Received: by 2002:ac0:946b:0:0:0:0:0 with SMTP id j40csp3171305imj; Mon, 18 Feb 2019 21:46:48 -0800 (PST) X-Google-Smtp-Source: AHgI3IZFZDqlCbJ5kop2aemu3hzCLayXdijRnzhryL025ufZk8E+tu7OeaEvvS3ndmFnsybfa/is X-Received: by 2002:a62:c42:: with SMTP id u63mr27395168pfi.73.1550555208169; Mon, 18 Feb 2019 21:46:48 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1550555208; cv=none; d=google.com; s=arc-20160816; b=HJGWq1YIaa9G9Pc5r9Pc5XpjNRnO/U/2cvRhamlBEcVhE7ejyBfcvsF2VtP/j8eC7R WuWeDlsrJgjprZCD4IzKTJGPicdSxfe2YXUNMQ/y8h2vuwgBjZ1JdurqQ6fRZ9ESY3JH ZPxP0s+aA/SFrLNxa0mNa79y9boBTKgA6qhrnsdGbjP8oiXF0F8VALxrQC8D93ndH4Dz TpepEZur1CNkU2i/E4T78WGaY0ldQIaHgxSFI63VoBF4+rq0ZKuNqxixCz3s45GkOiOg k6Ovs5qvIMYrz4faEnMF5K5NZBaQwmM8vIwiqlMw2HyEW6TxjQpwRv1M7Ux9IjKVQLT8 yZYw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:user-agent:in-reply-to :content-disposition:mime-version:references:message-id:subject:cc :to:from:date; bh=Edz0MgcPfjfBD4P33AfAbrdc6mlBrkz8CyveUjClSHY=; b=owAdxJIF2JILrZ4DFd0yeIhzcp7h3DAYV5vzNWGizYU3sOpfZ1MXQ0/nV+u+8JmgvA /rfTb75EyfJ8YR+O8olH3hqZYEpooK0PcO1mmlQOwTMfnlfvW8KY8DkPySZSMi2ckOLR 7SzXrSHzuZwgOvT4UTHKljcCJpG72HO6amg0AyIizrXOR9md5kptSfYj7IrJ5d4AegMO KZriKGZoCUl2I38Kf8hHl2xdOJrLRaQxr+muTVKS5/JwMLce4znWFuBEyI6KLwxM1wjE 7TmXTx2DXcr6TQYvCvUTHFSvvIfgQChfRJfUyU6WT/WSXG5xWKCVUiDTCfWQR2xEeNA9 e0xA== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id u2si14795647pgo.544.2019.02.18.21.46.32; Mon, 18 Feb 2019 21:46:48 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1725803AbfBSFqM (ORCPT + 99 others); Tue, 19 Feb 2019 00:46:12 -0500 Received: from orcrist.hmeau.com ([104.223.48.154]:35764 "EHLO deadmen.hmeau.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1725730AbfBSFqL (ORCPT ); Tue, 19 Feb 2019 00:46:11 -0500 Received: from gondobar.mordor.me.apana.org.au ([192.168.128.4] helo=gondobar) by deadmen.hmeau.com with esmtps (Exim 4.89 #2 (Debian)) id 1gvyDf-0007Yn-2p; Tue, 19 Feb 2019 13:45:27 +0800 Received: from herbert by gondobar with local (Exim 4.89) (envelope-from ) id 1gvyDC-0007b8-Ah; Tue, 19 Feb 2019 13:44:58 +0800 Date: Tue, 19 Feb 2019 13:44:58 +0800 From: Herbert Xu To: Stephan Mueller Cc: Eric Biggers , James Bottomley , Andy Lutomirski , "Lee, Chun-Yi" , "Rafael J . Wysocki" , Pavel Machek , linux-kernel@vger.kernel.org, linux-pm@vger.kernel.org, keyrings@vger.kernel.org, "Rafael J. Wysocki" , Chen Yu , Oliver Neukum , Ryan Chen , David Howells , Giovanni Gherdovich , Randy Dunlap , Jann Horn , Andy Lutomirski , linux-crypto@vger.kernel.org Subject: Re: [PATCH v2 0/6] General Key Derivation Function Support Message-ID: <20190219054458.ldwl26npnyg7ulic@gondor.apana.org.au> References: <20190103143227.9138-1-jlee@suse.com> <1798550.XZem68xxzE@tauon.chronox.de> <20190208080547.224fudg2m22d3a6d@gondor.apana.org.au> <2047284.dgeq8KlW64@tauon.chronox.de> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <2047284.dgeq8KlW64@tauon.chronox.de> User-Agent: NeoMutt/20170113 (1.7.2) Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Fri, Feb 08, 2019 at 09:17:50AM +0100, Stephan Mueller wrote: > > > > > Also, shall we add the signature verification enforcemnt to the helper as > > > well? > > > > What do you mean by that? > > We need to invoke the function crypto_check_module_sig when the module is > loaded. Do you have any concerns invoking it from the module init function? Which module's signature are you going to check? If it's the underlying crypto API modules then wouldn't they have been checked already when they were registered? Cheers, -- Email: Herbert Xu Home Page: http://gondor.apana.org.au/~herbert/ PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt