mirrors/linux
1
0
Fork 0
mirror of https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git synced 2026-04-29 17:35:36 -04:00
Code Issues Packages Projects Releases Wiki Activity
841,900 Commits 1 Branch 928 Tags
fef5dad9876034253d59acbf8c0c314f4d94cf87
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Dave Young fef5dad987 lockdown: Copy secure_boot flag in boot params across kexec reboot 
Kexec reboot in case secure boot being enabled does not keep the secure
boot mode in new kernel, so later one can load unsigned kernel via legacy
kexec_load.  In this state, the system is missing the protections provided
by secure boot.

Adding a patch to fix this by retain the secure_boot flag in original
kernel.

secure_boot flag in boot_params is set in EFI stub, but kexec bypasses the
stub.  Fixing this issue by copying secure_boot flag across kexec reboot.

Signed-off-by: Dave Young <dyoung@redhat.com>
Signed-off-by: David Howells <dhowells@redhat.com>
Signed-off-by: Matthew Garrett <mjg59@google.com>
Reviewed-by: Kees Cook <keescook@chromium.org>
cc: kexec@lists.infradead.org
Signed-off-by: James Morris <jmorris@namei.org>
2019-08-19 21:54:15 -07:00
arch
lockdown: Copy secure_boot flag in boot params across kexec reboot
2019-08-19 21:54:15 -07:00
block
blk-mq: fix up placement of debugfs directory of queue files
2019-07-06 10:07:38 -06:00
certs
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 36
2019-05-24 17:27:11 +02:00
crypto
Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6
2019-07-05 13:31:19 +09:00
Documentation
security: Add a static lockdown policy LSM
2019-08-19 21:54:15 -07:00
drivers
lockdown: Restrict /dev/{mem,kmem,port} when the kernel is locked down
2019-08-19 21:54:15 -07:00
fs
Merge branch 'fixes' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2019-07-06 09:53:08 -07:00
include
kexec_load: Disable at runtime if the kernel is locked down
2019-08-19 21:54:15 -07:00
init
lockdown: Enforce module signatures if the kernel is locked down
2019-08-19 21:54:15 -07:00
ipc
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 441
2019-06-05 17:37:17 +02:00
kernel
kexec_load: Disable at runtime if the kernel is locked down
2019-08-19 21:54:15 -07:00
lib
Merge branch 'linus' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6
2019-07-05 13:31:19 +09:00
LICENSES
LICENSES: Rename other to deprecated
2019-05-03 06:34:32 -06:00
mm
Revert "mm: page cache: store only head pages in i_pages"
2019-07-05 19:55:18 -07:00
net
Merge tag 'nfsd-5.2-2' of git://linux-nfs.org/~bfields/linux
2019-07-05 19:00:37 -07:00
samples
samples: make pidfd-metadata fail gracefully on older kernels
2019-06-24 15:55:50 +02:00
scripts
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 505
2019-06-19 17:11:22 +02:00
security
kexec_load: Disable at runtime if the kernel is locked down
2019-08-19 21:54:15 -07:00
sound
Merge tag 'sound-5.2' of git://git.kernel.org/pub/scm/linux/kernel/git/tiwai/sound
2019-07-05 02:03:50 +09:00
tools
KVM: nVMX: Change KVM_STATE_NESTED_EVMCS to signal vmcs12 is copied from eVMCS
2019-07-02 19:02:45 +02:00
usr
user/Makefile: Fix typo and capitalization in comment section
2018-12-11 00:18:03 +09:00
virt
Merge tag 'spdx-5.2-rc6' of git://git.kernel.org/pub/scm/linux/kernel/git/gregkh/spdx
2019-06-21 09:58:42 -07:00
.clang-format
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
2019-04-17 11:26:25 -07:00
.cocciconfig
scripts: add Linux .cocciconfig for coccinelle
2016-07-22 12:13:39 +02:00
.get_maintainer.ignore
Opt out of scripts/get_maintainer.pl
2019-05-16 10:53:40 -07:00
.gitattributes
.gitattributes: set git diff driver for C source code files
2016-10-07 18:46:30 -07:00
.gitignore
.gitignore: exclude .get_maintainer.ignore and .gitattributes
2019-05-18 11:49:54 +09:00
.mailmap
MAINTAINERS: Update my email address
2019-06-18 14:37:27 +01:00
COPYING
COPYING: use the new text with points to the license files
2018-03-23 12:41:45 -06:00
CREDITS
MAINTAINERS: Farewell Martin Schwidefsky
2019-05-31 10:14:11 +02:00
Kbuild
Merge tag 'kbuild-v5.1' of git://git.kernel.org/pub/scm/linux/kernel/git/masahiroy/linux-kbuild
2019-03-10 17:48:21 -07:00
Kconfig
kconfig: move the "Executable file formats" menu to fs/Kconfig.binfmt
2018-08-02 08:06:55 +09:00
MAINTAINERS
Merge tag 'mips_fixes_5.2_2' of git://git.kernel.org/pub/scm/linux/kernel/git/mips/linux
2019-07-06 10:32:12 -07:00
Makefile
Linux 5.2
2019-07-07 15:41:56 -07:00
README
Drop all 00-INDEX files from Documentation/
2018-09-09 15:08:58 -06:00

README 

Linux kernel
============

There are several guides for kernel developers and users. These guides can
be rendered in a number of formats, like HTML and PDF. Please read
Documentation/admin-guide/README.rst first.

In order to build the documentation, use ``make htmldocs`` or
``make pdfdocs``.  The formatted documentation can also be read online at:

    https://www.kernel.org/doc/html/latest/

There are various text files in the Documentation/ subdirectory,
several of them using the Restructured Text markup notation.

Please read the Documentation/process/changes.rst file, as it contains the
requirements for building and running the kernel, and information about
the problems which may result by upgrading your kernel.
Description
No description provided
Readme 3.6 GiB
Languages
C 97%
Assembly 1%
Shell 0.6%
Rust 0.5%
Python 0.4%
Other 0.3%