TWxSoftware/twx-linux
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
v6.6.49
twx-linux/security/integrity/evm
History
Mimi Zohar 7a3e7f1ed6 evm: don't copy up 'security.evm' xattr 
[ Upstream commit 40ca4ee3136d2d09977d1cab8c0c0e1582c3359d ]

The security.evm HMAC and the original file signatures contain
filesystem specific data.  As a result, the HMAC and signature
are not the same on the stacked and backing filesystems.

Don't copy up 'security.evm'.

Reviewed-by: Amir Goldstein <amir73il@gmail.com>
Reviewed-by: Christian Brauner <brauner@kernel.org>
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
Signed-off-by: Sasha Levin <sashal@kernel.org>
2024-08-29 17:33:31 +02:00
..
evm_crypto.c evm: Support multiple LSMs providing an xattr 2023-07-10 13:59:39 -04:00
evm_main.c evm: don't copy up 'security.evm' xattr 2024-08-29 17:33:31 +02:00
evm_posix_acl.c treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 441 2019-06-05 17:37:17 +02:00
evm_secfs.c fs: port ->setattr() to pass mnt_idmap 2023-01-19 09:24:02 +01:00
evm.h evm: Support multiple LSMs providing an xattr 2023-07-10 13:59:39 -04:00
Kconfig integrity: Enforce digitalSignature usage in the ima and evm keyrings 2023-08-17 20:12:35 +00:00
Makefile treewide: Add SPDX license identifier - Makefile/Kconfig 2019-05-21 10:50:46 +02:00