[GIT PULL] linux-integrity patches for 4.16-security-next-general
Mimi Zohar
zohar at linux.vnet.ibm.com
Fri Jan 5 14:59:57 UTC 2018
Hi Roberto,
On Fri, 2018-01-05 at 15:55 +0100, Roberto Sassu wrote:
> On 1/5/2018 2:43 PM, Mimi Zohar wrote:
> > Hi James,
> >
> > Mimi Zohar (2):
> > ima: relax requiring a file signature for new files with zero length
> > ima: support new "hash" and "dont_hash" policy actions
> Hi Mimi
>
> I think there is an issue in the patch above.
>
> + /* HASH just sets the digital signature flag, nothing else */
> + if ((action & IMA_HASH) && !(iint->flags & IMA_DIGSIG)) {
>
> IMA_DIGSIG now is an atomic flag.
Yes, this caused me grief, but is fixed in next-integrity branch.
Mimi
--
To unsubscribe from this list: send the line "unsubscribe linux-security-module" in
the body of a message to majordomo at vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
More information about the Linux-security-module-archive
mailing list