Re: [RFC V4 PATCH 00/15] Signature verification of hibernate snapshot

From: Vojtech Pavlik
Date: Thu Sep 26 2013 - 08:23:11 EST

Next message: Jiri Olsa: "Re: [PATCH 08/21] perf: Add new 'paused' attribute"
Previous message: Yijing Wang: "IRQ Affinity Problem"
In reply to: Michal Marek: "Re: [RFC V4 PATCH 00/15] Signature verification of hibernate snapshot"
Next in thread: Vojtech Pavlik: "Re: [RFC V4 PATCH 00/15] Signature verification of hibernate snapshot"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, Sep 26, 2013 at 02:21:23PM +0200, Michal Marek wrote:

> > Is not it as simple as storing hash of hibernation image into NVRAM
> > and then verifying the hash matches the value in NVRAM on next
> > startup? No encryption needed.
>
> I think that part of the exercise is to minimize the number of writes to
> the NVRAM. The hash changes with every hibernation, obviously.

The key should, too.

--
Vojtech Pavlik
Director SUSE Labs
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Jiri Olsa: "Re: [PATCH 08/21] perf: Add new 'paused' attribute"
Previous message: Yijing Wang: "IRQ Affinity Problem"
In reply to: Michal Marek: "Re: [RFC V4 PATCH 00/15] Signature verification of hibernate snapshot"
Next in thread: Vojtech Pavlik: "Re: [RFC V4 PATCH 00/15] Signature verification of hibernate snapshot"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]