projects / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 3ae9739) | patch
kexec: Disable at runtime if securelevel has been set.
authorMatthew Garrett <mjg59@srcf.ucam.org>
Fri, 9 Aug 2013 07:33:56 +0000 (03:33 -0400)
committerBen Hutchings <ben@decadent.org.uk>
Wed, 4 Jan 2017 19:39:36 +0000 (19:39 +0000)
commitc5a03ee608c00d7bd5d0b4dd25995010af0071fc
tree4ff2dc7b05e125310871a7fc2f183f684cf16716tree | snapshot
parent3ae973943854094dd7b521aad54a8ba96c42c933commit | diff
kexec: Disable at runtime if securelevel has been set.

kexec permits the loading and execution of arbitrary code in ring 0, which
permits the modification of the running kernel. Prevent this if securelevel
has been set.

Signed-off-by: Matthew Garrett <mjg59@srcf.ucam.org>
Gbp-Pq: Topic features/all/securelevel
Gbp-Pq: Name kexec-disable-at-runtime-if-securelevel-has-been-set.patch
kernel/kexec.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.