[pkg-wpa-devel] Debian 2.6.32 CONFIG_WIRELESS_OLD_REGULATORY, wireless-regdb and crda

Kel Modderman kel at otaku42.de
Thu Jan 28 20:11:50 UTC 2010


On Friday 29 January 2010 04:10:04 Luis R. Rodriguez wrote:
> I asked Kel Modderman [3] about the packages and it seems he is really
> busy with quite a few moves he has been doing and just lacks time to
> get wireless-regdb and crda packaged into Debian. I am the upstream
> CRDA maintainer and have already provided a sample debian/ directory
> for simple packaging for both wireless-regdb and CRDA. When reviewing
> debian packaging before though there were some technical details which
> needed to be ironed out over using an RSA private key to digitally
> sign the wireless-regdb database and then using the public key to read
> the and trust the key with CRDA [4]. Paul Wise also had some good
> feedback and I hope we have addressed it all now. Kel's last iteration
> consisted of creating a private/public RSA key for the pkg-wpa-devel
> team. Technical issue with this is the issues faced when doing
> automatic builds, unless you can get the automatic builds to
> incorporate your key somehow.

I mistakingly overlooked, when writing [3], that wireless-regdb is arch
independent and thus does not get rebuilt upon upload (at least for now,
but this may possibly change in the future).
The issue is more that :

There are potentially lots of people who could be building/uploading these
packages and having the same private key for all people to sign regulatory.bin
may not be feasible.

Generating a one time private key requires that wireless-regdb and crda are
built in the same sourceful upload afaik.

Just installing the prebuilt regulatory.bin doesn't feel very Debian, I am
pretty sure Debian would like to build that binary from its source and reserve
the right to patch that source and rebuild the binary for a variety of reasons.

Thanks, Kel.



More information about the Pkg-wpa-devel mailing list