Re: Should we automatically generate a module signing key at all?

From: David Woodhouse
Date: Mon May 18 2015 - 12:19:27 EST

Next message: Arnaldo Carvalho de Melo: "Re: [GIT PULL 00/30] perf/core improvements and fixes"
Previous message: Jarod Wilson: "Re: [PATCH] pci/hotplug: work-around for missing _RMV on HP ZBook G2"
In reply to: David Howells: "Should we automatically generate a module signing key at all?"
Next in thread: Linus Torvalds: "Re: Should we automatically generate a module signing key at all?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 2015-05-18 at 17:04 +0100, David Howells wrote:
> Should we automatically generate a module signing key at all since
> that has the possibility of accidentally overwriting a key that the
> builder has placed in the tree?

I prefer the other solution I suggested a few minutes ago â let
signing_key.{priv,x509} be autogenerated, and if the user wants to
provide their own then let them call it something else.

--
David Woodhouse Open Source Technology Centre
David.Woodhouse@xxxxxxxxx Intel Corporation

Attachment: smime.p7s
Description: S/MIME cryptographic signature

Next message: Arnaldo Carvalho de Melo: "Re: [GIT PULL 00/30] perf/core improvements and fixes"
Previous message: Jarod Wilson: "Re: [PATCH] pci/hotplug: work-around for missing _RMV on HP ZBook G2"
In reply to: David Howells: "Should we automatically generate a module signing key at all?"
Next in thread: Linus Torvalds: "Re: Should we automatically generate a module signing key at all?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]