Re: Fw: signed kernel modules?

From: Roman Zippel
Date: Thu Oct 14 2004 - 07:06:52 EST

Next message: Jesse Stockall: "Re: Clock inaccuracy seen on NVIDIA nForce2 systems"
Previous message: fancy3: "Proposal"
In reply to: David Howells: "Re: Fw: signed kernel modules?"
Next in thread: David Woodhouse: "Re: Fw: signed kernel modules?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi,

On Thu, 14 Oct 2004, David Howells wrote:

> > How do you make sure that the module you sign is exactly the module that
> > you want to get signed?
>
> Currently you have to sign them manually (as I said in that email). The Fedora
> kernel spec file signs everything and its dog when you build the RPM.

I'm trying to understand the reason to stuff this into kernel. Why can't
this check be done before loading the module into the kernel? If you don't
trust insmod, how can you trust the build system?

bye, Roman
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Jesse Stockall: "Re: Clock inaccuracy seen on NVIDIA nForce2 systems"
Previous message: fancy3: "Proposal"
In reply to: David Howells: "Re: Fw: signed kernel modules?"
Next in thread: David Woodhouse: "Re: Fw: signed kernel modules?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]