From f63f411d52df613936082d646ab072447b8b9d7f Mon Sep 17 00:00:00 2001
From: Antonio Alvarez Feijoo <antonio.feijoo@suse.com>
Date: Tue, 24 May 2022 16:34:04 +0200
Subject: [PATCH] fix(integrity): do not display any error if there is no IMA
 certificate

IMA appraisal can be used without digital signatures, just by storing hash
digests instead.

Reference:https://github.com/dracutdevs/dracut/commit/f63f411d52df613936082d646ab072447b8b9d7f
Conflict:NA
---
 modules.d/98integrity/ima-keys-load.sh | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/modules.d/98integrity/ima-keys-load.sh b/modules.d/98integrity/ima-keys-load.sh
index 2959331a..be234761 100755
--- a/modules.d/98integrity/ima-keys-load.sh
+++ b/modules.d/98integrity/ima-keys-load.sh
@@ -17,8 +17,7 @@ load_x509_keys() {
         IMAKEYSDIR="/etc/keys/ima"
     fi
 
-    PUBKEY_LIST=$(ls "${NEWROOT}"${IMAKEYSDIR}/*)
-    for PUBKEY in ${PUBKEY_LIST}; do
+    for PUBKEY in "${NEWROOT}${IMAKEYSDIR}"/*; do
         # check for public key's existence
         if [ ! -f "${PUBKEY}" ]; then
             if [ "${RD_DEBUG}" = "yes" ]; then
-- 
2.23.0