]> www.infradead.org Git - users/jedix/linux-maple.git/commit
projects / users / jedix / linux-maple.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: a6af7bc) | patch
ipe: add support for dm-verity as a trust provider
authorDeven Bowers <deven.desai@linux.microsoft.com>
Sat, 3 Aug 2024 06:08:27 +0000 (23:08 -0700)
committerPaul Moore <paul@paul-moore.com>
Tue, 20 Aug 2024 18:02:45 +0000 (14:02 -0400)
commite155858dd99523d4afe0f74e9c26e4f4499eb5af
tree4e9034938934ccc58d6f10aff42616140392afe2tree
parenta6af7bc3d72ff52c5526a392144347fcb3094149commit | diff
ipe: add support for dm-verity as a trust provider

Allows author of IPE policy to indicate trust for a singular dm-verity
volume, identified by roothash, through "dmverity_roothash" and all
signed and validated dm-verity volumes, through "dmverity_signature".

Signed-off-by: Deven Bowers <deven.desai@linux.microsoft.com>
Signed-off-by: Fan Wu <wufan@linux.microsoft.com>
[PM: fixed some line length issues in the comments]
Signed-off-by: Paul Moore <paul@paul-moore.com>
14 files changed:
security/ipe/Kconfig diff | blob | history
security/ipe/Makefile diff | blob | history
security/ipe/audit.c diff | blob | history
security/ipe/digest.c [new file with mode: 0644] blob
security/ipe/digest.h [new file with mode: 0644] blob
security/ipe/eval.c diff | blob | history
security/ipe/eval.h diff | blob | history
security/ipe/hooks.c diff | blob | history
security/ipe/hooks.h diff | blob | history
security/ipe/ipe.c diff | blob | history
security/ipe/ipe.h diff | blob | history
security/ipe/policy.h diff | blob | history
security/ipe/policy_parser.c diff | blob | history
security/security.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.