Linux kernel development work - see feature branches https://git.zx2c4.com/linux-dev/atom/tools/testing/selftests/ima/Makefile?h=master 2019-04-17T21:10:23Z 2019-04-17T21:10:23Z Mimi Zohar zohar@linux.ibm.com 2019-03-13T14:09:10Z urn:sha1:c3c0e811427632bb1c638377859f80cce956d1b3 As requested move the existing kexec_load selftest and subsequent kexec tests to the selftests/kexec directory. Suggested-by: Dave Young <dyoung@redhat.com> Signed-off-by: Mimi Zohar <zohar@linux.ibm.com> Reviewed-by: Petr Vorel <pvorel@suse.cz> Signed-off-by: Shuah Khan <skhan@linuxfoundation.org> 2018-12-11T12:19:47Z Mimi Zohar zohar@linux.ibm.com 2018-11-14T17:30:19Z urn:sha1:a802ed0dd9c2607cc219574e881062d43ea3b7e0 The kernel CONFIG_KEXEC_VERIFY_SIG option is limited to verifying a kernel image's signature, when loaded via the kexec_file_load syscall. There is no method for verifying a kernel image's signature loaded via the kexec_load syscall. This test verifies loading the kernel image via the kexec_load syscall fails when the kernel CONFIG_KEXEC_VERIFY_SIG option is enabled on systems with secureboot enabled[1]. [1] Detecting secureboot enabled is architecture specific. Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>