| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id: <1343936910-16548-1-git-send-email-pjones@redhat.com> Date: Thu, 2 Aug 2012 15:48:30 -0400 From: Peter Jones <pjones@...hat.com> To: dhowells@...hat.com Cc: jwboyer@...hat.com, linux-kernel@...r.kernel.org, Peter Jones <pjones@...hat.com> Subject: [PATCH] MODSIGN: Fix documentation of signed-nokey behavior when not enforcing. jwboyer's previous commit changes the behavior of module signing when there's a valid signature but we don't know the public key and are in permissive mode. This updates the documentation to match. Signed-off-by: Peter Jones <pjones@...hat.com> Acked-by: Josh Boyer <jwboyer@...hat.com> --- Documentation/module-signing.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Documentation/module-signing.txt b/Documentation/module-signing.txt index d75d473..8c4bef9 100644 --- a/Documentation/module-signing.txt +++ b/Documentation/module-signing.txt @@ -185,7 +185,7 @@ This table indicates the behaviours of the various situations: MODULE STATE PERMISSIVE MODE ENFORCING MODE ======================================= =============== =============== Unsigned Ok EKEYREJECTED - Signed, no public key ENOKEY ENOKEY + Signed, no public key Ok ENOKEY Validly signed, public key Ok Ok Invalidly signed, public key EKEYREJECTED EKEYREJECTED Validly signed, expired key EKEYEXPIRED EKEYEXPIRED -- 1.7.11.2 -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists