| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <aLLtJcHt0NcaZeDm@debian> Date: Sat, 30 Aug 2025 20:23:01 +0800 From: Gao Xiang <xiang@...nel.org> To: Askar Safin <safinaskar@...omail.com> Cc: Gao Xiang <hsiangkao@...ux.alibaba.com>, Byron Stanoszek <gandalf@...ds.org>, Christoph Hellwig <hch@....de>, gregkh <gregkh@...uxfoundation.org>, "julian.stecklina" <julian.stecklina@...erus-technology.de>, linux-fsdevel <linux-fsdevel@...r.kernel.org>, linux-kernel <linux-kernel@...r.kernel.org>, rafael <rafael@...nel.org>, torvalds <torvalds@...ux-foundation.org>, viro <viro@...iv.linux.org.uk>, "Thomas Weißschuh" <thomas.weissschuh@...utronix.de>, Christian Brauner <brauner@...nel.org>, systemd-devel <systemd-devel@...ts.freedesktop.org>, Lennart Poettering <mzxreary@...inter.de> Subject: Re: [PATCH] initrd: support erofs as initrd On Sat, Aug 30, 2025 at 03:49:48PM +0400, Askar Safin wrote: > ---- On Thu, 28 Aug 2025 21:14:34 +0400 Gao Xiang <hsiangkao@...ux.alibaba.com> wrote --- > > Which part of the running system check the cpio signature. > > You mean who checks cpio signature at boot? > Ideally, bootloader should do this. The kernel shouldn't trust the bootloader even the bootloader checked before, it should re-check itself to re-ensure that. Ideally, the running system should have a way to check itself is in a safe environment and the data provided by the bootloader is genuine, otherwise some dedicated malicious bootloader could have a way to do some bad behavior. > > For example, as well as I understand, UKI's EFI stub checks > initramfs signature. (See > https://github.com/systemd/systemd/blob/main/docs/ROOTFS_DISCOVERY.md > ). > > It seems that this document (ROOTFS_DISCOVERY) covers > zillions of use cases, so I hope you will find something for you. I've said I have no time to look into this. > > I also added to CC Poettering and systemd, hopefully they have some > ideas. > ... > > > Personally I just don't understand why cpio stands out considering it > > even the format itself doesn't support xattrs and more. > > As I said above, initramfs should not be feature-rich. > > (But xattrs can be added to it, if needed.) The point is: AFAIK, There is no formal standard for POSIX cpio to implement xattrs, IOWs, it will be some non-standard cpio just for kernel initramfs cases, and the new added xattr code has no other usage: just for temporary booting use case. Take a look at `init/initramfs.c`, the entire file is just for unpacking an unaligned/in-random-accessable cpio even it cannot be called as `cpiofs`. There are many real filesystems with enough features in the kernel can help on the same use cases and data doesn't need to be moved from unaligned cpio to tmpfs. It just sounds like a net win to me. As for your initramfs size assumption, I don't want to comment on this, because I'm not distribution guy, I don't know but since users already claimed they use compressed initrd and they don't want to unpack them all in one shot, it sounds to me that it may not be so small. Thanks, Gao Xiang > > -- > Askar Safin > https://types.pl/@safinaskar >
Powered by blists - more mailing lists