asedeno.scripts.mit.edu Git - linux.git/commit

]> asedeno.scripts.mit.edu Git - linux.git/commit

author	Petr Vorel <pvorel@suse.cz>
	Fri, 20 Apr 2018 13:28:57 +0000 (15:28 +0200)
committer	Mimi Zohar <zohar@linux.vnet.ibm.com>
	Thu, 17 May 2018 11:47:17 +0000 (07:47 -0400)
commit	ffb122de9a60bd789422fd9caa4d8363acf1e851
tree	570885ea5e46c5e574ef949135aad858eccba8e0	tree \| snapshot
parent	890e2abe1028c39e5399101a2c277219cd637aaa	commit \| diff

ima: Reflect correct permissions for policy

Kernel configured as CONFIG_IMA_READ_POLICY=y && CONFIG_IMA_WRITE_POLICY=n
keeps 0600 mode after loading policy. Remove write permission to state
that policy file no longer be written.

Signed-off-by: Petr Vorel <pvorel@suse.cz>
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>

security/integrity/ima/ima_fs.c

diff | blob | history

local clone of linux.git

RSS Atom