Darkangeel_hd
/
lineage_android_kernel_samsung_jf
mirror of https://github.com/Darkangeel-hd/lineage_android_kernel_samsung_jf.git
1
0
Fork 0
Code Issues Releases Wiki Activity
lineage_android_kernel_sams.../security/integrity
History
Mimi Zohar 12a38b8f1d evm: prohibit userspace writing 'security.evm' HMAC value 
commit 2fb1c9a4f2dbc2f0bd2431c7fa64d0b5483864e4 upstream.

Calculating the 'security.evm' HMAC value requires access to the
EVM encrypted key.  Only the kernel should have access to it.  This
patch prevents userspace tools(eg. setfattr, cp --preserve=xattr)
from setting/modifying the 'security.evm' HMAC value directly.

Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
 		2014-06-26 15:10:28 -04:00
..
evm evm: prohibit userspace writing 'security.evm' HMAC value 2014-06-26 15:10:28 -04:00
ima Revert "ima: policy for RAMFS" 2013-11-29 10:50:34 -08:00
Kconfig integrity: digital signature config option name change 2012-01-18 10:46:27 +11:00
Makefile integrity: digital signature config option name change 2012-01-18 10:46:27 +11:00
digsig.c integrity: digital signature verification using multiple keyrings 2011-11-09 16:51:09 +02:00
iint.c evm: clean verification status 2011-09-14 15:24:52 -04:00
integrity.h integrity: digital signature config option name change 2012-01-18 10:46:27 +11:00