summaryrefslogtreecommitdiffstats
path: root/drivers/i2c
diff options
context:
space:
mode:
authorMimi Zohar <zohar@linux.vnet.ibm.com>2018-02-21 11:35:20 -0500
committerMimi Zohar <zohar@linux.vnet.ibm.com>2018-03-23 06:31:37 -0400
commitd77ccdc644a59b412d8e101576134c90a0aa6797 (patch)
tree80fa2cc61e12a5b5e5647ed29aa31eab9254a037 /drivers/i2c
parent57b56ac6fecb05c3192586e4892572dd13d972de (diff)
downloadtalos-op-linux-d77ccdc644a59b412d8e101576134c90a0aa6797.tar.gz
talos-op-linux-d77ccdc644a59b412d8e101576134c90a0aa6797.zip
ima: re-evaluate files on privileged mounted filesystems
This patch addresses the fuse privileged mounted filesystems in a "secure" environment, with a correctly enforced security policy, which is willing to assume the inherent risk of specific fuse filesystems that are well defined and properly implemented. As there is no way for the kernel to detect file changes, the kernel ignores the cached file integrity results and re-measures, re-appraises, and re-audits the file. Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com> Cc: Miklos Szeredi <miklos@szeredi.hu> Cc: Seth Forshee <seth.forshee@canonical.com> Cc: Dongsu Park <dongsu@kinvolk.io> Cc: Alban Crequy <alban@kinvolk.io> Acked-by: Serge Hallyn <serge@hallyn.com> Acked-by: "Eric W. Biederman" <ebiederm@xmission.com>
Diffstat (limited to 'drivers/i2c')
0 files changed, 0 insertions, 0 deletions
OpenPOWER on IntegriCloud