@RichFelker This bug closure in #systemd makes me want to retire as a sysadmin and take up pinball machine repair.
-
-
-
@CorporaCallosa@RichFelker This sound like a bug in the mother board not#systemd... -
@bigonbe@CorporaCallosa The problem is that it's exposing (essentially) firmware state in the filesystem where you can easily clobber it. -
@bigonbe@CorporaCallosa Yes it's a hardware bug that the hw is brickable, but gratuitously exposing the interface for bricking is a bug too -
@RichFelker On well behaving implementation it's not bricking the the device, it's useful to change the boot device and grub@CorporaCallosa -
@bigonbe@CorporaCallosa Why would you change the boot device on an already-installed-and-in-use system?? - End of conversation
New conversation -
-
-
@RichFelker It's needed for EFI applications like bootloaders to install themselves. EFI is stupid. Shouldn't be possible to brick a device. -
@CopperheadSec Bootloader installation is a one-time thing that should never happen once an OS is installed. -
@RichFelker They like to keep themselves up-to-date. In theory, it could potentially be important to fix something like a verified boot bug. -
@CopperheadSec I think allowing modifications to the bootloader after install is a bigger risk than not upgrading the bootloader. -
@CopperheadSec The bootloader should not be exposed to any input at all except the drive containing the kernel it's loading. -
@RichFelker The kernel it's loading is untrusted input with verified boot though. It prevents persistent compromise on ChromeOS and Android. -
@RichFelker They are really careful about updating the bootloader though. They have 2 sets of bootloader partitions so they can swap them. -
@RichFelker At least LG does it that way: https://android.googlesource.com/device/lge/bullhead/+/android-6.0.1_r10/releasetools.py#136 …. Not sure if the Nexus Player (x86_64) and Chromebooks are that careful... - 2 more replies
New conversation -
-
-
@richfelker@joshuajuran EWONTFIX is the worst possible answer to this. WHY does it need to be rw by default? Frustrating… -
@flippy10@joshuajuran Why does it need to even be mounted at all by default? It's needed when you install your OS. Not at runtime.
End of conversation
New conversation -
-
-
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
@RichFelker@essobi Good conversation around this herehttps://twitter.com/mjg59/status/693494314941288448 …Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.