Google Git
Sign in
android-kvm / linux / 5926586f291b53cb8a0c9631fc19489be1186e2d
commit5926586f291b53cb8a0c9631fc19489be1186e2d[log] [tgz]
authorMimi Zohar <zohar@linux.ibm.com>Wed Aug 17 17:18:42 2022 -0400
committerMimi Zohar <zohar@linux.ibm.com>Tue Aug 23 10:42:02 2022 -0400
treed0705428442592804274b3bd0b93ae8b212e214c
parent1c23f9e627a7b412978b4e852793c5e3c3efc555 [diff]
ima: fix blocking of security.ima xattrs of unsupported algorithms

Limit validating the hash algorithm to just security.ima xattr, not
the security.evm xattr or any of the protected EVM security xattrs,
nor posix acls.

Fixes: 50f742dd9147 ("IMA: block writes of the security.ima xattr with unsupported algorithms")
Reported-by: Christian Brauner <brauner@kernel.org>
Acked-by: Christian Brauner (Microsoft) <brauner@kernel.org>
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
1 file changed
tree: d0705428442592804274b3bd0b93ae8b212e214c
  1. arch/
  2. block/
  3. certs/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. fs/
  8. include/
  9. init/
  10. io_uring/
  11. ipc/
  12. kernel/
  13. lib/
  14. LICENSES/
  15. mm/
  16. net/
  17. samples/
  18. scripts/
  19. security/
  20. sound/
  21. tools/
  22. usr/
  23. virt/
  24. .clang-format
  25. .cocciconfig
  26. .get_maintainer.ignore
  27. .gitattributes
  28. .gitignore
  29. .mailmap
  30. COPYING
  31. CREDITS
  32. Kbuild
  33. Kconfig
  34. MAINTAINERS
  35. Makefile
  36. README