projects / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 065fcd0) | patch
Add a SysRq option to lift kernel lockdown
authorKyle McMartin <kyle@redhat.com>
Wed, 8 Nov 2017 15:11:31 +0000 (15:11 +0000)
committerSalvatore Bonaccorso <carnil@debian.org>
Thu, 18 Jul 2019 22:23:17 +0000 (23:23 +0100)
commit6f941c1dc7a6404c28337d913e8b9238e7a29f55
tree3570c48a72fc0cec92526071e6fc79fd6df28061tree | snapshot
parent065fcd018051404bdb5643c2d8de8409b9688b4dcommit | diff
Add a SysRq option to lift kernel lockdown

Make an option to provide a sysrq key that will lift the kernel lockdown,
thereby allowing the running kernel image to be accessed and modified.

On x86 this is triggered with SysRq+x, but this key may not be available on
all arches, so it is set by setting LOCKDOWN_LIFT_KEY in asm/setup.h.
Since this macro must be defined in an arch to be able to use this facility
for that arch, the Kconfig option is restricted to arches that support it.

Signed-off-by: Kyle McMartin <kyle@redhat.com>
Signed-off-by: David Howells <dhowells@redhat.com>
cc: x86@kernel.org
[bwh: Forward-ported to 4.15]

Gbp-Pq: Topic features/all/lockdown
Gbp-Pq: Name 0002-Add-a-SysRq-option-to-lift-kernel-lockdown.patch
arch/x86/include/asm/setup.h diff | blob | history
drivers/input/misc/uinput.c diff | blob | history
drivers/tty/sysrq.c diff | blob | history
include/linux/input.h diff | blob | history
include/linux/sysrq.h diff | blob | history
kernel/debug/kdb/kdb_main.c diff | blob | history
security/Kconfig diff | blob | history
security/lock_down.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.