Re: [PATCH v3] x86/ima: require signed kernel modules

+++ Mimi Zohar [15/02/19 11:50 -0500]: Have the IMA architecture specific policy require signed kernel modules on systems with secure boot mode enabled; and coordinate the different signature verification methods, so only one signature is required. Requiring appended kernel module signatures may

Re: [PATCH v3] x86/ima: require signed kernel modules

On Fri, 2019-02-15 at 09:01 -0800, Luis Chamberlain wrote: > On Fri, Feb 15, 2019 at 11:50:18AM -0500, Mimi Zohar wrote: > > Have the IMA architecture specific policy require signed kernel modules > > on systems with secure boot mode enabled; and coordinate the different > > signature verification

Re: [PATCH v3] x86/ima: require signed kernel modules

On Fri, Feb 15, 2019 at 11:50:18AM -0500, Mimi Zohar wrote: > Have the IMA architecture specific policy require signed kernel modules > on systems with secure boot mode enabled; and coordinate the different > signature verification methods, so only one signature is required. > > Requiring appended

[PATCH v3] x86/ima: require signed kernel modules

Have the IMA architecture specific policy require signed kernel modules on systems with secure boot mode enabled; and coordinate the different signature verification methods, so only one signature is required. Requiring appended kernel module signatures may be configured, enabled on the boot comma