Re: [PATCH v3 2/8] verifiers: Framework core

grub-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH v3 2/8] verifiers: Framework core

From:	Daniel Kiper
Subject:	Re: [PATCH v3 2/8] verifiers: Framework core
Date:	Tue, 9 Oct 2018 15:48:23 +0200
User-agent:	Mutt/1.5.21 (2010-09-15)

On Wed, Oct 03, 2018 at 01:55:08PM -0400, Ross Philipson wrote:
> On 10/03/2018 05:36 AM, Daniel Kiper wrote:

[...]

> > +struct grub_file_verifier grub_pubkey_verifier =
> > +  {
> > +    .name = "pgp",
> > +    .init = grub_pubkey_init,
> > +    .fini = grub_pubkey_fini,
> > +    .write = grub_pubkey_write,
> > +    .close = grub_pubkey_close,
> > +  };
>
> If I am reading this correctly, most of the first part of this is
> re-factoring the signature/pubkey verifier code to fit in with your new
> framework of verifiers, is that correct? So even though a bunch of code
> moved around and changed to some degree, it should be functionally
> basically the same?

That is the goal...

[...]

> > diff --git a/include/grub/file.h b/include/grub/file.h
> > index e2795d1..c55901c 100644
> > --- a/include/grub/file.h
> > +++ b/include/grub/file.h
> > @@ -170,7 +170,7 @@ extern grub_disk_read_hook_t 
> > EXPORT_VAR(grub_file_progress_hook);
> >  /* Filters with lower ID are executed first.  */
> >  typedef enum grub_file_filter_id
> >    {
> > -    GRUB_FILE_FILTER_PUBKEY,
> > +    GRUB_FILE_FILTER_VERIFY,
>
> I guess this kind of goes with my question above. Previously there was
> only one "verifier" and that was the pubkey verifier. Now the pubkey
> verifier will be one of many right?

Yep.

Daniel

[Prev in Thread]

Current Thread

[Next in Thread]

[PATCH v3 0/8] verifiers: Framework and EFI shim lock verifier, Daniel Kiper, 2018/10/03
- [PATCH v3 7/8] dl: Add support for persistent modules, Daniel Kiper, 2018/10/03
- [PATCH v3 3/8] verifiers: Add possibility to verify kernel and modules command lines, Daniel Kiper, 2018/10/03
- [PATCH v3 2/8] verifiers: Framework core, Daniel Kiper, 2018/10/03
  - Re: [PATCH v3 2/8] verifiers: Framework core, Ross Philipson, 2018/10/03
    - Re: [PATCH v3 2/8] verifiers: Framework core, Daniel Kiper <=
- [PATCH v3 6/8] verifiers: Add the documentation, Daniel Kiper, 2018/10/03
  - Re: [PATCH v3 6/8] verifiers: Add the documentation, Ross Philipson, 2018/10/05
    - Re: [PATCH v3 6/8] verifiers: Add the documentation, Daniel Kiper, 2018/10/09
    - Re: [PATCH v3 6/8] verifiers: Add the documentation, Ross Philipson, 2018/10/09
  - Re: [PATCH v3 6/8] verifiers: Add the documentation, Ross Philipson, 2018/10/09
- [PATCH v3 4/8] verifiers: Add possibility to defer verification to other verifiers, Daniel Kiper, 2018/10/03
  - Re: [PATCH v3 4/8] verifiers: Add possibility to defer verification to other verifiers, Ross Philipson, 2018/10/05
    - Re: [PATCH v3 4/8] verifiers: Add possibility to defer verification to other verifiers, Daniel Kiper, 2018/10/09
- [PATCH v3 1/8] verifiers: File type for fine-grained signature-verification controlling, Daniel Kiper, 2018/10/03
  - Re: [PATCH v3 1/8] verifiers: File type for fine-grained signature-verification controlling, Ross Philipson, 2018/10/03

Prev by Date: Re: [PATCH v3 1/8] verifiers: File type for fine-grained signature-verification controlling
Next by Date: Re: [PATCH v3 4/8] verifiers: Add possibility to defer verification to other verifiers
Previous by thread: Re: [PATCH v3 2/8] verifiers: Framework core
Next by thread: [PATCH v3 6/8] verifiers: Add the documentation
Index(es):
- Date
- Thread