Comment 1 for bug 1667490

Request from IBM for the Kernel team to consider.

                Michael

On 02/23/2017 01:49 PM, Launchpad Bug Tracker wrote:
> bugproxy (bugproxy) has assigned this bug to you for Ubuntu:
>
> ---Problem Description---
> Some krnel config options for IMA should not be enabled in the Ubuntu 17.04 kernel as they are at best experimental and at worst dangerous:
>
> CONFIG_IMA_APPRAISE_SIGNED_INIT
> CONFIG_IMA_BLACKLIST_KEYRING
> CONFIG_IMA_KEYRINGS_PERMIT_SIGNED_BY_BUILTIN_OR_SECONDARY
> CONFIG_IIMA_READ_POLICY
> CONFIG_IIMA_WRITE_POLICY
>
> Please disable these config options in the Ubuntu 17.04 kernel config.
>
> ---uname output---
> Linux briggs-rtp-2 4.9.0-15-generic #16-Ubuntu SMP Fri Jan 20 15:28:49 UTC 2017 ppc64le ppc64le ppc64le GNU/Linux
>
> Machine Type = S822LC 8001-22C
>
> ** Affects: ubuntu
> Importance: Undecided
> Assignee: Taco Screen team (taco-screen-team)
> Status: New
>
>
> ** Tags: architecture-ppc64le bugnameltc-151978 severity-critical targetmilestone-inin1704

--
Michael Hohnbaum
OIL Program Manager
Power (ppc64el) Development Project Manager
Canonical, Ltd.