Kevin Wolf <kw...@redhat.com> writes: > See the commit message of patch 7 for the why and how. This series > will probably be only part of the solution and doesn't mean that we > should stop looking for other patches which improve different parts of > the problem. > > See the mailing list thread "Image probing: how it can be insecure, and > what we could do about it" for the complete context.
Not a review, just to update the record of my opinion on this approach: * This is not a full solution to the problem I want solved, but that's okay, it's not sold as one. * It helps in other scenarios I personally find less interesting, but that's okay, others find them interesting enough. * It changes failure modes subtly. I figure the failures are sufficiently rare and sufficiently catastrophic for me not to worry about changing them. Therefore, I don't object to the general idea.
