Liav A 1ca0ac5207 Kernel: Disallow jailed processes to read files in /sys/kernel directory ...

By default, disallow reading of values in that directory. Later on, we
will enable sparingly read access to specific files.

The idea that led to this mechanism was suggested by Jean-Baptiste
Boric (also known as boricj in GitHub), to prevent access to sensitive
information in the SysFS if someone adds a new file in the /sys/kernel
directory.

2022-12-03 05:47:58 -07:00

..

DevPtsFS

Kernel: Update the ".." inode for directories after a rename

2022-11-25 17:33:05 +01:00

Ext2FS

Kernel: Update the ".." inode for directories after a rename

2022-11-25 17:33:05 +01:00

FATFS

Kernel: Update the ".." inode for directories after a rename

2022-11-25 17:33:05 +01:00

ISO9660FS

Kernel: Update the ".." inode for directories after a rename

2022-11-25 17:33:05 +01:00

Plan9FS

Kernel: Update the ".." inode for directories after a rename

2022-11-25 17:33:05 +01:00

ProcFS

Kernel: Update the ".." inode for directories after a rename

2022-11-25 17:33:05 +01:00

SysFS

Kernel: Disallow jailed processes to read files in /sys/kernel directory

2022-12-03 05:47:58 -07:00

TmpFS

Kernel: Update the ".." inode for directories after a rename

2022-11-25 17:33:05 +01:00

AnonymousFile.cpp

…

AnonymousFile.h

…

BlockBasedFileSystem.cpp

Kernel/FileSystem: Discard safely filesystems when unmounted last time

2022-10-22 16:57:52 -04:00

BlockBasedFileSystem.h

Kernel/FileSystem: Discard safely filesystems when unmounted last time

2022-10-22 16:57:52 -04:00

Custody.cpp

…

Custody.h

…

DeviceFileTypes.h

…

FIFO.cpp

Kernel: Add support for MSG_NOSIGNAL and properly send SIGPIPE

2022-10-24 15:49:39 +02:00

FIFO.h

…

File.cpp

…

File.h

Kernel: Add File::is_regular_file()

2022-11-29 11:09:19 +01:00

FileBackedFileSystem.cpp

Kernel: Introduce support for using FileSystem object in multiple mounts

2022-10-22 16:57:52 -04:00

FileBackedFileSystem.h

Kernel: Introduce support for using FileSystem object in multiple mounts

2022-10-22 16:57:52 -04:00

FileSystem.cpp

Kernel/FileSystem: Discard safely filesystems when unmounted last time

2022-10-22 16:57:52 -04:00

FileSystem.h

Kernel/FileSystem: Discard safely filesystems when unmounted last time

2022-10-22 16:57:52 -04:00

Inode.cpp

Kernel: Use AK::Time for InodeMetadata timestamps instead of time_t

2022-11-24 16:56:27 +01:00

Inode.h

Kernel: Update the ".." inode for directories after a rename

2022-11-25 17:33:05 +01:00

InodeFile.cpp

Kernel: Add File::is_regular_file()

2022-11-29 11:09:19 +01:00

InodeFile.h

Kernel: Add File::is_regular_file()

2022-11-29 11:09:19 +01:00

InodeIdentifier.h

…

InodeMetadata.cpp

…

InodeMetadata.h

Kernel: Use AK::Time for InodeMetadata timestamps instead of time_t

2022-11-24 16:56:27 +01:00

InodeWatcher.cpp

…

InodeWatcher.h

…

Mount.cpp

…

Mount.h

Kernel: Add missing includes for Mount.h file

2022-11-11 10:25:54 +01:00

OpenFileDescription.cpp

Kernel/FileSystem: Add a few missing includes

2022-10-22 16:57:52 -04:00

OpenFileDescription.h

Kernel/FileSystem: Add a few missing includes

2022-10-22 16:57:52 -04:00

UnveilNode.h

…

VirtualFileSystem.cpp

Kernel: Update the ".." inode for directories after a rename

2022-11-25 17:33:05 +01:00

VirtualFileSystem.h

Kernel/FileSystem: Discard safely filesystems when unmounted last time

2022-10-22 16:57:52 -04:00