FIPS-mode panic? (was Re: [PULL] modules)

From: David Howells
Date: Mon Oct 15 2012 - 03:51:29 EST

Next message: Xie Shaohui-B21989: "RE: [PATCH][v4] sata_fsl: add workaround for data length mismatchon freescale V2 controller"
Previous message: Dave Chinner: "Re: [RFC v3 11/13] vfs: add 3 new ioctl interfaces"
In reply to: Alan Cox: "Re: [PULL] modules"
Next in thread: Stephan Mueller: "Re: FIPS-mode panic? (was Re: [PULL] modules)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Linus Torvalds <torvalds@xxxxxxxxxxxxxxxxxxxx> wrote:

> Hmm. So this thing makes me wonder:
>
> /* Not having a signature is only an error if we're strict. */
> if (err < 0 && fips_enabled)
> panic("Module verification failed with error %d in FIPS mode\n",
> err);
>
> do we really want to panic (even in fips_enabled mode)?

That's what the FIPS people want. As I understand it, if there's some
indication that the crypto stuff is compromised, the box should be shut down
immediately.

I've added Stephan Mueller to see if he can illuminate further.

David
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Xie Shaohui-B21989: "RE: [PATCH][v4] sata_fsl: add workaround for data length mismatchon freescale V2 controller"
Previous message: Dave Chinner: "Re: [RFC v3 11/13] vfs: add 3 new ioctl interfaces"
In reply to: Alan Cox: "Re: [PULL] modules"
Next in thread: Stephan Mueller: "Re: FIPS-mode panic? (was Re: [PULL] modules)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]