On Fri, Feb 15, 2013 at 01:59:27AM -0600, Joel A Fernandes wrote:
> From: Joel A Fernandes
Hi Joel.
> Not doing so could cause sleep in interrupt context resulting in a kernel
> panic.
>
> Tested on an AM33xx SoC device (beaglebone board).
>
> To reproduce the problem, I used the tcrypt kerne
I don't see any real use case where checking the validity dates of X.509
certificates at parsing time adds any security gain. In contrast, doing so
makes MODSIGN unusable on systems without a RTC (or systems with a possible
wrong date in a existing RTC or systems where the RTC is read after the key
