[PATCH 3/6] firmware: differentiate between signed regulatory.db and other firmware
Mimi Zohar
zohar at linux.vnet.ibm.com
Tue May 15 12:43:39 UTC 2018
On Tue, 2018-05-15 at 08:32 -0400, Josh Boyer wrote:
> One aspect that was always a concern to some is whether the firmware files
> were modified directly to have the signature attached to them. That may
> run afoul of the "no modification" license that most blobs are shipped
> under. Does IMA have the signatures for the files stored in xattrs or in
> some other detached manner?
They're stored as xattrs. RPM has support for including file
signatures in the RPM header.
Mimi
--
To unsubscribe from this list: send the line "unsubscribe linux-security-module" in
the body of a message to majordomo at vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
More information about the Linux-security-module-archive
mailing list