From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from mailman by lists.gnu.org with archive (Exim 4.43) id 1KEPhG-0008St-5Y for mharc-grub-devel@gnu.org; Thu, 03 Jul 2008 10:22:06 -0400 Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.43) id 1KEPhD-0008RQ-7J for grub-devel@gnu.org; Thu, 03 Jul 2008 10:22:03 -0400 Received: from exim by lists.gnu.org with spam-scanned (Exim 4.43) id 1KEPh8-0008Py-3S for grub-devel@gnu.org; Thu, 03 Jul 2008 10:22:02 -0400 Received: from [199.232.76.173] (port=47780 helo=monty-python.gnu.org) by lists.gnu.org with esmtp (Exim 4.43) id 1KEPh7-0008Po-Us for grub-devel@gnu.org; Thu, 03 Jul 2008 10:21:57 -0400 Received: from mta21.charter.net ([216.33.127.81]:46492) by monty-python.gnu.org with esmtp (Exim 4.60) (envelope-from ) id 1KEPh7-0000Ml-Ma for grub-devel@gnu.org; Thu, 03 Jul 2008 10:21:57 -0400 Received: from aarprv06.charter.net ([10.20.200.76]) by mta21.charter.net (InterMail vM.7.08.03.00 201-2186-126-20070710) with ESMTP id <20080703142144.WTFL23078.mta21.charter.net@aarprv06.charter.net> for ; Thu, 3 Jul 2008 10:21:44 -0400 Received: from [192.168.0.102] (really [71.10.234.12]) by aarprv06.charter.net with ESMTP id <20080703142144.LGAU3194.aarprv06.charter.net@[192.168.0.102]> for ; Thu, 3 Jul 2008 10:21:44 -0400 Message-ID: <486CE07D.9050307@isaac.cedarswampstudios.org> Date: Thu, 03 Jul 2008 10:21:49 -0400 From: Isaac Dupree User-Agent: Thunderbird 2.0.0.14 (X11/20080505) MIME-Version: 1.0 To: The development of GRUB 2 References: <4868C017.8040004@isaac.cedarswampstudios.org> <1214827937.9353.43.camel@localhost> <20080701160827.GF6985@thorin> <1214929545.13432.19.camel@dv> <1214937759.9353.64.camel@localhost> <20080701204816.GA31206@thorin> <1214954927.9353.91.camel@localhost> <20080702142245.GA21064@thorin> <1215027160.9353.125.camel@localhost> <20080703140211.GA19341@thorin> In-Reply-To: <20080703140211.GA19341@thorin> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Chzlrs: 0 X-detected-kernel: by monty-python.gnu.org: Solaris 10 (1203?) Subject: Re: grub-probe detects ext4 wronly as ext2 X-BeenThere: grub-devel@gnu.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: The development of GRUB 2 List-Id: The development of GRUB 2 List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 03 Jul 2008 14:22:03 -0000 Robert Millan wrote: > A more elegant solution (also may be interesting for security at some point) > would be for update-grub to hash each file it generates access commands for > and embed the sum in grub.cfg as a check parameter, like > > if verify_hash /file xxxxx ; then > do_something_with_file /file > fi > > So, if we take for granted those two things: > > - That GRUB should never crash no matter what you feed to it. > - That update-grub instructs GRUB to verify file consistency via hashing. also?, - That whenever someone wants to boot a new kernel (or whatever), they re-run update-grub. Which definitely doesn't apply if they're interactively poking around with the GRUB commandline. But it could be a safety check for some cases. Would it ever make sense to *ask* the user whether to proceed, if the file is different? (they might have changed the file deliberately!) But, with that code you mentioned for grub.cfg, I suppose it can be adjusted to do that, if desired by whoever controls grub.cfg. -Isaac