linux

mirror of https://github.com/torvalds/linux synced 2024-10-12 06:16:26 +00:00

History

Matthew Garrett ccc829ba36 efi/libstub: Enable reset attack mitigation If a machine is reset while secrets are present in RAM, it may be possible for code executed after the reboot to extract those secrets from untouched memory. The Trusted Computing Group specified a mechanism for requesting that the firmware clear all RAM on reset before booting another OS. This is done by setting the MemoryOverwriteRequestControl variable at startup. If userspace can ensure that all secrets are removed as part of a controlled shutdown, it can reset this variable to 0 before triggering a hardware reboot. Signed-off-by: Matthew Garrett <mjg59@google.com> Signed-off-by: Ard Biesheuvel <ard.biesheuvel@linaro.org> Cc: Linus Torvalds <torvalds@linux-foundation.org> Cc: Matt Fleming <matt@codeblueprint.co.uk> Cc: Peter Zijlstra <peterz@infradead.org> Cc: Thomas Gleixner <tglx@linutronix.de> Cc: linux-efi@vger.kernel.org Link: http://lkml.kernel.org/r/20170825155019.6740-2-ard.biesheuvel@linaro.org Signed-off-by: Ingo Molnar <mingo@kernel.org>		2017-08-26 09:20:33 +02:00
..
broadcom	tree-wide: replace config_enabled() with IS_ENABLED()	2016-08-04 08:50:07 -04:00
efi	efi/libstub: Enable reset attack mitigation	2017-08-26 09:20:33 +02:00
google	Merge 4.12-rc5 into char-misc-next	2017-06-12 08:18:10 +02:00
meson	firmware: meson-sm: Allow 0 as valid return value	2017-03-23 12:22:40 -07:00
tegra	This is the first pull request for the new dma-mapping subsystem	2017-07-06 19:20:54 -07:00
arm_scpi.c	firmware: arm_scpi: add support to populate OPPs and get transition latency	2017-06-05 11:14:35 +01:00
dcdbas.c	firmware/dcdbas: Constify attribute_group structures	2017-08-21 09:43:51 +02:00
dcdbas.h
dell_rbu.c	sysfs: add struct file* to bin_attr callbacks	2010-05-21 09:37:31 -07:00
dmi-id.c	firmware: dmi: Fix permissions of product_family	2017-06-15 13:46:01 +02:00
dmi-sysfs.c	x86, mpparse, x86/acpi, x86/PCI, x86/dmi, SFI: Use memremap() for RAM mappings	2017-07-18 11:37:58 +02:00
dmi_scan.c	firmware: dmi_scan: Check DMI structure length	2017-06-15 13:46:01 +02:00
edd.c	[SCSI] edd: Treat "XPRS" host bus type the same as "PCI"	2011-10-31 13:26:19 +04:00
iscsi_ibft.c	ibft: Expose iBFT acpi header via sysfs	2016-05-16 11:14:29 -04:00
iscsi_ibft_find.c	efi: Make 'efi_enabled' a function to query EFI facilities	2013-01-30 11:51:59 -08:00
Kconfig	firmware: arm_scpi: Add hardware dependencies	2017-01-30 21:09:43 -08:00
Makefile	Merge branch 'for-4.10-ti-sci-base' of https://github.com/t-kristo/linux-pm into next/drivers	2016-11-30 17:13:13 +01:00
memmap.c	drivers/firmware/memmap.c: fix kernel-doc format	2015-06-25 17:00:41 -07:00
pcdp.c	x86, mpparse, x86/acpi, x86/PCI, x86/dmi, SFI: Use memremap() for RAM mappings	2017-07-18 11:37:58 +02:00
pcdp.h	Update broken web addresses in the kernel.	2010-10-18 11:03:14 +02:00
psci.c	drivers: firmware: psci: Use __pa_symbol for cpu_resume	2017-01-26 12:15:07 +00:00
psci_checker.c	sched/headers: Prepare for new header dependencies before moving code to <uapi/linux/sched/types.h>	2017-03-02 08:42:27 +01:00
qcom_scm-32.c	firmware: qcom_scm: add two scm calls for iommu secure page table	2017-03-28 16:03:21 -05:00
qcom_scm-64.c	firmware: qcom_scm: add two scm calls for iommu secure page table	2017-03-28 16:03:21 -05:00
qcom_scm.c	firmware: qcom_scm: add two scm calls for iommu secure page table	2017-03-28 16:03:21 -05:00
qcom_scm.h	firmware: qcom_scm: add two scm calls for iommu secure page table	2017-03-28 16:03:21 -05:00
qemu_fw_cfg.c	driver core update for 4.7-rc1	2016-05-20 21:26:15 -07:00
raspberrypi.c	ARM: bcm2835: Add the Raspberry Pi firmware driver	2015-10-14 15:30:06 -07:00
scpi_pm_domain.c	firmware: scpi: add device power domain support using genpd	2016-06-21 10:26:51 +01:00
ti_sci.c	firmware: ti_sci: fix strncat length check	2017-05-19 10:31:36 +02:00
ti_sci.h	firmware: ti_sci: Add support for reboot core service	2016-10-27 12:09:12 +03:00