On Thu, 2019-10-31 at 03:31:27 UTC, Mimi Zohar wrote: > From: Nayna Jain <nayna@xxxxxxxxxxxxx> > > PowerNV systems use a Linux-based bootloader, which rely on the IMA > subsystem to enforce different secure boot modes. Since the verification > policy may differ based on the secure boot mode of the system, the > policies must be defined at runtime. > > This patch implements arch-specific support to define IMA policy > rules based on the runtime secure boot mode of the system. > > This patch provides arch-specific IMA policies if PPC_SECURE_BOOT > config is enabled. > > Signed-off-by: Nayna Jain <nayna@xxxxxxxxxxxxx> > Signed-off-by: Mimi Zohar <zohar@xxxxxxxxxxxxx> Applied to powerpc next, thanks. https://git.kernel.org/powerpc/c/4238fad366a660cbc6499ca1ea4be42bd4d1ac5b cheers
