git.kernel.dk Git - linux-block.git/commit

author	Reinette Chatre <reinette.chatre@intel.com>
	Fri, 22 Jun 2018 22:42:12 +0000 (15:42 -0700)
committer	Thomas Gleixner <tglx@linutronix.de>
	Sat, 23 Jun 2018 11:03:46 +0000 (13:03 +0200)
commit	c966dac8a5ede5d5f9b730512d8bdbcec307fe38
tree	400ce2110294504a432c92d73e1daf4e4104db5c	tree \| snapshot
parent	125db711e3629977b5e1f06fa066abe6366db294	commit \| diff

x86/intel_rdt: Protect against resource group changes during locking

We intend to modify file permissions to make the "tasks", "cpus", and
"cpus_list" not accessible to the user when cache pseudo-locking in
progress. Even so, it is still possible for the user to force the file
permissions (using chmod) to make them writeable. Similarly, directory
permissions will be modified to prevent future monitor group creation but
the user can override these restrictions also.

Add additional checks to the files we intend to restrict to ensure that no
modifications from user space are attempted while setting up a
pseudo-locking or after a pseudo-locked region is set up.

Signed-off-by: Reinette Chatre <reinette.chatre@intel.com>
Signed-off-by: Thomas Gleixner <tglx@linutronix.de>
Cc: fenghua.yu@intel.com
Cc: tony.luck@intel.com
Cc: vikas.shivappa@linux.intel.com
Cc: gavin.hindman@intel.com
Cc: jithu.joseph@intel.com
Cc: dave.hansen@intel.com
Cc: hpa@zytor.com
Link: https://lkml.kernel.org/r/0c5cb006e81ead0b8bfff2df530c5d3017fd31d1.1529706536.git.reinette.chatre@intel.com

arch/x86/kernel/cpu/intel_rdt_ctrlmondata.c		diff \| blob \| blame \| history
arch/x86/kernel/cpu/intel_rdt_rdtgroup.c		diff \| blob \| blame \| history