ima: use atomic bit operations to protect policy update interface - linux-dev - Linux kernel development work

diff options

author	Dmitry Kasatkin <d.kasatkin@samsung.com>	2014-10-03 14:40:21 +0300
committer	Mimi Zohar <zohar@linux.vnet.ibm.com>	2014-10-11 23:33:02 -0400
commit	0716abbb58e3c47e04354c2502083854f49c34e5 (patch)
tree	a4c5c40884a7bcb9cdf12d6e7184fe19699b1894 /security/integrity/ima/ima_template.c
parent	ima: ignore empty and with whitespaces policy lines (diff)
download	linux-dev-0716abbb58e3c47e04354c2502083854f49c34e5.tar.xz linux-dev-0716abbb58e3c47e04354c2502083854f49c34e5.zip

ima: use atomic bit operations to protect policy update interface

The current implementation uses an atomic counter to provide exclusive access to the sysfs 'policy' entry to update the IMA policy. While it is highly unlikely, the usage of a counter might potentially allow another process to overflow the counter, open the interface and insert additional rules into the policy being loaded. This patch replaces using an atomic counter with atomic bit operations which is more reliable and a widely used method to provide exclusive access. As bit operation keep the interface locked after successful update, it makes it unnecessary to verify if the default policy was set or not during parsing and interface closing. This patch also removes that code. Changes in v3: * move audit log message to ima_relead_policy() to report successful and unsuccessful result * unnecessary comment removed Changes in v2: * keep interface locked after successful policy load as in original design * remove sysfs entry as in original design Signed-off-by: Dmitry Kasatkin <d.kasatkin@samsung.com> Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>

Diffstat (limited to '')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: