mirros/rockchip-kernel
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
5aeb4ebab7e89d24a0f9d050e6a11c69e1c4cd32
rockchip-kernel/fs
History
Kirill A. Shutemov f662f0e624 ANDROID: pagemap: do not leak physical addresses to non-privileged userspace 
As pointed by recent post[1] on exploiting DRAM physical imperfection,
/proc/PID/pagemap exposes sensitive information which can be used to do
attacks.

This disallows anybody without CAP_SYS_ADMIN to read the pagemap.

[1] http://googleprojectzero.blogspot.com/2015/03/exploiting-dram-rowhammer-bug-to-gain.html

[ Eventually we might want to do anything more finegrained, but for now
  this is the simple model.   - Linus ]

We add this patch again for pass CTS
FileSystemPermissionTest: Assert /proc/self/pagemap not readable

Change-Id: Id4bf9ea27af000734356b921cd723868802b4335
Signed-off-by: Kirill A. Shutemov <kirill.shutemov@linux.intel.com>
Acked-by: Konstantin Khlebnikov <khlebnikov@openvz.org>
Acked-by: Andy Lutomirski <luto@amacapital.net>
Cc: Pavel Emelyanov <xemul@parallels.com>
Cc: Andrew Morton <akpm@linux-foundation.org>
Cc: Mark Seaborn <mseaborn@chromium.org>
Cc: stable@vger.kernel.org
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
Signed-off-by: Huang, Tao <huangtao@rock-chips.com>
2017-01-22 18:12:52 +08:00
..
9p
posix_acl: Clear SGID bit when setting file permissions
2016-10-31 04:13:58 -06:00
adfs
fs/adfs: remove unneeded cast
2015-06-30 19:44:57 -07:00
affs
affs: fix remount failure when there are no options changed
2016-06-07 18:14:32 -07:00
afs
net: Add a struct net parameter to sock_create_kern
2015-05-11 10:50:17 -04:00
autofs4
autofs: use dentry flags to block walks during expire
2016-09-30 10:18:37 +02:00
befs
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2015-07-04 19:36:06 -07:00
bfs
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2015-04-26 17:22:07 -07:00
btrfs
btrfs: make file clone aware of fatal signals
2017-01-06 11:16:11 +01:00
cachefiles
FS-Cache: Add missing initialization of ret in cachefiles_write_page()
2015-11-16 20:38:43 -05:00
ceph
posix_acl: Clear SGID bit when setting file permissions
2016-10-31 04:13:58 -06:00
cifs
CIFS: Fix a possible memory corruption in push locks
2017-01-06 11:16:16 +01:00
coda
fs/coda: fix readlink buffer overflow
2015-09-10 13:29:01 -07:00
configfs
configfs: allow dynamic group creation
2015-11-20 16:17:32 -08:00
cramfs
debugfs
debugfs: Make automount point inodes permanently empty
2016-05-04 14:48:41 -07:00
devpts
devpts: clean up interface to pty drivers
2016-08-16 09:30:49 +02:00
dlm
dlm: free workqueues after the connections
2016-10-22 12:26:56 +02:00
ecryptfs
ecryptfs: fix handling of directory opening
2016-09-15 08:27:47 +02:00
efivarfs
efi: Make efivarfs entries immutable by default
2016-03-03 15:07:09 -08:00
efs
fs/efs: femove unneeded cast
2015-06-25 17:00:42 -07:00
exofs
osd fs: __r4w_get_page rely on PageUptodate for uptodate
2015-12-12 10:15:34 -08:00
exportfs
ext2
posix_acl: Clear SGID bit when setting file permissions
2016-10-31 04:13:58 -06:00
ext4
Merge branch 'linux-linaro-lsk-v4.4' into linux-linaro-lsk-v4.4-android
2017-01-09 12:01:35 +08:00
f2fs
Merge branch 'linux-linaro-lsk-v4.4-android' of git://git.linaro.org/kernel/linux-linaro-stable.git
2017-01-10 16:07:06 +08:00
fat
fat: fix fake_offset handling on error path
2015-11-20 16:17:32 -08:00
freevxfs
freevxfs: Grammar s/an negative/a negative/
2015-08-07 13:59:24 +02:00
fscache
FS-Cache: Handle a write to the page immediately beyond the EOF marker
2015-11-11 02:11:02 -05:00
fuse
Merge branch 'linux-linaro-lsk-v4.4' into linux-linaro-lsk-v4.4-android
2016-11-28 13:24:42 +08:00
gfs2
posix_acl: Clear SGID bit when setting file permissions
2016-10-31 04:13:58 -06:00
hfs
hfs: fix B-tree corruption after insertion at position 0
2015-09-10 13:29:01 -07:00
hfsplus
posix_acl: Clear SGID bit when setting file permissions
