Re: [PATCH v10 13/27] ima: Only accept AUDIT rules for non-init_ima_ns namespaces for now
From: Mimi Zohar
Date: Thu Feb 17 2022 - 16:34:39 EST
On Tue, 2022-02-01 at 15:37 -0500, Stefan Berger wrote:
> Only accept AUDIT rules for non-init_ima_ns namespaces rejecting all rules
> that require support for measuring, appraisal, and hashing.
It's probably obvious, but adding the words "for now" somewhere in the
above line makes it clear this is temporary.
>
> Signed-off-by: Stefan Berger <stefanb@xxxxxxxxxxxxx>
> Acked-by: Christian Brauner <brauner@xxxxxxxxxx>
Reviewed-by: Mimi Zohar <zohar@xxxxxxxxxxxxx>
--
thanks,
Mimi