On 2017-01-10 10:47 PM, Lans Zhang wrote:
CONFIG_INTEGRITY_SIGNATURE enables the normal IMA keyring "_ima", and CONFIG_IMA_TRUSTED_KEYRING is used to turn "_ima" into the "trusted" IMA keyring ".ima".
merged. I also added: commit f4dc37785e9b3373d0cb93125d5579fed2af3a43 upstream to the log (instead of asking for a v2). Bruce
Without this patch, it is impossible to use the normal IMA keyring if enabling CONFIG_INTEGRITY_SIGNATURE only.
-- _______________________________________________ linux-yocto mailing list linux-yocto@yoctoproject.org https://lists.yoctoproject.org/listinfo/linux-yocto