dgit.raspbian.org Git - linux.git/commit

author	Lee, Chun-Yi <joeyli.kernel@gmail.com>
	Tue, 13 Mar 2018 10:38:03 +0000 (18:38 +0800)
committer	Salvatore Bonaccorso <carnil@debian.org>
	Sat, 19 Sep 2020 12:17:19 +0000 (13:17 +0100)
commit	2a3f400de99cccf290774368a770d8b8f8e61bce
tree	eb100ff48a67e818a1c7cf060f5133c4cc2b399b	tree \| snapshot
parent	55907c9bc748830ef00feaf8a72492cdc54bec08	commit \| diff

[PATCH 4/4] MODSIGN: check the attributes of db and mok

Origin: https://lore.kernel.org/patchwork/patch/933176/

That's better for checking the attributes of db and mok variables
before loading certificates to kernel keyring.

For db and dbx, both of them are authenticated variables. Which
means that they can only be modified by manufacturer's key. So
the kernel should checks EFI_VARIABLE_TIME_BASED_AUTHENTICATED_WRITE_ACCESS
attribute before we trust it.

For mok-rt and mokx-rt, both of them are created by shim boot loader
to forward the mok/mokx content to runtime. They must be runtime-volatile
variables. So kernel should checks that the attributes map did not set
EFI_VARIABLE_NON_VOLATILE bit before we trust it.

Cc: David Howells <dhowells@redhat.com>
Cc: Josh Boyer <jwboyer@fedoraproject.org>
Cc: James Bottomley <James.Bottomley@HansenPartnership.com>
Signed-off-by: "Lee, Chun-Yi" <jlee@suse.com>
[Rebased by Luca Boccassi]
[bwh: Forward-ported to 5.5.9:
- get_cert_list() takes a pointer to status and returns the cert list
- Adjust filename, context]

Gbp-Pq: Topic features/all/db-mok-keyring
Gbp-Pq: Name 0004-MODSIGN-check-the-attributes-of-db-and-mok.patch