Hi,
On Fri, Oct 16, 2015 at 10:31 PM, Petko Manolov wrote:
> IMA policy can now be updated multiple times. The new rules get appended
> to the original policy. Have in mind that the rules are scanned in FIFO
> order so be careful when you add new ones.
>
> The mutex locks are replaced with RCU,
On Sat, Oct 24, 2015 at 3:28 PM, Petko Manolov wrote:
> On 15-10-23 20:13:41, Dmitry Kasatkin wrote:
>> On Fri, Oct 23, 2015 at 3:29 PM, Petko Manolov wrote:
>> >
>> > I was actually going to get rid of IMA_FS_BUSY. It is less flexible with
>> > respect to user-space tools. If the flag is up th
Added 'hashalg=' option for selecting the hash algorithm.
Currently available options are:
* sha1
* sha256
* sha384
* sha512
* sm3_256
Signed-off-by: Jarkko Sakkinen
---
drivers/char/tpm/tpm.h | 5 -
drivers/char/tpm/tpm2-cmd.c | 34 ++
include/keys/tr
On 15-10-23 20:13:41, Dmitry Kasatkin wrote:
> On Fri, Oct 23, 2015 at 3:29 PM, Petko Manolov wrote:
> >
> > I was actually going to get rid of IMA_FS_BUSY. It is less flexible with
> > respect to user-space tools. If the flag is up then the policy upload will
> > fail. The user script or pro
On 15-10-23 14:43:53, Mimi Zohar wrote:
> On Fri, 2015-10-23 at 16:05 +0300, Petko Manolov wrote:
> > On 15-10-22 21:49:25, Dmitry Kasatkin wrote:
>
> > > diff --git a/security/integrity/ima/Kconfig
> > > b/security/integrity/ima/Kconfig
> > > index df30334..a292b88 100644
> > > --- a/security/in