Re: [PATCH v4 6/6] integrity: PowerVM support for loading third party code... | linuxppc-dev

[PATCH v4 0/6] Enable loading local and third party keys on PowerVM guest · Nayna Jain <nayna@linux.ibm.com> · 2023-08-15
[PATCH v4 2/6] integrity: ignore keys failing CA restrictions on non-UEFI platform · Nayna Jain <nayna@linux.ibm.com> · 2023-08-15
Re: [PATCH v4 2/6] integrity: ignore keys failing CA restrictions on non-UEFI platform · R Nageswara Sastry <hidden> · 2023-08-16
[PATCH v4 3/6] integrity: remove global variable from machine_keyring.c · Nayna Jain <nayna@linux.ibm.com> · 2023-08-15
Re: [PATCH v4 3/6] integrity: remove global variable from machine_keyring.c · R Nageswara Sastry <hidden> · 2023-08-16
[PATCH v4 6/6] integrity: PowerVM support for loading third party code signing keys · Nayna Jain <nayna@linux.ibm.com> · 2023-08-15
Re: [PATCH v4 6/6] integrity: PowerVM support for loading third party code signing keys · Mimi Zohar <zohar@linux.ibm.com> · 2023-08-15
Re: [PATCH v4 6/6] integrity: PowerVM support for loading third party code signing keys · R Nageswara Sastry <hidden> · 2023-08-16
Re: [PATCH v4 6/6] integrity: PowerVM support for loading third party code signing keys · "Jarkko Sakkinen" <jarkko@kernel.org> · 2023-08-16
Re: [PATCH v4 6/6] integrity: PowerVM support for loading third party code signing keys · Mimi Zohar <zohar@linux.ibm.com> · 2023-08-16
Re: [PATCH v4 6/6] integrity: PowerVM support for loading third party code signing keys · "Jarkko Sakkinen" <jarkko@kernel.org> · 2023-08-16
[PATCH v4 4/6] integrity: check whether imputed trust is enabled · Nayna Jain <nayna@linux.ibm.com> · 2023-08-15
Re: [PATCH v4 4/6] integrity: check whether imputed trust is enabled · R Nageswara Sastry <hidden> · 2023-08-16
[PATCH v4 1/6] integrity: PowerVM support for loading CA keys on machine keyring · Nayna Jain <nayna@linux.ibm.com> · 2023-08-15
Re: [PATCH v4 1/6] integrity: PowerVM support for loading CA keys on machine keyring · R Nageswara Sastry <hidden> · 2023-08-16
Re: [PATCH v4 1/6] integrity: PowerVM support for loading CA keys on machine keyring · "Jarkko Sakkinen" <jarkko@kernel.org> · 2023-08-16
[PATCH v4 5/6] integrity: PowerVM machine keyring enablement · Nayna Jain <nayna@linux.ibm.com> · 2023-08-15
Re: [PATCH v4 5/6] integrity: PowerVM machine keyring enablement · R Nageswara Sastry <hidden> · 2023-08-16

Re: [PATCH v4 6/6] integrity: PowerVM support for loading third party code signing keys

From: Mimi Zohar <zohar@linux.ibm.com>
Date: 2023-08-15 20:32:03
Also in: linux-integrity, linux-security-module

On Tue, 2023-08-15 at 07:27 -0400, Nayna Jain wrote:

On secure boot enabled PowerVM LPAR, third party code signing keys are
needed during early boot to verify signed third party modules. These
third party keys are stored in moduledb object in the Platform
KeyStore (PKS).

Load third party code signing keys onto .secondary_trusted_keys keyring.

Signed-off-by: Nayna Jain <nayna@linux.ibm.com>

Reviewed-and-tested-by: Mimi Zohar [off-list ref]

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help