diff for duplicates of <1511438136.30063.52.camel@linux.vnet.ibm.com> diff --git a/a/1.txt b/N1/1.txt index 3b76ce9..d0b4a58 100644 --- a/a/1.txt +++ b/N1/1.txt @@ -7,15 +7,10 @@ On Wed, 2017-11-22 at 19:58 +0100, Luis R. Rodriguez wrote: As the keys CFG80211_REQUIRE_SIGNED_REGDB are built into the kernel image, they would be included in the kernel image signature. -As I previously asked?https://lkml.org/lkml/2017/11/15/679, how are +As I previously asked https://lkml.org/lkml/2017/11/15/679, how are the keys located in the CFG80211_EXTRA_REGDB_KEYDIR keyring trusted? -?The keyring does not validate the certificate signatures, before -loading the keys on the firmware keyring. ?It explicitly bypasses the + The keyring does not validate the certificate signatures, before +loading the keys on the firmware keyring. It explicitly bypasses the certificate signature validation. Mimi - --- -To unsubscribe from this list: send the line "unsubscribe linux-security-module" in -the body of a message to majordomo at vger.kernel.org -More majordomo info at http://vger.kernel.org/majordomo-info.html diff --git a/a/content_digest b/N1/content_digest index d79280c..a1e132a 100644 --- a/a/content_digest +++ b/N1/content_digest @@ -1,10 +1,28 @@ "ref\01510573414.3404.109.camel@linux.vnet.ibm.com\0" "ref\01511220268.4729.134.camel@linux.vnet.ibm.com\0" "ref\020171122185837.GG729@wotan.suse.de\0" - "From\0zohar@linux.vnet.ibm.com (Mimi Zohar)\0" - "Subject\0[RFC PATCH v2] fw_lockdown: new micro LSM module to prevent loading unsigned firmware\0" + "From\0Mimi Zohar <zohar@linux.vnet.ibm.com>\0" + "Subject\0Re: [RFC PATCH v2] fw_lockdown: new micro LSM module to prevent loading unsigned firmware\0" "Date\0Thu, 23 Nov 2017 06:55:36 -0500\0" - "To\0linux-security-module@vger.kernel.org\0" + "To\0Luis R. Rodriguez <mcgrof@kernel.org>\0" + "Cc\0Matthew Garrett <mjg59@google.com>" + David Howells <dhowells@redhat.com> + One Thousand Gnomes <gnomes@lxorguk.ukuu.org.uk> + Marcus Meissner <meissner@suse.de> + Joey Lee <jlee@suse.com> + Jeff Mahoney <jeffm@suse.com> + Jiri Kosina <jikos@kernel.org> + Linus Torvalds <torvalds@linux-foundation.org> + AKASHI + Takahiro <takahiro.akashi@linaro.org> + Johannes Berg <johannes@sipsolutions.net> + James Bottomley <James.Bottomley@hansenpartnership.com> + Kees Cook <keescook@chromium.org> + Stephen Boyd <stephen.boyd@linaro.org> + Vikram Mulukutla <markivx@codeaurora.org> + linux-kernel@vger.kernel.org + linux-security-module <linux-security-module@vger.kernel.org> + " James Morris <jmorris@namei.org>\0" "\00:1\0" "b\0" "On Wed, 2017-11-22 at 19:58 +0100, Luis R. Rodriguez wrote:\n" @@ -16,17 +34,12 @@ "As the keys CFG80211_REQUIRE_SIGNED_REGDB are built into the kernel\n" "image, they would be included in the kernel image signature.\n" "\n" - "As I previously asked?https://lkml.org/lkml/2017/11/15/679, how are\n" + "As I previously asked\302\240https://lkml.org/lkml/2017/11/15/679, how are\n" "the keys located in the CFG80211_EXTRA_REGDB_KEYDIR keyring trusted?\n" - "?The keyring does not validate the certificate signatures, before\n" - "loading the keys on the firmware keyring. ?It explicitly bypasses the\n" + "\302\240The keyring does not validate the certificate signatures, before\n" + "loading the keys on the firmware keyring. \302\240It explicitly bypasses the\n" "certificate signature validation.\n" "\n" - "Mimi\n" - "\n" - "--\n" - "To unsubscribe from this list: send the line \"unsubscribe linux-security-module\" in\n" - "the body of a message to majordomo at vger.kernel.org\n" - More majordomo info at http://vger.kernel.org/majordomo-info.html + Mimi -11efc4a8c9a8813ba1b72f5b259c81017f04b3150d02bb734962484202860f35 +bda6fab6c53b570e64e680c6692110669379476004eca577f96702164b5da5b2
This is an external index of several public inboxes, see mirroring instructions on how to clone and mirror all data and code used by this external index.