joel16/android_kernel_sony_msm8994
1
0
Fork 0
mirror of https://github.com/joel16/android_kernel_sony_msm8994.git synced 2024-11-30 07:31:23 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
7595711efb
android_kernel_sony_msm8994/kernel
History
Tom Marshall 054483b464
kernel: Only expose su when daemon is running 
It has been claimed that the PG implementation of 'su' has security
vulnerabilities even when disabled.  Unfortunately, the people that
find these vulnerabilities often like to keep them private so they
can profit from exploits while leaving users exposed to malicious
hackers.

In order to reduce the attack surface for vulnerabilites, it is
therefore necessary to make 'su' completely inaccessible when it
is not in use (except by the root and system users).

Change-Id: I79716c72f74d0b7af34ec3a8054896c6559a181d
2017-09-16 23:05:04 +02:00
..
cpu idle: Implement a per-cpu idle-polling mode 2014-11-12 22:49:15 -08:00
debug This is the 3.10.84 stable release 2015-08-13 14:38:09 -07:00
events perf/core: Fix concurrent sys_perf_event_open() vs. 'move_group' race 2017-09-16 17:26:40 +02:00
gcov
irq irq: pm: Remove unused variable 2015-08-12 18:29:32 -07:00
power Merge remote-tracking branch 'caf/LA.BF64.1.2.3_rb1.6' into HEAD 2017-01-31 13:27:32 +01:00
sched kernel: Only expose su when daemon is running 2017-09-16 23:05:04 +02:00
time time: Remove CONFIG_TIMER_STATS 2017-09-02 18:04:10 +02:00
trace Merge remote-tracking branch 'caf/LA.BF64.1.2.3_rb1.15' into HEAD 2017-09-02 17:48:55 +02:00
.gitignore
acct.c fs: Fix hang with BSD accounting on frozen filesystem 2013-05-04 14:57:58 -04:00
async.c
audit_tree.c audit: keep inode pinned 2014-11-21 09:22:52 -08:00
audit_watch.c
audit.c CAPABILITIES: remove undefined caps from all processes 2014-09-17 09:03:57 -07:00
audit.h audit: fix mq_open and mq_unlink to add the MQ root as a hidden parent audit_names record 2013-12-04 10:57:03 -08:00
auditfilter.c audit: Fix compilation issue 2013-09-10 22:37:36 -06:00
auditsc.c BACKPORT: audit: fix a double fetch in audit_log_single_execve_arg() 2016-11-10 03:55:50 -08:00
backtracetest.c
bounds.c
capability.c CAPABILITIES: remove undefined caps from all processes 2014-09-17 09:03:57 -07:00
cgroup_freezer.c
cgroup.c cgroup: prefer %pK to %p 2017-01-11 22:43:36 +01:00
compat.c Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/signal 2013-05-01 07:21:43 -07:00
configs.c proc: Supply PDE attribute setting accessor functions 2013-05-01 17:29:18 -04:00
context_tracking.c Merge branch 'sched-urgent-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip 2013-06-20 08:18:35 -10:00
cpu_pm.c cpu_pm: Add level to the cluster pm notification 2015-01-07 22:31:58 -08:00
cpu.c CPU hotplug: Provide lockless versions of callback registration functions 2014-07-01 13:42:54 -07:00
cpuset.c kernel: cpuset: Make cpusets restore on hotplug 2017-01-11 22:43:37 +01:00
crash_dump.c
crash_notes.c 32.1.A.1.185 2016-04-09 16:46:03 +02:00
cred.c
delayacct.c
dma.c
elfcore.c
exec_domain.c ANDROID: exec_domains: Disable request_module() call for personalities 2016-05-10 13:15:16 +05:30
