projects / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: a3a8f41) | patch
Lock down kprobes
authorDavid Howells <dhowells@redhat.com>
Wed, 8 Nov 2017 16:14:12 +0000 (16:14 +0000)
committerSalvatore Bonaccorso <carnil@debian.org>
Thu, 18 Jul 2019 22:23:17 +0000 (23:23 +0100)
commit20818a39f1b24e1961058b10cc746d9d29c55931
tree870512c490cf6c24b7bf9cdda164317dba21197ctree | snapshot
parenta3a8f419ce4be9f2335cb603c669f4d94eb9d25bcommit | diff
Lock down kprobes

Disallow the creation of kprobes when the kernel is locked down by
preventing their registration.  This prevents kprobes from being used to
access kernel memory, either to make modifications or to steal crypto data.

Reported-by: Alexei Starovoitov <alexei.starovoitov@gmail.com>
Signed-off-by: David Howells <dhowells@redhat.com>
Gbp-Pq: Topic features/all/lockdown
Gbp-Pq: Name 0026-Lock-down-kprobes.patch
kernel/kprobes.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.