On Fri, Mar 21, 2025 at 09:45:03AM -0700, Blaise Boscaccy wrote:
> This adds the Hornet Linux Security Module which provides signature
> verification of eBPF programs.
>
> Hornet uses a similar signature verification scheme similar to that of
used 'similar' twice
> kernel modules. A pkcs#7 signa
On Wed, Oct 23, 2024 at 07:25:21PM +, Eric Snowberg wrote:
> > On Oct 22, 2024, at 8:25 PM, ser...@kernel.org wrote:
> >
> > On Thu, Oct 17, 2024 at 09:55:11AM -0600, Eric Snowberg wrote:
> >>
> >> +The Clavis LSM contains a system keyring call .clavis. It contains a
> >> single
> >
> > s/
On Thu, Oct 17, 2024 at 09:55:11AM -0600, Eric Snowberg wrote:
> Introduce a new LSM called clavis. The motivation behind this LSM is to
> provide access control for system keys. The access control list is
> contained within a keyring call .clavis. During boot if the clavis= boot
> arg is suppli