exit.c kernel: Only expose su when daemon is running 2017-09-16 23:05:04 +02:00
extable.c
fork.c kernel: Only expose su when daemon is running 2017-09-16 23:05:04 +02:00
freezer.c This is the 3.10.84 stable release 2015-08-13 14:38:09 -07:00
futex_compat.c
futex.c Merge upstream tag 'v3.10.49' into msm-3.10 2014-08-20 13:23:09 -07:00
groups.c userns: Don't allow setgroups until a gid mapping has been setablished 2015-01-08 09:58:16 -08:00
hrtimer.c time: Remove CONFIG_TIMER_STATS 2017-09-02 18:04:10 +02:00
hung_task.c
irq_work.c irq_work: register irq_work_cpu_notify in early init 2014-12-22 14:30:12 +05:30
itimer.c
jump_label.c
kallsyms.c
kcmp.c kcmp: fix standard comparison bug 2014-10-05 14:54:13 -07:00
Kconfig.freezer
Kconfig.hz kernel: remove CONFIG_USE_GENERIC_SMP_HELPERS 2014-02-07 15:55:40 -08:00
Kconfig.locks printk: Make the console flush configurable in hotplug path 2014-11-18 19:16:25 -07:00
Kconfig.preempt
kexec.c PCI: Disable Bus Master only on kexec reboot 2013-12-20 07:45:08 -08:00
kmod.c arch: Mass conversion of smp_mb__*() 2014-08-15 11:45:28 -07:00
kprobes.c module: remove mod arg from module_free, rename module_memfree(). 2016-09-29 03:09:02 -07:00
ksysfs.c
kthread.c kthread: Fix the race condition when kthread is parked 2015-05-27 11:13:07 -07:00
latencytop.c
lglock.c
lockdep_internals.h
lockdep_proc.c
lockdep_states.h
lockdep.c lockdep: remove task argument from debug_check_no_locks_held 2013-07-01 15:38:03 -07:00
Makefile Merge remote-tracking branch 'caf/LA.BF64.1.2.3_rb1.6' into HEAD 2017-01-31 13:27:32 +01:00
modsign_pubkey.c
module_signing.c UPSTREAM: KEYS: Separate the kernel signature checking keyring from module signing 2016-05-10 13:15:51 +05:30
module-internal.h UPSTREAM: KEYS: Separate the kernel signature checking keyring from module signing 2016-05-10 13:15:51 +05:30
module.c module: fix race in kallsyms resolution during module load success. 2016-09-29 03:20:25 -07:00
mutex-debug.c
mutex-debug.h
mutex.c
mutex.h
notifier.c
nsproxy.c proc: Split the namespace stuff out into linux/proc_ns.h 2013-05-01 17:29:39 -04:00
padata.c
panic.c 32.1.A.1.185 2016-04-09 16:46:03 +02:00
params.c
pid_namespace.c pid_namespace: pidns_get() should check task_active_pid_ns() != NULL 2014-04-26 17:15:34 -07:00
pid.c This is the 3.10.84 stable release 2015-08-13 14:38:09 -07:00
posix-cpu-timers.c
posix-timers.c posix-timers: Fix stack info leak in timer_create() 2014-11-14 08:48:00 -08:00
printk.c 32.1.A.1.185 2016-04-09 16:46:03 +02:00
profile.c profile: Fix CPU hotplug callback registration 2014-07-01 13:52:28 -07:00
ptrace.c __ptrace_may_access() should not deny sub-threads 2015-07-03 19:48:08 -07:00
range.c range: Do not add new blank slot with add_range_with_merge 2013-06-18 11:32:10 -05:00
rcu.h
rcupdate.c
rcutiny_plugin.h
rcutiny.c
rcutorture.c
rcutree_plugin.h Revert "rcu: Make RCU_FAST_NO_HZ take advantage of numbered callbacks" 2015-08-17 14:15:17 -07:00
rcutree_trace.c Revert "rcu: Make RCU_FAST_NO_HZ take advantage of numbered callbacks" 2015-08-17 14:15:17 -07:00
