On Wed, Dec 17, 2014 at 12:35 AM, Seth Jennings <sjenning@xxxxxxxxxx> wrote: > On Tue, Dec 16, 2014 at 11:45:12PM +0530, Balbir Singh wrote: >> On Tue, Dec 16, 2014 at 11:28 PM, Seth Jennings <sjenning@xxxxxxxxxx> wrote: >> > >> > Changelog: >> > >> > Thanks for all the feedback! >> > >> >> Could you describe what this does to signing? I presume the patched >> module should cause a taint on module signing? > > The patch module can be signed to avoid the taint of being unsigned, > assuming you have the signing key for the kernel you are running. > However we do taint with a new taint flag (see 1/3) to indicate > that the kernel has been patched. > I see, so the assumption is that the module and patch would be signed with the same key? Thanks, Balbir Singh. -- To unsubscribe from this list: send the line "unsubscribe live-patching" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
