[GIT PULL] integrity: subsystem updates for v6.13
From: Mimi Zohar
Date: Fri Jan 17 2025 - 18:02:22 EST
Hi Linus,
There's just a couple of changes: 2 kernel messages addressed, a measurement policy
collision addressed, and 1 policy cleanup.
Please note that the contents of the IMA measurement list is potentially affected.
The builtin tmpfs IMA policy rule change might introduce additional measurements,
while detecting a reboot might eliminate some measurements.
Thanks,
Mimi
The following changes since commit fac04efc5c793dccbd07e2d59af9f90b7fc0dca4:
Linux 6.13-rc2 (2024-12-08 14:03:39 -0800)
are available in the Git repository at:
https://git.kernel.org/pub/scm/linux/kernel/git/zohar/linux-integrity.git/ tags/integrity-v6.13
for you to fetch changes up to 4785ed362a24d4f37ee0eb4403f587fee886f8da:
ima: ignore suffixed policy rule comments (2025-01-03 10:18:43 -0500)
----------------------------------------------------------------
integrity-v6.13
----------------------------------------------------------------
Breno Leitao (1):
ima: kexec: silence RCU list traversal warning
Mimi Zohar (2):
ima: limit the builtin 'tcb' dont_measure tmpfs policy rule
ima: ignore suffixed policy rule comments
Stefan Berger (1):
ima: Suspend PCR extends and log appends when rebooting
security/integrity/ima/ima.h | 1 +
security/integrity/ima/ima_init.c | 2 ++
security/integrity/ima/ima_kexec.c | 3 ++-
security/integrity/ima/ima_policy.c | 5 +++--
security/integrity/ima/ima_queue.c | 44 +++++++++++++++++++++++++++++++++++++
5 files changed, 52 insertions(+), 3 deletions(-)