David Howells 906357f77a x86/mmiotrace: Lock down the testmmiotrace module ... The testmmiotrace module shouldn't be permitted when the kernel is locked down as it can be used to arbitrarily read and write MMIO space. This is a runtime check rather than buildtime in order to allow configurations where the same kernel may be run in both locked down or permissive modes depending on local policy. Suggested-by: Thomas Gleixner <tglx@linutronix.de> Signed-off-by: David Howells <dhowells@redhat.com Signed-off-by: Matthew Garrett <mjg59@google.com> Acked-by: Steven Rostedt (VMware) <rostedt@goodmis.org> Reviewed-by: Kees Cook <keescook@chromium.org> cc: Thomas Gleixner <tglx@linutronix.de> cc: Steven Rostedt <rostedt@goodmis.org> cc: Ingo Molnar <mingo@kernel.org> cc: "H. Peter Anvin" <hpa@zytor.com> cc: x86@kernel.org Signed-off-by: James Morris <jmorris@namei.org>		2019-08-19 21:54:16 -07:00
..
Kconfig	lockdown: Enforce module signatures if the kernel is locked down	2019-08-19 21:54:15 -07:00
lockdown.c	x86/mmiotrace: Lock down the testmmiotrace module	2019-08-19 21:54:16 -07:00
Makefile