[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [PATCH 1/3] Move verifiers to the kernel
|
From: |
Matthew Garrett |
|
Subject: |
Re: [PATCH 1/3] Move verifiers to the kernel |
|
Date: |
Thu, 15 Jun 2017 04:39:14 +0100 |
|
User-agent: |
Mutt/1.5.23 (2014-03-12) |
On Thu, Jun 15, 2017 at 01:52:14AM +0000, Vladimir 'phcoder' Serbinenko wrote:
> On Thu, Jun 15, 2017, 03:49 Matthew Garrett <address@hidden> wrote:
> > if you're making the ordering significant,
> > it's far too easy for someone to mess up and end up with an insecure
> > system as a result.
> >
> Adding them would be part of grub-install, not manual by user.
Hm. Is there any way for a module to detect that it's being loaded
rather than being part of the core, and throw an error in that case?
--
Matthew Garrett | address@hidden
[PATCH 2/3] Verify commands executed by grub, Matthew Garrett, 2017/06/14
[PATCH 3/3] Core TPM support, Matthew Garrett, 2017/06/14