On Tue, Apr 3, 2018 at 5:18 PM Andy Lutomirski <l...@kernel.org> wrote:
> if your secure boot-enabled bootloader can't prevent a bad guy from > using malicious kernel command line parameters, then fix it. How is a bootloader supposed to know what the set of malicious kernel command line parameters is?
