From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org X-Spam-Level: X-Spam-Status: No, score=-4.0 required=3.0 tests=DKIMWL_WL_HIGH,DKIM_SIGNED, DKIM_VALID,HEADER_FROM_DIFFERENT_DOMAINS,MAILING_LIST_MULTI,SIGNED_OFF_BY, SPF_HELO_NONE,SPF_PASS,URIBL_BLOCKED autolearn=no autolearn_force=no version=3.4.0 Received: from mail.kernel.org (mail.kernel.org [198.145.29.99]) by smtp.lore.kernel.org (Postfix) with ESMTP id 95EB5C49ED9 for ; Tue, 10 Sep 2019 23:43:53 +0000 (UTC) Received: from bombadil.infradead.org (bombadil.infradead.org [198.137.202.133]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mail.kernel.org (Postfix) with ESMTPS id 69D23216F4 for ; Tue, 10 Sep 2019 23:43:53 +0000 (UTC) Authentication-Results: mail.kernel.org; dkim=pass (2048-bit key) header.d=lists.infradead.org header.i=@lists.infradead.org header.b="vDiWA8tX" DMARC-Filter: OpenDMARC Filter v1.3.2 mail.kernel.org 69D23216F4 Authentication-Results: mail.kernel.org; dmarc=none (p=none dis=none) header.from=decadent.org.uk Authentication-Results: mail.kernel.org; spf=none smtp.mailfrom=linux-mtd-bounces+linux-mtd=archiver.kernel.org@lists.infradead.org DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=lists.infradead.org; s=bombadil.20170209; h=Sender:Content-Type:Cc: List-Subscribe:List-Help:List-Post:List-Archive:List-Unsubscribe:List-Id: MIME-Version:References:In-Reply-To:Date:To:From:Subject:Message-ID:Reply-To: Content-Transfer-Encoding:Content-ID:Content-Description:Resent-Date: Resent-From:Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:List-Owner; bh=yToWmUvge3fNJoSm2xvEcH9U+jUHbUX3LWj1XF3O/ik=; b=vDiWA8tXidTwUxecptL07GJ4x 2YCq6fe7Zr+Lz4wID+iiBx3L+nUSZ9VcyFSBhOAIwNgyXiEqqfqPmWhqTxejCPAx0Iyk6mgNnZDGD SHir15QGrmPWvmWZ7WN/ZoHOZoOEWRNbZ25gmnxF8OqZKANbDGp9bPxibvFX49bM+Lozc2Ff7kWmr kAlKbLDoLnXo8DK+K+jzRfQRONRjE8upZXnggxOyBjor7QlRH4xXKHCSphdTW2h0IR/jQgnBLyLDf OJ2HeKC+8UnQhqcDOO0wYz/Nrya9/5wlMLx9pPCkDvNkmpViVj/QDcE6uE3xWZj9SR4pbaA3EVYWY pkxmJNOgA==; Received: from localhost ([127.0.0.1] helo=bombadil.infradead.org) by bombadil.infradead.org with esmtp (Exim 4.92 #3 (Red Hat Linux)) id 1i7pna-0007E5-CG; Tue, 10 Sep 2019 23:43:50 +0000 Received: from shadbolt.e.decadent.org.uk ([88.96.1.126]) by bombadil.infradead.org with esmtps (Exim 4.92 #3 (Red Hat Linux)) id 1i7pnW-0007Dl-O9 for linux-mtd@lists.infradead.org; Tue, 10 Sep 2019 23:43:48 +0000 Received: from 92.40.249.110.threembb.co.uk ([92.40.249.110] helo=deadeye) by shadbolt.decadent.org.uk with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.89) (envelope-from ) id 1i7pnL-00040D-BC; Wed, 11 Sep 2019 00:43:35 +0100 Received: from ben by deadeye with local (Exim 4.92.1) (envelope-from ) id 1i7pnJ-0001mT-5q; Wed, 11 Sep 2019 00:43:33 +0100 Message-ID: Subject: Re: [PATCH 2/2] mtd: phram,slram: Disable when the kernel is locked down From: Ben Hutchings To: Richard Weinberger , James Morris Date: Wed, 11 Sep 2019 00:43:28 +0100 In-Reply-To: References: <20190830154549.vss6h5tlrl6d5r5y@decadent.org.uk> <20190830154720.eekfjt6c4jzvlbfz@decadent.org.uk> User-Agent: Evolution 3.30.5-1.1 MIME-Version: 1.0 X-SA-Exim-Connect-IP: 92.40.249.110 X-SA-Exim-Mail-From: ben@decadent.org.uk X-SA-Exim-Scanned: No (on shadbolt.decadent.org.uk); SAEximRunCond expanded to false X-CRM114-Version: 20100106-BlameMichelson ( TRE 0.8.0 (BSD) ) MR-646709E3 X-CRM114-CacheID: sfid-20190910_164346_930990_7361800C X-CRM114-Status: GOOD ( 17.28 ) X-BeenThere: linux-mtd@lists.infradead.