subject:"\[PATCH v2 4\/9\] kexec\: add call to LSM hook in original kexec_load syscall"

[PATCH v2 4/9] kexec: add call to LSM hook in original kexec_load syscall

2018-05-17 Thread Mimi Zohar

In order for LSMs and IMA-appraisal to differentiate between the original and new syscalls, both the original and new syscalls must call an LSM hook. This patch adds a call to security_kernel_read_blob() in the original kexec syscall. Signed-off-by: Mimi Zohar Cc: Eric

[PATCH v2 4/9] kexec: add call to LSM hook in original kexec_load syscall

2018-05-17 Thread Mimi Zohar

In order for LSMs and IMA-appraisal to differentiate between the original and new syscalls, both the original and new syscalls must call an LSM hook. This patch adds a call to security_kernel_read_blob() in the original kexec syscall. Signed-off-by: Mimi Zohar Cc: Eric Biederman Cc: Luis R.