sugar/linux
1
0
Fork 0
Code Activity
Files
32ed74a4b968a4faff7aaaff557035ce5d5e70ab
linux/fs
History
Djalal Harouni 32ed74a4b9 procfs: make /proc/*/pagemap 0400 
The /proc/*/pagemap contain sensitive information and currently its mode
is 0444.  Change this to 0400, so the VFS will prevent unprivileged
processes from getting file descriptors on arbitrary privileged
/proc/*/pagemap files.

This reduces the scope of address space leaking and bypasses by protecting
already running processes.

Signed-off-by: Djalal Harouni <tixxdz@opendz.org>
Acked-by: Kees Cook <keescook@chromium.org>
Acked-by: Andy Lutomirski <luto@amacapital.net>
Cc: Eric W. Biederman <ebiederm@xmission.com>
Cc: Al Viro <viro@zeniv.linux.org.uk>
Cc: Oleg Nesterov <oleg@redhat.com>
Cc: Ingo Molnar <mingo@kernel.org>
Signed-off-by: Andrew Morton <akpm@linux-foundation.org>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
2014-04-07 16:36:05 -07:00
..
9p
mm: implement ->map_pages for page cache
2014-04-07 16:35:53 -07:00
adfs
fs: push sync_filesystem() down to the file system's remount_fs()
2014-03-13 10:14:33 -04:00
affs
Merge tag 'ext4_for_linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4
2014-04-04 15:39:39 -07:00
afs
mm + fs: store shadow entries in page cache
2014-04-03 16:21:01 -07:00
autofs4
autofs: fix symlinks aren't checked for expiry
2014-01-23 16:36:59 -08:00
befs
Merge tag 'ext4_for_linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4
2014-04-04 15:39:39 -07:00
bfs
mm + fs: store shadow entries in page cache
2014-04-03 16:21:01 -07:00
btrfs
mm: implement ->map_pages for page cache
2014-04-07 16:35:53 -07:00
cachefiles
Merge branch 'cross-rename' of git://git.kernel.org/pub/scm/linux/kernel/git/mszeredi/vfs
2014-04-04 14:03:05 -07:00
ceph
ceph: fix __dcache_readdir()
2014-02-17 12:37:13 -08:00
cifs
mm: implement ->map_pages for page cache
2014-04-07 16:35:53 -07:00
coda
Merge tag 'ext4_for_linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4
2014-04-04 15:39:39 -07:00
configfs
cramfs
Merge tag 'ext4_for_linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4
2014-04-04 15:39:39 -07:00
debugfs
Merge tag 'ext4_for_linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4
2014-04-04 15:39:39 -07:00
devpts
fs: push sync_filesystem() down to the file system's remount_fs()
2014-03-13 10:14:33 -04:00
dlm
dlm: use INFO for recovery messages
2014-02-14 11:54:44 -06:00
ecryptfs
Merge branch 'cross-rename' of git://git.kernel.org/pub/scm/linux/kernel/git/mszeredi/vfs
2014-04-04 14:03:05 -07:00
efivarfs
efivarfs: 'efivarfs_file_write' function reorganization
2014-03-04 16:16:16 +00:00
efs
Merge tag 'ext4_for_linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4
2014-04-04 15:39:39 -07:00
exofs
mm + fs: store shadow entries in page cache
2014-04-03 16:21:01 -07:00
exportfs
ext2
Merge tag 'ext4_for_linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4
2014-04-04 15:39:39 -07:00
ext3
Merge tag 'ext4_for_linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4
2014-04-04 15:39:39 -07:00
ext4
mm: implement ->map_pages for page cache
2014-04-07 16:35:53 -07:00
f2fs
mm: implement ->map_pages for page cache
2014-04-07 16:35:53 -07:00
fat
Merge tag 'ext4_for_linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4
2014-04-04 15:39:39 -07:00
freevxfs
Merge tag 'ext4_for_linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4
2014-04-04 15:39:39 -07:00
fscache
FS-Cache: Handle removal of unadded object to the fscache_object_list rb tree
2014-02-17 13:47:35 -08:00
fuse
mm: implement ->map_pages for page cache
2014-04-07 16:35:53 -07:00
gfs2
mm: implement ->map_pages for page cache
2014-04-07 16:35:53 -07:00
hfs
Merge tag 'ext4_for_linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4
2014-04-04 15:39:39 -07:00
hfsplus
Merge tag 'ext4_for_linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4
2014-04-04 15:39:39 -07:00
hostfs
mm + fs: store shadow entries in page cache
2014-04-03 16:21:01 -07:00
hpfs
Merge tag 'ext4_for_linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4
2014-04-04 15:39:39 -07:00
hppfs
hugetlbfs
mm, hugetlb: unify region structure handling
2014-04-03 16:20:59 -07:00
isofs
fs: push sync_filesystem() down to the file system's remount_fs()
2014-03-13 10:14:33 -04:00
jbd
jbd2
jbd2: improve error messages for inconsistent journal heads
2014-03-12 16:38:03 -04:00
jffs2
Merge tag 'ext4_for_linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4
2014-04-04 15:39:39 -07:00
jfs
Merge tag 'ext4_for_linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4
2014-04-04 15:39:39 -07:00
kernfs
Merge branch 'akpm' (incoming from Andrew)
2014-04-03 16:22:16 -07:00
lockd
lockd: send correct lock when granting a delayed lock.
