[PATCH v2 0/4] integrity: improve user feedback for invalid bootparams

From: Bruno Meneguele
Date: Fri Sep 04 2020 - 15:41:14 EST


Some boot paramenters under integrity/ don't report any feedback to the user
in case an invalid/unknown option is passed. With this patch, try to be more
informative about what went wrong, including a more strict secure boot
feedback.

Bruno Meneguele (4):
ima: add check for enforced appraise option
integrity: invalid kernel parameters feedback
ima: limit secure boot feedback scope for appraise
integrity: prompt keyring name for unknown key request

security/integrity/digsig_asymmetric.c | 10 ++++++++--
security/integrity/evm/evm_main.c | 3 +++
security/integrity/ima/ima_appraise.c | 27 ++++++++++++++++++--------
security/integrity/ima/ima_main.c | 13 +++++++++----
security/integrity/ima/ima_policy.c | 2 ++
5 files changed, 41 insertions(+), 14 deletions(-)

--
2.26.2