31 lines
1.1 KiB
Diff
31 lines
1.1 KiB
Diff
From: David Howells <dhowells@redhat.com>
|
|
Date: Wed, 5 Apr 2017 17:40:31 +0100
|
|
Subject: [59/61] Prohibit PCMCIA CIS storage when the kernel is locked down
|
|
Origin: https://git.kernel.org/pub/scm/linux/kernel/git/dhowells/linux-fs.git/commit?id=36b3c01337b2d0e4aa69828186586951b9cf50fa
|
|
|
|
Prohibit replacement of the PCMCIA Card Information Structure when the
|
|
kernel is locked down.
|
|
|
|
Suggested-by: Dominik Brodowski <linux@dominikbrodowski.net>
|
|
Signed-off-by: David Howells <dhowells@redhat.com>
|
|
---
|
|
drivers/pcmcia/cistpl.c | 5 +++++
|
|
1 file changed, 5 insertions(+)
|
|
|
|
diff --git a/drivers/pcmcia/cistpl.c b/drivers/pcmcia/cistpl.c
|
|
index 55ef7d1fd8da..193e4f7b73b1 100644
|
|
--- a/drivers/pcmcia/cistpl.c
|
|
+++ b/drivers/pcmcia/cistpl.c
|
|
@@ -1578,6 +1578,11 @@ static ssize_t pccard_store_cis(struct file *filp, struct kobject *kobj,
|
|
struct pcmcia_socket *s;
|
|
int error;
|
|
|
|
+ if (kernel_is_locked_down()) {
|
|
+ pr_err("Direct CIS storage isn't permitted when the kernel is locked down\n");
|
|
+ return -EPERM;
|
|
+ }
|
|
+
|
|
s = to_socket(container_of(kobj, struct device, kobj));
|
|
|
|
if (off)
|