Re: [PATCH V34 19/29] Lock down module params that specify hardware parameters (eg. ioport)

From: Matthew Garrett
Date: Thu Jun 27 2019 - 11:31:07 EST

Next message: Zi Yan: "Re: [RFC 1/2] arm64/mm: Change THP helpers to comply with generic MM semantics"
Previous message: Joel Fernandes: "Re: [RFC] Deadlock via recursive wakeup via RCU with threadirqs"
In reply to: Daniel Axtens: "Re: [PATCH V34 19/29] Lock down module params that specify hardware parameters (eg. ioport)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Jun 26, 2019 at 6:49 PM Daniel Axtens <dja@xxxxxxxxxx> wrote:
>
> Matthew Garrett <matthewgarrett@xxxxxxxxxx> writes:
> > + if (kp->flags & KERNEL_PARAM_FL_HWPARAM &&
> > + security_locked_down(LOCKDOWN_MODULE_PARAMETERS))
> > + return false;
> > + return true;
> > }
>
> Should this test occur before tainting the kernel?

Seems reasonable.

Next message: Zi Yan: "Re: [RFC 1/2] arm64/mm: Change THP helpers to comply with generic MM semantics"
Previous message: Joel Fernandes: "Re: [RFC] Deadlock via recursive wakeup via RCU with threadirqs"
In reply to: Daniel Axtens: "Re: [PATCH V34 19/29] Lock down module params that specify hardware parameters (eg. ioport)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]