Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Tags: davidhildenbrand/linux

Tags

virtio-mem-for-5.16

Toggle virtio-mem-for-5.16's commit message 
virtio-mem: support VIRTIO_MEM_F_UNPLUGGED_INACCESSIBLE

Support the VIRTIO_MEM_F_UNPLUGGED_INACCESSIBLE feature in virtio-mem, now
that "accidential" access to logically unplugged memory inside added
Linux memory blocks is no longer possible, because we:

1. Removed /dev/kmem in commit bbcd53c ("drivers/char: remove
   /dev/kmem for good")
2. Disallowed access to virtio-mem device memory via /dev/mem in commit
   2128f4e ("virtio-mem: disallow mapping virtio-mem memory via
   /dev/mem")
3. Sanitized access to virtio-mem device memory via /proc/kcore in
   commit 0daa322 ("fs/proc/kcore: don't read offline sections,
   logically offline pages and hwpoisoned pages")
4. Sanitized access to virtio-mem device memory via /proc/vmcore in
   commit ce28146 ("virtio-mem: kdump mode to sanitize /proc/vmcore
   access")

The new VIRTIO_MEM_F_UNPLUGGED_INACCESSIBLE feature that will be required
by some hypervisors implementing virtio-mem in the near future, so let's
support it now that we safely can.

Signed-off-by: David Hildenbrand <[email protected]>

denywrite-for-5.15

Toggle denywrite-for-5.15's commit message 
Remove in-tree usage of MAP_DENYWRITE

Remove all in-tree usage of MAP_DENYWRITE from the kernel and remove
VM_DENYWRITE.

There are some (minor) user-visible changes:
1. We no longer deny write access to shared libaries loaded via legacy
   uselib(); this behavior matches modern user space e.g., via dlopen().
2. We no longer deny write access to the elf interpreter after exec
   completed, treating it just like shared libraries (which it often is).
3. We always deny write access to the file linked via /proc/pid/exe:
   sys_prctl(PR_SET_MM_MAP/EXE_FILE) will fail if write access to the file
   cannot be denied, and write access to the file will remain denied
   until the link is effectivel gone (exec, termination,
   sys_prctl(PR_SET_MM_MAP/EXE_FILE)) -- just as if exec'ing the file.

Cross-compiled for a bunch of architectures (alpha, microblaze, i386,
s390x, ...) and verified via ltp that especially the relevant tests
(i.e., creat07 and execve04) continue working as expected.

Signed-off-by: David Hildenbrand <[email protected]>

v4.12-rc4

Toggle v4.12-rc4's commit message 
Linux 4.12-rc4

v4.12-rc3

Toggle v4.12-rc3's commit message 
Linux 4.12-rc3

v4.12-rc2

Toggle v4.12-rc2's commit message 
Linux 4.12-rc2

v4.12-rc1

Toggle v4.12-rc1's commit message 
Linux 4.12-rc1

v4.11

Toggle v4.11's commit message 
Linux 4.11

v4.11-rc8

Toggle v4.11-rc8's commit message 
Linux 4.11-rc8

v4.11-rc7

Toggle v4.11-rc7's commit message 
Linux 4.11-rc7

v4.11-rc6

Toggle v4.11-rc6's commit message 
Linux 4.11-rc6