[PATCH RESEND] lockdown: Allow unprivileged users to see lockdown status
James Morris
jmorris at namei.org
Thu May 14 17:28:08 UTC 2020
On Thu, 14 May 2020, Jeremy Cline wrote:
> A number of userspace tools, such as systemtap, need a way to see the
> current lockdown state so they can gracefully deal with the kernel being
> locked down. The state is already exposed in
> /sys/kernel/security/lockdown, but is only readable by root. Adjust the
> permissions so unprivileged users can read the state.
>
> Fixes: 000d388ed3bb ("security: Add a static lockdown policy LSM")
> Cc: Frank Ch. Eigler <fche at redhat.com>
> Signed-off-by: Jeremy Cline <jcline at redhat.com>
Applied to
git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security.git next-general
--
James Morris
<jmorris at namei.org>
More information about the Linux-security-module-archive
mailing list