From: Glenn Washburn <development@efficientek.com>
To: Daniel Kiper <dkiper@net-space.pl>
Cc: grub-devel@gnu.org, Daniel Kiper <daniel.kiper@oracle.com>
Subject: Re: [PATCH 0/4] Various LUKS2 improvements
Date: Tue, 23 Mar 2021 23:01:20 -0500 [thread overview]
Message-ID: <20210323230120.3a66ba87@crass-HP-ZBook-15-G2> (raw)
In-Reply-To: <20210323174359.uznlj7x5nfha6kwy@tomti.i.net-space.pl>
On Tue, 23 Mar 2021 18:43:59 +0100
Daniel Kiper <dkiper@net-space.pl> wrote:
> On Fri, Mar 19, 2021 at 07:14:47PM -0500, Glenn Washburn wrote:
> > Patch #1: Allows GRUB to be more resilient in the fact or
> > unexpected json data, thus allowing access to LUKS2 volumes in
> > cases where currently it would be inaccessible
> > Patch #2-3: Add some text to go along with the error in case it gets
> > bubbled up to the user
> > Patch #4: Simplifies some error handling and makes the code a
> > little easier to read
> >
> > Glenn
> >
> > Glenn Washburn (4):
> > luks2: Continue trying all keyslots even if there are some
> > failures luks2: Add error message strings to crypto errors
> > luks2: Add error message strings to errors in luks2_read_header
> > luks2: Fix potential grub_free with NULL pointer
>
> Are there any of these patches critical and should be applied before
> release?
None of these are critical. Considering the length of time between grub
releases, the first one might be worth considering. If there is a
non-standard key slot (eg. Someone adds their own KDF) that is before a
standard key slot, we will currently bail and not even check further
keyslots. This can be mitigated by the user making sure that
non-standard keyslots are after standard ones (but that may not
necessarily mean that the key index is larger depending if the json
writer is not sorting keys).
I'm fine with it not being included too. I would guess this use-case is
very improbable.
Glenn
prev parent reply other threads:[~2021-03-24 4:01 UTC|newest]
Thread overview: 8+ messages / expand[flat|nested] mbox.gz Atom feed top
2021-03-20 0:14 [PATCH 0/4] Various LUKS2 improvements Glenn Washburn
2021-03-20 0:14 ` [PATCH 1/4] luks2: Continue trying all keyslots even if there are some failures Glenn Washburn
2021-03-20 0:14 ` [PATCH 2/4] luks2: Add error message strings to crypto errors Glenn Washburn
2021-03-20 0:14 ` [PATCH 3/4] luks2: Add error message strings to errors in luks2_read_header Glenn Washburn
2021-03-20 0:14 ` [PATCH 4/4] luks2: Fix potential grub_free with NULL pointer Glenn Washburn
2021-03-23 17:43 ` [PATCH 0/4] Various LUKS2 improvements Daniel Kiper
2021-03-23 19:41 ` Daniel Kiper
2021-03-24 4:01 ` Glenn Washburn [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20210323230120.3a66ba87@crass-HP-ZBook-15-G2 \
--to=development@efficientek.com \
--cc=daniel.kiper@oracle.com \
--cc=dkiper@net-space.pl \
--cc=grub-devel@gnu.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.