[PATCH v2 2/3] integrity: Enforce digitalSignature usage in the ima and evm keyrings

Jarkko Sakkinen jarkko at kernel.org
Wed May 24 01:27:30 UTC 2023


On Wed May 24, 2023 at 4:22 AM EEST, Jarkko Sakkinen wrote:
> On Wed May 24, 2023 at 1:01 AM EEST, Mimi Zohar wrote:
> > On Mon, 2023-05-22 at 19:09 -0400, Eric Snowberg wrote:
> > > After being vouched for by a system keyring, only allow keys into the .ima
> > > and .evm keyrings that have the digitalSignature usage field set.
> > > 
> > > Link: https://lore.kernel.org/all/41dffdaeb7eb7840f7e38bc691fbda836635c9f9.camel@linux.ibm.com
> > > Suggested-by: Mimi Zohar <zohar at linux.ibm.com>
> > > Signed-off-by: Eric Snowberg <eric.snowberg at oracle.com>
> > > Acked-by: Mimi Zohar <zohar at linux.ibm.com>
> >
> > Jarrko, similarly please update the above tag to Acked-and-test-by.
>
> OK, cool, I'll pick this series, thanks.

Please check https://git.kernel.org/pub/scm/linux/kernel/git/jarkko/linux-tpmdd.git

BR, Jarkko



More information about the Linux-security-module-archive mailing list