[PATCH master] security: hide CRYPTO_BUILTIN_DEVELOPMENT_KEYS behind INSECURE
Sascha Hauer
s.hauer at pengutronix.de
Mon Oct 20 03:51:19 PDT 2025
On Wed, 15 Oct 2025 11:09:33 +0200, Ahmad Fatoum wrote:
> CONFIG_HAS_INSECURE_DEFAULTS is meant for options that may be insecure
> by default and need extra care when used in secure deployments.
>
> CONFIG_CRYPTO_BUILTIN_DEVELOPMENT_KEYS can't be used in a secure manner
> at all and the help text spells it out, so it's more appropriate to have
> it explicitly depending on INSECURE.
>
> [...]
Applied, thanks!
[1/1] security: hide CRYPTO_BUILTIN_DEVELOPMENT_KEYS behind INSECURE
https://git.pengutronix.de/cgit/barebox/commit/?id=e8bf031f85ac (link may not be stable)
Best regards,
--
Sascha Hauer <s.hauer at pengutronix.de>
More information about the barebox
mailing list