Re: [RFC PATCH v3 00/13] Clavis LSM

From: James Bottomley
Date: Thu Mar 20 2025 - 18:41:10 EST

Next message: Christian Loehle: "Re: [PATCH] sched/fair: Add null pointer check to pick_next_entity()"
Previous message: Alex Elder: "Re: [PATCH v5 3/5] clk: spacemit: Add clock support for Spacemit K1 SoC"
In reply to: Paul Moore: "Re: [RFC PATCH v3 00/13] Clavis LSM"
Next in thread: Eric Snowberg: "Re: [RFC PATCH v3 00/13] Clavis LSM"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, 2025-03-20 at 16:24 +0000, Eric Snowberg wrote:
> Having lockdown enforcement has always been
> a requirement to get a shim signed by Microsoft.

This is factually incorrect. Microsoft transferred shim signing to an
independent process run by a group of open source maintainers a while
ago:

https://github.com/rhboot/shim-review/

If you actually look, you'll see even Microsoft has to obey this
upstream process for their Linux distro:

https://github.com/rhboot/shim-review/issues/427

Regards,

James

Next message: Christian Loehle: "Re: [PATCH] sched/fair: Add null pointer check to pick_next_entity()"
Previous message: Alex Elder: "Re: [PATCH v5 3/5] clk: spacemit: Add clock support for Spacemit K1 SoC"
In reply to: Paul Moore: "Re: [RFC PATCH v3 00/13] Clavis LSM"
Next in thread: Eric Snowberg: "Re: [RFC PATCH v3 00/13] Clavis LSM"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]