Received: by 2002:a25:c593:0:0:0:0:0 with SMTP id v141csp2905996ybe;
        Sun, 8 Sep 2019 03:14:53 -0700 (PDT)
X-Google-Smtp-Source: APXvYqx7rvIIPQ3F/x5kDn2dRyZQVgEZ1xkqTlmBONTcvJmLNr2R4CdgMUWjGPD5xlf60qwixPdv
X-Received: by 2002:a17:902:9b86:: with SMTP id y6mr18595360plp.217.1567937693520;
        Sun, 08 Sep 2019 03:14:53 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1567937693; cv=none;
        d=google.com; s=arc-20160816;
        b=00gCCJbYENlpXUSTCKW4od5QkJ/gsuS630wkuSgiNlWdKLG/Aidp0OoAWTF+he6q4j
         YvMiTur7XaUtYRSjTJTJptSAC0AJZuv4DGNbGq72KYfueFW0s2rS5MnVOW4MXxEOzIoj
         jMdL7mu01nWVZ1mVReOq3ZS97FH5L51GqCUmP/GVNstDHEcEIVsxu06GfDwWV1qE1jiX
         9FQ8rjCFqqF5auwxqd2ansvc2saBiZRNtFiFphOyGXlpWXYm896apBueEB0Lb02FT20Y
         ewa2dEbIK1mO405ZNbaK1dlGSvsKqEvkKRkhEmcvEyMEfrHCqmftZ3/eprjJJBjit7K3
         K0YQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:message-id:date:subject:cc:to:from
         :dkim-filter;
        bh=jQny8D4nJfs7E0SPy6Y+GOz98tnPXQnE2Um0hSTxMKs=;
        b=OIEVFQmGkbMIWT4oFzJM8LfGiuU9ozJ2aeCtvS49rZc/906CdMdCoyB+i2yMCSOfUM
         UIiWl8SmRD74h0M7ujxYCwHcMLi9SptmsrbXYuoWplD8X1lzMSwcsylgoooDfAbnJKeS
         3HLdE2jJ3/TyH+qgCvUkiP/a/m9QSHUpojg6lb9YtvDGoxqR+KhahFIRZWX6hsjCGM0Y
         8GctBhGH/MSYS2g2vojS/3YjMVH1k4CWZhDAdV88KtD8+UDMy14HEuHCJ+YmYfm66Lkv
         pyKMh5l6vPTefgSkWMi/elyyVQ9IxYeksSVHuyNNQz+oZyKTZpTQWojLbKoZGJr9j7WQ
         VO1g==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=linux.microsoft.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id m5si10211159pjv.91.2019.09.08.03.14.38;
        Sun, 08 Sep 2019 03:14:53 -0700 (PDT)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=linux.microsoft.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S2392886AbfIFXvT (ORCPT <rfc822;vipinmukundan46@gmail.com>
        + 99 others); Fri, 6 Sep 2019 19:51:19 -0400
Received: from linux.microsoft.com ([13.77.154.182]:49462 "EHLO
        linux.microsoft.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S2390732AbfIFXvT (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Fri, 6 Sep 2019 19:51:19 -0400
Received: from prsriva-Precision-Tower-5810.corp.microsoft.com (unknown [167.220.2.18])
        by linux.microsoft.com (Postfix) with ESMTPSA id 86B3320B7186;
        Fri,  6 Sep 2019 16:51:18 -0700 (PDT)
DKIM-Filter: OpenDKIM Filter v2.11.0 linux.microsoft.com 86B3320B7186
From:   Prakhar Srivastava <prsriva@linux.microsoft.com>
To:     linux-kernel@vger.kernel.org, linux-arm-kernel@lists.infradead.org
Cc:     arnd@arndb.de, jean-philippe@linaro.org, allison@lohutok.net,
        kristina.martsenko@arm.org, yamada.masahiro@socionext.com,
        duwe@lst.de, mark.rutland@arm.com, tglx@linutronix.de,
        takahiro.akashi@linaro.org, james.morse@arm.org,
        catalin.marinas@arm.com, sboyd@kernel.org, bauerman@linux.ibm.com
Subject: [RFC][PATCH v1 0/1] Add support for arm64 to carry ima measurement log in kexec_file_load
Date:   Fri,  6 Sep 2019 16:51:09 -0700
Message-Id: <20190906235110.15566-1-prsriva@linux.microsoft.com>
X-Mailer: git-send-email 2.17.1
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

Add support for arm64 to carry ima measurement log
to the next kexec'ed session triggered via kexec_file_load.
- Top of Linux 5.3-rc6

Currently during kexec the kernel file signatures are/can be validated
prior to actual load, the information(PE/ima signature) is not carried
to the next session. This lead to loss of information.

Carrying forward the ima measurement log to the next kexec'ed session.
This allows a verifying party to get the entire runtime event log since
the last full reboot since that is when PCRs were last reset.

Prakhar Srivastava (1):
  Add support for arm64 to carry ima measurement log in kexec_file_load

 arch/arm64/Kconfig                     |   7 +
 arch/arm64/include/asm/ima.h           |  29 ++++
 arch/arm64/include/asm/kexec.h         |   5 +
 arch/arm64/kernel/Makefile             |   3 +-
 arch/arm64/kernel/ima_kexec.c          | 213 +++++++++++++++++++++++++
 arch/arm64/kernel/machine_kexec_file.c |   6 +
 6 files changed, 262 insertions(+), 1 deletion(-)
 create mode 100644 arch/arm64/include/asm/ima.h
 create mode 100644 arch/arm64/kernel/ima_kexec.c

-- 
2.17.1