luck/tmp_suning_uos_patched
1
0
Fork 1
Code Issues Pull Requests Packages Projects Releases Wiki Activity
fdb2410f77
tmp_suning_uos_patched/security/integrity
History
Mimi Zohar fdb2410f77 ima: define ima_post_create_tmpfile() hook and add missing call 
If tmpfiles can be made persistent, then newly created tmpfiles need to
be treated like any other new files in policy.

This patch indicates which newly created tmpfiles are in policy, causing
the file hash to be calculated on __fput().

Reported-by: Ignaz Forster <ignaz.forster@gmx.de>
[rgoldwyn@suse.com: Call ima_post_create_tmpfile() in vfs_tmpfile() as
opposed to do_tmpfile(). This will help the case for overlayfs where
copy_up is denied while overwriting a file.]
Signed-off-by: Goldwyn Rodrigues <rgoldwyn@suse.com>
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
2019-02-04 17:36:01 -05:00
..
evm evm: remove set but not used variable 'xattr' 2019-02-04 17:36:01 -05:00
ima ima: define ima_post_create_tmpfile() hook and add missing call 2019-02-04 17:36:01 -05:00
platform_certs efi: Allow the "db" UEFI variable to be suppressed 2018-12-12 22:09:10 -05:00
digsig_asymmetric.c integrity: support new struct public_key_signature encoding field 2018-11-13 13:09:56 -08:00
digsig.c integrity, KEYS: add a reference to platform keyring 2019-02-04 17:29:19 -05:00
iint.c security: audit and remove any unnecessary uses of module.h 2018-12-12 14:58:51 -08:00
integrity_audit.c ima: Use audit_log_format() rather than audit_log_string() 2018-07-18 07:27:22 -04:00
integrity.h integrity: Remove references to module keyring 2018-12-17 14:09:39 -08:00
Kconfig Merge branch 'next-integrity' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security 2019-01-02 09:43:14 -08:00
Makefile efi: Import certificates from UEFI Secure Boot 2018-12-12 22:04:33 -05:00