Mirror of https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/ https://git.shady.money/linux/atom?h=v2.6.36 2010-09-07T23:51:41Z 2010-09-07T23:51:41Z Mimi Zohar zohar@linux.vnet.ibm.com 2010-08-31T13:38:51Z urn:sha1:e950598d43dce8d97e7d5270808393425d1e5cbd commit 8262bb85da allocated the inode integrity struct (iint) before any inodes were created. Only after IMA was initialized in late_initcall were the counters updated. This patch updates the counters, whether or not IMA has been initialized, to resolve 'imbalance' messages. This patch fixes the bug as reported in bugzilla: 15673. When the i915 is builtin, the ring_buffer is initialized before IMA, causing the imbalance message on suspend. Reported-by: Thomas Meyer <thomas@m3y3r.de> Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com> Tested-by: Thomas Meyer <thomas@m3y3r.de> Tested-by: David Safford<safford@watson.ibm.com> Cc: Stable Kernel <stable@kernel.org> Signed-off-by: James Morris <jmorris@namei.org> 2010-08-02T05:34:58Z Arnd Bergmann arnd@arndb.de 2010-07-07T21:40:15Z urn:sha1:cdcd90f9e450d4edb5fab0490119f9540874e882 The default for llseek will change to no_llseek, so securityfs users need to add explicit .llseek assignments. Since we're dealing with regular files from a VFS perspective, use generic_file_llseek. Signed-off-by: Arnd Bergmann <arnd@arndb.de> Cc: Mimi Zohar <zohar@us.ibm.com> Signed-off-by: James Morris <jmorris@namei.org> 2010-05-21T16:37:29Z NeilBrown neilb@suse.de 2010-03-16T04:14:51Z urn:sha1:db1afffab0b5d9f6d31f8f4bea44c9cb3bc59351 Of the three uses of kref_set in the kernel: One really should be kref_put as the code is letting go of a reference, Two really should be kref_init because the kref is being initialised. This suggests that making kref_set available encourages bad code. So fix the three uses and remove kref_set completely. Signed-off-by: NeilBrown <neilb@suse.de> Acked-by: Mimi Zohar <zohar@us.ibm.com> Acked-by: Serge Hallyn <serue@us.ibm.com> Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de> 2010-05-16T23:21:58Z Mimi Zohar zohar@linux.vnet.ibm.com 2010-05-04T22:16:30Z urn:sha1:ba0c1709f4946a5ca1a678f4318ed72c0d409b3c The ACPI dependency moved to the TPM, where it belongs. Although IMA per-se does not require access to the bios measurement log, verifying the IMA boot aggregate does, which requires ACPI. This patch prereq's 'TPM: ACPI/PNP dependency removal' http://lkml.org/lkml/2010/5/4/378. Signed-off-by: Mimi Zohar <zohar@us.ibm.com> Reported-by: Jean-Christophe Dubois <jcd@tribudubois.net> Acked-by: Serge Hallyn <serue@us.ibm.com> Tested-by: Serge Hallyn <serue@us.ibm.com> Signed-off-by: James Morris <jmorris@namei.org> 2010-05-06T23:20:03Z James Morris jmorris@namei.org 2010-05-06T23:20:03Z urn:sha1:83c36ccfe4d849f482ea0a62402c7624f4e59f0e This reverts commit a674fa46c79ffa37995bd1c8e4daa2b3be5a95ae. Previous revert was a prereq. Signed-off-by: James Morris <jmorris@namei.org> 2010-05-06T00:56:07Z James Morris jmorris@namei.org 2010-05-06T00:56:07Z urn:sha1:0ffbe2699cda6afbe08501098dff8a8c2fe6ae09 2010-05-05T00:00:06Z Mimi Zohar zohar@linux.vnet.ibm.com 2010-05-04T22:16:30Z urn:sha1:a674fa46c79ffa37995bd1c8e4daa2b3be5a95ae The ACPI dependency moved to the TPM, where it belongs. Although IMA per-se does not require access to the bios measurement log, verifying the IMA boot aggregate does, which requires ACPI. This patch prereq's 'TPM: ACPI/PNP dependency removal' http://lkml.org/lkml/2010/5/4/378. Signed-off-by: Mimi Zohar <zohar@us.ibm.com> Reported-by: Jean-Christophe Dubois <jcd@tribudubois.net> Acked-by: Serge Hallyn <serue@us.ibm.com> Tested-by: Serge Hallyn <serue@us.ibm.com> Signed-off-by: James Morris <jmorris@namei.org> 2010-04-22T22:47:53Z Eric Paris eparis@redhat.com 2010-04-22T14:49:36Z urn:sha1:eb8dae9607901fd3fc181325ff3f30dce8f574c5 As an example IMA emits a warning when it can't find a TPM chip: "No TPM chip found, activating TPM-bypass!" This patch prefaces that message with IMA so we know what subsystem is bypassing the TPM. Do this for all pr_info and pr_err messages. Signed-off-by: Eric Paris <eparis@redhat.com> Acked-by: Mimi Zohar <zohar@us.ibm.com> Signed-off-by: James Morris <jmorris@namei.org> 2010-04-20T23:58:18Z Eric Paris eparis@redhat.com 2010-04-20T14:21:36Z urn:sha1:34c111f626e91adb23f90a91d2c7cd4dac9fa4b1 integrity_audit_msg() uses "integrity:" in the audit message. This violates the (loosely defined) audit system requirements that everything be a key=value pair and it doesn't provide additional information. This can be obviously gleaned from the message type. Just drop it. Signed-off-by: Eric Paris <eparis@redhat.com> Acked-by: Mimi Zohar <zohar@us.ibm.com> Signed-off-by: James Morris <jmorris@namei.org> 2010-04-20T23:58:17Z Eric Paris eparis@redhat.com 2010-04-20T14:21:30Z urn:sha1:2f1506cd82e0725ba00c7146a9a9b47824a5edcf Convert all of the places IMA calls audit_log_format with %s into audit_log_untrusted_string(). This is going to cause them all to get quoted, but it should make audit log injection harder. Signed-off-by: Eric Paris <eparis@redhat.com> Acked-by: Mimi Zohar <zohar@us.ibm.com> Signed-off-by: James Morris <jmorris@namei.org>