git.baikalelectronics.ru Git - kernel.git/commit

]> git.baikalelectronics.ru Git - kernel.git/commit

author	Matthew Garrett <matthewgarrett@google.com>
	Tue, 20 Aug 2019 00:18:03 +0000 (17:18 -0700)
committer	James Morris <jmorris@namei.org>
	Tue, 20 Aug 2019 04:54:17 +0000 (21:54 -0700)
commit	633b8f096e22c32a2ab9a3195595a660dddbdce4
tree	86b2e1acc2014eea41ceb006e17459b0878bd764	tree \| snapshot
parent	764545842477c26cf1b68c907618f602e5fb0a24	commit \| diff

tracefs: Restrict tracefs when the kernel is locked down

Tracefs may release more information about the kernel than desirable, so
restrict it when the kernel is locked down in confidentiality mode by
preventing open().

(Fixed by Ben Hutchings to avoid a null dereference in
default_file_open())

Signed-off-by: Matthew Garrett <mjg59@google.com>
Reviewed-by: Steven Rostedt (VMware) <rostedt@goodmis.org>
Cc: Ben Hutchings <ben@decadent.org.uk>
Signed-off-by: James Morris <jmorris@namei.org>

fs/tracefs/inode.c		diff \| blob \| history
include/linux/security.h		diff \| blob \| history
security/lockdown/lockdown.c		diff \| blob \| history

Linux Kernel Source Tree.

RSS Atom