kmem in secure boot setups

Matthew Garrett Tue, 04 Sep 2012 08:57:00 -0700

Allowing users to write to address space makes it possible for the kernel
to be subverted. Restrict this when we need to protect the kernel.


Signed-off-by: Matthew Garrett <m...@redhat.com>
---
 drivers/char/mem.c | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/drivers/char/mem.c b/drivers/char/mem.c
index 8f5f872..c1de8e1 100644
--- a/drivers/char/mem.c
+++ b/drivers/char/mem.c
@@ -158,6 +158,9 @@ static ssize_t write_mem(struct file *file, const char 
__user *buf,
        unsigned long copied;
        void *ptr;
 
+       if (!capable(CAP_SECURE_FIRMWARE))
+               return -EPERM;
+
        if (!valid_phys_addr_range(p, count))
                return -EFAULT;
 
@@ -530,6 +533,9 @@ static ssize_t write_kmem(struct file *file, const char 
__user *buf,
        char * kbuf; /* k-addr because vwrite() takes vmlist_lock rwlock */
        int err = 0;
 
+       if (!capable(CAP_SECURE_FIRMWARE))
+               return -EPERM;
+
        if (p < (unsigned long) high_memory) {
                unsigned long to_write = min_t(unsigned long, count,
                                               (unsigned long)high_memory - p);
-- 
1.7.11.4

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majord...@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

[PATCH 06/11] Restrict /dev/mem and /dev/kmem in secure boot setups

Reply via email to