Re: [PATCH v4 00/17] module: Introduce hash-based integrity checking

Next message: Greg KH: "Re: [PATCH v2] staging: sm750fb: rename Bpp to bytes_per_pixel"
Previous message: Sai Sree Kartheek Adivi: "Re: [PATCH v4 15/19] dmaengine: ti: k3-udma-v2: New driver for K3 BCDMA_V2"
In reply to: James Bottomley: "Re: [PATCH v4 00/17] module: Introduce hash-based integrity checking"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: David Howells

Date: Tue Feb 03 2026 - 03:23:42 EST

James Bottomley <James.Bottomley@xxxxxxxxxxxxxxxxxxxxx> wrote:

> > There is another issue too: If you have a static private key that you
> > use to sign modules (and probably other things), someone will likely
> > give you a GPL request to get it.
>
> The SFC just lost that exact point in the Vizio trial, so I think
> you're wrong on this under US law at least. There's no general ability
> under GPLv2 to demand long lived signing keys.

Cool :-). I just know that I've been sent GPL requests for kernel keys.

David