It is not an error or warning if the local database of authorized signing

certificates does not exist. It just means that the signed module is untrusted.
author: Dave Brolley <brolley@redhat.com> 2009-08-10 11:47:17 -0400
committer: Dave Brolley <brolley@redhat.com> 2009-08-10 11:47:17 -0400
commit: 81b0eb8071ab21f554f0b154c1c58fcf186888c5 (patch)
tree: c9d7e876dce71818a5636f1b42324d2044a66c88 /runtime
parent: 6a783d278b6afb6a210844fd39774fdbf0bd8f16 (diff)
download: systemtap-steved-81b0eb8071ab21f554f0b154c1c58fcf186888c5.tar.gz
systemtap-steved-81b0eb8071ab21f554f0b154c1c58fcf186888c5.tar.xz
systemtap-steved-81b0eb8071ab21f554f0b154c1c58fcf186888c5.zip
1 files changed, 5 insertions, 0 deletions
diff --git a/runtime/staprun/modverify.c b/runtime/staprun/modverify.c
index 15447279..6dc192b2 100644
--- a/runtime/staprun/modverify.c
+++ b/runtime/staprun/modverify.c
@@ -33,6 +33,7 @@
 #include "modverify.h"
 
 #include <sys/stat.h>
+#include <errno.h>
 
 /* Function: int check_cert_db_permissions (const char *cert_db_path);
  * 
@@ -125,6 +126,10 @@ check_cert_db_permissions (const char *cert_db_path) {
   rc = stat (cert_db_path, & info);
   if (rc)
     {
+      /* It is ok if the directory does not exist. This simply means that no signing
+	 certificates have been authorized yet.  */
+      if (errno == ENOENT)
+	return 0;
       fprintf (stderr, "Could not obtain information on certificate database directory %s.\n",
 	       cert_db_path);
       perror ("");
author	Dave Brolley <brolley@redhat.com>	2009-08-10 11:47:17 -0400
committer	Dave Brolley <brolley@redhat.com>	2009-08-10 11:47:17 -0400
commit	81b0eb8071ab21f554f0b154c1c58fcf186888c5 (patch)
tree	c9d7e876dce71818a5636f1b42324d2044a66c88 /runtime
parent	6a783d278b6afb6a210844fd39774fdbf0bd8f16 (diff)
download	systemtap-steved-81b0eb8071ab21f554f0b154c1c58fcf186888c5.tar.gz systemtap-steved-81b0eb8071ab21f554f0b154c1c58fcf186888c5.tar.xz systemtap-steved-81b0eb8071ab21f554f0b154c1c58fcf186888c5.zip