---Problem Description--- Some krnel config options for IMA should not be enabled in the Ubuntu 17.04 kernel as they are at best experimental and at worst dangerous:
CONFIG_IMA_APPRAISE_SIGNED_INIT CONFIG_IMA_BLACKLIST_KEYRING CONFIG_IMA_KEYRINGS_PERMIT_SIGNED_BY_BUILTIN_OR_SECONDARY CONFIG_IIMA_READ_POLICY CONFIG_IIMA_WRITE_POLICY Please disable these config options in the Ubuntu 17.04 kernel config. ---uname output--- Linux briggs-rtp-2 4.9.0-15-generic #16-Ubuntu SMP Fri Jan 20 15:28:49 UTC 2017 ppc64le ppc64le ppc64le GNU/Linux Machine Type = S822LC 8001-22C Request from IBM for the Kernel team to consider. Michael On 02/23/2017 01:49 PM, Launchpad Bug Tracker wrote: > bugproxy (bugproxy) has assigned this bug to you for Ubuntu: > > ---Problem Description--- > Some krnel config options for IMA should not be enabled in the Ubuntu 17.04 > kernel as they are at best experimental and at worst dangerous: > > CONFIG_IMA_APPRAISE_SIGNED_INIT > CONFIG_IMA_BLACKLIST_KEYRING > CONFIG_IMA_KEYRINGS_PERMIT_SIGNED_BY_BUILTIN_OR_SECONDARY > CONFIG_IIMA_READ_POLICY > CONFIG_IIMA_WRITE_POLICY > > Please disable these config options in the Ubuntu 17.04 kernel config. > > ---uname output--- > Linux briggs-rtp-2 4.9.0-15-generic #16-Ubuntu SMP Fri Jan 20 15:28:49 UTC > 2017 ppc64le ppc64le ppc64le GNU/Linux > > Machine Type = S822LC 8001-22C > > ** Affects: ubuntu > Importance: Undecided > Assignee: Taco Screen team (taco-screen-team) > Status: New > > > ** Tags: architecture-ppc64le bugnameltc-151978 severity-critical > targetmilestone-inin1704 -- Michael Hohnbaum OIL Program Manager Power (ppc64el) Development Project Manager Canonical, Ltd. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1667490 Title: Please disable unnecessary config options in the Ubuntu 17.04 kernel config To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1667490/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
