| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <2171670.G923GbCHz0@anvil> Date: Mon, 10 Feb 2025 12:58:05 +0100 From: Richard Weinberger <richard@...ma-star.at> To: David Gstir <david@...ma-star.at>, sigma star Kernel Team <upstream+dcp@...ma-star.at>, James Bottomley <James.Bottomley@...senpartnership.com>, Jarkko Sakkinen <jarkko@...nel.org>, Mimi Zohar <zohar@...ux.ibm.com>, David Howells <dhowells@...hat.com>, Paul Moore <paul@...l-moore.com>, James Morris <jmorris@...ei.org>, "Serge E . Hallyn" <serge@...lyn.com>, SCE_Linux_Security_team@...eams.nxp.com, upstream@...ma-star.at Cc: linux-integrity@...r.kernel.org, keyrings@...r.kernel.org, linux-security-module@...r.kernel.org, linux-kernel@...r.kernel.org, Kshitiz Varshney <kshitiz.varshney@....com>, Kshitiz Varshney <kshitiz.varshney@....com> Subject: Re: [PATCH v1] trusted_dcp.c: Do not return in case of non-secure mode On Montag, 10. Februar 2025 12:46 Kshitiz Varshney wrote: > There are multiple type of keys in different worlds, like > test key in case of non-secure world and OTP, unique key > in case of secure world. > So, instead of returning with an error, in case of test key, we > should display warning to the user and allow the user to run the > trusted key functionality with test key. We have the dcp_skip_zk_test module parameter to allow such cases. Why can't you use it? Thanks, //richard -- sigma star gmbh | Eduard-Bodem-Gasse 6, 6020 Innsbruck, AUT UID/VAT Nr: ATU 66964118 | FN: 374287y
Powered by blists - more mailing lists