From: Alan Stern Subject: Re: [RFC V4 PATCH 00/15] Signature verification of hibernate snapshot Date: Wed, 25 Sep 2013 17:25:38 -0400 (EDT) Message-ID: References: <29408.1380143073@warthog.procyon.org.uk> Mime-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Cc: "Lee, Chun-Yi" , , , , , , , "Rafael J. Wysocki" , Matthew Garrett , Len Brown , Pavel Machek , Josh Boyer , Vojtech Pavlik , Matt Fleming , James Bottomley , Greg KH , , Rusty Russell , Herbert Xu , "David S. Miller" , "H. Peter Anvin" , Michal Marek , Gary Lin , Vivek Goyal , "Lee, Chun-Yi" To: David Howells Return-path: Received: from netrider.rowland.org ([192.131.102.5]:32900 "HELO netrider.rowland.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with SMTP id S1755824Ab3IYVZk (ORCPT ); Wed, 25 Sep 2013 17:25:40 -0400 In-Reply-To: <29408.1380143073@warthog.procyon.org.uk> Sender: linux-crypto-owner@vger.kernel.org List-ID: On Wed, 25 Sep 2013, David Howells wrote: > I have pushed some keyrings patches that will likely affect this to: > > http://git.kernel.org/cgit/linux/kernel/git/dhowells/linux-fs.git/log/?h=keys-devel > > I intend to ask James to pull these into his next branch. If he's happy to do > so, I can look at pulling at least your asymmetric keys patch on top of them. This suggests a point that I raised at the Linux Plumbers conference: Why are asymmetric keys used for verifying the hibernation image? It seems that a symmetric key would work just as well. And it would be a lot quicker to generate, because it wouldn't need any high-precision integer computations. Alan Stern