Re: [GIT PULL] integrity subsystem updates for v5.13

[GIT PULL] integrity subsystem updates for v5.13 · Mimi Zohar <zohar@linux.ibm.com> · 2021-04-28
Re: [GIT PULL] integrity subsystem updates for v5.13 · pr-tracker-bot@kernel.org · 2021-05-01
Re: [GIT PULL] integrity subsystem updates for v5.13 · Linus Torvalds <torvalds@linux-foundation.org> · 2021-05-01
Re: [GIT PULL] integrity subsystem updates for v5.13 · Mimi Zohar <zohar@linux.ibm.com> · 2021-05-02

From: Linus Torvalds <torvalds@linux-foundation.org>
Date: 2021-05-01 22:50:21
Also in: lkml

On Wed, Apr 28, 2021 at 6:47 AM Mimi Zohar [off-list ref] wrote:

In addition to loading the kernel module signing key onto the builtin
keyring, load it onto the IMA keyring as well.

This clashed pretty badly with the other cert changes.

I think the end result looks nice and clean (the cert updates mesh
well with the _intention_ of your code, just not with the
implementation), but you should really double-check that I didn't mess
anything up in the merge and whatever test-case you have for IMA still
works.

I only verified that the kernel module signing key still works for
modules - no IMA test-case.

              Linus

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help