Re: [GIT PULL] Crypto keys and module signing

From: James Morris
Date: Fri Dec 09 2011 - 09:32:10 EST

Next message: Wolfgang Grandegger: "Re: [PATCH] flexcan: Acknowledge all interrupt sources in the IRQhandler"
Previous message: Rob Herring: "Re: [PATCH v6 10/10] arm/tegra: add support for tegra30 based boardcardhu"
In reply to: Arjan van de Ven: "Re: [GIT PULL] Crypto keys and module signing"
Next in thread: David Howells: "Re: [GIT PULL] Crypto keys and module signing"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, 9 Dec 2011, Arjan van de Ven wrote:

> the best way to deal is to have KBUILD generate a key on demand ;-)

Yes -- I'd like to see this code do something useful by default when
enabled, so yes, create a local key during the build, possibly
configurable via kconfig.

Is there any reason not to sign and verify kernel modules by default?

- James
--
James Morris
<jmorris@xxxxxxxxx>
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Wolfgang Grandegger: "Re: [PATCH] flexcan: Acknowledge all interrupt sources in the IRQhandler"
Previous message: Rob Herring: "Re: [PATCH v6 10/10] arm/tegra: add support for tegra30 based boardcardhu"
In reply to: Arjan van de Ven: "Re: [GIT PULL] Crypto keys and module signing"
Next in thread: David Howells: "Re: [GIT PULL] Crypto keys and module signing"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]