diff for duplicates of <18778.1508769258@warthog.procyon.org.uk>
diff --git a/a/1.txt b/N1/1.txt
index 376043e..3b681da 100644
--- a/a/1.txt
+++ b/N1/1.txt
@@ -5,7 +5,7 @@ read, write and ioctl.
David
---
commit e68daa2256986932b9a7d6709cf9e24b30d93583
-Author: Matthew Garrett <matthew.garrett@nebula.com>
+Author: Matthew Garrett <matthew.garrett-05XSO3Yj/JvQT0dZR+AlfA@public.gmane.org>
Date: Wed May 24 14:56:02 2017 +0100
Restrict /dev/{mem,kmem,port} when the kernel is locked down
@@ -20,9 +20,9 @@ Date: Wed May 24 14:56:02 2017 +0100
Also disallow /dev/port from being opened to prevent raw ioport access and
thus DMA from being used to accomplish the same thing.
- Signed-off-by: Matthew Garrett <matthew.garrett@nebula.com>
- Signed-off-by: David Howells <dhowells@redhat.com>
- Reviewed-by: "Lee, Chun-Yi" <jlee@suse.com>
+ Signed-off-by: Matthew Garrett <matthew.garrett-05XSO3Yj/JvQT0dZR+AlfA@public.gmane.org>
+ Signed-off-by: David Howells <dhowells-H+wXaHxf7aLQT0dZR+AlfA@public.gmane.org>
+ Reviewed-by: "Lee, Chun-Yi" <jlee-IBi9RG/b67k@public.gmane.org>
diff --git a/drivers/char/mem.c b/drivers/char/mem.c
index 593a8818aca9..0ce5ac0a5c6b 100644
diff --git a/a/content_digest b/N1/content_digest
index 22ca430..800b025 100644
--- a/a/content_digest
+++ b/N1/content_digest
@@ -5,7 +5,10 @@
"ref\000150842463163.7923.11081723749106843698.stgit\@warthog.procyon.org.uk\0"
]
[
- "From\0David Howells <dhowells\@redhat.com>\0"
+ "ref\000150842466261.7923.14359746674406637357.stgit-S6HVgzuS8uM4Awkfq6JHfwNdhmdF6hFW\@public.gmane.org\0"
+]
+[
+ "From\0David Howells <dhowells-H+wXaHxf7aLQT0dZR+AlfA\@public.gmane.org>\0"
]
[
"Subject\0Re: [PATCH 04/27] Restrict /dev/mem and /dev/kmem when the kernel is locked down\0"
@@ -14,16 +17,16 @@
"Date\0Mon, 23 Oct 2017 15:34:18 +0100\0"
]
[
- "To\0joeyli <jlee\@suse.com>\0"
+ "To\0joeyli <jlee-IBi9RG/b67k\@public.gmane.org>\0"
]
[
- "Cc\0dhowells\@redhat.com",
- " linux-security-module\@vger.kernel.org",
- " gnomes\@lxorguk.ukuu.org.uk",
- " linux-efi\@vger.kernel.org",
- " gregkh\@linuxfoundation.org",
- " linux-kernel\@vger.kernel.org",
- " jforbes\@redhat.com\0"
+ "Cc\0dhowells-H+wXaHxf7aLQT0dZR+AlfA\@public.gmane.org",
+ " linux-security-module-u79uwXL29TY76Z2rM5mHXA\@public.gmane.org",
+ " gnomes-qBU/x9rampVanCEyBjwyrvXRex20P6io\@public.gmane.org",
+ " linux-efi-u79uwXL29TY76Z2rM5mHXA\@public.gmane.org",
+ " gregkh-hQyY1W1yCW8ekmWlsbkhG0B+6BGkLq7r\@public.gmane.org",
+ " linux-kernel-u79uwXL29TY76Z2rM5mHXA\@public.gmane.org",
+ " jforbes-H+wXaHxf7aLQT0dZR+AlfA\@public.gmane.org\0"
]
[
"\0000:1\0"
@@ -39,7 +42,7 @@
"David\n",
"---\n",
"commit e68daa2256986932b9a7d6709cf9e24b30d93583\n",
- "Author: Matthew Garrett <matthew.garrett\@nebula.com>\n",
+ "Author: Matthew Garrett <matthew.garrett-05XSO3Yj/JvQT0dZR+AlfA\@public.gmane.org>\n",
"Date: Wed May 24 14:56:02 2017 +0100\n",
"\n",
" Restrict /dev/{mem,kmem,port} when the kernel is locked down\n",
