ima-evm-utils

rpms/ima-evm-utils

Fork 0

Commit Graph

Author	SHA1	Message	Date
Coiby Xu	eff6110deb	ima-setup: Allow users to specify custom reinstall_threshold Resolves: https://issues.redhat.com/browse/RHEL-33751 Conflict: None Upstream Status: https://src.fedoraproject.org/rpms/ima-evm-utils.git commit 141a74d96ab3cdee1b0d2cf6a0cba19337920e02 Author: Coiby Xu <coxu@redhat.com> Date: Tue May 28 09:54:19 2024 +0800 ima-setup: Allow users to specify custom reinstall_threshold Some users may use custom built packages and we are not sure about the number of this type of packages. So make reinstall_threshold configurable. Suggested-by: Marko Myllynen <myllynen@redhat.com> Signed-off-by: Coiby Xu <coxu@redhat.com>	2024-06-08 07:18:20 +08:00
Coiby Xu	6760dcea53	Add some IMA setup tools Resolves: https://issues.redhat.com/browse/RHEL-33751 Conflict: Upstream has -libs subpackage Upstream Status: https://src.fedoraproject.org/rpms/ima-evm-utils.git commit 8980421a049c776e2b77e534793aafb925b3ad48 Author: Coiby Xu <coiby.xu@gmail.com> Date: Mon May 6 17:48:52 2024 +0800 Add some IMA setup tools Some IMA setup tools are added to ease IMA setup which will do the following tasks, - add IMA signatures to installed packages files - load IMA keys and policy - enable the dracut integrity module to load IMA keys and policy automatically Two IMA polices as suggested by Stefan Berger are also provided which will be signed automatically with other package files. Thanks to Marko Myllynen for coming up with the idea to have a tool similar to fips-mode-setup. And thanks to Mimi Zohar and Stefan Berger for providing the feedback! Signed-off-by: Coiby Xu <coxu@redhat.com> Signed-off-by: Coiby Xu <coxu@redhat.com>	2024-06-08 07:18:18 +08:00

Author

SHA1

Message

Date

Coiby Xu

eff6110deb

ima-setup: Allow users to specify custom reinstall_threshold

Resolves: https://issues.redhat.com/browse/RHEL-33751
Conflict: None

Upstream Status: https://src.fedoraproject.org/rpms/ima-evm-utils.git

commit 141a74d96ab3cdee1b0d2cf6a0cba19337920e02
Author: Coiby Xu <coxu@redhat.com>
Date:   Tue May 28 09:54:19 2024 +0800

    ima-setup: Allow users to specify custom reinstall_threshold

    Some users may use custom built packages and we are not sure about the
    number of this type of packages. So make reinstall_threshold
    configurable.

    Suggested-by: Marko Myllynen <myllynen@redhat.com>

Signed-off-by: Coiby Xu <coxu@redhat.com>

2024-06-08 07:18:20 +08:00

Coiby Xu

6760dcea53

Add some IMA setup tools

Resolves: https://issues.redhat.com/browse/RHEL-33751
Conflict: Upstream has -libs subpackage

Upstream Status: https://src.fedoraproject.org/rpms/ima-evm-utils.git

commit 8980421a049c776e2b77e534793aafb925b3ad48
Author: Coiby Xu <coiby.xu@gmail.com>
Date:   Mon May 6 17:48:52 2024 +0800

    Add some IMA setup tools

    Some IMA setup tools are added to ease IMA setup which will do
    the following tasks,
       - add IMA signatures to installed packages files
       - load IMA keys and policy
       - enable the dracut integrity module to load IMA keys and policy
         automatically

    Two IMA polices as suggested by Stefan Berger are also provided which
    will be signed automatically with other package files.

    Thanks to Marko Myllynen for coming up with the idea to have a tool
    similar to fips-mode-setup. And thanks to Mimi Zohar and Stefan Berger
    for providing the feedback!

    Signed-off-by: Coiby Xu <coxu@redhat.com>

Signed-off-by: Coiby Xu <coxu@redhat.com>

2024-06-08 07:18:18 +08:00

2 Commits