[PATCH 2/3] integrity: Enforce digitalSignature usage in the ima and evm keyrings
Mimi Zohar
zohar at linux.ibm.com
Wed May 17 01:18:22 UTC 2023
On Mon, 2023-05-08 at 18:07 -0400, Eric Snowberg wrote:
> After being vouched for by a system keyring, only allow keys into the .ima
> and .evm keyrings that have the digitalSignature usage field set.
>
> Link: https://lore.kernel.org/all/41dffdaeb7eb7840f7e38bc691fbda836635c9f9.camel@linux.ibm.com
> Suggested-by: Mimi Zohar <zohar at linux.ibm.com>
> Signed-off-by: Eric Snowberg <eric.snowberg at oracle.com>
Acked-by: Mimi Zohar <zohar at linux.ibm.com>
More information about the Linux-security-module-archive
mailing list