Re: [PATCH v2 0/6] Appended signatures support for IMA appraisal

From: Michael Ellerman
Date: Tue Jun 13 2017 - 06:18:59 EST

Next message: Arvind Yadav: "[PATCH] iommu/vt-d: constify intel_dma_ops."
Previous message: tip-bot for Kirill A. Shutemov: "[tip:x86/mm] x86/mm: Add support for 5-level paging for KASLR"
In reply to: Thiago Jung Bauermann: "Re: [PATCH v2 0/6] Appended signatures support for IMA appraisal"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Thiago Jung Bauermann <bauerman@xxxxxxxxxxxxxxxxxx> writes:

> Michael Ellerman <mpe@xxxxxxxxxxxxxx> writes:
>
>> Thiago Jung Bauermann <bauerman@xxxxxxxxxxxxxxxxxx> writes:
>>
>>> On the OpenPOWER platform, secure boot and trusted boot are being
>>> implemented using IMA for taking measurements and verifying signatures.
>>
>> I still want you to implement arch_kexec_kernel_verify_sig() as well :)
>
> Yes, I will implement it! We are still working on loading the public
> keys for kernel signing from the firmware into a kernel keyring, so
> there's not much point in implementing arch_kexec_kernel_verify_sig
> without having that first.

OK. What's the ETA on those patches?

cheers

Next message: Arvind Yadav: "[PATCH] iommu/vt-d: constify intel_dma_ops."
Previous message: tip-bot for Kirill A. Shutemov: "[tip:x86/mm] x86/mm: Add support for 5-level paging for KASLR"
In reply to: Thiago Jung Bauermann: "Re: [PATCH v2 0/6] Appended signatures support for IMA appraisal"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]