evm: permit only valid security.evm xattrs to be updated (7102ebcd) · Commits · Mirrors / github.com / sifive_riscv-linux

Commit 7102ebcd authored May 12, 2011 by

Mimi Zohar

evm: permit only valid security.evm xattrs to be updated



In addition to requiring CAP_SYS_ADMIN permission to modify/delete
security.evm, prohibit invalid security.evm xattrs from changing,
unless in fixmode. This patch prevents inadvertent 'fixing' of
security.evm to reflect offline modifications.

Changelog v7:
- rename boot paramater 'evm_mode' to 'evm'

Reported-by: Roberto Sassu <roberto.sassu@polito.it>
Signed-off-by: Mimi Zohar <zohar@us.ibm.com>

parent 24e0198e

Hide whitespace changes

Inline Side-by-side

Please register or to comment