diff options
author | Mimi Zohar <zohar@linux.vnet.ibm.com> | 2015-12-07 14:35:47 -0500 |
---|---|---|
committer | Mimi Zohar <zohar@linux.vnet.ibm.com> | 2015-12-15 10:01:43 -0500 |
commit | 6ad6afa14610c1fed3303c719b1f8f86f19f1fd3 (patch) | |
tree | 93a14e6217adbcb1232d50927c2f3c09eef9a242 /security/integrity/ima/ima_mok.c | |
parent | IMA: prevent keys on the .ima_blacklist from being removed (diff) | |
download | linux-dev-6ad6afa14610c1fed3303c719b1f8f86f19f1fd3.tar.xz linux-dev-6ad6afa14610c1fed3303c719b1f8f86f19f1fd3.zip |
ima: update appraise flags after policy update completes
While creating a temporary list of new rules, the ima_appraise flag is
updated, but not reverted on failure to append the new rules to the
existing policy. This patch defines temp_ima_appraise flag. Only when
the new rules are appended to the policy is the flag updated.
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
Acked-by: Petko Manolov <petkan@mip-labs.com>
Diffstat (limited to '')
0 files changed, 0 insertions, 0 deletions