Re: [PATCH 0/4] KEYS: validate key trust with owner and builtin keys only

From: David Howells
Date: Fri Jun 27 2014 - 10:16:46 EST


Matthew Garrett <mjg59@xxxxxxxxxxxxx> wrote:

> Yes. Wouldn't having a mechanism to allow userspace to drop keys that
> have otherwise been imported be a generally useful solution to the issue
> you have with that?

"keyctl invalidate" could be a way to drop keys.

David
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/