Re: [PATCH] IMA: Use the system trusted keyrings instead of .ima_mok (update)

From: David Howells
Date: Wed Apr 06 2016 - 14:10:18 EST

Next message: Johan Hovold: "Re: [PATCH v2 10/14] USB: ch341: fix coding style"
Previous message: Lars-Peter Clausen: "Re: [PATCH] staging: iio: ad7606: use iio_device_{claim|release}_direct_mode()"
In reply to: Mimi Zohar: "Re: [PATCH] IMA: Use the system trusted keyrings instead of .ima_mok (update)"
Next in thread: Mimi Zohar: "Re: [PATCH] IMA: Use the system trusted keyrings instead of .ima_mok (update)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Mimi Zohar <zohar@xxxxxxxxxxxxxxxxxx> wrote:

> I'm not sure what you're asking. If you're asking if the whole file can
> be include based on whether this option is enabled, then no.

No - but integrity_init_keyring() just returns if init_keyring is false - but
this is a variable and is assigned storage, despite the fact that its value is
only set at compile time as far as I can see.

David

Next message: Johan Hovold: "Re: [PATCH v2 10/14] USB: ch341: fix coding style"
Previous message: Lars-Peter Clausen: "Re: [PATCH] staging: iio: ad7606: use iio_device_{claim|release}_direct_mode()"
In reply to: Mimi Zohar: "Re: [PATCH] IMA: Use the system trusted keyrings instead of .ima_mok (update)"
Next in thread: Mimi Zohar: "Re: [PATCH] IMA: Use the system trusted keyrings instead of .ima_mok (update)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]