projects / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e5f7dbc) | patch
Lock down kprobes
authorDavid Howells <dhowells@redhat.com>
Wed, 8 Nov 2017 16:14:12 +0000 (16:14 +0000)
committerSalvatore Bonaccorso <carnil@debian.org>
Sun, 30 Dec 2018 09:04:03 +0000 (09:04 +0000)
commit52d9a92f1ccdd5a493724e5096614c3fd5c84254
treed443070faf8a8d74ff7f9a2603b2b5244a9edc9ctree | snapshot
parente5f7dbc9b81eaaa9609a7689e686abaa78db9143commit | diff
Lock down kprobes

Disallow the creation of kprobes when the kernel is locked down by
preventing their registration.  This prevents kprobes from being used to
access kernel memory, either to make modifications or to steal crypto data.

Reported-by: Alexei Starovoitov <alexei.starovoitov@gmail.com>
Signed-off-by: David Howells <dhowells@redhat.com>
Gbp-Pq: Topic features/all/lockdown
Gbp-Pq: Name 0026-Lock-down-kprobes.patch
kernel/kprobes.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.