mirror of
https://github.com/Divested-Mobile/DivestOS-Build.git
synced 2024-09-06 01:22:20 +00:00
34 lines
1.2 KiB
Diff
34 lines
1.2 KiB
Diff
From e758417e7c31b975c862aa55d0ceef28f3cc9104 Mon Sep 17 00:00:00 2001
|
|
From: Biswajit Paul <biswajitpaul@codeaurora.org>
|
|
Date: Mon, 9 Feb 2015 15:21:12 -0800
|
|
Subject: kernel: Restrict permissions of /proc/iomem.
|
|
|
|
The permissions of /proc/iomem currently are -r--r--r--. Everyone can
|
|
see its content. As iomem contains information about the physical memory
|
|
content of the device, restrict the information only to root.
|
|
|
|
Change-Id: If0be35c3fac5274151bea87b738a48e6ec0ae891
|
|
CRs-Fixed: 786116
|
|
Signed-off-by: Biswajit Paul <biswajitpaul@codeaurora.org>
|
|
Signed-off-by: Avijit Kanti Das <avijitnsec@codeaurora.org>
|
|
---
|
|
kernel/resource.c | 2 +-
|
|
1 file changed, 1 insertion(+), 1 deletion(-)
|
|
|
|
diff --git a/kernel/resource.c b/kernel/resource.c
|
|
index a5a8086..91c35c3 100644
|
|
--- a/kernel/resource.c
|
|
+++ b/kernel/resource.c
|
|
@@ -153,7 +153,7 @@ static const struct file_operations proc_iomem_operations = {
|
|
static int __init ioresources_init(void)
|
|
{
|
|
proc_create("ioports", 0, NULL, &proc_ioports_operations);
|
|
- proc_create("iomem", 0, NULL, &proc_iomem_operations);
|
|
+ proc_create("iomem", S_IRUSR, NULL, &proc_iomem_operations);
|
|
return 0;
|
|
}
|
|
__initcall(ioresources_init);
|
|
--
|
|
cgit v1.1
|
|
|