@@ -54,9 +57,9 @@
" Also disallow /dev/port from being opened to prevent raw ioport access and\n",
" thus DMA from being used to accomplish the same thing.\n",
" \n",
- " Signed-off-by: Matthew Garrett <matthew.garrett\@nebula.com>\n",
- " Signed-off-by: David Howells <dhowells\@redhat.com>\n",
- " Reviewed-by: \"Lee, Chun-Yi\" <jlee\@suse.com>\n",
+ " Signed-off-by: Matthew Garrett <matthew.garrett-05XSO3Yj/JvQT0dZR+AlfA\@public.gmane.org>\n",
+ " Signed-off-by: David Howells <dhowells-H+wXaHxf7aLQT0dZR+AlfA\@public.gmane.org>\n",
+ " Reviewed-by: \"Lee, Chun-Yi\" <jlee-IBi9RG/b67k\@public.gmane.org>\n",
"\n",
"diff --git a/drivers/char/mem.c b/drivers/char/mem.c\n",
"index 593a8818aca9..0ce5ac0a5c6b 100644\n",
@@ -72,4 +75,4 @@
" }"
]
-ac1947ec8b2809a973d0188192e8097069e0e2a4890eebea02d11a1d53a76f7a
+0c670670ffeaf4a73fca11fbac462df147e385a894c70896f6be706fe6c80edc
diff --git a/a/1.txt b/N2/1.txt
index 376043e..5eb551a 100644
--- a/a/1.txt
+++ b/N2/1.txt
@@ -35,4 +35,9 @@ index 593a8818aca9..0ce5ac0a5c6b 100644
+ if (kernel_is_locked_down("/dev/mem,kmem,port"))
+ return -EPERM;
return capable(CAP_SYS_RAWIO) ? 0 : -EPERM;
- }
\ No newline at end of file
+ }
+
+--
+To unsubscribe from this list: send the line "unsubscribe linux-security-module" in
+the body of a message to majordomo at vger.kernel.org
+More majordomo info at http://vger.kernel.org/majordomo-info.html
\ No newline at end of file
diff --git a/a/content_digest b/N2/content_digest
index 22ca430..a43a161 100644
--- a/a/content_digest
+++ b/N2/content_digest
@@ -5,25 +5,16 @@
"ref\000150842463163.7923.11081723749106843698.stgit\@warthog.procyon.org.uk\0"
]
[
- "From\0David Howells <dhowells\@redhat.com>\0"
+ "From\0dhowells\@redhat.com (David Howells)\0"
]
[
- "Subject\0Re: [PATCH 04/27] Restrict /dev/mem and /dev/kmem when the kernel is locked down\0"
+ "Subject\0[PATCH 04/27] Restrict /dev/mem and /dev/kmem when the kernel is locked down\0"
]
[
"Date\0Mon, 23 Oct 2017 15:34:18 +0100\0"
]
[
- "To\0joeyli <jlee\@suse.com>\0"
-]
-[
- "Cc\0dhowells\@redhat.com",
- " linux-security-module\@vger.kernel.org",
- " gnomes\@lxorguk.ukuu.org.uk",
- " linux-efi\@vger.kernel.org",
- " gregkh\@linuxfoundation.org",
- " linux-kernel\@vger.kernel.org",
- " jforbes\@redhat.com\0"
+ "To\0linux-security-module\@vger.kernel.org\0"
]
[
"\0000:1\0"
@@ -69,7 +60,12 @@
"+\tif (kernel_is_locked_down(\"/dev/mem,kmem,port\"))\n",
"+\t\treturn -EPERM;\n",
" \treturn capable(CAP_SYS_RAWIO) ? 0 : -EPERM;\n",
- " }"
+ " }\n",
+ " \n",
+ "--\n",
+ "To unsubscribe from this list: send the line \"unsubscribe linux-security-module\" in\n",
+ "the body of a message to majordomo at vger.kernel.org\n",
+ "More majordomo info at http://vger.kernel.org/majordomo-info.html"
]
-ac1947ec8b2809a973d0188192e8097069e0e2a4890eebea02d11a1d53a76f7a
+06ff269d588f04f7cd7b405f6b765c6362ee5ac0654e381717662f294bc3e037
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.