mirror of
https://github.com/RGBCube/serenity
synced 2025-07-24 21:57:35 +00:00
ProcFS: Don't expose kernel-only regions to users via /proc/PID/vm
The superuser is still allowed to see them, but kernel-only VM regions are now excluded from /proc/PID/vm.
This commit is contained in:
parent
62c45850e1
commit
59bfbed2e2
1 changed files with 2 additions and 0 deletions
|
@ -260,6 +260,8 @@ Optional<KBuffer> procfs$pid_vm(InodeIdentifier identifier)
|
||||||
KBufferBuilder builder;
|
KBufferBuilder builder;
|
||||||
JsonArraySerializer array { builder };
|
JsonArraySerializer array { builder };
|
||||||
for (auto& region : process.regions()) {
|
for (auto& region : process.regions()) {
|
||||||
|
if (!region.is_user_accessible() && !current->process().is_superuser())
|
||||||
|
continue;
|
||||||
auto region_object = array.add_object();
|
auto region_object = array.add_object();
|
||||||
region_object.add("readable", region.is_readable());
|
region_object.add("readable", region.is_readable());
|
||||||
region_object.add("writable", region.is_writable());
|
region_object.add("writable", region.is_writable());
|
||||||
|
|
Loading…
Add table
Add a link
Reference in a new issue