Re: [PATCH 01/12] Add BSD-style securelevel support

From: Matthew Garrett
Date: Mon Sep 09 2013 - 12:30:19 EST

Next message: Steven Rostedt: "Re: [PATCH] rcu: Is it safe to enter an RCU read-side criticalsection?"
Previous message: Seth Jennings: "Re: [PATCH v2 2/4] mm/zswap: bugfix: memory leak when invalidate andreclaim occur concurrently"
In reply to: H. Peter Anvin: "Re: [PATCH 01/12] Add BSD-style securelevel support"
Next in thread: H. Peter Anvin: "Re: [PATCH 01/12] Add BSD-style securelevel support"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 2013-09-09 at 09:27 -0700, H. Peter Anvin wrote:

> This will break or have to be redefined once you have signed kexec.

Yeah. I wasn't really sure how to define it based on an implementation
that isn't there yet - saying "kexec_load() of untrusted binaries"
implies that there's some way to do it for trusted binaries.

--
Matthew Garrett <matthew.garrett@xxxxxxxxxx>
èº{.nÇ+‰·Ÿ®‰†+%ŠËlzwm…ébëæìr¸›zX§»®w¥Š{ayºÊÚë,j¢f£¢·hš‹àz¹®w¥¢¸¢·¦j:+v‰¨ŠwèjØm¶Ÿÿ¾«‘êçzZ+ƒùšŽŠÝj"ú!¶iO•æ¬z·švØ^¶m§ÿðÃnÆàþY&—

Next message: Steven Rostedt: "Re: [PATCH] rcu: Is it safe to enter an RCU read-side criticalsection?"
Previous message: Seth Jennings: "Re: [PATCH v2 2/4] mm/zswap: bugfix: memory leak when invalidate andreclaim occur concurrently"
In reply to: H. Peter Anvin: "Re: [PATCH 01/12] Add BSD-style securelevel support"
Next in thread: H. Peter Anvin: "Re: [PATCH 01/12] Add BSD-style securelevel support"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]