shinys000114/linux
1
0
Fork 0
mirror of https://github.com/hardkernel/linux.git synced 2026-04-11 07:28:10 +09:00
Code Issues Packages Projects Releases Wiki Activity
Files
d09bf7f8c74548ac2b7849e0568ec8929dea5c2d
linux/kernel
History
Daniel Mentz d09bf7f8c7 Revert "proc: smaps: Allow smaps access for CAP_SYS_RESOURCE" 
This reverts commit 9d19f72b43.

This fixes CVE-2017-0710.

SELinux allows more fine grained control: We grant processes that need
access to smaps CAP_SYS_PTRACE but prohibit them from using ptrace
attach().

Bug: 34951864
Bug: 36468447
Change-Id: I8ea67f8771ec212950bc251ee750bd8a7e7c0643
Signed-off-by: Daniel Mentz <danielmentz@google.com>
2017-08-11 19:31:04 +05:30
..
bpf
Merge branch 'linux-linaro-lsk-v4.4' into linux-linaro-lsk-v4.4-android
2017-07-22 12:02:06 +08:00
configs
kconfig: tinyconfig: provide whole choice blocks to avoid warnings
2016-09-24 10:07:42 +02:00
debug
Merge branch 'linux-linaro-lsk-v4.4' into linux-linaro-lsk-v4.4-android
2017-01-09 12:01:35 +08:00
events
Merge branch 'linux-linaro-lsk-v4.4' into linux-linaro-lsk-v4.4-android
2017-07-28 12:01:36 +08:00
gcov
gcov: add support for GCC 5.1
2015-06-30 19:44:57 -07:00
irq
genirq: Release resources in __setup_irq() error path
2017-06-26 07:13:10 +02:00
livepatch
livepatch: x86: fix relocation computation with kASLR
2015-11-11 17:36:04 +01:00
locking
Merge branch 'linux-linaro-lsk-v4.4' into linux-linaro-lsk-v4.4-android
2016-12-20 13:48:11 +08:00
power
UPSTREAM: PM / sleep: make PM notifiers called symmetrically
2017-05-01 15:02:13 +05:30
printk
Merge branch 'linux-linaro-lsk-v4.4' into linux-linaro-lsk-v4.4-android
2017-02-24 12:03:21 +08:00
rcu
Merge branch 'linux-linaro-lsk-v4.4' into linux-linaro-lsk-v4.4-android
2016-12-12 22:17:37 +08:00
sched
UPSTREAM: cpufreq: schedutil: Trace frequency only if it has changed
2017-08-11 19:31:04 +05:30
time
UPSTREAM: cpufreq: schedutil: Avoid reducing frequency of busy CPUs prematurely
2017-08-11 19:31:04 +05:30
trace
Merge branch 'linux-linaro-lsk-v4.4' into linux-linaro-lsk-v4.4-android
2017-07-28 12:01:36 +08:00
.gitignore
certs: add .gitignore to stop git nagging about x509_certificate_list
2015-10-21 15:18:35 +01:00
acct.c
acct: check FMODE_CAN_WRITE
2015-04-11 22:27:55 -04:00
async.c
kernel/async.c: switch to pr_foo()
2014-10-09 22:26:04 -04:00
audit_fsnotify.c
audit: clean simple fsnotify implementation
2015-08-06 16:14:53 -04:00
audit_tree.c
audit: audit_tree_match can be boolean
2015-11-04 08:23:51 -05:00
audit_watch.c
audit: fix exe_file access in audit_exe_compare
2016-09-24 10:07:36 +02:00
audit.c
BACKPORT: audit: consistently record PIDs with task_tgid_nr()
2016-10-12 17:34:22 +05:30
audit.h
audit: audit_tree_match can be boolean
2015-11-04 08:23:51 -05:00
auditfilter.c
audit: fix comment block whitespace
2015-11-04 08:23:51 -05:00
auditsc.c
BACKPORT: audit: consistently record PIDs with task_tgid_nr()
2016-10-12 17:34:22 +05:30
backtracetest.c
kernel/backtracetest.c: replace no level printk by pr_info()
2014-06-04 16:54:14 -07:00
bounds.c
page-cgroup: get rid of NR_PCG_FLAGS
2014-08-08 15:57:18 -07:00
capability.c
exec: Ensure mm->user_ns contains the execed files
2017-01-06 11:16:14 +01:00
cgroup_freezer.c
cgroup: fix handling of multi-destination migration from subtree_control enabling
2015-12-03 10:18:21 -05:00
cgroup_pids.c
cgroup_pids: don't account for the root cgroup
2015-12-03 10:18:21 -05:00
cgroup.c
Merge branch 'linux-linaro-lsk-v4.4' into linux-linaro-lsk-v4.4-android
2017-04-23 12:02:14 +08:00
compat.c
compat: cleanup coding in compat_get_bitmap() and compat_put_bitmap()
2015-06-04 23:57:18 +02:00
configs.c
proc: Supply PDE attribute setting accessor functions
2013-05-01 17:29:18 -04:00
context_tracking.c
context_tracking: avoid irq_save/irq_restore on guest entry and exit
2015-11-10 12:06:23 +01:00
cpu_pm.c
kernel/cpu_pm: fix cpu_cluster_pm_exit comment
2015-09-03 02:42:20 +02:00
cpu.c
Merge branch 'linux-linaro-lsk-v4.4' into linux-linaro-lsk-v4.4-android
2017-01-13 12:01:52 +08:00
cpuset.c
Merge branch 'linux-linaro-lsk-v4.4' into linux-linaro-lsk-v4.4-android
2017-07-11 16:22:22 +08:00
crash_dump.c
crash_dump: Make is_kdump_kernel() accessible from modules
2014-08-25 15:42:19 -07:00
cred.c
cred: Reject inodes with invalid ids in set_create_file_as()
2016-09-15 08:27:49 +02:00
delayacct.c
delayacct: Remove braindamaged type conversions
2014-07-23 10:18:06 -07:00
dma.c
elfcore.c
switch elf_core_write_extra_phdrs() to dump_emit()
2013-11-09 00:16:23 -05:00
exec_domain.c
Remove rest of exec domains.
