tech-security archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: veriexec: read from stdin

Sevan Janiyan wrote:
> On 27/04/2019 23:24, Alexander Nasonov wrote:
> > I wrote a patch that adds the -i option to read from stdin but I
> > don't want to rush things before I hear opinions.
> No objection to the functionality, but I'm working on a patch from
> bin/34773 which adds newer flags to veriexecgen where -i and -I are used
> for handling interpreters.
> See for
> a description.

Ok, -f then.

> sure but now we need tamper resistance for the tamper resistance
> mechanism's database (signed builds?) ;)

Yes, we need signed builds ;-)

Entries in already have sha256 checksums and they can be easily
converted to veriexec fingerprints with a simple awk+sed or lua script.


Home | Main Index | Thread Index | Old Index