2016-10-31 04:13:58 -06:00
hostfs
hostfs: Freeing an ERR_PTR in hostfs_fill_sb_common()
2016-09-30 10:18:39 +02:00
hpfs
hpfs: implement the show_options method
2016-06-01 12:15:54 -07:00
hugetlbfs
fs/hugetlbfs/inode.c: fix bugs in hugetlb_vmtruncate_list()
2016-02-25 12:01:22 -08:00
isofs
isofs: Do not return EACCES for unknown filesystems
2016-10-28 03:01:34 -04:00
jbd2
jbd2: fix incorrect unlock on j_list_lock
2016-10-28 03:01:35 -04:00
jffs2
posix_acl: Clear SGID bit when setting file permissions
2016-10-31 04:13:58 -06:00
jfs
posix_acl: Clear SGID bit when setting file permissions
2016-10-31 04:13:58 -06:00
kernfs
kernfs: don't depend on d_find_any_alias() when generating notifications
2016-09-24 10:07:36 +02:00
lockd
Merge tag 'nfsd-4.4' of git://linux-nfs.org/~bfields/linux
2015-11-11 20:11:28 -08:00
logfs
mm, fs: introduce mapping_gfp_constraint()
2015-11-06 17:50:42 -08:00
minix
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2015-07-04 19:36:06 -07:00
ncpfs
ncpfs: fix a braino in OOM handling in ncp_fill_cache()
2016-03-16 08:42:59 -07:00
nfs
nfs_write_end(): fix handling of short copies
2017-01-09 08:07:52 +01:00
nfs_common
lockd: NLM grace period shouldn't block NFSv4 opens
2015-08-13 10:22:06 -04:00
nfsd
nfsd: Close race between nfsd4_release_lockowner and nfsd4_lock
2016-09-24 10:07:36 +02:00
nilfs2
fs/nilfs2: fix potential underflow in call to crc32_le
2016-08-10 11:49:25 +02:00
nls
notify
Merge branch 'linux-linaro-lsk-v4.4' into linux-linaro-lsk-v4.4-android
2016-10-11 23:33:37 +02:00
ntfs
mm, fs: introduce mapping_gfp_constraint()
2015-11-06 17:50:42 -08:00
ocfs2
posix_acl: Clear SGID bit when setting file permissions
2016-10-31 04:13:58 -06:00
omfs
omfs: fix potential integer overflow in allocator
2015-05-28 18:25:19 -07:00
openpromfs
overlayfs
ovl: fsync after copy-up
2016-11-10 16:36:34 +01:00
proc
ANDROID: pagemap: do not leak physical addresses to non-privileged userspace
2017-01-22 18:12:52 +08:00
pstore
Merge branch 'linux-linaro-lsk-v4.4' into linux-linaro-lsk-v4.4-android
2016-10-29 13:26:04 +08:00
qnx4
qnx6
pagemap.h: move dir_pages() over there
2015-06-23 18:02:00 -04:00
quota
quota: Fix possible GPF due to uninitialised pointers
2016-04-12 09:08:56 -07:00
ramfs
mm, fs: obey gfp_mapping for add_to_page_cache()
2015-10-16 11:42:28 -07:00
reiserfs
posix_acl: Clear SGID bit when setting file permissions
2016-10-31 04:13:58 -06:00
romfs
sdcardfs
ANDROID: sdcardfs: fix itnull.cocci warnings
2016-08-18 18:56:03 +05:30
squashfs
squashfs: xattr simplifications
2015-11-13 20:34:33 -05:00
sysfs
sysfs: correctly handle read offset on PREALLOC attrs
2016-09-07 08:32:46 +02:00
sysv
fix sysvfs symlinks
2015-11-23 21:11:08 -05:00
tracefs
tracefs: Fix refcount imbalance in start_creating()
2015-11-04 22:13:45 -05:00
ubifs
ubifs: Fix regression in ubifs_readdir()
2016-11-10 16:36:33 +01:00
udf
udf: Check output buffer length when converting name to CS0
2016-02-25 12:01:18 -08:00
ufs
fix ufs write vs readpage race when writing into a hole
2015-09-09 10:43:12 -07:00
xfs
xfs: set AGI buffer type in xlog_recover_clear_agi_bucket
2017-01-06 11:16:17 +01:00
aio.c
aio: mark AIO pseudo-fs noexec
2016-10-07 15:23:47 +02:00
anon_inodes.c
attr.c
vfs: move permission checking into notify_change() for utimes(NULL)
2016-10-22 12:26:56 +02:00
bad_inode.c
binfmt_aout.c
binfmt_elf_fdpic.c
Merge tag 'libnvdimm-for-4.4' of git://git.kernel.org/pub/scm/linux/kernel/git/nvdimm/nvdimm
2015-11-10 12:07:22 -08:00
binfmt_elf.c
FROMLIST: mm: ASLR: use get_random_long()
2016-04-07 16:49:59 +05:30
binfmt_em86.c
binfmt_flat.c
binfmt_misc.c
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2015-04-26 17:22:07 -07:00
binfmt_script.c
block_dev.c
block: protect iterate_bdevs() against concurrent close
2017-01-09 08:07:47 +01:00
buffer.c
vfs: remove unused wrapper block_page_mkwrite()
2015-11-11 02:19:33 -05:00
char_dev.c
