On Wed, 22 Jan 2020 15:17:32 +0100, Martin Pieuchot wrote: > Just like dt(4) or mem(4), ksyms(4) allows userland to read kernel > addresses. > > Diff below makes `allowkmem' a requirement for opening the > pseudo-device.
Won't this break everything that uses /dev/ksyms? The default for allowkmem is 0. Furthermore, ksyms doesn't provide kernel _addresses_, it provides kernel _symbols_. There shouldn't be anything available via /dev/ksyms that is not also available from reading the booted kernel. - todd
