Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys

From: Ahmad Fatoum
Date: Thu Apr 01 2021 - 03:42:14 EST

Next message: Vlastimil Babka: "Re: [PATCH v3 1/2] kunit: add a KUnit test for SLUB debugging functionality"
Previous message: Jens Wiklander: "Re: [PATCH 1/1] tee: optee: do not check memref size on return from Secure World"
In reply to: Eric Biggers: "Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys"
Next in thread: Ahmad Fatoum: "Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello Jarkko,

On 01.04.21 01:30, Jarkko Sakkinen wrote:
>> Option (C) sounds reasonable to me but I would rather prefer an info
>> message rather than warning as otherwise it would reflect that we are
>> enforcing kernel RNG choice for a user to trust upon.
>
> I gave some though on this.
>
> I take TEE as it is but I'd expect the CAAM patch set sort out this option
> with some patch.

Is it ok to warn if a user requests vendor RNG with CAAM and default
to the kernel RNG?

Cheers,
Ahmad

--
Pengutronix e.K. | |
Steuerwalder Str. 21 | http://www.pengutronix.de/ |
31137 Hildesheim, Germany | Phone: +49-5121-206917-0 |
Amtsgericht Hildesheim, HRA 2686 | Fax: +49-5121-206917-5555 |

Next message: Vlastimil Babka: "Re: [PATCH v3 1/2] kunit: add a KUnit test for SLUB debugging functionality"
Previous message: Jens Wiklander: "Re: [PATCH 1/1] tee: optee: do not check memref size on return from Secure World"
In reply to: Eric Biggers: "Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys"
Next in thread: Ahmad Fatoum: "Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]