Disable PCI hotplug
Disable CONFIG_HOTPLUG_PCI (which all the PCI hotplug modules depend on) in qubes-linux-kernel, to prevent DMA attacks via ExpressCard and Thunderbolt ports Fixes QubesOS/qubes-issues#1673
This commit is contained in:
Marek Marczykowski-Górecki
parent
762d41e99b
commit
55fb54a0c2
12
config
12
config
@ -714,7 +714,7 @@ CONFIG_PCI_MMCONFIG=y
|
||||
CONFIG_PCI_XEN=y
|
||||
CONFIG_PCI_DOMAINS=y
|
||||
CONFIG_PCIEPORTBUS=y
|
||||
CONFIG_HOTPLUG_PCI_PCIE=y
|
||||
# CONFIG_HOTPLUG_PCI_PCIE is not set
|
||||
CONFIG_PCIEAER=y
|
||||
CONFIG_PCIE_ECRC=y
|
||||
CONFIG_PCIEAER_INJECT=m
|
||||
@ -760,11 +760,7 @@ CONFIG_YENTA_TOSHIBA=y
|
||||
CONFIG_PD6729=m
|
||||
CONFIG_I82092=m
|
||||
CONFIG_PCCARD_NONSTATIC=y
|
||||
CONFIG_HOTPLUG_PCI=y
|
||||
CONFIG_HOTPLUG_PCI_ACPI=y
|
||||
CONFIG_HOTPLUG_PCI_ACPI_IBM=m
|
||||
# CONFIG_HOTPLUG_PCI_CPCI is not set
|
||||
CONFIG_HOTPLUG_PCI_SHPC=m
|
||||
# CONFIG_HOTPLUG_PCI is not set
|
||||
# CONFIG_RAPIDIO is not set
|
||||
# CONFIG_X86_SYSFB is not set
|
||||
|
||||
@ -5972,10 +5968,6 @@ CONFIG_THINKPAD_ACPI_VIDEO=y
|
||||
CONFIG_THINKPAD_ACPI_HOTKEY_POLL=y
|
||||
CONFIG_SENSORS_HDAPS=m
|
||||
CONFIG_INTEL_MENLOW=m
|
||||
CONFIG_EEEPC_LAPTOP=m
|
||||
CONFIG_ASUS_WMI=m
|
||||
CONFIG_ASUS_NB_WMI=m
|
||||
CONFIG_EEEPC_WMI=m
|
||||
CONFIG_ACPI_WMI=m
|
||||
CONFIG_MSI_WMI=m
|
||||
CONFIG_TOPSTAR_LAPTOP=m
|
||||
|
||||
Loading…
Reference in New Issue
Block a user