blackbird-op-linux - Blackbird™ Linux sources for OpenPOWER

diff options

author	Dmitry Kasatkin <dmitry.kasatkin@huawei.com>	2015-10-22 21:26:10 +0300
committer	Mimi Zohar <zohar@linux.vnet.ibm.com>	2015-11-23 14:30:02 -0500
commit	f4dc37785e9b3373d0cb93125d5579fed2af3a43 (patch)
tree	b1bed1b8038d92770cc9881a1ad57b97e1b57dc3 /tools/usb
parent	ebd68df3f24b318d391d15c458d6f43f340ba36a (diff)
download	blackbird-op-linux-f4dc37785e9b3373d0cb93125d5579fed2af3a43.tar.gz blackbird-op-linux-f4dc37785e9b3373d0cb93125d5579fed2af3a43.zip

integrity: define '.evm' as a builtin 'trusted' keyring

Require all keys added to the EVM keyring be signed by an existing trusted key on the system trusted keyring. This patch also switches IMA to use integrity_init_keyring(). Changes in v3: * Added 'init_keyring' config based variable to skip initializing keyring instead of using __integrity_init_keyring() wrapper. * Added dependency back to CONFIG_IMA_TRUSTED_KEYRING Changes in v2: * Replace CONFIG_EVM_TRUSTED_KEYRING with IMA and EVM common CONFIG_INTEGRITY_TRUSTED_KEYRING configuration option * Deprecate CONFIG_IMA_TRUSTED_KEYRING but keep it for config file compatibility. (Mimi Zohar) Signed-off-by: Dmitry Kasatkin <dmitry.kasatkin@huawei.com> Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>

Diffstat (limited to 'tools/usb')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: