Re: RFC: sign the modules at install time

From: Stephen Rothwell
Date: Fri Oct 19 2012 - 07:30:30 EST

Next message: Alon Ziv: "Re: [PATCH 1/4] module: add syscall to load module from fd"
Previous message: Matt Porter: "Re: [PATCH v2] arm/dts: AM33XX: Add SPI device tree data"
In reply to: David Howells: "Re: RFC: sign the modules at install time"
Next in thread: Alexander Holler: "Re: RFC: sign the modules at install time"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi David,

On Fri, 19 Oct 2012 12:25:23 +0100 David Howells <dhowells@xxxxxxxxxx> wrote:
>
> Stephen Rothwell <sfr@xxxxxxxxxxxxxxxx> wrote:
>
> > So, this still generates the keys during the normal build, right? That
> > would be a problem for build servers that have limited randomness
> > available to them, I think.
>
> openssl uses /dev/urandom (unlike gpg), so that's less of a problem.

OK, thanks.

--
Cheers,
Stephen Rothwell sfr@xxxxxxxxxxxxxxxx

Attachment: pgp00000.pgp
Description: PGP signature

Next message: Alon Ziv: "Re: [PATCH 1/4] module: add syscall to load module from fd"
Previous message: Matt Porter: "Re: [PATCH v2] arm/dts: AM33XX: Add SPI device tree data"
In reply to: David Howells: "Re: RFC: sign the modules at install time"
Next in thread: Alexander Holler: "Re: RFC: sign the modules at install time"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]