Thread (36 messages) 36 messages, 12 authors, 2021-04-02

Re: [PATCH v1 3/3] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys

From: Jarkko Sakkinen <jarkko@kernel.org>
Date: 2021-04-01 05:47:15
Also in: keyrings, linux-crypto, linux-integrity, linux-security-module, lkml 

On Wed, Mar 31, 2021 at 04:34:29PM -0700, Eric Biggers wrote:
On Thu, Apr 01, 2021 at 02:31:46AM +0300, Jarkko Sakkinen wrote:
quoted
It's a bummer but uapi is the god in the end. Since TPM does not do it
today, that behaviour must be supported forever. That's why a boot option
AND a warning would be the best compromise.
It's not UAPI if there is no way for userspace to tell if it changed.

- Eric
It's enough uapi for me. People might assume that the entropy source is
TPM for this, since it has been so far.

/Jarkko
Keyboard shortcuts
hback out one level
jnext message in thread
kprevious message in thread
ldrill in
Escclose help / fold thread tree
?toggle this help