Re: [PATCH] X.509: Partially revert patch to add validation against IMA MOK keyring

From: David Howells
Date: Wed Jan 13 2016 - 13:19:36 EST

Next message: Jacob Pan: "Re: [PATCH v2 2/2] powercap/rapl: reduce ipi calls"
Previous message: Nishanth Menon: "Re: [PATCH 1/3] ARM: dts: omap5-board-common: enable rtc and charging of backup battery"
In reply to: Petko Manolov: "Re: [PATCH] X.509: Partially revert patch to add validation against IMA MOK keyring"
Next in thread: Petko Manolov: "Re: [PATCH] X.509: Partially revert patch to add validation against IMA MOK keyring"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Mimi Zohar <zohar@xxxxxxxxxxxxxxxxxx> wrote:

> I beg to differ. The IMA model is not broken with the current patches
> being upstreamed. The basic concepts developed will continue to be
> used, perhaps not directly by IMA.

I still object to the change to x509_key_preparse() and still want it
reverting or removing. It affects module signing too.

David

Next message: Jacob Pan: "Re: [PATCH v2 2/2] powercap/rapl: reduce ipi calls"
Previous message: Nishanth Menon: "Re: [PATCH 1/3] ARM: dts: omap5-board-common: enable rtc and charging of backup battery"
In reply to: Petko Manolov: "Re: [PATCH] X.509: Partially revert patch to add validation against IMA MOK keyring"
Next in thread: Petko Manolov: "Re: [PATCH] X.509: Partially revert patch to add validation against IMA MOK keyring"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]