kernel: Restrict permissions of /proc/iomem.

The permissions of /proc/iomem currently are -r--r--r--. Everyone can see its content. As iomem contains information about the physical memory content of the device, restrict the information only to root. Change-Id: If0be35c3fac5274151bea87b738a48e6ec0ae891 CRs-Fixed: 786116 Signed-off-by: Biswajit Paul <biswajitpaul@codeaurora.org> Signed-off-by: Avijit Kanti Das <avijitnsec@codeaurora.org>
author: Biswajit Paul <biswajitpaul@codeaurora.org> 2015-02-09 15:21:12 -0800
committer: Jeevan Shriram <jshriram@codeaurora.org> 2016-05-09 18:35:28 -0700
commit: 60c6b65403b4c9567b53baadca0740915f698ca8 (patch)
tree: d023113439fc40a91034f43d6985e3d05868eb88
parent: 7367915c0bf89ce77187a1d850e7ce6f6cae9281 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/kernel/resource.c b/kernel/resource.c
index f150dbbe6f62..035b989b582b 100644
--- a/kernel/resource.c
+++ b/kernel/resource.c
@@ -163,7 +163,7 @@ static const struct file_operations proc_iomem_operations = {
 static int __init ioresources_init(void)
 {
 	proc_create("ioports", 0, NULL, &proc_ioports_operations);
-	proc_create("iomem", 0, NULL, &proc_iomem_operations);
+	proc_create("iomem", S_IRUSR, NULL, &proc_iomem_operations);
 	return 0;
 }
 __initcall(ioresources_init);
author	Biswajit Paul <biswajitpaul@codeaurora.org>	2015-02-09 15:21:12 -0800
committer	Jeevan Shriram <jshriram@codeaurora.org>	2016-05-09 18:35:28 -0700
commit	60c6b65403b4c9567b53baadca0740915f698ca8 (patch)
tree	d023113439fc40a91034f43d6985e3d05868eb88
parent	7367915c0bf89ce77187a1d850e7ce6f6cae9281 (diff)