[PATCH 14/16] kexec: Export sysfs attributes for secureboot and secure modules to user space
Vivek Goyal
vgoyal at redhat.com
Wed Sep 11 09:44:01 EDT 2013
On Tue, Sep 10, 2013 at 03:40:09PM -0700, Greg KH wrote:
> On Tue, Sep 10, 2013 at 05:44:29PM -0400, Vivek Goyal wrote:
> > User space kexec-tools need to know whether to verify signature of kernel
> > image being loaded. This patch exports two knobs to user space. One is
> > for knowing if secureboot is enabled, this knob will be set to 1 if secure
> > boot is enabled. Other knob is secure_module_enabled. This knob will be set
> > to 1 if secure modules is one.
> >
> > kexec-tools will verify signature of kernel image if either secureboot is
> > enabled or secure modules is enabled. The only difference between two is
> > that kexec-tools will set secureboot on in bootparams being passed to
> > second kernel if secureboot is on in first kernel.
> >
> > Signed-off-by: Vivek Goyal <vgoyal at redhat.com>
> > ---
> > kernel/ksysfs.c | 25 +++++++++++++++++++++++++
> > 1 file changed, 25 insertions(+)
>
> Minor nit, if you add/modify/delete sysfs files, you also have to update
> Documentation/ABI/ with the information about those files.
>
Sure. Will update Documentation/ABI/ in next version.
Thanks
Vivek
More information about the kexec
mailing list