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Linux MTD discussion mailing list List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Cc: David Howells , linux-mtd@lists.infradead.org, LSM List , Joern Engel , Matthew Garrett Content-Type: multipart/mixed; boundary="===============3059978788730676367==" Sender: "linux-mtd" Errors-To: linux-mtd-bounces+linux-mtd=archiver.kernel.org@lists.infradead.org --===============3059978788730676367== Content-Type: multipart/signed; micalg="pgp-sha512"; protocol="application/pgp-signature"; boundary="=-r8SF5OwVuFn1THoEmlQI" --=-r8SF5OwVuFn1THoEmlQI Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable On Wed, 2019-09-11 at 00:18 +0200, Richard Weinberger wrote: > On Tue, Sep 10, 2019 at 5:17 PM James Morris wrote: > > On Tue, 10 Sep 2019, Matthew Garrett wrote: > >=20 > > > On Fri, Aug 30, 2019 at 11:47 AM Ben Hutchings = wrote: > > > > These drivers allow mapping arbitrary memory ranges as MTD devices. > > > > This should be disabled to preserve the kernel's integrity when it = is > > > > locked down. > > > >=20 > > > > * Add the HWPARAM flag to the module parameters > > > > * When slram is built-in, it uses __setup() to read kernel paramete= rs, > > > > so add an explicit check security_locked_down() check > > > >=20 > > > > Signed-off-by: Ben Hutchings > > > > Cc: Matthew Garrett > > > > Cc: David Howells > > > > Cc: Joern Engel > > > > Cc: linux-mtd@lists.infradead.org > > >=20 > > > Reviewed-by: Matthew Garrett > > >=20 > > > James, should I pick patches like this up and send them to you, or > > > will you queue them directly after they're acked? > >=20 > > As long as I'm on the to or cc when they're acked, I can grab them. >=20 > Acked-by: Richard Weinberger >=20 > BTW: I don't have 1/2 in my inbox, is it also MTD related? No, that was for some other drivers (comedi) that allow setting I/O addresses from user-space. Ben. --=20 Ben Hutchings The obvious mathematical breakthrough [to break modern encryption] would be development of an easy way to factor large prime numbers. - Bill Gates --=-r8SF5OwVuFn1THoEmlQI Content-Type: application/pgp-signature; name="signature.asc" Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- iQIzBAABCgAdFiEErCspvTSmr92z9o8157/I7JWGEQkFAl14NSAACgkQ57/I7JWG EQniDxAAr+0WIc1dyucvMVNiLMc5RYy2P5rKBbh6m+3hrxbrXA6aw4RWpZsVwVSd tJ0hd0Errn2gzOlZNSNSWnJsvT+6ZRU5g3b2ZQLUsw1okJU9rbSTQgyTOagpEiao bsonp3QtoNsN/UECYd9kwte81lINpNXfb9FeJqY7REhg092QDms17pRi8kVrm4cH d/6U2PR3wPMcYyx4plgKrJU+GZROpL/Owp8AZhtCd9G4ROFhqhVBAMS+R2QNpdX0 ds61ZB42oCWUrRjbUGWkrjU9koWslayCUawEQeIFMNgkohrT4bVGUnxySPSs1SZp xmpJbuVxA5dG/2wBpO4xzw1PhaPZkwQx42SXRvkdPzzUzpQbteR8u6BucTMk18KO Y9NTCHSSCsYn8vznU1VGt2amdA/popmBEGznHAdQnbbdv0lmcOutTfHEpSoUCtNw 4VP9gqGKVyYQ24LIOQ2Yyn8KDdBnWOQQbXs/Pwe1rSOVUbzF/pgPkejEvkc2ndit Kq341FGr+n7hGnxtcSwidg2Bg8BgJy/kuDr1X7TxeEG99qk7R8vfNUW7Rwn9ypa8 jNkUGX7c0DlmFdkjonaA8vzuVcqhjATlc0GZyhu1VpvrZ8dAZD9AgAAbfRjS0ANy lu1lzTmlXt0uuQGYscMcCW3NzrKWFFcMvx9cZ62GcZZ0uJ0PulY= =5rjt -----END PGP SIGNATURE----- --=-r8SF5OwVuFn1THoEmlQI-- --===============3059978788730676367== Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline ______________________________________________________ Linux MTD discussion mailing list http://lists.infradead.org/mailman/listinfo/linux-mtd/ --===============3059978788730676367==--