[PATCH v2 2/3] integrity: Enforce digitalSignature usage in the ima and evm keyrings
Mimi Zohar
zohar at linux.ibm.com
Tue May 23 22:01:06 UTC 2023
On Mon, 2023-05-22 at 19:09 -0400, Eric Snowberg wrote:
> After being vouched for by a system keyring, only allow keys into the .ima
> and .evm keyrings that have the digitalSignature usage field set.
>
> Link: https://lore.kernel.org/all/41dffdaeb7eb7840f7e38bc691fbda836635c9f9.camel@linux.ibm.com
> Suggested-by: Mimi Zohar <zohar at linux.ibm.com>
> Signed-off-by: Eric Snowberg <eric.snowberg at oracle.com>
> Acked-by: Mimi Zohar <zohar at linux.ibm.com>
Jarrko, similarly please update the above tag to Acked-and-test-by.
--
thanks,
Mimi
More information about the Linux-security-module-archive
mailing list