On Tue, Aug 19, 2025 at 3:19 PM Paul Moore [off-list ref] wrote:

On Wed, Aug 13, 2025 at 6:17 PM Paul Moore [off-list ref] wrote:

quoted

On Wed, Aug 13, 2025 at 5:37 PM KP Singh [off-list ref] wrote:

quoted

On Wed, Aug 13, 2025 at 11:02 PM Paul Moore [off-list ref] wrote:

quoted

It's nice to see a v3 revision, but it would be good to see some
comments on Blaise's reply to your v2 revision.  From what I can see
it should enable the different use cases and requirements that have
been posted.

I will defer to Alexei and others here (mostly due to time crunch). It
would however be useful to explain the use-cases in which signed maps
are useful (beyond being a different approach than the current
delegated verification).

I wanted to bring this up again as it has been another week with no
comment from the BPF side of the house regarding Blaise's additions.
As a reminder, Blaise's patch can be found here:

https://lore.kernel.org/linux-security-module/87sei58vy3.fsf@microsoft.com (local)

Another gentle ping.  I realize everyone is busy, and August is a
popular month for holidays, but it has been a month since Blaise
posted his patch/snippet; it would be nice to get some feedback on the
basic idea.

https://lore.kernel.org/linux-security-module/87sei58vy3.fsf@microsoft.com (local)

-- 
paul-moore.com