[PATCH v10 13/27] ima: Only accept AUDIT rules for non-init_ima_ns namespaces for now
Mimi Zohar
zohar at linux.ibm.com
Thu Feb 17 21:32:52 UTC 2022
On Tue, 2022-02-01 at 15:37 -0500, Stefan Berger wrote:
> Only accept AUDIT rules for non-init_ima_ns namespaces rejecting all rules
> that require support for measuring, appraisal, and hashing.
It's probably obvious, but adding the words "for now" somewhere in the
above line makes it clear this is temporary.
>
> Signed-off-by: Stefan Berger <stefanb at linux.ibm.com>
> Acked-by: Christian Brauner <brauner at kernel.org>
Reviewed-by: Mimi Zohar <zohar at linux.ibm.com>
--
thanks,
Mimi
More information about the Linux-security-module-archive
mailing list