Re: [PATCH] IMA: Use the system trusted keyrings instead of .ima_mok (update)

From: David Howells
Date: Wed Apr 06 2016 - 12:24:57 EST

Next message: Appana Durga Kedareswara Rao: "RE: [PATCH v3 1/5] Documentation: DT: vdma: Rename vdma-chan prefix to dma-chan"
Previous message: Andrew Lunn: "Re: [PATCH net-next v2] net: dsa: document missing functions"
In reply to: Mimi Zohar: "[PATCH] IMA: Use the system trusted keyrings instead of .ima_mok (update)"
Next in thread: Mimi Zohar: "Re: [PATCH] IMA: Use the system trusted keyrings instead of .ima_mok (update)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Looking in digsig.c, I see:

#ifdef CONFIG_INTEGRITY_TRUSTED_KEYRING
static bool init_keyring __initdata = true;
#else
static bool init_keyring __initdata;
#endif

Since this doesn't ever appear to be altered, should integrity_init_keyring()
just be made conditionally compiled?

David

Next message: Appana Durga Kedareswara Rao: "RE: [PATCH v3 1/5] Documentation: DT: vdma: Rename vdma-chan prefix to dma-chan"
Previous message: Andrew Lunn: "Re: [PATCH net-next v2] net: dsa: document missing functions"
In reply to: Mimi Zohar: "[PATCH] IMA: Use the system trusted keyrings instead of .ima_mok (update)"
Next in thread: Mimi Zohar: "Re: [PATCH] IMA: Use the system trusted keyrings instead of .ima_mok (update)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]