Re: [PATCH 0/6] kexec: A new system call to allow in kernelloading
From: Jiri Kosina
Date: Fri Nov 22 2013 - 08:50:51 EST
On Fri, 22 Nov 2013, Vivek Goyal wrote:
> > OTOH, does this feature make any sense whatsover on architectures that
> > don't support secure boot anyway?
>
> I guess if signed modules makes sense, then being able to kexec signed
> kernel images should make sense too, in general.
Well, that's really a grey zone, I'd say.
In a non-secureboot environment, if you are root, you are able to issue
reboot into a completely different, self-made kernel anyway, independent
on whether signed modules are used or not.
--
Jiri Kosina
SUSE Labs
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/