git://ftp.safe.ca / safe / jmp / linux-2.6 / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
IMA: reject policies with unknown entries
[safe/jmp/linux-2.6] / security / integrity / ima / ima_policy.c
diff --git a/security/integrity/ima/ima_policy.c b/security/integrity/ima/ima_policy.c
index 0127011..dee2dc0 100644 (file)
--- a/security/integrity/ima/ima_policy.c
+++ b/security/integrity/ima/ima_policy.c
@@ -398,6 +398,7 @@ static int ima_parse_rule(char *rule, struct ima_measure_rule_entry *entry)
                                                   AUDIT_SUBJ_TYPE);
                        break;
                case Opt_err:
+                       result = -EINVAL;
                        audit_log_format(ab, "UNKNOWN=%s ", p);
                        break;
                }
Full containers within linux kernel