dgit.raspbian.org Git - linux.git/commit

author	Matthew Garrett <mjg59@srcf.ucam.org>
	Fri, 8 Feb 2013 19:12:13 +0000 (11:12 -0800)
committer	Ben Hutchings <ben@decadent.org.uk>
	Sat, 28 Jan 2017 16:11:16 +0000 (16:11 +0000)
commit	f9cda9d72a9083ec8f482e11ebc31eb23e3b1a83
tree	9defa41a09a60143c0ee776516fc867036ce79ab	tree \| snapshot
parent	3084fd465980de5b710b11a18bfd2cf421b68bca	commit \| diff

x86: Restrict MSR access when securelevel is set

Permitting write access to MSRs allows userspace to modify the running
kernel. Prevent this if securelevel has been set. Based on a patch by Kees
Cook.

Cc: Kees Cook <keescook@chromium.org>
Signed-off-by: Matthew Garrett <mjg59@srcf.ucam.org>
Gbp-Pq: Topic features/all/securelevel
Gbp-Pq: Name x86-restrict-msr-access-when-securelevel-is-set.patch

arch/x86/kernel/msr.c

diff | blob | history

Unnamed repository; edit this file 'description' to name the repository.

RSS Atom