Summary: | sys-kernel/gentoo-sources - sign-file: LibreSSL only supports SHA1 signing for kernel modules | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | tonemgub |
Component: | Current packages | Assignee: | Gentoo Kernel Bug Wranglers and Kernel Maintainers <kernel> |
Status: | RESOLVED INVALID | ||
Severity: | normal | Keywords: | PATCH |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
See Also: | https://bugzilla.kernel.org/show_bug.cgi?id=202159 | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | |||
Bug Blocks: | 561854 | ||
Attachments: | sign-file: full functionality with modern LibreSSL |
Description
tonemgub
2020-08-29 01:22:11 UTC
Created attachment 657348 [details, diff]
sign-file: full functionality with modern LibreSSL
Patch from upstream kernel.org
I tend to reject this patch.
There's a reason why upstream did not accept the patch.
Also, current stable libressl version in Gentoo is
> /var/tmp/portage/dev-libs/libressl-3.1.3/image/usr/include/openssl/opensslv.h:#define LIBRESSL_VERSION_NUMBER 0x3010300fL
so we do not really need this patch.
(In reply to Thomas Deutschmann from comment #2) > > so we do not really need this patch. For some reason compiling with module signing >=SHA256 still fails on latest stable kernel and latest stable LibreSSL for me. Same error. The process to remove libressl form gentoo has been initiated and is tracked at: Bug 762847 - dev-libs/libressl: Removal |