Re: [PATCH v3] ima: add a new CONFIG for loading arch-specific policies

From: Michael Ellerman
Date: Thu Mar 12 2020 - 07:16:01 EST

Next message: Daniel Lezcano: "Re: [PATCH] thermal: imx: Remove unused includes"
Previous message: Sahitya Tummala: "[PATCH] f2fs: fix long latency due to discard during umount"
In reply to: Philipp Rudo: "Re: [PATCH v3] ima: add a new CONFIG for loading arch-specific policies"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Nayna Jain <nayna@xxxxxxxxxxxxx> writes:
> From: Nayna Jain <nayna@xxxxxxxxxxxxxxxxxx>
>
> Every time a new architecture defines the IMA architecture specific
> functions - arch_ima_get_secureboot() and arch_ima_get_policy(), the IMA
> include file needs to be updated. To avoid this "noise", this patch
> defines a new IMA Kconfig IMA_SECURE_AND_OR_TRUSTED_BOOT option, allowing
> the different architectures to select it.
>
> Suggested-by: Linus Torvalds <torvalds@xxxxxxxxxxxxxxxxxxxx>
> Signed-off-by: Nayna Jain <nayna@xxxxxxxxxxxxx>
> Acked-by: Ard Biesheuvel <ardb@xxxxxxxxxx>
> Cc: Ard Biesheuvel <ardb@xxxxxxxxxx>
> Cc: Philipp Rudo <prudo@xxxxxxxxxxxxx>
> Cc: Michael Ellerman <mpe@xxxxxxxxxxxxxx>
> ---
> v3:
> * Removes CONFIG_IMA dependency. Thanks Ard.
> * Updated the patch with improvements suggested by Michael. It now uses
> "imply" instead of "select". Thanks Michael.

Acked-by: Michael Ellerman <mpe@xxxxxxxxxxxxxx> (powerpc)

cheers

Next message: Daniel Lezcano: "Re: [PATCH] thermal: imx: Remove unused includes"
Previous message: Sahitya Tummala: "[PATCH] f2fs: fix long latency due to discard during umount"
In reply to: Philipp Rudo: "Re: [PATCH v3] ima: add a new CONFIG for loading arch-specific policies"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]