projects / cascardo / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: cdd7857) | patch
efi/arm64: ignore dtb= when UEFI SecureBoot is enabled
authorArd Biesheuvel <ard.biesheuvel@linaro.org>
Thu, 3 Apr 2014 15:46:58 +0000 (17:46 +0200)
committerMatt Fleming <matt.fleming@intel.com>
Wed, 30 Apr 2014 18:57:06 +0000 (19:57 +0100)
commit345c736edd07b657a8c48190baed2719b85d0938
tree6bae228377b6b2f1f7cb60ee6fbce40bcc65cf5etree | snapshot
parentcdd7857898c8d2a159118e663f59978e6b3542f2commit | diff
efi/arm64: ignore dtb= when UEFI SecureBoot is enabled

Loading unauthenticated FDT blobs directly from storage is a security hazard,
so this should only be allowed when running with UEFI Secure Boot disabled.

Signed-off-by: Ard Biesheuvel <ard.biesheuvel@linaro.org>
Signed-off-by: Leif Lindholm <leif.lindholm@linaro.org>
Acked-by: Catalin Marinas <catalin.marinas@arm.com>
Signed-off-by: Matt Fleming <matt.fleming@intel.com>
drivers/firmware/efi/arm-stub.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.