Mimi Zohar 5e6f29a2ed ima: fix blocking of security.ima xattrs of unsupported algorithms ... [ Upstream commit 5926586f29 ] Limit validating the hash algorithm to just security.ima xattr, not the security.evm xattr or any of the protected EVM security xattrs, nor posix acls. Fixes: 50f742dd91 ("IMA: block writes of the security.ima xattr with unsupported algorithms") Reported-by: Christian Brauner <brauner@kernel.org> Acked-by: Christian Brauner (Microsoft) <brauner@kernel.org> Signed-off-by: Mimi Zohar <zohar@linux.ibm.com> Signed-off-by: Sasha Levin <sashal@kernel.org>		2022-10-24 09:57:01 +02:00
..
apparmor	apparmor: Fix memleak in aa_simple_write_to_buffer()	2022-08-25 11:45:11 +02:00
bpf	…
integrity	ima: fix blocking of security.ima xattrs of unsupported algorithms	2022-10-24 09:57:01 +02:00
keys	KEYS: trusted: tpm2: Fix migratable logic	2022-06-08 14:12:13 +03:00
landlock	landlock: Fix file reparenting without explicit LANDLOCK_ACCESS_FS_REFER	2022-09-08 11:24:02 +02:00
loadpin	loadpin: stop using bdevname	2022-05-16 16:02:21 -07:00
lockdown	…
safesetid	…
selinux	selinux: implement the security_uring_cmd() LSM hook	2022-09-15 10:47:18 +02:00
smack	Smack: Provide read control for io_uring_cmd	2022-09-15 10:47:18 +02:00
tomoyo	LSM: Remove double path_rename hook calls for RENAME_EXCHANGE	2022-05-23 13:27:58 +02:00
yama	…
Kconfig	x86/retbleed: Add fine grained Kconfig knobs	2022-06-29 17:43:41 +02:00
Kconfig.hardening	hardening: Remove Clang's enable flag for -ftrivial-auto-var-init=zero	2022-10-12 09:51:23 +02:00
Makefile	security: remove unneeded subdir-$(CONFIG_...)	2021-09-03 08:17:20 +09:00
commoncap.c	fs: support mapped mounts of mapped filesystems	2021-12-05 10:28:57 +01:00
device_cgroup.c	bpf: Make BPF_PROG_RUN_ARRAY return -err instead of allow boolean	2022-01-19 12:51:30 -08:00
inode.c	…
lsm_audit.c	selinux: log anon inode class name	2022-05-03 16:09:03 -04:00
min_addr.c	…
security.c	lsm,io_uring: add LSM hooks for the new uring_cmd file op	2022-09-15 10:47:18 +02:00