You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This may not be an actual issue but I wanted to bring it up. In the event someone builds without OpenSSL and gcrypt, reglib_verify_db_signature always returns 1 (available at https://github.com/mcgrof/crda/blob/master/reglib.c#L203). In the event of DB corruption, regulatory rules could be totally invalid but the CRDA wouldn't know and would return them to the kernel anyway. I'm not sure if this is a big issue since, if you're building a new version of CRDA, you're probably comfortable taking your regulatory risks into your own hands. That said, it still strikes me as potentially dangerous for users to be able to unknowingly break regulatory requirements.
I don't know if this is feasible, or even necessary, but perhaps, the regdb could have a super basic unsigned hash as a protective measure in the event of someone rebuilding CRDA without gcrypt and OpenSSL and database corruption.
The text was updated successfully, but these errors were encountered:
This may not be an actual issue but I wanted to bring it up. In the event someone builds without OpenSSL and gcrypt, reglib_verify_db_signature always returns 1 (available at https://github.com/mcgrof/crda/blob/master/reglib.c#L203). In the event of DB corruption, regulatory rules could be totally invalid but the CRDA wouldn't know and would return them to the kernel anyway. I'm not sure if this is a big issue since, if you're building a new version of CRDA, you're probably comfortable taking your regulatory risks into your own hands. That said, it still strikes me as potentially dangerous for users to be able to unknowingly break regulatory requirements.
I don't know if this is feasible, or even necessary, but perhaps, the regdb could have a super basic unsigned hash as a protective measure in the event of someone rebuilding CRDA without gcrypt and OpenSSL and database corruption.
The text was updated successfully, but these errors were encountered: