Re: [GIT PULL] Kernel lockdown for secure boot

From: David Howells
Date: Wed Apr 04 2018 - 04:05:29 EST

Next message: Dilger, Andreas: "Re: [lustre-devel] [PATCH 11/17] staging: lustre: libcfs: discard cfs_time_shift()."
Previous message: Enric Balletbo Serra: "Re: [PATCH v4 5/8] mfd: cros_ec_dev: Register cros_ec_accel_legacy driver as a subdevice."
In reply to: Andy Lutomirski: "Re: [GIT PULL] Kernel lockdown for secure boot"
Next in thread: Andy Lutomirski: "Re: [GIT PULL] Kernel lockdown for secure boot"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Andy Lutomirski <luto@xxxxxxxxxx> wrote:

> As far as I can tell, what's really going on here is that there's a
> significant contingent here that wants to prevent Linux from
> chainloading something that isn't Linux.

You have completely the wrong end of the stick. No one has said that or even
implied that. You are alleging dishonesty on our part.

What we *have* said is that *if* we want to pass the secure boot state across
kexec, then we have to make sure that:

(1) no one tampers with the intermediate kernel between boot and kexec
otherwise the secure boot state is effectively invalidated, and

(2) the image that gets kexec'ed is trusted.

Remember: you cannot know (2) if you don't have (1).

And if someone tampers with the aim of breaking, say, Windows, then someone,
e.g. Microsoft, might blacklist the shim.

David

Next message: Dilger, Andreas: "Re: [lustre-devel] [PATCH 11/17] staging: lustre: libcfs: discard cfs_time_shift()."
Previous message: Enric Balletbo Serra: "Re: [PATCH v4 5/8] mfd: cros_ec_dev: Register cros_ec_accel_legacy driver as a subdevice."
In reply to: Andy Lutomirski: "Re: [GIT PULL] Kernel lockdown for secure boot"
Next in thread: Andy Lutomirski: "Re: [GIT PULL] Kernel lockdown for secure boot"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]