On Tue, 2020-09-08 at 13:28 +0100, Usama Arif wrote: > The keys are only generated if they dont exist. The key > generation can be turned off by setting FIT_GENERATE_KEYS to "0". > The default key length for private keys is 2048 and the default > format for public key certificate is x.509. > > Signed-off-by: Usama Arif <[email protected]> > --- > meta/classes/kernel-fitimage.bbclass | 44 ++++++++++++++++++++++++++++ > 1 file changed, 44 insertions(+)
I'm worried about this as keys are generally something the user needs to handle carefully. Making it all "magic" means that a missing key might not throw an error when it should and also, someone might not save the keys when they might need to. Perhaps this code should need to be explicitly enabled? Cheers, Richard
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#142680): https://lists.openembedded.org/g/openembedded-core/message/142680 Mute This Topic: https://lists.openembedded.org/mt/76707315/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
