ima: update appraise flags after policy update completes - linux-dev - Linux kernel development work

diff options

author	Mimi Zohar <zohar@linux.vnet.ibm.com>	2015-12-07 14:35:47 -0500
committer	Mimi Zohar <zohar@linux.vnet.ibm.com>	2015-12-15 10:01:43 -0500
commit	6ad6afa14610c1fed3303c719b1f8f86f19f1fd3 (patch)
tree	93a14e6217adbcb1232d50927c2f3c09eef9a242 /security/integrity/ima/ima_mok.c
parent	IMA: prevent keys on the .ima_blacklist from being removed (diff)
download	linux-dev-6ad6afa14610c1fed3303c719b1f8f86f19f1fd3.tar.xz linux-dev-6ad6afa14610c1fed3303c719b1f8f86f19f1fd3.zip

ima: update appraise flags after policy update completes

While creating a temporary list of new rules, the ima_appraise flag is updated, but not reverted on failure to append the new rules to the existing policy. This patch defines temp_ima_appraise flag. Only when the new rules are appended to the policy is the flag updated. Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com> Acked-by: Petko Manolov <petkan@mip-labs.com>

Diffstat (limited to '')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: