Includes fixes and maintenance work by the following people:
Amit Pundir <amit.pundir@linaro.org>:
cgroup: memcg: pass correct argument to subsys_cgroup_allow_attach
Dmitry Shmidt <dimitrysh@google.com>:
cgroup: fix cgroup_taskset_for_each call in allow_attach() for 4.1
Amit Pundir <amit.pundir@linaro.org>:
cgroup: refactor allow_attach handler for 4.4
Signed-off-by: Rom Lemarchand <romlem@android.com>
Signed-off-by: Amit Pundir <amit.pundir@linaro.org>
Signed-off-by: Dmitry Shmidt <dimitrysh@google.com>
Signed-off-by: Amit Pundir <amit.pundir@linaro.org>
Bug: 18260435
Patchset: cgroup-permission-checks
Signed-off-by: Mattias Nissler <mnissler@google.com>
Change-Id: Ib4b63f1cf53620ba70e443e9eba41bcf55503e64
1 file changed