[PATCH 2/2] IMA: Support using new creds in appraisal policy
Matthew Garrett
mjg59 at google.com
Mon Oct 16 21:20:11 UTC 2017
On Mon, Oct 16, 2017 at 2:03 PM, Mikhail Kurinnoi
<viewizard at viewizard.com> wrote:
> В Mon, 16 Oct 2017 13:37:09 -0700
> Matthew Garrett <mjg59 at google.com> пишет:
>> #define IMA_BPRM_APPRAISED 0x00002000
>> #define IMA_READ_APPRAISE 0x00004000
>> #define IMA_READ_APPRAISED 0x00008000
>> +#define IMA_CREDS_APPRAISE 0x00004000
>> +#define IMA_CREDS_APPRAISED 0x00008000
>
> Is this correct, that the IMA_CREDS_APPRAISE and IMA_CREDS_APPRAISED
> same as IMA_READ_APPRAISE and IMA_READ_APPRAISED?
Definitely not correct, good catch. I'll resend with that fixed if
people feel this approach is reasonable.
--
To unsubscribe from this list: send the line "unsubscribe linux-security-module" in
the body of a message to majordomo at vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
More information about the Linux-security-module-archive
mailing list