]> git.proxmox.com Git - mirror_ubuntu-artful-kernel.git/commit
projects / mirror_ubuntu-artful-kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 3ee9b6b) | patch
kexec: Disable at runtime if the kernel enforces module loading restrictions
authorMatthew Garrett <mjg59@coreos.com>
Fri, 20 Nov 2015 02:55:53 +0000 (18:55 -0800)
committerTim Gardner <tim.gardner@canonical.com>
Wed, 6 Apr 2016 09:29:39 +0000 (10:29 +0100)
commit17c953d33cc16234f4b34444277ca533e76aaed3
treea3380aabe41108013e194eed3de4f1f98c3e8539tree
parent3ee9b6b119e4dd5676cc4e4f27f5a56301d9b50fcommit | diff
kexec: Disable at runtime if the kernel enforces module loading restrictions

BugLink: http://bugs.launchpad.net/bugs/1566221
kexec permits the loading and execution of arbitrary code in ring 0, which
is something that module signing enforcement is meant to prevent. It makes
sense to disable kexec in this situation.

Signed-off-by: Matthew Garrett <matthew.garrett@nebula.com>
Signed-off-by: Tim Gardner <tim.gardner@canonical.com>
kernel/kexec.c diff | blob | blame | history
Ubuntu Artful kernel mirror