d/freebsd-skq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Restrict permissions on /dev/ksyms to 0400.

Browse Source 
The ksyms(4) device was added specifically for use by lockstat(1), which
as a DTrace consumer must run as root.

Discussed with:	emaste
MFC after:	3 days
This commit is contained in:
markj 2017-07-28 03:14:31 +00:00
parent 5782859b4e
commit d74f88f14e
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
sys/dev/ksyms/ksyms.c
View File

@ -592,7 +592,7 @@ ksyms_modevent(module_t mod __unused, int type, void *data __unused)
case MOD_LOAD:
mtx_init(&ksyms_mtx, "KSyms mtx", NULL, MTX_DEF);
ksyms_dev = make_dev(&ksyms_cdevsw, 0, UID_ROOT, GID_WHEEL,
0444, KSYMS_DNAME);
0400, KSYMS_DNAME);
break;
case MOD_UNLOAD: