Re: Trusted kernel patchset for Secure Boot lockdown

From: Matthew Garrett
Date: Thu Feb 27 2014 - 23:53:21 EST

Next message: Matthew Garrett: "Re: [patch] x86: Introduce BOOT_EFI and BOOT_CF9 into the reboot sequence loop"
Previous message: Davidlohr Bueso: "Re: [PATCH v4] mm: per-thread vma caching"
In reply to: James Morris: "Re: Trusted kernel patchset for Secure Boot lockdown"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, 2014-02-28 at 14:03 +1100, James Morris wrote:

> Ok, which tree should take this? I'm happy to, although most of it is
> outside security/ .

Security might make the most sense - I don't think any of the additional
restrictions (beyond kexec, and I think we've hashed that argument out
now) are terribly controversial.

--
Matthew Garrett <matthew.garrett@xxxxxxxxxx>

Next message: Matthew Garrett: "Re: [patch] x86: Introduce BOOT_EFI and BOOT_CF9 into the reboot sequence loop"
Previous message: Davidlohr Bueso: "Re: [PATCH v4] mm: per-thread vma caching"
In reply to: James Morris: "Re: Trusted kernel patchset for Secure Boot lockdown"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]