Re: [PATCH v2 2/3] evm: add support to disable EVM on unsupported filesystems

From: Mimi Zohar
Date: Tue Dec 19 2023 - 14:10:22 EST

Next message: Igor Raits: "[REGRESSION] EEVDF scheduling fail, picking leftmost - Soft Lockup"
Previous message: Fenghua Yu: "Re: [PATCH] dmaengine: idxd: Remove usage of the deprecated ida_simple_xx() API"
In reply to: Mimi Zohar: "[PATCH v2 2/3] evm: add support to disable EVM on unsupported filesystems"
Next in thread: Amir Goldstein: "Re: [PATCH v2 2/3] evm: add support to disable EVM on unsupported filesystems"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, 2023-12-19 at 12:52 -0500, Mimi Zohar wrote:

> diff --git a/include/linux/fs.h b/include/linux/fs.h
> index 98b7a7a8c42e..db9350a734ef 100644
> --- a/include/linux/fs.h
> +++ b/include/linux/fs.h
> @@ -1164,6 +1164,7 @@ extern int send_sigurg(struct fown_struct *fown);
> #define SB_I_USERNS_VISIBLE 0x00000010 /* fstype already mounted */
> #define SB_I_IMA_UNVERIFIABLE_SIGNATURE 0x00000020
> #define SB_I_UNTRUSTED_MOUNTER 0x00000040
> +#define SB_I_EVM_UNSUPPORTED 0x00000050

This needs to be fixed.

Mimi

>
> #define SB_I_SKIP_SYNC 0x00000100 /* Skip superblock at global sync */
> #define SB_I_PERSB_BDI 0x00000200 /* has a per-sb bdi */
> diff --git a/security/integrity/evm/evm_main.c b/security/integrity/evm/evm_main.c

Next message: Igor Raits: "[REGRESSION] EEVDF scheduling fail, picking leftmost - Soft Lockup"
Previous message: Fenghua Yu: "Re: [PATCH] dmaengine: idxd: Remove usage of the deprecated ida_simple_xx() API"
In reply to: Mimi Zohar: "[PATCH v2 2/3] evm: add support to disable EVM on unsupported filesystems"
Next in thread: Amir Goldstein: "Re: [PATCH v2 2/3] evm: add support to disable EVM on unsupported filesystems"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]