[PATCH v3] ima: add a new CONFIG for loading arch-specific policies
Mimi Zohar
zohar at linux.ibm.com
Thu Mar 12 02:42:55 AEDT 2020
On Sun, 2020-03-08 at 20:57 -0400, Nayna Jain wrote:
> From: Nayna Jain <nayna at linux.vnet.ibm.com>
>
> Every time a new architecture defines the IMA architecture specific
> functions - arch_ima_get_secureboot() and arch_ima_get_policy(), the IMA
> include file needs to be updated. To avoid this "noise", this patch
> defines a new IMA Kconfig IMA_SECURE_AND_OR_TRUSTED_BOOT option, allowing
> the different architectures to select it.
>
> Suggested-by: Linus Torvalds <torvalds at linux-foundation.org>
> Signed-off-by: Nayna Jain <nayna at linux.ibm.com>
> Acked-by: Ard Biesheuvel <ardb at kernel.org>
> Cc: Philipp Rudo <prudo at linux.ibm.com>
> Cc: Michael Ellerman <mpe at ellerman.id.au>
Thanks, Michael for the suggestion of using "imply". Seems to be
working nicely. Thanks, Nayna. I pushed this patch out to next-
integrity-testing. Could we get some tags on this version of the
patch?
thanks,
Mimi
More information about the Linuxppc-dev
mailing list