diff options
author | Brett Grandbois <brett.grandbois@opengear.com> | 2018-05-16 13:23:49 +1000 |
---|---|---|
committer | Samuel Mendoza-Jonas <sam@mendozajonas.com> | 2018-05-23 11:09:38 +1000 |
commit | 1214247667d138e2fa1748f4f270e5fc80010377 (patch) | |
tree | d3f499e91f2cf4e919682e308e51c33509391aa5 /m4/gpgme.m4 | |
parent | 80c9b417ea3e450c00aac0e93072b85a2c96a484 (diff) | |
download | talos-petitboot-1214247667d138e2fa1748f4f270e5fc80010377.tar.gz talos-petitboot-1214247667d138e2fa1748f4f270e5fc80010377.zip |
discover/boot: abort kexec on any error from validation
gpg_validate_boot_files() can return error codes for a variety of
reasons but kexec_load only aborts for signature or decryption failure.
In any other failure case like unable to open LOCKDOWN_FILE or do the
secure copy the validation is bypassed by an early return but kexec_load
does not abort.
Signed-off-by: Brett Grandbois <brett.grandbois@opengear.com>
Signed-off-by: Samuel Mendoza-Jonas <sam@mendozajonas.com>
Diffstat (limited to 'm4/gpgme.m4')
0 files changed, 0 insertions, 0 deletions