On 1/15/24 13:18, Roberto Sassu wrote:
From: Roberto Sassu roberto.sassu@huawei.com
Since now IMA and EVM use their own integrity metadata, it is safe to remove the 'integrity' LSM, with its management of integrity metadata.
Keep the iint.c file only for loading IMA and EVM keys at boot, and for creating the integrity directory in securityfs (we need to keep it for retrocompatibility reasons).
Signed-off-by: Roberto Sassu roberto.sassu@huawei.com
Reviewed-by: Stefan Berger stefanb@linux.ibm.com