Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
	id S1754908AbbESS5W (ORCPT <rfc822;w@1wt.eu>);
	Tue, 19 May 2015 14:57:22 -0400
Received: from mx1.redhat.com ([209.132.183.28]:53358 "EHLO mx1.redhat.com"
	rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
	id S1751198AbbESS5V (ORCPT <rfc822;linux-kernel@vger.kernel.org>);
	Tue, 19 May 2015 14:57:21 -0400
Organization: Red Hat UK Ltd. Registered Address: Red Hat UK Ltd, Amberley
	Place, 107-111 Peascod Street, Windsor, Berkshire, SI4 1TE, United
	Kingdom.
	Registered in England and Wales under Company Registration No. 3798903
From: David Howells <dhowells@redhat.com>
In-Reply-To: <CALCETrVw9ZXi0==a3rhdE-ktBVxfdg5QbfmnA-KaNZRRxDBL9w@mail.gmail.com>
References: <CALCETrVw9ZXi0==a3rhdE-ktBVxfdg5QbfmnA-KaNZRRxDBL9w@mail.gmail.com> <31154.1431965087@warthog.procyon.org.uk> <CA+55aFyOCh=+xSzZwWBjFbx5hU48pGEoSSXq2TPa-u-VabJfOQ@mail.gmail.com> <555A88FB.7000809@kernel.org> <29742.1432025631@warthog.procyon.org.uk> <CALCETrWSk+ruOzPFpiRj43kLvu_Pt8q2gZdbcu_hLsvdBQ84vw@mail.gmail.com> <1752.1432049417@warthog.procyon.org.uk> <CALCETrUAfiaPOSV9hqjka+Yoq-aKGUxOUmy0vDCZaCvv3+E1NA@mail.gmail.com> <5261.1432060684@warthog.procyon.org.uk>
To: Andy Lutomirski <luto@amacapital.net>
Cc: dhowells@redhat.com,
        "linux-kernel@vger.kernel.org" <linux-kernel@vger.kernel.org>,
        keyrings@linux-nfs.org,
        LSM List <linux-security-module@vger.kernel.org>
Subject: Re: Should we automatically generate a module signing key at all?
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-ID: <5565.1432061836.1@warthog.procyon.org.uk>
Date: Tue, 19 May 2015 19:57:16 +0100
Message-ID: <5566.1432061836@warthog.procyon.org.uk>
Sender: linux-kernel-owner@vger.kernel.org
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org
Content-Length: 1022
Lines: 22

Andy Lutomirski <luto@amacapital.net> wrote:

> Both Fedora and RHEL seems to be moving toward having fully-supported
> configurations with immutable root images.  Building those images
> reproducibly would be fantastic.  (Of course, if Fedora or RHEL wants
> to allow support out-of-tree drivers, that's a different story.)

Irrelevant.  initramfs is *not* immutable.  It has different modules in it
depending on what hardware you have.  Further, you *still* need the module and
firmware hash lists in either the kernel or the initramfs to be loaded into
kernel memory before you load the first module because you have to check the
hash on it.

Or are you suggesting a tree of hashed nodes that have leaves that are the
hashes of the modules so you can save a subtree?

David
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/