On Thu, 2024-05-09 at 12:48 +0100, Richard Purdie via lists.openembedded.org wrote: > There are potential security issues from using pre-generated host keys. We > made > the recipe available for autobuilder testing purposes but concerns remain > about > how easily this could end up in production. > > I thought we'd already done this, but limit the recipe to qemu* machines, > which means any real hardware trying to use it will need to be a bit more > explicit about it and specifically enable it.
* This change may require some BSPs to opt into the recipe such as fvp-base in meta-arm. Given the security concerns around this, that does seem like a reasonable compromise though. Cheers, Richard
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#199146): https://lists.openembedded.org/g/openembedded-core/message/199146 Mute This Topic: https://lists.openembedded.org/mt/105999232/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