2014-02-13 14:55:02 -05:00
logfs
mm + fs: store shadow entries in page cache
2014-04-03 16:21:01 -07:00
minix
Merge tag 'ext4_for_linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4
2014-04-04 15:39:39 -07:00
ncpfs
Merge tag 'ext4_for_linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4
2014-04-04 15:39:39 -07:00
nfs
mm: implement ->map_pages for page cache
2014-04-07 16:35:53 -07:00
nfs_common
nfsd
Merge branch 'cross-rename' of git://git.kernel.org/pub/scm/linux/kernel/git/mszeredi/vfs
2014-04-04 14:03:05 -07:00
nilfs2
mm: implement ->map_pages for page cache
2014-04-07 16:35:53 -07:00
nls
nls: have register_nls() set ->owner
2014-01-25 03:14:05 -05:00
notify
fanotify: move unrelated handling from copy_event_to_user()
2014-04-03 16:20:51 -07:00
ntfs
ntfs: logging clean-up
2014-04-07 16:35:49 -07:00
ocfs2
Merge tag 'modules-next-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/rusty/linux
2014-04-06 09:38:07 -07:00
omfs
mm + fs: store shadow entries in page cache
2014-04-03 16:21:01 -07:00
openpromfs
fs: push sync_filesystem() down to the file system's remount_fs()
2014-03-13 10:14:33 -04:00
proc
procfs: make /proc/*/pagemap 0400
2014-04-07 16:36:05 -07:00
pstore
Merge tag 'ext4_for_linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4
2014-04-04 15:39:39 -07:00
qnx4
fs: push sync_filesystem() down to the file system's remount_fs()
2014-03-13 10:14:33 -04:00
qnx6
fs: push sync_filesystem() down to the file system's remount_fs()
2014-03-13 10:14:33 -04:00
quota
quota: provide function to grab quota structure reference
2014-04-03 16:20:54 -07:00
ramfs
fs/ramfs: move ramfs_aops to inode.c
2014-01-23 16:36:58 -08:00
reiserfs
Merge tag 'ext4_for_linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4
2014-04-04 15:39:39 -07:00
romfs
fs: push sync_filesystem() down to the file system's remount_fs()
2014-03-13 10:14:33 -04:00
squashfs
fs: push sync_filesystem() down to the file system's remount_fs()
2014-03-13 10:14:33 -04:00
sysfs
Revert "sysfs, driver-core: remove unused {sysfs|device}_schedule_callback_owner()"
2014-03-25 20:54:57 -07:00
sysv
Merge tag 'ext4_for_linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4
2014-04-04 15:39:39 -07:00
ubifs
mm: implement ->map_pages for page cache
2014-04-07 16:35:53 -07:00
udf
Merge tag 'ext4_for_linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4
2014-04-04 15:39:39 -07:00
ufs
Merge tag 'ext4_for_linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4
2014-04-04 15:39:39 -07:00
xfs
mm: implement ->map_pages for page cache
2014-04-07 16:35:53 -07:00
aio.c
anon_inodes.c
vfs: Allocate anon_inode_inode in anon_inode_init()
2014-03-27 09:52:54 -07:00
attr.c
bad_inode.c
binfmt_aout.c
binfmt_elf_fdpic.c
binfmt_elf.c
exec: kill the unnecessary mm->def_flags setting in load_elf_binary()
2014-04-07 16:35:52 -07:00
binfmt_em86.c
binfmt_flat.c
binfmt_misc.c
binfmt_misc: add missing 'break' statement
2014-04-03 16:21:16 -07:00
binfmt_script.c
binfmt_som.c
bio-integrity.c
Merge branch 'for-3.15/core' of git://git.kernel.dk/linux-block
2014-04-01 19:19:15 -07:00
bio.c
Merge branch 'for-3.15' of git://git.kernel.org/pub/scm/linux/kernel/git/tj/cgroup
2014-04-03 13:05:42 -07:00
block_dev.c
mm + fs: store shadow entries in page cache
2014-04-03 16:21:01 -07:00
buffer.c
Merge branch 'master' into for-next
2014-02-20 14:54:28 +01:00
char_dev.c
