AuxXxilium/linux_dsm_epyc7002
1
0
Fork 0
mirror of https://github.com/AuxXxilium/linux_dsm_epyc7002.git synced 2024-11-24 09:51:00 +07:00
Code Issues Actions Packages Projects Releases Wiki Activity
02e935bf5b
linux_dsm_epyc7002/security/lockdown
History
David Howells 02e935bf5b lockdown: Lock down /proc/kcore 
Disallow access to /proc/kcore when the kernel is locked down to prevent
access to cryptographic data. This is limited to lockdown
confidentiality mode and is still permitted in integrity mode.

Signed-off-by: David Howells <dhowells@redhat.com>
Signed-off-by: Matthew Garrett <mjg59@google.com>
Reviewed-by: Kees Cook <keescook@chromium.org>
Signed-off-by: James Morris <jmorris@namei.org>
2019-08-19 21:54:16 -07:00
..
Kconfig lockdown: Enforce module signatures if the kernel is locked down 2019-08-19 21:54:15 -07:00
lockdown.c lockdown: Lock down /proc/kcore 2019-08-19 21:54:16 -07:00
Makefile security: Add a static lockdown policy LSM 2019-08-19 21:54:15 -07:00