rcutree.c Revert "rcu: Make RCU_FAST_NO_HZ take advantage of numbered callbacks" 2015-08-17 14:15:17 -07:00
rcutree.h Revert "rcu: Make RCU_FAST_NO_HZ take advantage of numbered callbacks" 2015-08-17 14:15:17 -07:00
relay.c Merge branch 'for-3.10/core' of git://git.kernel.dk/linux-block 2013-05-08 10:13:35 -07:00
res_counter.c
resource.c kernel: Restrict permissions of /proc/iomem. 2015-02-09 16:17:30 -08:00
rtmutex_common.h
rtmutex-debug.c
rtmutex-debug.h rtmutex: Handle deadlock detection smarter 2014-07-17 15:58:04 -07:00
rtmutex-tester.c
rtmutex.c rtmutex: Plug slow unlock race 2014-07-17 15:58:04 -07:00
rtmutex.h rtmutex: Handle deadlock detection smarter 2014-07-17 15:58:04 -07:00
rwsem.c
seccomp.c UPSTREAM: seccomp: cap SECCOMP_RET_ERRNO data to MAX_ERRNO 2016-05-10 13:15:48 +05:30
semaphore.c semaphore: use `bool' type for semaphore_waiter's up 2013-04-30 17:04:08 -07:00
signal.c constify copy_siginfo_to_user{,32}() 2014-02-07 15:55:38 -08:00
smp.c This is the 3.10.84 stable release 2015-08-13 14:38:09 -07:00
smpboot.c smpboot: Add missing get_online_cpus() in smpboot_register_percpu_thread() 2015-02-11 14:48:17 +08:00
smpboot.h
softirq.c This is the 3.10.84 stable release 2015-08-13 14:38:09 -07:00
spinlock.c
srcu.c
stacktrace.c debugging: keep track of page owners 2014-03-28 13:33:08 -07:00
stop_machine.c
sys_ni.c seccomp: add "seccomp" syscall 2015-08-12 16:57:14 -07:00
sys.c prctl: make PR_SET_TIMERSLACK_PID pid namespace aware 2015-08-12 18:29:53 -07:00
sysctl_binary.c sysctl: add cold_boot sysctl entry 2013-09-05 14:51:16 -07:00
sysctl.c pipe: limit the per-user amount of pages allocated in pipes 2017-09-13 17:36:00 +02:00
system_certificates.S UPSTREAM: KEYS: Separate the kernel signature checking keyring from module signing 2016-05-10 13:15:51 +05:30
system_keyring.c UPSTREAM: KEYS: Separate the kernel signature checking keyring from module signing 2016-05-10 13:15:51 +05:30
task_work.c
taskstats.c
test_kprobes.c kernel/: rename random32() to prandom_u32() 2013-04-29 18:28:42 -07:00
time.c time: settimeofday: Validate the values of tv from user 2015-01-29 17:40:56 -08:00
timeconst.bc
timer.c time: Remove CONFIG_TIMER_STATS 2017-09-02 18:04:10 +02:00
tracepoint.c tracepoint: Do not waste memory on mods with no tracepoints 2014-05-30 21:52:11 -07:00
tsacct.c
uid16.c groups: Consolidate the setgroups permission checks 2015-01-08 09:58:16 -08:00
up.c
user_namespace.c userns: Allow setting gid_maps without privilege when setgroups is disabled 2015-01-08 09:58:17 -08:00
user-return-notifier.c
user.c userns: Add a knob to disable setgroups on a per user namespace basis 2015-01-08 09:58:16 -08:00
utsname_sysctl.c
utsname.c proc: Split the namespace stuff out into linux/proc_ns.h 2013-05-01 17:29:39 -04:00
wait.c
watchdog.c hardlockup: detect hard lockups without NMIs using secondary cpus 2013-07-01 14:16:17 -07:00
workqueue_internal.h workqueue: include workqueue info when printing debug dump of a worker task 2013-04-30 17:04:02 -07:00
workqueue.c time: Remove CONFIG_TIMER_STATS 2017-09-02 18:04:10 +02:00