diff for duplicates of <1510343430.3404.25.camel@linux.vnet.ibm.com> diff --git a/a/1.txt b/N1/1.txt index 884476c..be087da 100644 --- a/a/1.txt +++ b/N1/1.txt @@ -3,7 +3,7 @@ On Fri, 2017-11-10 at 20:35 +0100, Luis R. Rodriguez wrote: > > Hi David, > > > > If you are interested in preventing the loading of unsigned firmware, -> > the patch below is straight forward. ?The patch has ONLY been tested +> > the patch below is straight forward. The patch has ONLY been tested > > with IMA-appraisal enabled, and works as intended - allowing only > > signed firmware to be loaded. > @@ -24,13 +24,8 @@ signed, so we're using the security_kernel_read_file() LSM hook. > > Where does this plug in? -This is a standalone, micro LSM that can be configured at build. ?For +This is a standalone, micro LSM that can be configured at build. For now I left it is an optional Kconfig parameter, but at some point, you might want to consider making it required. Mimi - --- -To unsubscribe from this list: send the line "unsubscribe linux-security-module" in -the body of a message to majordomo at vger.kernel.org -More majordomo info at http://vger.kernel.org/majordomo-info.html diff --git a/a/content_digest b/N1/content_digest index ceb07ca..cf3dfd5 100644 --- a/a/content_digest +++ b/N1/content_digest @@ -1,9 +1,21 @@ "ref\01510336703.3404.17.camel@linux.vnet.ibm.com\0" "ref\020171110193507.GP22894@wotan.suse.de\0" - "From\0zohar@linux.vnet.ibm.com (Mimi Zohar)\0" - "Subject\0[RFC PATCH] fw_lockdown: new micro LSM module to prevent loading unsigned firmware\0" + "From\0Mimi Zohar <zohar@linux.vnet.ibm.com>\0" + "Subject\0Re: [RFC PATCH] fw_lockdown: new micro LSM module to prevent loading unsigned firmware\0" "Date\0Fri, 10 Nov 2017 14:50:30 -0500\0" - "To\0linux-security-module@vger.kernel.org\0" + "To\0Luis R. Rodriguez <mcgrof@kernel.org>" + AKASHI + " Takahiro <takahiro.akashi@linaro.org>\0" + "Cc\0David Howells <dhowells@redhat.com>" + linux-security-module <linux-security-module@vger.kernel.org> + linux-fsdevel <linux-fsdevel@vger.kernel.org> + linux-kernel <linux-kernel@vger.kernel.org> + James Bottomley <James.Bottomley@hansenpartnership.com> + David Woodhouse <dwmw2@infradead.org> + Johannes Berg <johannes@sipsolutions.net> + Andy Lutomirski <luto@kernel.org> + Linus Torvalds <torvalds@linux-foundation.org> + " Kees Cook <keescook@chromium.org>\0" "\00:1\0" "b\0" "On Fri, 2017-11-10 at 20:35 +0100, Luis R. Rodriguez wrote:\n" @@ -11,7 +23,7 @@ "> > Hi David,\n" "> > \n" "> > If you are interested in preventing the loading of unsigned firmware,\n" - "> > the patch below is straight forward. ?The patch has ONLY been tested\n" + "> > the patch below is straight forward. \302\240The patch has ONLY been tested\n" "> > with IMA-appraisal enabled, and works as intended - allowing only\n" "> > signed firmware to be loaded.\n" "> \n" @@ -32,15 +44,10 @@ "> \n" "> Where does this plug in?\n" "\n" - "This is a standalone, micro LSM that can be configured at build. ?For\n" + "This is a standalone, micro LSM that can be configured at build. \302\240For\n" "now I left it is an optional Kconfig parameter, but at some point, you\n" "might want to consider making it required.\n" "\n" - "Mimi\n" - "\n" - "--\n" - "To unsubscribe from this list: send the line \"unsubscribe linux-security-module\" in\n" - "the body of a message to majordomo at vger.kernel.org\n" - More majordomo info at http://vger.kernel.org/majordomo-info.html + Mimi -79b5b70e4caefdbaa9874f83e1efc4995c9b751827cb249f1b6b146a2703f57f +f617a9a795d4c2e4b89dfff0f1f070fe3ec9e06a93d71247395661367fa1c50e
This is an external index of several public inboxes, see mirroring instructions on how to clone and mirror all data and code used by this external index.