[PATCH 01/24] Add the ability to lock down access to the running kernel image
dhowells at redhat.com
Wed Apr 11 17:49:05 UTC 2018
Randy Dunlap <rdunlap at infradead.org> wrote:
> > + drivers from functioning because allowing manual configuration of
> > + hardware parameters is forbidden, lest a device be used to access the
> > + kernel by DMA. This mostly applies to ISA devices.
> Is DMA from non-ISA devices OK, or did I miss seeing that patch?
The issue is where you can directly command a device to do DMA, possibly by
using the wrong driver. Ask Alan Cox.
To unsubscribe from this list: send the line "unsubscribe linux-security-module" in
the body of a message to majordomo at vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
More information about the Linux-security-module-archive