[ACT][PATCH] ubuntu_boot: test for ability to preload revocation keys.

Dimitri John Ledkov dimitri.ledkov at canonical.com
Mon Aug 23 17:16:57 UTC 2021

_LIST config option indicates that blacklist/revocation keyring is
available. The test instead needs to check if one can preload
revocation keys as built-in. As it happens _LIST got backported to
v5.4 without _KEYS option.

Signed-off-by: Dimitri John Ledkov <dimitri.ledkov at canonical.com>
 ubuntu_boot/kernel_revocation_list.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/ubuntu_boot/kernel_revocation_list.py b/ubuntu_boot/kernel_revocation_list.py
index dbd4294658..83ddc835f5 100755
--- a/ubuntu_boot/kernel_revocation_list.py
+++ b/ubuntu_boot/kernel_revocation_list.py
@@ -13,11 +13,11 @@ class TestRevocationList(unittest.TestCase):
         revocation_list_available = False
         with open(config_file) as f:
             for line in f:
-                if re.search("CONFIG_SYSTEM_REVOCATION_LIST", line):
+                if re.search("CONFIG_SYSTEM_REVOCATION_KEYS", line):
                     revocation_list_available = True
         if not revocation_list_available:
-            raise unittest.SkipTest("CONFIG_SYSTEM_REVOCATION_LIST not available")
+            raise unittest.SkipTest("CONFIG_SYSTEM_REVOCATION_KEYS not available")
         if not shutil.which("keyctl"):
             raise unittest.SkipTest("keyutils not installed")

More information about the kernel-team mailing list