Re: [PATCH v8 06/15] x86: Add early SHA support for Secure Launch early measurements

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Subject: Re: [PATCH v8 06/15] x86: Add early SHA support for Secure Launch early measurements
From: Eric Biggers <ebiggers@xxxxxxxxxx>
Date: Fri, 23 Feb 2024 09:54:49 -0800
Cc: Ard Biesheuvel <ardb@xxxxxxxxxx>, Ross Philipson <ross.philipson@xxxxxxxxxx>, linux-kernel@xxxxxxxxxxxxxxx, x86@xxxxxxxxxx, linux-integrity@xxxxxxxxxxxxxxx, linux-doc@xxxxxxxxxxxxxxx, linux-crypto@xxxxxxxxxxxxxxx, kexec@xxxxxxxxxxxxxxxxxxx, linux-efi@xxxxxxxxxxxxxxx, dpsmith@xxxxxxxxxxxxxxxxxxxx, tglx@xxxxxxxxxxxxx, mingo@xxxxxxxxxx, bp@xxxxxxxxx, hpa@xxxxxxxxx, dave.hansen@xxxxxxxxxxxxxxx, mjg59@xxxxxxxxxxxxx, James.Bottomley@xxxxxxxxxxxxxxxxxxxxx, peterhuewe@xxxxxx, jarkko@xxxxxxxxxx, jgg@xxxxxxxx, luto@xxxxxxxxxxxxxx, nivedita@xxxxxxxxxxxx, herbert@xxxxxxxxxxxxxxxxxxx, davem@xxxxxxxxxxxxx, kanth.ghatraju@xxxxxxxxxx, trenchboot-devel@xxxxxxxxxxxxxxxx
In-reply-to: <431a0b3a-47e5-4e61-a7fc-31cdf56f4e4c@citrix.com>

On Fri, Feb 23, 2024 at 04:42:11PM +0000, Andrew Cooper wrote:
> 
> Yes, and I agree.  We're not looking to try and force this in with
> underhand tactics.
> 
> But a blind "nack to any SHA-1" is similarly damaging in the opposite
> direction.
> 

Well, reviewers have said they'd prefer that SHA-1 not be included and given
some thoughtful reasons for that.  But also they've given suggestions on how to
make the SHA-1 support more palatable, such as splitting it into a separate
patch and giving it a proper justification.

All suggestions have been ignored.

- Eric

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Follow-Ups:
- Re: [PATCH v8 06/15] x86: Add early SHA support for Secure Launch early measurements
  - From: Andrew Cooper

References:
- [PATCH v8 00/15] x86: Trenchboot secure dynamic launch Linux kernel support
  - From: Ross Philipson
- [PATCH v8 06/15] x86: Add early SHA support for Secure Launch early measurements
  - From: Ross Philipson
- Re: [PATCH v8 06/15] x86: Add early SHA support for Secure Launch early measurements
  - From: Ard Biesheuvel
- Re: [PATCH v8 06/15] x86: Add early SHA support for Secure Launch early measurements
  - From: Andrew Cooper
- Re: [PATCH v8 06/15] x86: Add early SHA support for Secure Launch early measurements
  - From: Ard Biesheuvel
- Re: [PATCH v8 06/15] x86: Add early SHA support for Secure Launch early measurements
  - From: Andrew Cooper
- Re: [PATCH v8 06/15] x86: Add early SHA support for Secure Launch early measurements
  - From: Ard Biesheuvel
- Re: [PATCH v8 06/15] x86: Add early SHA support for Secure Launch early measurements
  - From: Andrew Cooper

Prev by Date: Re: [ima-evm-utils: PATCH v1 1/1] Change license to LGPL-2.0-or-later and GPL-2.0-or-later
Next by Date: Re: [PATCH v8 06/15] x86: Add early SHA support for Secure Launch early measurements
Previous by thread: Re: [PATCH v8 06/15] x86: Add early SHA support for Secure Launch early measurements
Next by thread: Re: [PATCH v8 06/15] x86: Add early SHA support for Secure Launch early measurements
Index(es):
- Date
- Thread

[Index of Archives] [Linux Kernel] [Linux Kernel Hardening] [Linux NFS] [Linux NILFS] [Linux USB Devel] [Video for Linux] [Linux Audio Users] [Yosemite News] [Linux SCSI]