1 |
On Wed, Mar 6, 2013 at 8:39 PM, Peter Stuge <peter@×××××.se> wrote: |
2 |
|
3 |
> Carlos Silva wrote: |
4 |
> > If one wants to create a key himself, it's also possible to use this |
5 |
> > key, he just has to name it signing_key.priv and siging_key.x509 and |
6 |
> > put it under /usr/src/linux. |
7 |
> |
8 |
> Do you know if this is a sane default? |
9 |
> |
10 |
> Where do most users of signed modules store keys so far? |
11 |
> |
12 |
|
13 |
It's where the kernel build system picks them. They only have to be there |
14 |
to build the kernel, nothing else. After the kernel is built, and the |
15 |
modules compiled and signed against that keys, they can even be removed |
16 |
from the system. |