AcoSail/kernel_optimize_test
8
0
Fork 0
forked from luck/tmp_suning_uos_patched
Code Pull Requests Activity
7810e6781e
kernel_optimize_test/security/integrity/evm
History
Seth Forshee a3a5c966a6 evm: Don't update hmacs in user ns mounts 
The kernel should not calculate new hmacs for mounts done by
non-root users. Update evm_calc_hmac_or_hash() to refuse to
calculate new hmacs for mounts for non-init user namespaces.

Cc: linux-integrity@vger.kernel.org
Cc: linux-security-module@vger.kernel.org
Cc: linux-kernel@vger.kernel.org
Cc: James Morris <james.l.morris@oracle.com>
Cc: Mimi Zohar <zohar@linux.vnet.ibm.com>
Cc: "Serge E. Hallyn" <serge@hallyn.com>
Signed-off-by: Seth Forshee <seth.forshee@canonical.com>
Signed-off-by: Dongsu Park <dongsu@kinvolk.io>
Signed-off-by: Eric W. Biederman <ebiederm@xmission.com>
2018-05-03 11:28:29 -05:00
..
evm_crypto.c evm: Don't update hmacs in user ns mounts 2018-05-03 11:28:29 -05:00
evm_main.c evm: check for remount ro in progress before writing 2018-03-25 07:26:31 -04:00
evm_posix_acl.c
evm_secfs.c EVM: Allow userland to permit modification of EVM-protected metadata 2017-12-11 14:27:31 -05:00
evm.h evm: Move evm_hmac and evm_hash from evm_main.c to evm_crypto.c 2018-03-23 06:31:37 -04:00
Kconfig evm: EVM_LOAD_X509 depends on EVM 2015-12-15 09:57:21 -05:00
Makefile