diff options
author | Peter Zijlstra <peterz@infradead.org> | 2020-04-03 19:13:03 +0200 |
---|---|---|
committer | Jessica Yu <jeyu@kernel.org> | 2020-04-21 17:20:13 +0200 |
commit | 5c3a7db0c7ec4bbd5bd3f48af9be859a8fa3e532 (patch) | |
tree | 13901a70e5529cedf2d1ac2dc80230db3d886e77 /kernel/module_signature.c | |
parent | module: break nested ARCH_HAS_STRICT_MODULE_RWX and STRICT_MODULE_RWX #ifdefs (diff) | |
download | linux-5c3a7db0c7ec4bbd5bd3f48af9be859a8fa3e532.tar.xz linux-5c3a7db0c7ec4bbd5bd3f48af9be859a8fa3e532.zip |
module: Harden STRICT_MODULE_RWX
We're very close to enforcing W^X memory, refuse to load modules that
violate this principle per construction.
[jeyu: move module_enforce_rwx_sections under STRICT_MODULE_RWX as per discussion]
Link: http://lore.kernel.org/r/20200403171303.GK20760@hirez.programming.kicks-ass.net
Acked-by: Kees Cook <keescook@chromium.org>
Signed-off-by: Peter Zijlstra (Intel) <peterz@infradead.org>
Signed-off-by: Jessica Yu <jeyu@kernel.org>
Diffstat (limited to 'kernel/module_signature.c')
0 files changed, 0 insertions, 0 deletions