projects / linux-4.9.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 17a22b7) | patch
Restrict /dev/mem and /dev/kmem when securelevel is set.
authorMatthew Garrett <mjg59@srcf.ucam.org>
Fri, 9 Mar 2012 14:28:15 +0000 (09:28 -0500)
committerYves-Alexis Perez <corsac@debian.org>
Fri, 9 Feb 2018 12:58:52 +0000 (12:58 +0000)
commitdc1e9a2e2abce020fea951f926009a3ed9528a85
tree95fcb747670a60f29c6730745e1e6a6d948e4a0atree | snapshot
parent17a22b77786675f619e47225c5a6646cdc3d4ed4commit | diff
Restrict /dev/mem and /dev/kmem when securelevel is set.

Allowing users to write to address space provides mechanisms that may permit
modification of the kernel at runtime. Prevent this if securelevel has been
set.

Signed-off-by: Matthew Garrett <mjg59@srcf.ucam.org>
[bwh: Forward-ported to 4.9: adjust context]

Gbp-Pq: Topic features/all/securelevel
Gbp-Pq: Name restrict-dev-mem-and-dev-kmem-when-securelevel-is-se.patch
drivers/char/mem.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.