On 7/11/23 12:19, Stefan Berger wrote:
On 7/11/23 14:41, Tushar Sugandhi wrote:
Adding Eric to cc.
On 7/7/23 05:28, Stefan Berger wrote:
On 7/3/23 17:57, Tushar Sugandhi wrote:
Currently, there's no mechanism to map and unmap segments to the
kimage
structure. This functionality is
On 7/11/23 14:11, Mimi Zohar wrote:
On Tue, 2023-07-11 at 10:59 -0700, Tushar Sugandhi wrote:
Adding Eric to cc.
On 7/7/23 06:00, Mimi Zohar wrote:
Hi Tushar,
On Mon, 2023-07-03 at 14:57 -0700, Tushar Sugandhi wrote:
IMA does not provide a mechanism to allocate memory for IMA log storage
On 7/11/23 13:16, Stefan Berger wrote:
On 7/3/23 17:57, Tushar Sugandhi wrote:
The IMA subsystem needs a dedicated mechanism to reserve extra memory
for
measurements added between the kexec 'load' and kexec 'execute'.
Update ima_add_kexec_buffer to allocate a buffer of a sufficient size
On 7/11/23 18:28, RuiRui Yang wrote:
On Wed, 12 Jul 2023 at 03:15, Tushar Sugandhi
wrote:
On 7/7/23 01:20, RuiRui Yang wrote:
On Tue, 4 Jul 2023 at 05:58, Tushar Sugandhi
wrote:
The kexec_file_load syscall is used to load a new kernel for kexec.
The syscall needs to update its function to
[Cc'ing the LSM mailing list.]
On Tue, 2023-07-11 at 11:16 +0800, Coiby Xu wrote:
> When IMA has verified the signature of the kernel image, kexec'ing this
> kernel should be allowed.
>
> Fixes: af16df54b89d ("ima: force signature verification when CONFIG_KEXEC_SIG
> is configured")
>
On Tue, 2023-07-11 at 12:08 -0700, Tushar Sugandhi wrote:
> Adding Eric to cc.
>
> On 7/7/23 12:49, Mimi Zohar wrote:
> > On Fri, 2023-07-07 at 11:01 -0400, Mimi Zohar wrote:
> >> Hi Tushar,
> >>
> >> On Mon, 2023-07-03 at 14:57 -0700, Tushar Sugandhi wrote:
> >>
> >>> +/*
> >>> + * Called during