compat_binfmt_elf.c
binfmt_elf: add ELF_HWCAP2 to compat auxv entries
2014-03-04 08:05:21 +00:00
compat_ioctl.c
fs/compat: convert to COMPAT_SYSCALL_DEFINE with changing parameter types
2014-03-06 16:30:44 +01:00
compat.c
Merge branch 'locks-3.15' of git://git.samba.org/jlayton/linux
2014-04-04 14:21:20 -07:00
coredump.c
coredump: make __get_dumpable/get_dumpable inline, kill fs/coredump.h
2014-01-23 16:37:01 -08:00
dcache.c
vfs: add cross-rename
2014-04-01 17:08:43 +02:00
dcookies.c
fs/compat: fix lookup_dcookie() parameter handling
2014-01-29 16:22:40 -08:00
direct-io.c
Merge tag 'xfs-for-linus-3.15-rc1' of git://oss.sgi.com/xfs/xfs
2014-04-04 15:50:08 -07:00
drop_caches.c
drop_caches: add some documentation and info message
2014-04-03 16:21:04 -07:00
eventfd.c
eventfd_ctx_fdget(): use fdget() instead of fget()
2014-01-25 03:13:04 -05:00
eventpoll.c
epoll: do not take the nested ep->mtx on EPOLL_CTL_DEL
2014-01-02 14:40:30 -08:00
exec.c
mm: per-thread vma caching
2014-04-07 16:35:53 -07:00
fcntl.c
locks: add new fcntl cmd values for handling file private locks
2014-03-31 08:24:43 -04:00
fhandle.c
file_table.c
Merge branch 'locks-3.15' of git://git.samba.org/jlayton/linux
2014-04-04 14:21:20 -07:00
file.c
Merge branch 'core-rcu-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip
2014-03-31 11:05:24 -07:00
filesystems.c
sys_sysfs: Add CONFIG_SYSFS_SYSCALL
2014-04-03 16:21:05 -07:00
fs_struct.c
fs-writeback.c
Merge tag 'gfs2-merge-window' of git://git.kernel.org/pub/scm/linux/kernel/git/steve/gfs2-3.0-nmw
2014-04-04 14:49:16 -07:00
inode.c
Merge tag 'ext4_for_linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4
2014-04-04 15:39:39 -07:00
internal.h
ioctl.c
ioprio.c
Kconfig
kernfs: add CONFIG_KERNFS
2014-02-07 16:08:57 -08:00
Kconfig.binfmt
libfs.c
locks.c
locks: make locks_mandatory_area check for file-private locks
2014-03-31 08:24:43 -04:00
Makefile
kernfs: add CONFIG_KERNFS
2014-02-07 16:08:57 -08:00
mbcache.c
ext4: each filesystem creates and uses its own mb_cache
2014-03-18 19:24:49 -04:00
mount.h
switch mnt_hash to hlist
2014-03-30 19:18:51 -04:00
mpage.c
namei.c
Merge branch 'locks-3.15' of git://git.samba.org/jlayton/linux
2014-04-04 14:21:20 -07:00
namespace.c
switch mnt_hash to hlist
2014-03-30 19:18:51 -04:00
no-block.c
open.c
Merge tag 'xfs-for-linus-3.15-rc1' of git://oss.sgi.com/xfs/xfs
2014-04-04 15:50:08 -07:00
pipe.c
fs/pipe.c: skip file_update_time on frozen fs
2014-01-23 16:37:00 -08:00
pnode.c
switch mnt_hash to hlist
2014-03-30 19:18:51 -04:00
pnode.h
switch mnt_hash to hlist
2014-03-30 19:18:51 -04:00
posix_acl.c
Merge tag 'gfs2-merge-window' of git://git.kernel.org/pub/scm/linux/kernel/git/steve/gfs2-3.0-nmw
2014-04-04 14:49:16 -07:00
proc_namespace.c
fs/proc_namespace.c: simplify testing nsp and nsp->mnt_ns
2014-01-23 16:37:02 -08:00
read_write.c
Merge branch 'compat' of git://git.kernel.org/pub/scm/linux/kernel/git/s390/linux
2014-03-31 14:32:17 -07:00
readdir.c
select.c
seq_file.c
signalfd.c
splice.c
fuse: fix pipe_buf_operations
2014-01-22 19:36:57 +01:00
stack.c
stat.c
statfs.c
super.c
fs: push sync_filesystem() down to the file system's remount_fs()
2014-03-13 10:14:33 -04:00
sync.c
Revert "writeback: do not sync data dirtied after sync start"
2014-02-22 02:02:28 +01:00
timerfd.c
timerfd: support CLOCK_BOOTTIME clock
2014-01-23 16:57:40 -08:00
utimes.c
xattr.c