Re: [PATCH v5 2/2] kexec, KEYS: Make use of platform keyring for signature verify

On 01/21/19 at 05:59pm, Kairui Song wrote: > This patch let kexec_file_load makes use of .platform keyring as fall > back if it failed to verify a PE signed image against secondary or > builtin key ring, make it possible to verify kernel image signed with > preboot keys as well. > > This commit

Re: [PATCH v5 2/2] kexec, KEYS: Make use of platform keyring for signature verify

On Mon, 2019-01-21 at 17:59 +0800, Kairui Song wrote: > This patch let kexec_file_load makes use of .platform keyring as fall > back if it failed to verify a PE signed image against secondary or > builtin key ring, make it possible to verify kernel image signed with > preboot keys as well. > >

[PATCH v5 2/2] kexec, KEYS: Make use of platform keyring for signature verify

This patch let kexec_file_load makes use of .platform keyring as fall back if it failed to verify a PE signed image against secondary or builtin key ring, make it possible to verify kernel image signed with preboot keys as well. This commit adds a VERIFY_USE_PLATFORM_KEYRING similar to previous