On Fri, Jan 12, 2018 at 1:57 PM, Helge Deller <deller@xxxxxx> wrote:
>
>
> Subject: [PATCH] parisc: Hide virtual kernel memory layout
>
> For security reasons do not expose the virtual kernel memory layout to
> userspace.
>
> Signed-off-by: Helge Deller <deller@xxxxxx>
> Suggested-by: Kees Cook <keescook@xxxxxxxxxxxx>
> Cc: stable@xxxxxxxxxxxxxxx # 4.15
Thanks!
Reviewed-by: Kees Cook <keescook@xxxxxxxxxxxx>
-Kees
>
> diff --git a/arch/parisc/mm/init.c b/arch/parisc/mm/init.c
> index 48f41399fc0b..cab32ee824d2 100644
> --- a/arch/parisc/mm/init.c
> +++ b/arch/parisc/mm/init.c
> @@ -629,7 +629,12 @@ void __init mem_init(void)
> #endif
>
> mem_init_print_info(NULL);
> -#ifdef CONFIG_DEBUG_KERNEL /* double-sanity-check paranoia */
> +
> +#if 0
> + /*
> + * Do not expose the virtual kernel memory layout to userspace.
> + * But keep code for debugging purposes.
> + */
> printk("virtual kernel memory layout:\n"
> " vmalloc : 0x%px - 0x%px (%4ld MB)\n"
> " memory : 0x%px - 0x%px (%4ld MB)\n"
--
Kees Cook
Pixel Security
--
To unsubscribe from this list: send the line "unsubscribe linux-parisc" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
