[PATCH v2 0/6] Appended signatures support for IMA appraisal
Michael Ellerman
mpe at ellerman.id.au
Tue Jun 13 10:18:51 UTC 2017
Thiago Jung Bauermann <bauerman at linux.vnet.ibm.com> writes:
> Michael Ellerman <mpe at ellerman.id.au> writes:
>
>> Thiago Jung Bauermann <bauerman at linux.vnet.ibm.com> writes:
>>
>>> On the OpenPOWER platform, secure boot and trusted boot are being
>>> implemented using IMA for taking measurements and verifying signatures.
>>
>> I still want you to implement arch_kexec_kernel_verify_sig() as well :)
>
> Yes, I will implement it! We are still working on loading the public
> keys for kernel signing from the firmware into a kernel keyring, so
> there's not much point in implementing arch_kexec_kernel_verify_sig
> without having that first.
OK. What's the ETA on those patches?
cheers
--
To unsubscribe from this list: send the line "unsubscribe linux-security-module" in
the body of a message to majordomo at vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
More information about the Linux-security-module-archive
mailing list