On Mon 2019-08-19 17:17:46, Matthew Garrett wrote: > From: Josh Boyer <jwboyer@xxxxxxxxxxxxxxxxx> > > There is currently no way to verify the resume image when returning > from hibernate. This might compromise the signed modules trust model, > so until we can work with signed hibernate images we disable it when the > kernel is locked down. > > Signed-off-by: Josh Boyer <jwboyer@xxxxxxxxxxxxxxxxx> > Signed-off-by: David Howells <dhowells@xxxxxxxxxx> > Signed-off-by: Matthew Garrett <mjg59@xxxxxxxxxx> > Reviewed-by: Kees Cook <keescook@xxxxxxxxxxxx> > Cc: rjw@xxxxxxxxxxxxx > Cc: pavel@xxxxxx > cc: linux-pm@xxxxxxxxxxxxxxx > Signed-off-by: James Morris <jmorris@xxxxxxxxx> Acked-by: Pavel Machek <pavel@xxxxxx> Pavel -- (english) http://www.livejournal.com/~pavelmachek (cesky, pictures) http://atrey.karlin.mff.cuni.cz/~pavel/picture/horses/blog.html
Attachment:
signature.asc
Description: Digital signature
