| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <alpine.LRH.2.02.1209191416060.29525@tundra.namei.org> Date: Wed, 19 Sep 2012 14:17:47 +1000 (EST) From: James Morris <jmorris@...ei.org> To: Alan Cox <alan@...rguk.ukuu.org.uk> cc: David Howells <dhowells@...hat.com>, herbert@...dor.hengli.com.au, pjones@...hat.com, rusty@...tcorp.com.au, linux-crypto@...r.kernel.org, zohar@...ibm.com, dmitry.kasatkin@...el.com, linux-security-module@...r.kernel.org, linux-kernel@...r.kernel.org Subject: Re: [PATCH 14/16] X.509: Add an ASN.1 decoder On Tue, 18 Sep 2012, Alan Cox wrote: > On Tue, 18 Sep 2012 18:34:12 +0100 > David Howells <dhowells@...hat.com> wrote: > > > Alan Cox <alan@...rguk.ukuu.org.uk> wrote: > > > > > Why do this in the kernel.That appears to be completely insane. > > > > A number of reasons: > > > > (1) The UEFI signature/key database may contain ASN.1 X.509 certificates and > > we may need to use those very early in the boot process, during initrd. > > Ok that makes some sense. I'd like to see some serious effort at code review and testing before this code is merged. - James -- James Morris <jmorris@...ei.org> -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists