Skip to content

Commit

Permalink
Removed old left overs about IMA policies
Browse files Browse the repository at this point in the history
  • Loading branch information
asierHuawei committed Jan 12, 2023
1 parent b05513b commit c5eb082
Showing 1 changed file with 0 additions and 2 deletions.
2 changes: 0 additions & 2 deletions keps/sig-node/3702-ima-namespace-support/README.md
Original file line number Diff line number Diff line change
Expand Up @@ -138,8 +138,6 @@ The linux kernel IMA namespace support is based on user namespaces. Therefore, t

Should we enable IMA namespaces by default when enabling user namespaces?

There will be a CRI API change which will allow the pod to use IMA namespaces and specify the namespace policy.

### Linux kernel

IMA is only available in Linux hosts and Linux containers. Unfortunately, IMA is not a separate namespace, which is needed in order to isolate it and be used inside containers. Upcoming kernel patches should add support for IMA namespaces.
Expand Down

0 comments on commit c5eb082

Please sign in to comment.