]> git.ipfire.org Git - thirdparty/kernel/stable.git/commit
projects / thirdparty / kernel / stable.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1241283) | patch
x86/microcode/AMD: Load only SHA256-checksummed patches
authorBorislav Petkov (AMD) <bp@alien8.de>
Thu, 23 Jan 2025 13:44:53 +0000 (14:44 +0100)
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>
Fri, 7 Mar 2025 15:45:56 +0000 (16:45 +0100)
commitbef830144febedb7de86863ae99d8f53bed76e95
treef26fce3bb4ef2bc772d2bcac38755a02b005d664tree | snapshot
parent12412835e296eac77dbf43f4cbd92cf4a1173272commit | diff
x86/microcode/AMD: Load only SHA256-checksummed patches

commit 50cef76d5cb0e199cda19f026842560f6eedc4f7 upstream

Load patches for which the driver carries a SHA256 checksum of the patch
blob.

This can be disabled by adding "microcode.amd_sha_check=off" on the
kernel cmdline. But it is highly NOT recommended.

Signed-off-by: Borislav Petkov (AMD) <bp@alien8.de>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
arch/x86/Kconfig diff | blob | blame | history
arch/x86/kernel/cpu/microcode/amd.c diff | blob | blame | history
arch/x86/kernel/cpu/microcode/amd_shas.c [new file with mode: 0644] blob
Mirror https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git