Merge commit 'v2.6.31-rc9' into tracing/core

Merge reason: move from -rc5 to -rc9. Signed-off-by: Ingo Molnar <mingo@elte.hu>
author: Ingo Molnar <mingo@elte.hu> 2009-09-06 00:11:38 -0400
committer: Ingo Molnar <mingo@elte.hu> 2009-09-06 00:11:42 -0400
commit: ed011b22ce567eabefa9ea571d3721c10ecd0553 (patch)
tree: c7aee6684613075c772388a99a9137014549434e /security/Kconfig
parent: 85bac32c4a52c592b857f2c360cc5ec93a097d70 (diff)
parent: e07cccf4046978df10f2e13fe2b99b2f9b3a65db (diff)
1 files changed, 16 insertions, 0 deletions
diff --git a/security/Kconfig b/security/Kconfig
index d23c839038f0..4c865345caa0 100644
--- a/security/Kconfig
+++ b/security/Kconfig
@@ -113,6 +113,22 @@ config SECURITY_ROOTPLUG
          If you are unsure how to answer this question, answer N.
+config LSM_MMAP_MIN_ADDR
+        int "Low address space for LSM to protect from user allocation"
+        depends on SECURITY && SECURITY_SELINUX
+        default 65536
+        help
+          This is the portion of low virtual memory which should be protected
+          from userspace allocation.  Keeping a user from writing to low pages
+          can help reduce the impact of kernel NULL pointer bugs.
+          For most ia64, ppc64 and x86 users with lots of address space
+          a value of 65536 is reasonable and should cause no problems.
+          On arm and other archs it should not be higher than 32768.
+          Programs which use vm86 functionality or have some need to map
+          this low address space will need the permission specific to the
+          systems running LSM.
 source security/selinux/Kconfig
 source security/smack/Kconfig
 source security/tomoyo/Kconfig
author	Ingo Molnar <mingo@elte.hu>	2009-09-06 00:11:38 -0400
committer	Ingo Molnar <mingo@elte.hu>	2009-09-06 00:11:42 -0400
commit	ed011b22ce567eabefa9ea571d3721c10ecd0553 (patch)
tree	c7aee6684613075c772388a99a9137014549434e /security/Kconfig
parent	85bac32c4a52c592b857f2c360cc5ec93a097d70 (diff)
parent	e07cccf4046978df10f2e13fe2b99b2f9b3a65db (diff)

diff --git a/security/Kconfig b/security/Kconfig index d23c839038f0..4c865345caa0 100644 --- a/security/Kconfig +++ b/security/Kconfig
@@ -113,6 +113,22 @@ config SECURITY_ROOTPLUG
113		113
114	If you are unsure how to answer this question, answer N.	114	If you are unsure how to answer this question, answer N.
115		115
		116	config LSM_MMAP_MIN_ADDR
		117	int "Low address space for LSM to protect from user allocation"
		118	depends on SECURITY && SECURITY_SELINUX
		119	default 65536
		120	help
		121	This is the portion of low virtual memory which should be protected
		122	from userspace allocation. Keeping a user from writing to low pages
		123	can help reduce the impact of kernel NULL pointer bugs.
		124
		125	For most ia64, ppc64 and x86 users with lots of address space
		126	a value of 65536 is reasonable and should cause no problems.
		127	On arm and other archs it should not be higher than 32768.
		128	Programs which use vm86 functionality or have some need to map
		129	this low address space will need the permission specific to the
		130	systems running LSM.
		131
116	source security/selinux/Kconfig	132	source security/selinux/Kconfig
117	source security/smack/Kconfig	133	source security/smack/Kconfig
118	source security/tomoyo/Kconfig	134	source security/tomoyo/Kconfig