Gitlab 现已全面支持 git over ssh 与 git over https。通过 HTTPS 访问请配置带有 read_repository / write_repository 权限的 Personal access token。通过 SSH 端口访问请使用 22 端口或 13389 端口。如果使用CAS注册了账户但不知道密码，可以自行至设置中更改；如有其他问题，请发邮件至 service@cra.moe 寻求协助。

Commit 9f36e2c4 authored Mar 22, 2011 by Kees Cook Committed by Linus Torvalds Mar 22, 2011

printk: use %pK for /proc/kallsyms and /proc/modules



In an effort to reduce kernel address leaks that might be used to help
target kernel privilege escalation exploits, this patch uses %pK when
displaying addresses in /proc/kallsyms, /proc/modules, and
/sys/module/*/sections/*.

Note that this changes %x to %p, so some legitimately 0 values in
/proc/kallsyms would have changed from 00000000 to "(null)".  To avoid
this, "(null)" is not used when using the "K" format.  Anything that was
already successfully parsing "(null)" in addition to full hex digits
should have no problem with this change.  (Thanks to Joe Perches for the
suggestion.) Due to the %x to %p, "void *" casts are needed since these
addresses are already "unsigned long" everywhere internally, due to their
starting life as ELF section offsets.

Signed-off-by: Kees Cook <kees.cook@canonical.com>
Cc: Eugene Teo <eugene@redhat.com>
Cc: Dan Rosenberg <drosenberg@vsecurity.com>
Cc: Rusty Russell <rusty@rustcorp.com.au>
Signed-off-by: Andrew Morton <akpm@linux-foundation.org>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>

parent fe3d8ad3

kernel/kallsyms.c

+4 −6

Original line number	Diff line number	Diff line
		@@ -477,13 +477,11 @@ static int s_show(struct seq_file m, void p)
		*/
		type = iter->exported ? toupper(iter->type) :
		tolower(iter->type);
		seq_printf(m, "%0*lx %c %s\t[%s]\n",
		(int)(2 * sizeof(void *)),
		iter->value, type, iter->name, iter->module_name);
		seq_printf(m, "%pK %c %s\t[%s]\n", (void *)iter->value,
		type, iter->name, iter->module_name);
		} else
		seq_printf(m, "%0*lx %c %s\n",
		(int)(2 * sizeof(void *)),
		iter->value, iter->type, iter->name);
		seq_printf(m, "%pK %c %s\n", (void *)iter->value,
		iter->type, iter->name);
		return 0;
		}

kernel/module.c

+2 −2

Original line number	Diff line number	Diff line
		@@ -1168,7 +1168,7 @@ static ssize_t module_sect_show(struct module_attribute *mattr,
		{
		struct module_sect_attr *sattr =
		container_of(mattr, struct module_sect_attr, mattr);
		return sprintf(buf, "0x%lx\n", sattr->address);
		return sprintf(buf, "0x%pK\n", (void *)sattr->address);
		}

		static void free_sect_attrs(struct module_sect_attrs *sect_attrs)
		@@ -3224,7 +3224,7 @@ static int m_show(struct seq_file m, void p)
		mod->state == MODULE_STATE_COMING ? "Loading":
		"Live");
		/* Used by oprofile and other similar tools. */
		seq_printf(m, " 0x%p", mod->module_core);
		seq_printf(m, " 0x%pK", mod->module_core);

		/* Taints info */
		if (mod->taints)

lib/vsprintf.c

+1 −1

Original line number	Diff line number	Diff line
		@@ -991,7 +991,7 @@ static noinline_for_stack
		char pointer(const char fmt, char buf, char end, void *ptr,
		struct printf_spec spec)
		{
		if (!ptr) {
		if (!ptr && *fmt != 'K') {
		/*
		* Print (null) with the same width as a pointer so it makes
		* tabular output look nice.

CRA Git | Maintained and supported by SUSTech CRA and CCSE