| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 14 Nov 2019 20:08:05 +1100 (AEDT)
From: Michael Ellerman <patch-notifications@...erman.id.au>
To: Mimi Zohar <zohar@...ux.ibm.com>, linuxppc-dev@...abs.org,
linux-efi@...r.kernel.org, linux-integrity@...r.kernel.org
Cc: Ard Biesheuvel <ard.biesheuvel@...aro.org>,
Eric Ricther <erichte@...ux.ibm.com>,
Nayna Jain <nayna@...ux.ibm.com>, linux-kernel@...r.kernel.org,
Mimi Zohar <zohar@...ux.ibm.com>,
Paul Mackerras <paulus@...ba.org>, Jeremy Kerr <jk@...abs.org>,
Oliver O'Halloran <oohall@...il.com>
Subject: Re: [PATCH v10 5/9] ima: make process_buffer_measurement() generic
On Thu, 2019-10-31 at 03:31:30 UTC, Mimi Zohar wrote:
> From: Nayna Jain <nayna@...ux.ibm.com>
>
> process_buffer_measurement() is limited to measuring the kexec boot
> command line. This patch makes process_buffer_measurement() more
> generic, allowing it to measure other types of buffer data (e.g.
> blacklisted binary hashes or key hashes).
>
> process_buffer_measurement() may be called directly from an IMA
> hook or as an auxiliary measurement record. In both cases the buffer
> measurement is based on policy. This patch modifies the function to
> conditionally retrieve the policy defined PCR and template for the IMA
> hook case.
>
> Signed-off-by: Nayna Jain <nayna@...ux.ibm.com>
> [zohar@...ux.ibm.com: added comment in process_buffer_measurement()]
> Signed-off-by: Mimi Zohar <zohar@...ux.ibm.com>
Applied to powerpc next, thanks.
https://git.kernel.org/powerpc/c/e14555e3d0e9edfad0a6840c0152f71aba97e793
cheers
Powered by blists - more mailing lists