projects / firefly-linux-kernel-4.4.55.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e26b518) | patch
efi/arm64: ignore dtb= when UEFI SecureBoot is enabled
authorArd Biesheuvel <ard.biesheuvel@linaro.org>
Thu, 3 Apr 2014 15:46:58 +0000 (17:46 +0200)
committerMark Brown <broonie@linaro.org>
Thu, 24 Jul 2014 21:58:42 +0000 (22:58 +0100)
commita7d8ac550cb83d8ae0aec1e00aad9bb72ea1eb07
tree3a98db660fd88e12b2f793f8c4b02dd6441d967ftree | snapshot
parente26b51869efe9b1ea28632d1076953ce64670588commit | diff
efi/arm64: ignore dtb= when UEFI SecureBoot is enabled

Loading unauthenticated FDT blobs directly from storage is a security hazard,
so this should only be allowed when running with UEFI Secure Boot disabled.

Signed-off-by: Ard Biesheuvel <ard.biesheuvel@linaro.org>
Signed-off-by: Leif Lindholm <leif.lindholm@linaro.org>
Acked-by: Catalin Marinas <catalin.marinas@arm.com>
Signed-off-by: Matt Fleming <matt.fleming@intel.com>
(cherry picked from commit 345c736edd07b657a8c48190baed2719b85d0938)
Signed-off-by: Mark Brown <broonie@linaro.org>
drivers/firmware/efi/arm-stub.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.