On 8/28/19 9:14 AM, Mimi Zohar wrote:
In addition to the PE/COFF and IMA xattr signatures, the kexec kernel image can be signed with an appended signature, using the same scripts/sign-file tool that is used to sign kernel modules. This patch adds support for detecting a kernel image signed with an appended signature and updates the existing test messages appropriately. Reviewed-by: Petr Vorel <pvorel@xxxxxxx> Signed-off-by: Mimi Zohar <zohar@xxxxxxxxxxxxx> ---
Thanks Mimi. This commit log looks good. My Ack for the patch to go through the IMA tree. Acked-by: Shuah Khan <skhan@xxxxxxxxxxxxxxxxxxx> thanks, -- Shuah
