projects / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: acf132f) | patch
x86: Lock down IO port access when securelevel is enabled
authorMatthew Garrett <mjg59@srcf.ucam.org>
Thu, 8 Mar 2012 15:35:59 +0000 (10:35 -0500)
committerBen Hutchings <ben@decadent.org.uk>
Tue, 2 May 2017 15:21:44 +0000 (15:21 +0000)
commit7fcc022dc76f361f97c5af4c17a8f62d126e3918
tree90f2a71f8b7bcd33c4fb71d2c7d7327043ea54a8tree | snapshot
parentacf132f19536111476606061ccb50722013e6411commit | diff
x86: Lock down IO port access when securelevel is enabled

IO port access would permit users to gain access to PCI configuration
registers, which in turn (on a lot of hardware) give access to MMIO register
space. This would potentially permit root to trigger arbitrary DMA, so lock
it down when securelevel is set.

Signed-off-by: Matthew Garrett <mjg59@srcf.ucam.org>
Gbp-Pq: Topic features/all/securelevel
Gbp-Pq: Name x86-lock-down-io-port-access-when-securelevel-is-ena.patch
arch/x86/kernel/ioport.c diff | blob | history
drivers/char/mem.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.