2015-04-12 21:03:31 +02:00
exit.c
FIXUP: sched/tune: fix accounting for runnable tasks
2016-09-14 14:59:32 +05:30
extable.c
kernel/extable.c: mark core_kernel_text notrace
2017-07-21 07:44:56 +02:00
fork.c
Revert "proc: smaps: Allow smaps access for CAP_SYS_RESOURCE"
2017-08-11 19:31:04 +05:30
freezer.c
freezer: remove obsolete comments in __thaw_task()
2014-10-21 23:44:20 +02:00
futex_compat.c
ptrace: use fsuid, fsgid, effective creds for fs access checks
2016-02-25 12:01:16 -08:00
futex.c
Merge tag 'v4.4.56' into linux-linaro-lsk-v4.4
2017-03-23 12:00:54 +08:00
groups.c
kernel: conditionally support non-root users, groups and capabilities
2015-04-15 16:35:22 -07:00
hung_task.c
kernel/hung_task.c: change hung_task.c to use for_each_process_thread()
2015-04-15 16:35:22 -07:00
irq_work.c
treewide: Remove old email address
2015-11-23 09:44:58 +01:00
jump_label.c
jump_labels: API for flushing deferred jump label updates
2017-01-19 20:17:19 +01:00
kallsyms.c
kernel/kallsyms.c: use __seq_open_private()
2014-10-14 02:18:16 +02:00
kcmp.c
ptrace: use fsuid, fsgid, effective creds for fs access checks
2016-02-25 12:01:16 -08:00
Kconfig.freezer
Kconfig.hz
kernel: remove CONFIG_USE_GENERIC_SMP_HELPERS
2013-11-15 09:32:22 +09:00
Kconfig.locks
locking/qrwlock: Rename QUEUE_RWLOCK to QUEUED_RWLOCKS
2015-05-12 09:46:00 +02:00
Kconfig.preempt
kexec_core.c
kexec: use file name as the output message prefix
2015-11-06 17:50:42 -08:00
kexec_file.c
kexec: fix double-free when failing to relocate the purgatory
2016-09-24 10:07:36 +02:00
kexec_internal.h
kexec: split kexec_file syscall code to kexec_file.c
2015-09-10 13:29:01 -07:00
kexec.c
kexec: use file name as the output message prefix
2015-11-06 17:50:42 -08:00
kmod.c
kmod: don't run async usermode helper as a child of kworker thread
2015-10-23 17:55:10 +09:00
kprobes.c
tracing/kprobes: Enforce kprobes teardown after testing
2017-05-25 14:30:17 +02:00
ksysfs.c
kexec: split kexec_load syscall from kexec core code
2015-09-10 13:29:01 -07:00
kthread.c
BACKPORT: kthread: allow to cancel kthread work
2017-06-21 16:34:04 +05:30
latencytop.c
kernel/latencytop.c: convert seq_printf to seq_puts
2014-06-04 16:54:15 -07:00
Makefile
sys_membarrier(): system-wide memory barrier (generic, x86)
2015-09-11 15:21:34 -07:00
membarrier.c
Fix: Disable sys_membarrier when nohz_full is enabled
2017-03-12 06:37:26 +01:00
memremap.c
mm: fix devm_memremap_pages crash, use mem_hotplug_{begin, done}
2017-01-19 20:17:18 +01:00
module_signing.c
KEYS: Merge the type-specific data with the payload data
2015-10-21 15:18:36 +01:00
module-internal.h
KEYS: Separate the kernel signature checking keyring from module signing
2013-09-25 17:17:01 +01:00
module.c
module: Invalidate signatures on force-loaded modules
2016-08-20 18:09:27 +02:00
notifier.c
Merge branch 'x86-asm-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip
2015-09-01 08:40:25 -07:00
nsproxy.c
bury struct proc_ns in fs/proc
2014-12-04 14:34:54 -05:00
padata.c
padata: free correct variable
2017-05-20 14:27:02 +02:00
panic.c
kernel/panic.c: add missing \n
2017-07-05 14:37:19 +02:00
params.c
Merge tag 'modules-next-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/rusty/linux
2015-11-09 15:53:39 -08:00
pid_namespace.c
pid_ns: Sleep in TASK_INTERRUPTIBLE in zap_pid_ns_processes
