iv/linux
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
linux/drivers/firmware
History
Matthew Garrett 1957a85b00 efi: Restrict efivar_ssdt_load when the kernel is locked down 
efivar_ssdt_load allows the kernel to import arbitrary ACPI code from an
EFI variable, which gives arbitrary code execution in ring 0. Prevent
that when the kernel is locked down.

Signed-off-by: Matthew Garrett <mjg59@google.com>
Acked-by: Ard Biesheuvel <ard.biesheuvel@linaro.org>
Reviewed-by: Kees Cook <keescook@chromium.org>
Cc: Ard Biesheuvel <ard.biesheuvel@linaro.org>
Cc: linux-efi@vger.kernel.org
Signed-off-by: James Morris <jmorris@namei.org>
2019-08-19 21:54:17 -07:00
..
arm_scmi
treewide: Add SPDX license identifier - Makefile/Kconfig
2019-05-21 10:50:46 +02:00
broadcom
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 152
2019-05-30 11:26:32 -07:00
efi
efi: Restrict efivar_ssdt_load when the kernel is locked down
2019-08-19 21:54:17 -07:00
google
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 287
2019-06-05 17:36:37 +02:00
imx
i.MX fixes for 5.2:
2019-06-16 13:26:55 -07:00
meson
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 446
2019-06-05 17:37:18 +02:00
psci
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 174
2019-05-30 11:26:41 -07:00
tegra
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 288
2019-06-05 17:36:37 +02:00
xilinx
firmware: xilinx: Add fpga API's
2019-04-15 10:22:51 +02:00
arm_scpi.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 201
2019-05-30 11:29:52 -07:00
arm_sdei.c
firmware: arm_sdei: Prohibit probing in '_sdei_handler'
2019-04-29 16:50:48 +01:00
dmi_scan.c
treewide: Add SPDX license identifier for missed files
2019-05-21 10:50:45 +02:00
dmi-id.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 191
2019-05-30 11:29:21 -07:00
dmi-sysfs.c
treewide: Add SPDX license identifier for more missed files
2019-05-21 10:50:45 +02:00
edd.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 287
2019-06-05 17:36:37 +02:00
iscsi_ibft_find.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 287
2019-06-05 17:36:37 +02:00
iscsi_ibft.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 287
2019-06-05 17:36:37 +02:00
Kconfig
firmware: trusted_foundations: add ARMv7 dependency
2019-06-18 03:20:35 -07:00
Makefile
ARM: SoC platform updates
2019-05-16 08:31:32 -07:00
memmap.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 287
2019-06-05 17:36:37 +02:00
pcdp.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
pcdp.h
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
qcom_scm-32.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 267
2019-06-05 17:30:29 +02:00
qcom_scm-64.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 284
2019-06-05 17:36:37 +02:00
qcom_scm.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 284
2019-06-05 17:36:37 +02:00
qcom_scm.h
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 284
2019-06-05 17:36:37 +02:00
qemu_fw_cfg.c
media: headers: fix linux/mod_devicetable.h inclusions
2018-08-02 18:30:54 -04:00
raspberrypi.c
firmware: raspberrypi: notify VC4 firmware of a reboot
2019-01-09 16:38:34 +01:00
scpi_pm_domain.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 201
2019-05-30 11:29:52 -07:00
stratix10-svc.c
firmware: stratix10-svc: fix wrong of_node_put() in init function
2018-12-06 15:42:18 +01:00
ti_sci.c
firmware: ti_sci: Add helper apis to manage resources
2019-05-01 10:41:33 +01:00
ti_sci.h
firmware: ti_sci: Add support for IRQ management
2019-05-01 10:41:02 +01:00
trusted_foundations.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 157
2019-05-30 11:26:37 -07:00