git://ftp.safe.ca / safe / jmp / linux-2.6 / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 6ccd045) | patch
IMA: do not allow the same rule to specify the same thing twice
authorEric Paris <eparis@redhat.com>
Tue, 20 Apr 2010 14:21:01 +0000 (10:21 -0400)
committerJames Morris <jmorris@namei.org>
Tue, 20 Apr 2010 23:58:14 +0000 (09:58 +1000)
commit7b62e162129c3b28d51016774e0c7c57c710c452
treec6d18b649b70bb684b2a648a4a00956f2d1e62e2tree | snapshot
parent6ccd045630054c99ba1bb35673db12cfcf1eea58commit | diff
IMA: do not allow the same rule to specify the same thing twice

IMA will accept rules which specify things twice and will only pay
attention to the last one.  We should reject such rules.

Signed-off-by: Eric Paris <eparis@redhat.com>
Acked-by: Mimi Zohar <zohar@us.ibm.com>
Signed-off-by: James Morris <jmorris@namei.org>
security/integrity/ima/ima_policy.c diff | blob | history
Full containers within linux kernel