2017-05-25 14:30:11 +02:00
pid.c
pidns: fix NULL dereference in __task_pid_nr_ns()
2015-11-24 12:03:55 -08:00
profile.c
mm: rename alloc_pages_exact_node() to __alloc_pages_node()
2015-09-08 15:35:28 -07:00
ptrace.c
ptrace: Properly initialize ptracer_cred on fork
2017-06-14 13:16:20 +02:00
range.c
kernel: avoid overflow in cmp_range
2015-01-17 10:02:23 +13:00
reboot.c
kexec: split kexec_load syscall from kexec core code
2015-09-10 13:29:01 -07:00
relay.c
kernel/relay.c: use kvfree() in relay_free_page_array()
2015-06-30 19:44:59 -07:00
resource.c
/proc/iomem: only expose physical resource addresses to privileged users
2017-08-06 19:19:42 -07:00
seccomp.c
seccomp: always propagate NO_NEW_PRIVS on tsync
2016-03-03 15:07:25 -08:00
signal.c
signal: Only reschedule timers on signals timers have sent
2017-06-29 12:48:51 +02:00
smp.c
mm, page_alloc: distinguish between being unable to sleep, unwilling to sleep and avoiding waking kswapd
2015-11-06 17:50:42 -08:00
smpboot.c
stop_machine: Kill smp_hotplug_thread->pre_unpark, introduce stop_machine_unpark()
2015-10-20 10:23:55 +02:00
smpboot.h
softirq.c
Merge branch 'locking-core-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip
2015-02-09 15:24:03 -08:00
stacktrace.c
stacktrace: introduce snprint_stack_trace for buffer output
2014-12-13 12:42:48 -08:00
stop_machine.c
kernel: remove stop_machine() Kconfig dependency
2015-12-12 10:15:34 -08:00
sys_ni.c
mm: mlock: add new mlock system call
2015-11-05 19:34:48 -08:00
sys.c
BACKPORT: timer: convert timer_slack_ns from unsigned long to u64
2016-07-11 12:43:04 +05:30
sysctl_binary.c
fs/coredump: prevent fsuid=0 dumps into user-controlled directories
2016-04-12 09:08:58 -07:00
sysctl.c
Merge branch 'linux-linaro-lsk-v4.4' into linux-linaro-lsk-v4.4-android
2017-07-18 14:31:54 +08:00
task_work.c
task_work: remove fifo ordering guarantee
2015-09-05 13:46:58 -07:00
taskstats.c
netlink: make nlmsg_end() and genlmsg_end() void
2015-01-18 01:03:45 -05:00
test_kprobes.c
kernel/test_kprobes.c: use current logging functions
2014-08-08 15:57:18 -07:00
torture.c
torture: Consolidate cond_resched_rcu_qs() into stutter_wait()
2015-10-06 11:25:01 -07:00
tracepoint.c
tracepoint: Give priority to probes of tracepoints
2015-10-25 21:33:54 -04:00
tsacct.c
sched: Make task->start_time nanoseconds based
2014-07-23 10:18:05 -07:00
uid16.c
groups: Consolidate the setgroups permission checks
2014-12-05 17:19:27 -06:00
up.c
smp: Rename __smp_call_function_single() to smp_call_function_single_async()
2014-02-24 14:47:15 -08:00
user_namespace.c
capabilities: ambient capabilities
2015-09-04 16:54:41 -07:00
user-return-notifier.c
scheduler: Replace __get_cpu_var with this_cpu_ptr
2014-08-26 13:45:45 -04:00
user.c
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/ebiederm/user-namespace
2014-12-17 12:31:40 -08:00
utsname_sysctl.c
sysctl: convert use of typedef ctl_table to struct ctl_table
2014-06-06 16:08:16 -07:00
utsname.c
copy address of proc_ns_ops into ns_common
2014-12-04 14:34:47 -05:00
watchdog.c
Merge branch 'linux-linaro-lsk-v4.4' into linux-linaro-lsk-v4.4-android
2017-01-09 12:01:35 +08:00
workqueue_internal.h
workqueue: rename manager_mutex to attach_mutex
2014-05-20 10:59:32 -04:00
workqueue.c
workqueue: fix rebind bound workers warning
2016-05-18 17:06:50 -07:00