www.infradead.org Git - users/jedix/linux-maple.git/commit

author	Matthew Garrett <matthew.garrett@nebula.com>
	Mon, 9 Sep 2013 22:49:46 +0000 (15:49 -0700)
committer	Santosh Shilimkar <santosh.shilimkar@oracle.com>
	Mon, 10 Aug 2015 16:24:06 +0000 (09:24 -0700)
commit	fb3f7d2bdb3b52da94da77deab4c162f39a89e57
tree	e9708e1b963b468f5d5016b5d715ee60136df28f	tree
parent	16f61bd6608338962a768c4dbacd764843223ddc	commit \| diff

Add option to automatically set securelevel when in Secure Boot mode

Orabug: 21539498

UEFI Secure Boot provides a mechanism for ensuring that the firmware will
only load signed bootloaders and kernels. Certain use cases may also
require that the kernel prevent userspace from inserting untrusted kernel
code at runtime. Add a configuration option that enforces this automatically
when enabled.

Signed-off-by: Matthew Garrett <matthew.garrett@nebula.com>
Signed-off-by: Santosh Shilimkar <santosh.shilimkar@oracle.com>

Documentation/x86/zero-page.txt		diff \| blob \| history
arch/x86/Kconfig		diff \| blob \| history
arch/x86/boot/compressed/eboot.c		diff \| blob \| history
arch/x86/include/uapi/asm/bootparam.h		diff \| blob \| history
arch/x86/kernel/setup.c		diff \| blob \| history
security/Kconfig		diff \| blob \| history