[F][PATCH 0/1] Restrict xmon to read-only-mode if kernel is locked down (LP: 1863562)
frank.heimes at canonical.com
frank.heimes at canonical.com
Mon Feb 17 10:25:51 UTC 2020
Buglink: https://bugs.launchpad.net/bugs/1863562
This is a change to xmon (the power crash handler / pseudo-debugger)
to restrict it to read-only mode when the kernel is lockdown'ed,
otherwise it's trivial to drop into xmon and modify kernel data,
such as the lockdown state.
Christopher M. Riedl (1):
From: Christopher M. Riedl <cmr at informatik.wtf>
arch/powerpc/xmon/xmon.c | 103 ++++++++++++++++++++++++++++-------
include/linux/security.h | 2 +
security/lockdown/lockdown.c | 2 +
3 files changed, 86 insertions(+), 21 deletions(-)
--
2.25.0
More information about the kernel-team
mailing list