[PATCH v2 0/4] ubifs: support authentication without hmac
Richard Weinberger
richard at nod.at
Thu Jul 2 11:00:42 EDT 2020
----- Ursprüngliche Mail -----
> Von: "tglx" <tglx at linutronix.de>
> An: "richard" <richard at nod.at>, "Torben Hohn" <torben.hohn at linutronix.de>
> CC: "bigeasy" <bigeasy at linutronix.de>, "linux-mtd" <linux-mtd at lists.infradead.org>, "Sascha Hauer"
> <s.hauer at pengutronix.de>, "david" <david at sigma-star.at>
> Gesendet: Donnerstag, 2. Juli 2020 16:40:24
> Betreff: Re: [PATCH v2 0/4] ubifs: support authentication without hmac
> Richard Weinberger <richard at nod.at> writes:
>> The superblock is signed by the offline key. As soon you switch to the new key
>> the super block is rewritten and can no longer verified this key.
>> Instead of rewriting the idea was keeping a copy.
>>
>> Anyway, like said in the other mail, I think if we change the feature to
>> "keep offline sign key and imply ro mount" things will be more smooth with less
>> corner
>> cases.
>
> I don't think so. The desired mode is to prevent RW mounts for a factory
> signed image which implies the prevention of rewriting the superblock.
This is exactly what I'm asking for.
Keep the factory signed super block and imply read-only mode.
Thanks,
//richard
More information about the linux-mtd
mailing list