[PATCH v2 1/2] ima: use the lsm policy update notifier
Mimi Zohar
zohar at linux.ibm.com
Wed Jun 12 13:24:04 UTC 2019
On Wed, 2019-06-12 at 10:44 +0300, Janne Karhunen wrote:
> Don't do lazy policy updates while running the rule matching,
> run the updates as they happen.
>
> Depends on commit 141a61ce6c60 ("LSM: switch to blocking policy update notifiers")
>
> Changelog v2
> - Rebase to 'next-queued-testing'
> - Use memset to initialize the lsm rule array
> - Don't duplicate elements that are immutable during the rule copy
>
> =========
> Signed-off-by: Janne Karhunen <janne.karhunen at gmail.com>
>
Thanks, this looks a lot better.
Mimi
More information about the Linux-security-module-archive
mailing list