David Howells 02e935bf5b lockdown: Lock down /proc/kcore ...

Disallow access to /proc/kcore when the kernel is locked down to prevent
access to cryptographic data. This is limited to lockdown
confidentiality mode and is still permitted in integrity mode.

Signed-off-by: David Howells <dhowells@redhat.com>
Signed-off-by: Matthew Garrett <mjg59@google.com>
Reviewed-by: Kees Cook <keescook@chromium.org>
Signed-off-by: James Morris <jmorris@namei.org>

2019-08-19 21:54:16 -07:00

..

array.c

fs/proc/array.c: allow reporting eip/esp for all coredumping threads

2019-06-29 16:43:44 +08:00

base.c

proc: remove useless d_is_dir() check

2019-06-27 12:25:09 +02:00

cmdline.c

proc: introduce proc_create_single{,_data}

2018-05-16 07:23:35 +02:00

consoles.c

treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 191

2019-05-30 11:29:21 -07:00

cpuinfo.c

x86 / CPU: Always show current CPU frequency in /proc/cpuinfo

2017-11-15 19:46:50 +01:00

devices.c

proc: introduce proc_create_seq{,_data}

2018-05-16 07:23:35 +02:00

fd.c

proc: use "unsigned int" in proc_fill_cache()

2018-06-07 17:34:38 -07:00

fd.h

License cleanup: add SPDX GPL-2.0 license identifier to files with no license

2017-11-02 11:10:55 +01:00

generic.c

treewide: Add SPDX license identifier for missed files

2019-05-21 10:50:45 +02:00

inode.c

procfs: switch to ->free_inode()

2019-05-01 22:43:25 -04:00

internal.h

treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 152

2019-05-30 11:26:32 -07:00

interrupts.c

proc: introduce proc_create_seq{,_data}

2018-05-16 07:23:35 +02:00

Kconfig

treewide: Add SPDX license identifier - Makefile/Kconfig

2019-05-21 10:50:46 +02:00

kcore.c

lockdown: Lock down /proc/kcore

2019-08-19 21:54:16 -07:00

kmsg.c

vfs: do bulk POLL* -> EPOLL* replacement

2018-02-11 14:34:03 -08:00

loadavg.c

sched: loadavg: consolidate LOAD_INT, LOAD_FRAC, CALC_LOAD

2018-10-26 16:26:32 -07:00

Makefile

proc: : uninline name_to_int()

2017-11-17 16:10:00 -08:00

meminfo.c

mm, proc: add KReclaimable to /proc/meminfo

2018-10-26 16:26:32 -07:00

namespaces.c

procfs: switch instantiate_t to d_splice_alias()

2018-05-26 14:20:50 -04:00

nommu.c

treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 152

2019-05-30 11:26:32 -07:00

page.c

mm: convert PG_balloon to PG_offline

2019-03-05 21:07:14 -08:00

proc_net.c

treewide: Add SPDX license identifier for missed files

2019-05-21 10:50:45 +02:00

proc_sysctl.c

Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net

2019-05-02 22:14:21 -04:00

proc_tty.c

tty: replace ->proc_fops with ->proc_show

2018-05-16 07:24:30 +02:00

root.c

Merge branch 'work.mount' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs

2019-03-12 14:08:19 -07:00

self.c

fs/proc/self.c: code cleanup for proc_setup_self()

2019-03-05 21:07:21 -08:00

softirqs.c

proc: introduce proc_create_single{,_data}

2018-05-16 07:23:35 +02:00

stat.c

Merge branch 'akpm' (patches from Andrew)

2019-03-06 10:31:36 -08:00

task_mmu.c

mm/mmu_notifier: use correct mmu_notifier events for each invalidation

2019-05-14 09:47:49 -07:00

task_nommu.c

Merge branch 'akpm' (patches from Andrew)

2019-03-06 10:31:36 -08:00

thread_self.c

fs/proc/thread_self.c: code cleanup for proc_setup_thread_self()

2019-03-05 21:07:21 -08:00

uptime.c

fs/proc/uptime.c: use ktime_get_boottime_ts64

2018-08-22 10:52:45 -07:00

util.c

fs/proc/util.c: include fs/proc/internal.h for name_to_int()

2019-01-04 13:13:45 -08:00

version.c

proc: introduce proc_create_single{,_data}

2018-05-16 07:23:35 +02:00

vmcore.c

treewide: Add SPDX license identifier for missed files

2019-05-21 10:50:45 +02:00