[PATCH v1 2/9] certs: Make blacklist_vet_description() more strict

David Howells dhowells at redhat.com
Fri Dec 4 14:09:25 UTC 2020


Mickaël Salaün <mic at digikod.net> wrote:

> +	if (*desc)
> +		/* The hash is greater than MAX_HASH_LEN. */
> +		return -EINVAL;

-ENOPKG might be better.  It's not that the string is invalid, it's just that
it's unsupported at the moment.

David




More information about the Linux-security-module-archive mailing list