On Fri, 5 Dec 2014 14:01:44 -0800 , Kees Cook <keescook@xxxxxxxxxxxx> wrote: > On Fri, Dec 5, 2014 at 1:27 PM, Pantelis Antoniou > <panto@xxxxxxxxxxxxxxxxxxxxxxx> wrote: > > > > Devices will be created potentially; those have a probe method, which can > > can make anything happen. > > > > This is exactly like from a security point of view as loading modules. > > Just a random idea, but would it make sense to just tie the logic to > the modules_disabled flag? Probably not, but thought I'd throw it out > there. I think it might. This opens a whole new window for manipulating the kernel state. If existing userspace disables modules, but is booted on a new kernel, then there is suddenly a new window for affecting change on the kernel that it didn't know about. -- To unsubscribe from this list: send the line "unsubscribe devicetree" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
