Demi Marie Obenour

dm-integrity has two major flaws: 1. dm-integrity only provides integrity on a block-by-block basis. This is sufficient for protecting against accidental corruption, but _not_ against malicious corruption. An attacker can...

It is also worth noting that cryptsetup’s AEAD options are all broken, as they use 96-bit random nonces. Those are not long enough; you need at least 192-bit.

> We are unlikely to use an out of tree solution, but would be open to evaluating dm-X if it ever gets merged into the mainline kernel. Our current discussions...

> The best current approach for certificates for localhost is mkcert: https://github.com/FiloSottile/mkcert. And I believe webpki properly handles such certificates, so long as the root is included in the trusted...

> However, unlike `--dev /dev`, even a `procfs` that only lists processes in the new pid namespace has some attack surface (enough for CVE-2019-5736, if you're running as real uid...

Does `--disable-gpu` help?

> I wonder if there are also security implications to using a browser engine that is this old. There are.

You have an integer overflow bug in the C code

> This came up recently on an issue in the WASI repo it was mentioned that linux has signalfd(): https://man7.org/linux/man-pages/man2/signalfd.2.html. How many of the use cases you have in mind...

GATs are now stable.