Re: [PATCH v7 0/4] Add support for x509 certs with NIST p256 and p192 keys

From: Stefan Berger
Date: Mon Feb 01 2021 - 11:46:26 EST


On 2/1/21 11:36 AM, David Howells wrote:
Stefan Berger <stefanb@xxxxxxxxxxxxx> wrote:

1) the whole series goes through the crypto tree

2) I make the OIDs addition patch 1 that both keyrings and crypto take
separately?
The first might be easiest, but 2 is okay also. You'll just need to give
myself and Herbert separate branches to pull, rooted on the same commit.

Btw, what do patches 2-4 do if patch 1 isn't applied?

With the crypto module missing in the kernel you will get an error trying to load an x509 certificate that needs the algorithm to verify the self-signed signature.

Before I post yet another series I hope that Herbert can say whether option 1) would work for him.

   Stefan




David