On Tue, Jun 5, 2018 at 2:35 PM, Mimi Zohar <zohar@xxxxxxxxxxxxxxxxxx> wrote:
> On Tue, 2018-06-05 at 12:45 -0700, Kees Cook wrote:
>
>> And if you must have a separate enum, please change this to fail
>> closed instead of open (and mark the fall-through):
>>
>> int rc = -EPERM;
>>
>> switch (id) {
>> case LOADING_MODULE:
>> rc = loadpin_read_file(NULL, READING_MODULE);
>> /* Fall-through */
>> default:
>> break;
>> }
>
> This will fail the sysfs firmware fallback loading and the kexec_load
> syscall without any message, as you have for init_module. Is that
> what you want?
I'd prefer there be a full mapping of the enums so that everything
gets passed into loadpin_read_file() :)
Can the enum be shared or is that nonsensical?
-Kees
--
Kees Cook
Pixel Security
