| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 18 Jan 2024 15:12:45 +0100 From: Jose Ignacio Tornos Martinez <jtornosm@...hat.com> To: masahiroy@...nel.org Cc: dcavalca@...a.com, jtornosm@...hat.com, linux-kbuild@...r.kernel.org, linux-kernel@...r.kernel.org, nathan@...nel.org, ndesaulniers@...gle.com, nicolas@...sle.eu, stable@...r.kernel.org Subject: Re: [PATCH V5 2/2] rpm-pkg: avoid install/remove the running kernel > What is the problem with this? In my opinion, it is risky to remove the kernel that is running, that is the reason why I am trying to protect this. If you try to remove or update (and the running kernel is removed), if the kernel and modules are already preloaded in memory, it could not happen anything but some extra action could be necessary or automatically started, and even the new kernel could not boot. Fedora and others are taking this into account with upper tools and declare the running kernel as protected avoinding this action. But others (i.e. openSUSE Tumbleweed) allow this behavior. It may only be a safety measure but it can also be beneficial to avoid problems, just in case. Besides, in this way, all the tested distributions would have the same behavior. If it is ok, I will create a following version patch describing the problem better and using indentation as you suggested for the other patch. Thanks Best regards José Ignacio
Powered by blists - more mailing lists