fs/char_dev.c: fix incorrect documentation for unregister_chrdev_region
2015-08-05 13:49:35 -07:00
compat_binfmt_elf.c
compat_ioctl.c
i2c-dev: Fix typo in ioctl name reference
2015-10-23 23:26:43 +02:00
compat.c
coredump.c
coredump: fix unfreezable coredumping task
2016-11-18 10:48:34 +01:00
dax.c
dax: disable pmd mappings
2015-11-16 23:54:45 -08:00
dcache.c
Merge branch 'linux-linaro-lsk-v4.4' into linux-linaro-lsk-v4.4-android
2016-08-18 12:33:31 +08:00
dcookies.c
direct-io.c
block: fix use-after-free in dio_bio_complete
2016-03-03 15:07:28 -08:00
drop_caches.c
inode: convert inode_sb_list_lock to per-sb
2015-08-17 18:39:46 -04:00
eventfd.c
eventpoll.c
BACKPORT: timer: convert timer_slack_ns from unsigned long to u64
2016-07-11 12:43:04 +05:30
exec.c
exec: Ensure mm->user_ns contains the execed files
2017-01-06 11:16:14 +01:00
fcntl.c
fhandle.c
fs/coredump: prevent fsuid=0 dumps into user-controlled directories
2016-04-12 09:08:58 -07:00
file_table.c
fs, file table: reinit files_stat.max_files after deferred memory initialisation
2015-08-07 04:39:40 +03:00
file.c
vfs: clear remainder of 'full_fds_bits' in dup_fd()
2015-11-05 23:05:32 -08:00
filesystems.c
fs_pin.c
fs_struct.c
fs-writeback.c
Merge branch 'linux-linaro-lsk-v4.4' into linux-linaro-lsk-v4.4-android
2016-04-13 12:02:21 +08:00
inode.c
writeback: initialize inode members that track writeback history
2016-11-29 15:25:11 +08:00
internal.h
inode: rename i_wb_list to i_io_list
2015-08-17 23:38:10 -04:00
ioctl.c
Kconfig
Included sdcardfs source code for kernel 3.0
2016-04-07 16:50:01 +05:30
Kconfig.binfmt
libfs.c
fs: Set the size of empty dirs to 0.
2015-08-12 15:28:45 -05:00
locks.c
locks: use file_inode()
2016-08-10 11:49:27 +02:00
Makefile
Included sdcardfs source code for kernel 3.0
2016-04-07 16:50:01 +05:30
mbcache.c
mount.h
fs: use seq_open_private() for proc_mounts
2015-06-30 19:44:56 -07:00
mpage.c
ANDROID: fs: FS tracepoints to track IO.
2016-10-12 17:34:22 +05:30
namei.c
fs: Check for invalid i_uid in may_follow_link()
2016-09-15 08:27:49 +02:00
namespace.c
namespace: update event counter when umounting a deleted dentry
2016-08-10 11:49:27 +02:00
no-block.c
nsfs.c
fs/seq_file: convert int seq_vprint/seq_printf/etc... returns to void
2015-09-11 15:21:34 -07:00
open.c
vfs: add vfs_select_inode() helper
2016-05-18 17:06:48 -07:00
pipe.c
pipe: limit the per-user amount of pages allocated in pipes
2016-06-07 18:14:35 -07:00
pnode.c
propogate_mnt: Handle the first propogated copy being a slave
2016-05-11 11:21:19 +02:00
pnode.h
mnt: Clarify and correct the disconnect logic in umount_tree
2015-07-22 20:33:27 -05:00
posix_acl.c
posix_acl: Clear SGID bit when setting file permissions
2016-10-31 04:13:58 -06:00
proc_namespace.c
vfs: show_vfsstat: do not ignore errors from show_devname method
2016-04-12 09:08:55 -07:00
read_write.c
readdir.c
select.c
BACKPORT: timer: convert timer_slack_ns from unsigned long to u64
2016-07-11 12:43:04 +05:30
seq_file.c
fs/seq_file: fix out-of-bounds read
2016-09-07 08:32:43 +02:00
signalfd.c
signalfd: fix information leak in signalfd_copyinfo
2015-08-07 04:39:40 +03:00
splice.c
splice: handle zero nr_pages in splice_to_pipe()
2016-04-12 09:08:55 -07:00
stack.c
stat.c
fs/stat.c: remove unnecessary new_valid_dev() check
2015-11-09 15:11:24 -08:00
statfs.c
super.c
Merge branch 'linux-linaro-lsk-v4.4' into linux-linaro-lsk-v4.4-android
2016-10-29 13:26:04 +08:00
sync.c
fs/sync.c: make sync_file_range(2) use WB_SYNC_NONE writeback
2015-11-06 17:50:42 -08:00
timerfd.c
timerfd: Handle relative timers with CONFIG_TIME_LOW_RES proper
2016-02-25 12:01:25 -08:00
userfaultfd.c
Merge branch 'linux-linaro-lsk-v4.4' into linux-linaro-lsk-v4.4-android
2016-03-17 12:51:17 +08:00
utimes.c
vfs: move permission checking into notify_change() for utimes(NULL)
2016-10-22 12:26:56 +02:00
xattr.c
9p: xattr simplifications
2015-11-13 20:34:33 -05:00