Re: [PATCH v3] ima: add a new CONFIG for loading arch-specific policies

From: Mimi Zohar
Date: Wed Mar 11 2020 - 11:43:56 EST

Next message: Tim Harvey: "[PATCH] gpio: thunderx: fix irq_request_resources"
Previous message: Christoph Hellwig: "Re: [Bug 206175] Fedora >= 5.4 kernels instantly freeze on boot without producing any display output"
In reply to: Nayna Jain: "[PATCH v3] ima: add a new CONFIG for loading arch-specific policies"
Next in thread: Philipp Rudo: "Re: [PATCH v3] ima: add a new CONFIG for loading arch-specific policies"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sun, 2020-03-08 at 20:57 -0400, Nayna Jain wrote:
> From: Nayna Jain <nayna@xxxxxxxxxxxxxxxxxx>
>
> Every time a new architecture defines the IMA architecture specific
> functions - arch_ima_get_secureboot() and arch_ima_get_policy(), the IMA
> include file needs to be updated. To avoid this "noise", this patch
> defines a new IMA Kconfig IMA_SECURE_AND_OR_TRUSTED_BOOT option, allowing
> the different architectures to select it.
>
> Suggested-by: Linus Torvalds <torvalds@xxxxxxxxxxxxxxxxxxxx>
> Signed-off-by: Nayna Jain <nayna@xxxxxxxxxxxxx>
> Acked-by: Ard Biesheuvel <ardb@xxxxxxxxxx>
> Cc: Philipp Rudo <prudo@xxxxxxxxxxxxx>
> Cc: Michael Ellerman <mpe@xxxxxxxxxxxxxx>

Thanks, Michael for the suggestion of using "imply". ÂSeems to be
working nicely. ÂThanks, Nayna. ÂI pushed this patch out to next-
integrity-testing. ÂCould we get some tags on this version of the
patch?

thanks,

Mimi

Next message: Tim Harvey: "[PATCH] gpio: thunderx: fix irq_request_resources"
Previous message: Christoph Hellwig: "Re: [Bug 206175] Fedora >= 5.4 kernels instantly freeze on boot without producing any display output"
In reply to: Nayna Jain: "[PATCH v3] ima: add a new CONFIG for loading arch-specific policies"
Next in thread: Philipp Rudo: "Re: [PATCH v3] ima: add a new CONFIG for loading arch-specific policies"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]