projects / linux-block.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 96c8217) | patch
ima: add a new CONFIG for loading arch-specific policies
authorNayna Jain <nayna@linux.ibm.com>
Mon, 9 Mar 2020 00:57:51 +0000 (20:57 -0400)
committerMimi Zohar <zohar@linux.ibm.com>
Thu, 12 Mar 2020 11:43:57 +0000 (07:43 -0400)
commit9e2b4be377f0d715d9d910507890f9620cc22a9d
treeb837793b54687af1ab19e7957833182399ff3d7dtree | snapshot
parent96c82175d13879a0d465429419451eaad6e21258commit | diff
ima: add a new CONFIG for loading arch-specific policies

Every time a new architecture defines the IMA architecture specific
functions - arch_ima_get_secureboot() and arch_ima_get_policy(), the IMA
include file needs to be updated. To avoid this "noise", this patch
defines a new IMA Kconfig IMA_SECURE_AND_OR_TRUSTED_BOOT option, allowing
the different architectures to select it.

Suggested-by: Linus Torvalds <torvalds@linux-foundation.org>
Signed-off-by: Nayna Jain <nayna@linux.ibm.com>
Acked-by: Ard Biesheuvel <ardb@kernel.org>
Acked-by: Philipp Rudo <prudo@linux.ibm.com> (s390)
Acked-by: Michael Ellerman <mpe@ellerman.id.au> (powerpc)
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
arch/powerpc/Kconfig diff | blob | blame | history
arch/s390/Kconfig diff | blob | blame | history
arch/s390/kernel/Makefile diff | blob | blame | history
arch/x86/Kconfig diff | blob | blame | history
arch/x86/kernel/Makefile diff | blob | blame | history
include/linux/ima.h diff | blob | blame | history
security/integrity/ima/Kconfig diff | blob | blame | history
Linux 6.x block layer and io_uring tree(s)