Re: [PATCH 5.15 0/6] arm64: kexec_file: use more system keyrings to verify... | linuxppc-dev

[PATCH 5.15 0/6] arm64: kexec_file: use more system keyrings to verify kernel image signature + dependencies · Michal Suchanek <hidden> · 2022-09-23
[PATCH 5.15 2/6] kexec_file: drop weak attribute from functions · Michal Suchanek <hidden> · 2022-09-23
[PATCH 5.15 3/6] kexec: drop weak attribute from functions · Michal Suchanek <hidden> · 2022-09-23
Re: [PATCH 5.15 0/6] arm64: kexec_file: use more system keyrings to verify kernel image signature + dependencies · Mimi Zohar <zohar@linux.ibm.com> · 2022-09-23
Re: [PATCH 5.15 0/6] arm64: kexec_file: use more system keyrings to verify kernel image signature + dependencies · Michal Suchánek <hidden> · 2022-09-23
Re: [PATCH 5.15 0/6] arm64: kexec_file: use more system keyrings to verify kernel image signature + dependencies · Michal Suchánek <hidden> · 2022-09-24
Re: [PATCH 5.15 0/6] arm64: kexec_file: use more system keyrings to verify kernel image signature + dependencies · Greg Kroah-Hartman <gregkh@linuxfoundation.org> · 2022-09-24
Re: [PATCH 5.15 0/6] arm64: kexec_file: use more system keyrings to verify kernel image signature + dependencies · Michal Suchánek <hidden> · 2022-09-24
Re: [PATCH 5.15 0/6] arm64: kexec_file: use more system keyrings to verify kernel image signature + dependencies · Greg Kroah-Hartman <gregkh@linuxfoundation.org> · 2022-09-24
Re: [PATCH 5.15 0/6] arm64: kexec_file: use more system keyrings to verify kernel image signature + dependencies · Michal Suchánek <hidden> · 2022-09-24
Re: [PATCH 5.15 0/6] arm64: kexec_file: use more system keyrings to verify kernel image signature + dependencies · Greg Kroah-Hartman <gregkh@linuxfoundation.org> · 2022-09-26
Re: [PATCH 5.15 0/6] arm64: kexec_file: use more system keyrings to verify kernel image signature + dependencies · Michal Suchánek <hidden> · 2022-09-26
Re: [PATCH 5.15 0/6] arm64: kexec_file: use more system keyrings to verify kernel image signature + dependencies · AKASHI Takahiro <hidden> · 2022-09-27
Re: [PATCH 5.15 0/6] arm64: kexec_file: use more system keyrings to verify kernel image signature + dependencies · Michal Suchánek <hidden> · 2022-09-27

Re: [PATCH 5.15 0/6] arm64: kexec_file: use more system keyrings to verify kernel image signature + dependencies

From: Mimi Zohar <zohar@linux.ibm.com>
Date: 2022-09-23 19:04:46
Also in: kexec, keyrings, linux-arm-kernel, linux-s390, linux-security-module, lkml, stable

On Fri, 2022-09-23 at 19:10 +0200, Michal Suchanek wrote:

Hello,

this is backport of commit 0d519cadf751
("arm64: kexec_file: use more system keyrings to verify kernel image signature")
to table 5.15 tree including the preparatory patches.

Some patches needed minor adjustment for context.

In general when backporting this patch set, there should be a
dependency on backporting these commits as well.  In this instance for
linux-5.15.y, they've already been backported.

543ce63b664e ("lockdown: Fix kexec lockdown bypass with ima policy")
af16df54b89d ("ima: force signature verification when CONFIG_KEXEC_SIG is configured")

-- 
thanks,

Mimi

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help