Evolution-x-devices/kernel_google_b1c1
2
0
Fork 0
mirror of https://github.com/Evolution-X-Devices/kernel_google_b1c1 synced 2026-02-10 05:49:13 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
a2dbba7674468ad03aa6cf4378ed0965f453e034
kernel_google_b1c1/security/integrity/evm
History
Mimi Zohar 2fb1c9a4f2 evm: prohibit userspace writing 'security.evm' HMAC value 
Calculating the 'security.evm' HMAC value requires access to the
EVM encrypted key.  Only the kernel should have access to it.  This
patch prevents userspace tools(eg. setfattr, cp --preserve=xattr)
from setting/modifying the 'security.evm' HMAC value directly.

Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
Cc: <stable@vger.kernel.org>
2014-06-12 17:58:07 -04:00
..
evm_crypto.c
evm_main.c
evm: prohibit userspace writing 'security.evm' HMAC value
2014-06-12 17:58:07 -04:00
evm_posix_acl.c
evm_secfs.c
evm.h
Kconfig
evm: provide option to protect additional SMACK xattrs
2014-06-12 17:58:06 -04:00
Makefile