Re: [PATCH 2/5] x86/loader: only patch linux kernels

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH 2/5] x86/loader: only patch linux kernels

From:	Gerd Hoffmann
Subject:	Re: [PATCH 2/5] x86/loader: only patch linux kernels
Date:	Tue, 17 Dec 2024 15:12:26 +0100

On Tue, Dec 17, 2024 at 02:09:30PM +0300, Michael Tokarev wrote:
> 11.04.2024 12:48, Gerd Hoffmann wrote:
> > If the binary loaded via -kernel is *not* a linux kernel (in which
> > case protocol == 0), do not patch the linux kernel header fields.
> > 
> > It's (a) pointless and (b) might break binaries by random patching
> > and (c) changes the binary hash which in turn breaks secure boot
> > verification.
> > 
> > Background: OVMF happily loads and runs not only linux kernels but
> > any efi binary via direct kernel boot.
> > 
> > Note: Breaking the secure boot verification is a problem for linux
> > kernels too, but fixed that is left for another day ...
> 
> Shouldn't this one be picked up for -stable?

yes, please.

thanks,
  Gerd

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [PATCH 2/5] x86/loader: only patch linux kernels, Michael Tokarev, 2024/12/17
- Re: [PATCH 2/5] x86/loader: only patch linux kernels, Gerd Hoffmann <=

Prev by Date: Re: [PATCH] roms: re-add edk2-basetools target
Next by Date: [PATCH 0/2] include: Two cleanups around missing 'qemu/atomic.h'
Previous by thread: Re: [PATCH 2/5] x86/loader: only patch linux kernels
Next by thread: [PATCH v3 0/2] Convert the intel_iommu avocado test
Index(es):
- Date
- Thread