diff for duplicates of <1509660641.3416.24.camel@linux.vnet.ibm.com> diff --git a/a/1.txt b/N1/1.txt index 85eac7b..dba5aba 100644 --- a/a/1.txt +++ b/N1/1.txt @@ -5,7 +5,7 @@ On Thu, 2017-11-02 at 22:04 +0000, David Howells wrote: > > > > fw_get_filesystem_firmware() calls kernel_read_file_from_path() to > > read the firmware, which calls into the security hooks. Is there -> > another place that validates the firmware signatures. I'm not seeing +> > another place that validates the firmware signatures. ?I'm not seeing > > which patch requires firmware to be signed? > > Luis has a set of patches for this. However, I'm not sure if that's going @@ -16,3 +16,8 @@ Or reflect that IMA-appraisal, if enabled, will enforce firmware being validly signed. Mimi + +-- +To unsubscribe from this list: send the line "unsubscribe linux-security-module" in +the body of a message to majordomo at vger.kernel.org +More majordomo info at http://vger.kernel.org/majordomo-info.html diff --git a/a/content_digest b/N1/content_digest index 9389b12..fefadb7 100644 --- a/a/content_digest +++ b/N1/content_digest @@ -1,17 +1,10 @@ "ref\01509660086.3416.15.camel@linux.vnet.ibm.com\0" "ref\0150842463163.7923.11081723749106843698.stgit@warthog.procyon.org.uk\0" "ref\014219.1509660259@warthog.procyon.org.uk\0" - "From\0Mimi Zohar <zohar@linux.vnet.ibm.com>\0" - "Subject\0Re: Firmware signing -- Re: [PATCH 00/27] security, efi: Add kernel lockdown\0" + "From\0zohar@linux.vnet.ibm.com (Mimi Zohar)\0" + "Subject\0Firmware signing -- Re: [PATCH 00/27] security, efi: Add kernel lockdown\0" "Date\0Thu, 02 Nov 2017 18:10:41 -0400\0" - "To\0David Howells <dhowells@redhat.com>" - " mcgrof@kernel.org\0" - "Cc\0linux-security-module@vger.kernel.org" - gnomes@lxorguk.ukuu.org.uk - linux-efi <linux-efi@vger.kernel.org> - gregkh@linuxfoundation.org - linux-kernel@vger.kernel.org - " Matthew Garrett <mjg59@google.com>\0" + "To\0linux-security-module@vger.kernel.org\0" "\00:1\0" "b\0" "On Thu, 2017-11-02 at 22:04 +0000, David Howells wrote:\n" @@ -21,7 +14,7 @@ "> > \n" "> > fw_get_filesystem_firmware() calls kernel_read_file_from_path() to\n" "> > read the firmware, which calls into the security hooks. Is there\n" - "> > another place that validates the firmware signatures. \302\240I'm not seeing\n" + "> > another place that validates the firmware signatures. ?I'm not seeing\n" "> > which patch requires firmware to be signed?\n" "> \n" "> Luis has a set of patches for this. However, I'm not sure if that's going\n" @@ -31,6 +24,11 @@ "Or reflect that IMA-appraisal, if enabled, will enforce firmware being\n" "validly signed.\n" "\n" - Mimi + "Mimi\n" + "\n" + "--\n" + "To unsubscribe from this list: send the line \"unsubscribe linux-security-module\" in\n" + "the body of a message to majordomo at vger.kernel.org\n" + More majordomo info at http://vger.kernel.org/majordomo-info.html -be0b633af50536d5839990cb1f40f456a3b859ea77cc7e0c58cc00f0ba67b327 +d0653bd13719182c4c5dc639c4132cb232306f1ef87dc2747b8c375ff576b7a0
This is an external index of several public inboxes, see mirroring instructions on how to clone and mirror all data and code used by this external index.