Status of bios-crypto packaging?

Martin Langhoff martin.langhoff at
Tue Jan 25 18:31:46 EST 2011

On Tue, Jan 25, 2011 at 5:53 PM, Daniel Drake <dsd at> wrote:
> I need to generate discussion around this to verify that I'm not
> missing anything, but I had a thought that solves the crypto problem:
> The auditing is only relevant for signature verification code,
> therefore these tools could use the unaudited system libraries without
> worry.

Agreed... I guess it means the auditing was limited to input data handling.

As long as the different versions all agree on what's a valid sig and
what's not, we're ok! ;-)

 martin.langhoff at
 martin at -- School Server Architect
 - ask interesting questions
 - don't get distracted with shiny stuff  - working code first

More information about the Devel mailing list