Re: [PATCH 0/4][RFC v2] Introduce the in-kernel hibernation encryption

From: Oliver Neukum
Date: Tue Aug 07 2018 - 06:04:24 EST

Next message: Dave Martin: "Re: [PATCH] arm64: Trap WFI executed in userspace"
Previous message: Ingo Molnar: "Re: [RFC PATCH 1/2] x86: WARN() when uaccess helpers fault on kernel addresses"
In reply to: Ryan Chen: "Re: [PATCH 0/4][RFC v2] Introduce the in-kernel hibernation encryption"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Di, 2018-08-07 at 15:38 +0800, Yu Chen wrote:
> > As STD affects the whole machine it must require root rights.
> > So I cannot see how you can talk about a session belonging
> > to a user. Please explain.
> >
>
> The case is for physical access, not the 'user' in OS.

Well, yes, but Secure Boot does not guard against anybody
booting or halting the machine. It limits what you can
boot by a chain of trust.

I think you are trying to add a feature to Secure Boot.

Regards
Oliver

Next message: Dave Martin: "Re: [PATCH] arm64: Trap WFI executed in userspace"
Previous message: Ingo Molnar: "Re: [RFC PATCH 1/2] x86: WARN() when uaccess helpers fault on kernel addresses"
In reply to: Ryan Chen: "Re: [PATCH 0/4][RFC v2] Introduce the in-kernel hibernation encryption"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]