Thread (22 messages) 22 messages, 7 authors, 2021-01-30

Re: [PATCH v4] certs: Add EFI_CERT_X509_GUID support for dbx entries

From: David Howells <dhowells@redhat.com>
Date: 2021-01-27 11:56:43
Also in: keyrings, linux-crypto, lkml 

Jarkko Sakkinen [off-list ref] wrote:
quoted
I suppose a user space tool could be created. But wouldn’t what is
currently done in the kernel in this area need to be removed?
Right. I don't think this was a great idea in the first place to
do to the kernel but since it exists, I guess the patch does make
sense.
This information needs to be loaded from the UEFI tables before the system
starts loading any kernel modules or running any programs (if we do
verification of such, which I think IMA can do).

David
Keyboard shortcuts
hback out one level
jnext message in thread
kprevious message in thread
ldrill in
Escclose help / fold thread tree
?toggle this help