Re: [RFC] Second attempt at kernel secure boot support

From: Jiri Kosina
Date: Fri Nov 02 2012 - 12:22:37 EST

Next message: Alan Cox: "Re: [PATCH 0/3] capebus moving omap_devices to mach-omap2"
Previous message: Murali Karicheri: "[RFC PATCH 0/2] - Move AEMIF driver out of DaVinci machine"
In reply to: Vivek Goyal: "Re: [RFC] Second attempt at kernel secure boot support"
Next in thread: Vivek Goyal: "Re: [RFC] Second attempt at kernel secure boot support"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, 2 Nov 2012, Vivek Goyal wrote:

> > > "crash" utility has module which allows reading kernel memory. So leaking
> > > this private key will be easier then you are thinking it to be.
> >
> > That's not upstream, right?
>
> Yes, checked with Dave, it is not upstream. Well, still it is a concern
> for distro kernel.

Well, that's about /dev/crash, right?

How about /proc/kcore?

--
Jiri Kosina
SUSE Labs
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Alan Cox: "Re: [PATCH 0/3] capebus moving omap_devices to mach-omap2"
Previous message: Murali Karicheri: "[RFC PATCH 0/2] - Move AEMIF driver out of DaVinci machine"
In reply to: Vivek Goyal: "Re: [RFC] Second attempt at kernel secure boot support"
Next in thread: Vivek Goyal: "Re: [RFC] Second attempt at kernel secure boot support"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]