mirror of https://gitee.com/openkylin/linux.git
9b97b6cdd4
Before modifying an EVM protected extended attribute or any other metadata included in the HMAC calculation, the existing 'security.evm' is verified. This patch adds calls to integrity_audit_msg() to audit integrity metadata failures. Reported-by: Sven Vermeulen <sven.vermeulen@siphos.be> Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com> |
||
---|---|---|
.. | ||
Kconfig | ||
Makefile | ||
evm.h | ||
evm_crypto.c | ||
evm_main.c | ||
evm_posix_acl.c | ||
evm_secfs.c |