[PULL REQUEST] Kernel lockdown patches for 5.2

Matthew Garrett mjg59 at google.com
Thu Mar 7 04:24:49 UTC 2019

On Wed, Mar 6, 2019 at 7:56 PM Mimi Zohar <zohar at linux.ibm.com> wrote:
> The kexec and kernel modules patches in this patch set continues to
> ignore IMA.  This patch set should up front either provide an
> alternative solution to coordinate the different signature
> verification methods or rely on the architecture specific policy for
> that coordination.

Hi Mimi,

I'm working on a patch for this at the moment which can then be added
to either patchset. Is there a tree that contains the proposed Power
architecture policy? I want to make sure I don't accidentally end up
depending on anything x86.

More information about the Linux-security-module-archive mailing list