[GIT PULL] linux-integrity patches for 4.15-security-next-testing

James Morris james.l.morris at oracle.com
Wed Nov 8 23:18:59 UTC 2017


On Wed, 8 Nov 2017, Mimi Zohar wrote:

> Hi James,
> 
> These are the rebased EVM & IMA patches for the security/next-testing
> branch.  There is a mixture of bug fixes, code cleanup, preparatory
> code for new functionality and new functionality.
> 
> Commit 26ddabfe96bb "evm: enable EVM when X509 certificate is loaded"
> enabled EVM without loading a symmetric key, but was limited to
> defining the x509 certificate pathname at build.  Included in this set
> of patches is the ability of enabling EVM, without loading the EVM
> symmetric key, from userspace.  New is the ability to prevent the
> loading of an EVM symmetric key.
> 
> [A version of commit 917086ff231f "vfs: fix mounting a filesystem with
> i_version" is included here, as it was upstreamed in -rc6.]
> 

Merged to next-testing and next-integrity in
git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security.git


- James
-- 
James Morris
<james.l.morris at oracle.com>


More information about the Linux-security-module-archive mailing list