projects / linux-block.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: db991af) | patch
module: Harden STRICT_MODULE_RWX
authorPeter Zijlstra <peterz@infradead.org>
Fri, 3 Apr 2020 17:13:03 +0000 (19:13 +0200)
committerJessica Yu <jeyu@kernel.org>
Tue, 21 Apr 2020 15:20:13 +0000 (17:20 +0200)
commit5c3a7db0c7ec4bbd5bd3f48af9be859a8fa3e532
tree13901a70e5529cedf2d1ac2dc80230db3d886e77tree | snapshot
parentdb991af02f11053558431467102ee5832894d7a4commit | diff
module: Harden STRICT_MODULE_RWX

We're very close to enforcing W^X memory, refuse to load modules that
violate this principle per construction.

[jeyu: move module_enforce_rwx_sections under STRICT_MODULE_RWX as per discussion]
Link: http://lore.kernel.org/r/20200403171303.GK20760@hirez.programming.kicks-ass.net
Acked-by: Kees Cook <keescook@chromium.org>
Signed-off-by: Peter Zijlstra (Intel) <peterz@infradead.org>
Signed-off-by: Jessica Yu <jeyu@kernel.org>
kernel/module.c diff | blob | blame | history
Linux 6.x block layer and io_uring tree(s)