mirror of
https://git.hardenedbsd.org/hardenedbsd/HardenedBSD.git
synced 2024-11-24 17:44:17 +01:00
7ee781e2bf
/boot/loader is right up aginst the 500k limit we have to make sure everything works in a wide variety of environments. However, adding WITH_BEARSSL can push it over the edge since we are so close to the limit with it enabled. One may also need to increase LOADERSIZE when enabling it. It's often safe to go much higher, especially when you don't plan on using pxeldr. Document this trade off here. MFC After: 3 days Sponsored by: Netflix Reviewed by: sjg, markj Differential Revision: https://reviews.freebsd.org/D46211
9 lines
157 B
Plaintext
9 lines
157 B
Plaintext
Enable building
|
|
.Xr loader 8
|
|
with support for verification similar to Verified Exec.
|
|
.Pp
|
|
Depends on
|
|
.Va WITH_BEARSSL .
|
|
May require a larger
|
|
.Va LOADERSIZE .
|