Mimi Zohar fd6170bf43 ima: relax requiring a file signature for new files with zero length ... [ Upstream commit b7e27bc1d4 ] Custom policies can require file signatures based on LSM labels. These files are normally created and only afterwards labeled, requiring them to be signed. Instead of requiring file signatures based on LSM labels, entire filesystems could require file signatures. In this case, we need the ability of writing new files without requiring file signatures. The definition of a "new" file was originally defined as any file with a length of zero. Subsequent patches redefined a "new" file to be based on the FILE_CREATE open flag. By combining the open flag with a file size of zero, this patch relaxes the file signature requirement. Fixes: 1ac202e978 ima: accept previously set IMA_NEW_FILE Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com> Signed-off-by: Sasha Levin <alexander.levin@microsoft.com> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>		2018-03-19 08:42:56 +01:00
..
evm	fs: switch ->s_uuid to uuid_t	2017-06-05 16:59:12 +02:00
ima	ima: relax requiring a file signature for new files with zero length	2018-03-19 08:42:56 +01:00
digsig.c	KEYS: Use structure to capture key restriction function and data	2017-04-04 14:10:10 -07:00
digsig_asymmetric.c	integrity: Small code improvements	2017-06-21 14:37:12 -04:00
iint.c	integrity: Small code improvements	2017-06-21 14:37:12 -04:00
integrity.h	integrity: Small code improvements	2017-06-21 14:37:12 -04:00
integrity_audit.c	Merge git://git.infradead.org/users/eparis/audit	2014-04-12 12:38:53 -07:00
Kconfig	security: integrity: Remove select to deleted option PUBLIC_KEY_ALGO_RSA	2016-04-12 19:54:58 +01:00
Makefile	License cleanup: add SPDX GPL-2.0 license identifier to files with no license	2017-11-02 11:10:55 +01:00