Re: [PATCH v2] ima: define ima_post_create_tmpfile() hook and add missing call

From: Ignaz Forster
Date: Tue Dec 18 2018 - 14:23:20 EST

Next message: Eric Anholt: "Re: [PATCH v2 03/19] mailbox: bcm2835: Use device-managed registration API"
Previous message: Noralf TrÃnnes: "Re: [PATCH] drm/xen-front: Make shmem backed display buffer coherent"
In reply to: Mimi Zohar: "[PATCH v2] ima: define ima_post_create_tmpfile() hook and add missing call"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Am 18.12.18 um 19:47 schrieb Mimi Zohar:

If tmpfiles can be made persistent, then newly created tmpfiles need to
be treated like any other new files in policy.

This patch indicates which newly created tmpfiles are in policy, causing
the file hash to be calculated on __fput().

Reported-by: Ignaz Forster <ignaz.forster@xxxxxx>
Signed-off-by: Mimi Zohar <zohar@xxxxxxxxxxxxx>

Tested-by: Ignaz Forster <iforster@xxxxxxxx>

Thanks a lot, the patch is working as expected.

Ignaz

Next message: Eric Anholt: "Re: [PATCH v2 03/19] mailbox: bcm2835: Use device-managed registration API"
Previous message: Noralf TrÃnnes: "Re: [PATCH] drm/xen-front: Make shmem backed display buffer coherent"
In reply to: Mimi Zohar: "[PATCH v2] ima: define ima_post_create_tmpfile() hook and add missing call"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]