projects / linux-block.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 90f6f69) | patch
integrity: PowerVM support for loading CA keys on machine keyring
authorNayna Jain <nayna@linux.ibm.com>
Tue, 15 Aug 2023 11:27:17 +0000 (07:27 -0400)
committerJarkko Sakkinen <jarkko@kernel.org>
Thu, 17 Aug 2023 20:12:35 +0000 (20:12 +0000)
commita3af7188e360aea343611dd385056eec44e10175
tree269f5ff4fd6878a9dccfc18da136ea122af0e4bftree | snapshot
parent90f6f691a706754e33d2d0c6fa2e1dacedb477f6commit | diff
integrity: PowerVM support for loading CA keys on machine keyring

Keys that derive their trust from an entity such as a security officer,
administrator, system owner, or machine owner are said to have "imputed
trust". CA keys with imputed trust can be loaded onto the machine keyring.
The mechanism for loading these keys onto the machine keyring is platform
dependent.

Load keys stored in the variable trustedcadb onto the .machine keyring
on PowerVM platform.

Signed-off-by: Nayna Jain <nayna@linux.ibm.com>
Reviewed-and-tested-by: Mimi Zohar <zohar@linux.ibm.com>
Reviewed-by: Jarkko Sakkinen <jarkko@kernel.org>
Tested-by: Nageswara R Sastry <rnsastry@linux.ibm.com>
Signed-off-by: Jarkko Sakkinen <jarkko@kernel.org>
security/integrity/platform_certs/keyring_handler.c diff | blob | blame | history
security/integrity/platform_certs/keyring_handler.h diff | blob | blame | history
security/integrity/platform_certs/load_powerpc.c diff | blob | blame | history
Linux 6.x block layer and io_uring tree(s)