[PATCH v2 0/4] ubifs: support authentication without hmac
Thomas Gleixner
tglx at linutronix.de
Thu Jul 2 14:48:57 EDT 2020
Richard Weinberger <richard at nod.at> writes:
> ----- Ursprüngliche Mail -----
>> Von: "tglx" <tglx at linutronix.de>
>> An: "richard" <richard at nod.at>, "Torben Hohn" <torben.hohn at linutronix.de>
>> CC: "bigeasy" <bigeasy at linutronix.de>, "linux-mtd" <linux-mtd at lists.infradead.org>, "Sascha Hauer"
>> <s.hauer at pengutronix.de>, "david" <david at sigma-star.at>
>> Gesendet: Donnerstag, 2. Juli 2020 16:40:24
>> Betreff: Re: [PATCH v2 0/4] ubifs: support authentication without hmac
>
>> Richard Weinberger <richard at nod.at> writes:
>>> The superblock is signed by the offline key. As soon you switch to the new key
>>> the super block is rewritten and can no longer verified this key.
>>> Instead of rewriting the idea was keeping a copy.
>>>
>>> Anyway, like said in the other mail, I think if we change the feature to
>>> "keep offline sign key and imply ro mount" things will be more smooth with less
>>> corner
>>> cases.
>>
>> I don't think so. The desired mode is to prevent RW mounts for a factory
>> signed image which implies the prevention of rewriting the superblock.
>
> This is exactly what I'm asking for.
> Keep the factory signed super block and imply read-only mode.
And that's what Torben implemented unless I'm missing something.
Thanks,
tglx
More information about the linux-mtd
mailing list