Re: [RFC PATCH 02/12] powerpc: Add support for adding an ESM blob to the zImage wrapper

From: Christoph Hellwig
Date: Tue May 21 2019 - 01:16:19 EST

Next message: Stephen Rothwell: "linux-next: Tree for May 21"
Previous message: Singh, Balbir: "Re: [RFC 1/1] Add dm verity root hash pkcs7 sig validation."
In reply to: Thiago Jung Bauermann: "[RFC PATCH 02/12] powerpc: Add support for adding an ESM blob to the zImage wrapper"
Next in thread: Ram Pai: "Re: Re: [RFC PATCH 02/12] powerpc: Add support for adding an ESM blob to the zImage wrapper"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, May 21, 2019 at 01:49:02AM -0300, Thiago Jung Bauermann wrote:
> From: Benjamin Herrenschmidt <benh@xxxxxxxxxxxxxxxxxxx>
>
> For secure VMs, the signing tool will create a ticket called the "ESM blob"
> for the Enter Secure Mode ultravisor call with the signatures of the kernel
> and initrd among other things.
>
> This adds support to the wrapper script for adding that blob via the "-e"
> option to the zImage.pseries.
>
> It also adds code to the zImage wrapper itself to retrieve and if necessary
> relocate the blob, and pass its address to Linux via the device-tree, to be
> later consumed by prom_init.

Where does the "BLOB" come from? How is it licensed and how can we
satisfy the GPL with it?

Next message: Stephen Rothwell: "linux-next: Tree for May 21"
Previous message: Singh, Balbir: "Re: [RFC 1/1] Add dm verity root hash pkcs7 sig validation."
In reply to: Thiago Jung Bauermann: "[RFC PATCH 02/12] powerpc: Add support for adding an ESM blob to the zImage wrapper"
Next in thread: Ram Pai: "Re: Re: [RFC PATCH 02/12] powerpc: Add support for adding an ESM blob to the zImage wrapper"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]